{"report_id":"28b0ff08-541c-41ec-aa72-cec8ecbd953f","version":6,"status":"done","tags":[],"date":"2026-02-15T06:50:28Z","url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":0,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"final":{"url":{"schema":"https","addr":"mixer.352345.com/login","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"title":"Sun-Panel","dom":{"size":118028,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (466)","md5":"630fe4cd46f65eb6687f5ddffc524071","sha1":"ac9321504fb6f49a4a59146ce7dff6d3beb6eeac","sha256":"2354b3afb37d3eaa877c86cdc5dc32f8c8064c902383860ed2ce6263d2f9bbe1","sha512":"b2a7a1a9b3babe6bfa32bd6cdd9632f359159897ce36e425481ed584b976e99868dd47a2aaf3765568e33caeab78edaee1963615a71575a01e5be97a40c29d43","ssdeep":"1536:7N8XbIKsNGPw0jW2kGAz0RZqTLkFE6934A:FGPwcAgb","tlshash":"11b3b3b9ba58317d6e1787bd62caf508232ff0d2af06c4a475bb4004438e7b8e657e45","dom_hash":"domhashabdfd6ed49649a20f9eb16eb4b6acc5a","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":0,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-22T06:50:28Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"mixer.352345.com","ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"domain_registered":"2013-01-22","domain_rank":0,"first_seen":"2026-02-15T06:50:30.071885Z","last_seen":"2026-02-15T06:50:30.071885Z","alert_count":24,"request_count":24,"received_data":2620255,"sent_data":10359,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"61c633daa7bd5c89d3d21ced9631def3","sha1":"31c72835a39c751ec0a93825e4dbd8d47552b40b","sha256":"330511dc8179b44e5760ecbdb00c2575f9d627a2a3423edcca152d60054e5a1f","sha512":"eda59a22c515611f898f9cbc5591de83eb1d2a920ccc4795099011d439c85de10f2ffc471eafe9fd1729c142868273e4eb0b35060fa78362b50384544391e600","ssdeep":"","tlshash":"ccc08cc8b0ca2d003a06a45134bf34e89025802770882b06cce4eca82e334f09233e98","size":151,"data":"","first_seen":"2025-02-17T15:24:03.205804Z","last_seen":"2026-06-06T10:46:01.639191Z","times_seen":97,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"4ebe42d3f5edd254bfb10f93f7496e39","sha1":"1efe6f5925133107b35d91d779a11a55713cf9e4","sha256":"4e0bd8ec232fdf8e5486f4fd5696127422dd446cc8b883d312d329af08012532","sha512":"c6aee7e42fd4ff7d3f7ec42b4e5f6daf8d8866a4d8214b957b6ad167730a9d643dbf1aae99fef242086b4a49d7d721e1ff97af4926e44098b0b3df835464f4af","ssdeep":"","tlshash":"23c08cc4a0c2ad001612a51014af64e490248026714c1b429ce8d84c2e220b49237ea8","size":140,"data":"","first_seen":"2026-02-15T06:49:32.880514Z","last_seen":"2026-02-15T06:53:08.918824Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"c426a33fc4900563804ea814ee9c1d29","sha1":"0ac3d6b8e2305706152e7f22f800781f9401afef","sha256":"f2dab124fce2aec1d99a15e19aad7cb91fe3a5aeefa14ac4c15d4f1cd79ff645","sha512":"c9fc2a20f8c26d4092a43acb8a478c17648b87c9e4f872f554110555d1749bbdac9f521309e7b60b1c3f14c16f33ad93798fe23a52684c2925e2d31461ea2a79","ssdeep":"","tlshash":"e4c08cc4a0d2be101602651010ff24e490384026704c1b028ca4e8583e220b0a233eac","size":141,"data":"","first_seen":"2024-01-08T06:17:44Z","last_seen":"2026-06-07T21:30:11.25081Z","times_seen":761,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"9a5407217a68007a04c3d850bd1b7ed2","sha1":"6a2610dee29dcc86f71a54159d1707824e0cd355","sha256":"bb9664f70428bd78f91eb4088a00fd17c3cde47d62898d39c47b4847ac471d8c","sha512":"6626f994931fccd1fb42896976bbd372de1eb162002b31936d9782b989214c20bcc6146ea5072f7b5c1a029d9a102c0dfb9533f2c3f0e15910691f6582648cf2","ssdeep":"","tlshash":"c4c08cc5b0c22e002646681415af74e89024802770481f028cd8da682e230b48237ee8","size":146,"data":"","first_seen":"2025-06-18T03:28:03.541412Z","last_seen":"2026-02-15T06:53:08.913165Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"cba50bf6b988c11914037d3e92cdd653","sha1":"f3bf85d2ebceb527be2d16f7944bb52a5e6a7f94","sha256":"4ca33272f96c377db5d975bb29f8251038847b749b1821c724ff44049847e900","sha512":"febf905706ca987f057d838a606254a5ca16245bc1af4ec41c8e77b4f39430ca7a118ee67fcddc35214025a3aca3fc3d617a544e2c3fd3709213722a1860e98c","ssdeep":"","tlshash":"07c08cc4a0c62d00260a641454af25e490244026b44c1b128ce4ec492e222f48233ea8","size":147,"data":"","first_seen":"2025-06-18T03:28:03.526397Z","last_seen":"2026-02-15T06:53:08.917693Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"57000c59fcbea1cd19ac5a813255ec6e","sha1":"3535c57e07dcf6ccbab77ba24ef36dcf92122f65","sha256":"396638c2b4e49766d9082bf7b9c96276122aedc02ff1ca83c5044eaa02f9a511","sha512":"66af220f1a7b46655601f5a2656b40dfd48bb9abd688fd8bd8a232bcb55d2140a957a2aef5154a0d7cd72dacda8ace437ab68229a3fe1e3dd8e0c829d53278f8","ssdeep":"","tlshash":"0dc08cc8b0ca2d002616646228af34e890244067b0881b428c98d8982e230b89233ea8","size":149,"data":"","first_seen":"2025-06-18T03:28:03.539724Z","last_seen":"2026-02-15T06:53:08.911056Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"da6f96e28f67a6157a3936ad9620e184","sha1":"2048856e2add65759547645f3d5b41f91e7b4321","sha256":"9e7533262f41352610208208fcd05bddb8400f22fb8c23679a5a58708612a0a9","sha512":"26faa3d2211fdc3a6ae217e658285f14822523bdad08cf3f71d691485d9427cf7b0ef8ec51a45009b6b3af00a5d9ae6b8026a0892fc017de748dfae3d9e852f9","ssdeep":"","tlshash":"5ac08cd4a0c72d002602681011af34e49024402670881b038c94dc582e230b48233e98","size":138,"data":"","first_seen":"2023-04-13T07:32:12Z","last_seen":"2026-06-08T02:55:51.745784Z","times_seen":1479,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"5a8bbb7e690eba599bd46cdcf8cf7593","sha1":"1a4fa64abe9396b22116cc51c78475e8e8e401dd","sha256":"2e6b5e4bef31816c3d45072d1ce98052d9b32692c4461fc2d4e6c1c59aae0a1a","sha512":"8eca611f8c8ed9e71e3a3f989b98b01d59b965c6b5662aab4c52ae08ff535070957235b256a2f80330b5d6e44b80b71b194122988a20ed40cf09ac8088f8e251","ssdeep":"","tlshash":"cac08cc4b0c62d102a02a850a0af39e490288027b44c1b07cda4d85e3e620f08333ea8","size":147,"data":"","first_seen":"2025-06-18T03:28:03.536808Z","last_seen":"2026-06-08T12:17:39.499838Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"3639d2515252ae82a4cacb89a527771b","sha1":"f491af5ce126e4e246a41cad53c85a34e31aaed1","sha256":"be956b0102853e89073b647d34c1c386857eb971b116f72cb9e703937120d60e","sha512":"f8acfd9efd354798427e913058cf7439266212d933da08f2efc0b15331a0304ebca5bf0978d3c11985b73719ac3deb0c24ef528fd4d18e4c1a7c95be602ba49f","ssdeep":"","tlshash":"0dc08cc4a0e22e001602651110af24e490244026704c2b028cd8e8483e260b09233e9c","size":139,"data":"","first_seen":"2024-01-08T06:17:44Z","last_seen":"2026-06-07T21:30:11.236617Z","times_seen":761,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/login","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6900701ff959494d30437499abeb8885","sha1":"7cb4c820fbf30caa6b50d6c2dc4aa7c0c4b644d8","sha256":"3be52a71ee1e4d668cceef779a9942298cef4d68e03183d10681c4aa945c83f5","sha512":"731bc35b44d92adfda91474163cba7cbfe8ebb8faeb76364becb6a0f87c8d62c68a560257759546c0c38da3d0ea220cbee60eed126f77194441f92786231135b","ssdeep":"","tlshash":"b5c08cc4a0c22d101642645420af26e4a028802a70485b128c94d8482e620b48233ea8","size":138,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-06-08T18:55:40.087718Z","times_seen":6514,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-C_vEeM3W.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"22745b191c48ddc0068ee8e43b3c1056","sha1":"3653f868ade228192a149b99a1a1fbb422bf0728","sha256":"dc57c1a9fa69cf2142037be23c6ac8775508b717e34b594fd08c8017fd3aa635","sha512":"673c6908fca78ae4218e943a7677c998d5dc72978cb1630779f8fc3731585e544128945895d15af70dfd488d0781a2233046a10244e28865228f1e47192a5708","ssdeep":"96:0cSgKc2iPWnwvQpcGTCaXW7qyANf6G3bRiEzm6ud6Rh6YRKQU7kZs:4gKcFWnwvQpcGTtX6q5i0bRQKUQU7kZs","tlshash":"54a1f909752e84fdba338c48ad5a5500211c576e6210d6e0617a5b503ee5fb4d3aef3b","size":4805,"data":"","first_seen":"2026-02-15T06:49:32.877797Z","last_seen":"2026-02-15T06:53:08.89349Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/login","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"0ae64cce4f24529caa56156b159bdade","sha1":"3f1c5a480a93a0bfdc86eb0d7769ea098682b7a5","sha256":"99cb12f023e5c6752e9a7e0132343acf246a432e31d1e7326a3fad10704711a5","sha512":"0ce54f9c86d027c6895c449a7be022ab96d9df608d39f56a3eb0c2721f49aac55b9f82668c5265ba231c626d7a841bcb68c13b169f5f5f9be40244d0c3abec61","ssdeep":"","tlshash":"eec08cc8a0c22d002602a45010bf38e4a024842770481b028de4dc4c3e230f08233e98","size":141,"data":"","first_seen":"2023-04-14T14:41:51Z","last_seen":"2026-06-08T13:56:48.153946Z","times_seen":2101,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"1e2a12f541e4c93a733da8f574ba4553","sha1":"e1b033bf37eb57a28ffa3c7cb3d1a8bec323786d","sha256":"0c57b88707ece8400dea393ab46c84c66cd4313d91c0032fb58b0e279faf80a4","sha512":"d77922a9f3fbee986d6fba37eb1792a4ba31eba609b64747ca41298c22ff6f38d0ae28c6c38b1c64b4cb56e4f8c7ee3a6fe3e5a78e47199aecc4ca296b9517fe","ssdeep":"","tlshash":"f3c08cc5a0d22d101a12652454af28f490248026714c1b12dd94e84c3e630b49233eac","size":147,"data":"","first_seen":"2026-02-15T06:49:32.917823Z","last_seen":"2026-02-15T06:53:08.915504Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"4d9e4c3dd2da0534cabf24649187c257","sha1":"dce9451788decd2e54d8b79a546a22fecfe42230","sha256":"485655245517cd108ac754ec7c95ffbc1b506cd1ee39c947294a74d9b988a917","sha512":"db042998d57416695e53e267e54bec3a839edc53e6dee5fdea2f09ddf13de8e95cc8d36a838b3ca1b9aed83da12fb8c9c320410c0d4ace2617b4302b117912e6","ssdeep":"","tlshash":"4ec08cd4a0d23e001626652020af24e49024412670481b128c94e8493e230f09233e9c","size":139,"data":"","first_seen":"2024-01-08T06:17:44Z","last_seen":"2026-06-07T21:30:11.120768Z","times_seen":762,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"45ae0efbfe627825318eaa9057f7f690","sha1":"3eb45bea7b366f1ddbf1a2fe450d26c9f0c1ea3b","sha256":"3473d247ff31b73858c8828fde7c1e0e469fbc387067d52480068c3239b956ff","sha512":"200e9ee2ef960228a7d577aa464bd20826b1752ee473bdbcd6ac95e26a8b25d0f059b8af4d8c82e098ad5c3417db6f557455d01a9d8745b4ba2efa94803bf361","ssdeep":"","tlshash":"9fc08cc4a0d62e001a1a652010bf24e4a024402670481b028c94e8483e220b08237e9c","size":141,"data":"","first_seen":"2024-01-08T06:17:44Z","last_seen":"2026-06-07T21:30:11.209739Z","times_seen":761,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"6f8b1aafd3c58f73a236e3f5ee962867","sha1":"53f1f43c24d9999273a132f493c4ff7cc1652ea9","sha256":"5d8ff82965a99d05ea7db6bf7993fca839c403ced2b41a25fb057b6ff9f55dbb","sha512":"15904f7dbb5565367c501738ed4d435a5406ceacd582d2dd2dd7e353c2ec8c32acf3d8191c712e0d551da367853ff58c570669e82edf8168ce6c16fd05ceb491","ssdeep":"","tlshash":"08c08cc4a0d62e106a02a91014af29e89024402a70481b428ca4e8683e220b08233e9c","size":142,"data":"","first_seen":"2024-01-08T06:17:46Z","last_seen":"2026-06-07T21:30:11.237476Z","times_seen":761,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"80a71d2d5b8cf224ddb063c603434efb","sha1":"c5bfac59aee1412d624756957dd0997b3f9a2fe1","sha256":"ad2317a36a54268d03da1ae54282ee14d9dc36dbafa5412faa7fcce2d5bd9e92","sha512":"7acc3125817b0bab45f2be9b62b428873dac26f9e1aceb23f39d4e86270307f3db9f1c02a0f52186d338d5978892722113dae9d0dae4d8e2b2e709e2a2464c3d","ssdeep":"","tlshash":"4dc08cc4e0c22d1026066a1112ff26e49034402670885b478cd8d8483e620f08333f98","size":147,"data":"","first_seen":"2025-06-18T03:28:03.544228Z","last_seen":"2026-06-04T03:15:28.528198Z","times_seen":11,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-C9Kg_QMv.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"653d8576b0af886108d34e03cb91b825","sha1":"bcb87c24055f3ecde988549794f0ed7ce1698964","sha256":"8894337ddb5057cb66e698442a9042d3cb2b6de8eb8ddc581e93e71545294bec","sha512":"9c4f1a08a53d418431c8a13a5c4a17d7d80df47cf93d8a81868c9582aa260efbccf9a5bcf42880a08d40ae0348fa169bb2b4df7686f1a2dc31bcc43776afa931","ssdeep":"6144:oINLsUtBX/Ku0Y0utI3fpHTCT5rHxcDYkek6EJo7ajv5pLFrTgukGUvWw:LX/Ku0Y0r3hiQxINR","tlshash":"cba43cd8b649f07563f754b4806f050672396b4ae509c4e0f0b698e429f9e78a27bf3c","size":469138,"data":"","first_seen":"2026-02-15T06:49:32.879048Z","last_seen":"2026-02-15T06:53:08.886551Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-Dca3OcbT.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"0a04995f9b2051d9e4065bd329aac0a3","sha1":"958198c937fcb1a528f58be7e1197c74d263d394","sha256":"a675f63a83c86a7dd53032e0aca59f4e3b33678c3a0a106ff7cc646235446014","sha512":"3f6dac071eafa7ef4d0ec7afa876225e5c2004b45a01cca1e86323a6b1d7c92d32187635b7f867437902aa9f52e3b673aaab148c859d2bb897891ecbc1c45058","ssdeep":"12288:dlU146qR0Si+OTMit/nxP5VwQkYZxteQgFiGr3kCy:dlU5qRITbtPR5VjThgFiGr3kCy","tlshash":"dbd46ce8724a706553b388ec50bf140af32b3591784dc5d4f16d8ada39b256ce2b7f28","size":611630,"data":"","first_seen":"2026-02-15T06:49:32.867122Z","last_seen":"2026-02-15T06:53:08.885548Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/_plugin-vue_export-helper-DlAUqK2U.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"importedModule","is_inline":false,"md5":"25e3a5dcaf00fb2b1ba0c8ecea6d2560","sha1":"7850b3fd4aeb69387bdb5a60025d15c41351d5eb","sha256":"cb85b0f263dbe24e857338301c0627076592e9f1f1a5662929f86d2c126444aa","sha512":"2e5cc9b53d5641147f68c73e5db0442d93fb6a64da45cfc051da5550a2fad07e912e651bd730e54325ef74eb706be0c5df612355c1dca144ab6e9cc8c4ecc73b","ssdeep":"","tlshash":"1fb012c81cc3e078939818d47738c15844380448310742b0808c0943e2c20809797c1d","size":91,"data":"","first_seen":"2023-03-08T16:39:49Z","last_seen":"2026-06-08T19:45:21.722132Z","times_seen":22274,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"428ce4e67ed2f795b5241e3f9c2f9ba3","sha1":"2904b6bd776f59a9bc4382b008ac3d7f4f958c07","sha256":"a9b08773022ac54ec919fdea9cd918ef1ff6f598e3525af226139016990dd853","sha512":"151ba81ccee5303ce2ceb6663711c0530109f8716418b374ce569edde19397c2f110461043a5f8a766103cbc915aba27bad219f1427f1df21a07b0b2c73f0171","ssdeep":"","tlshash":"d1c08cc4a0c23d201a06a62514bf69e49034406b70481b428de4d8482e230f48333f98","size":148,"data":"","first_seen":"2025-06-18T03:28:03.545528Z","last_seen":"2026-03-26T09:20:42.485094Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"4e30fb4300d0be787edd6f7b0addefc1","sha1":"ba807ba474a55d7fa2ad30ebd998ac1b69a194c8","sha256":"d28ca25d579a0eb1cfd35d37698044fbb40bea48de6fec6a9dabddcee384ce97","sha512":"35813090c101c39cd1b52c702db6cb8728d01f4810880231dd10878f3ec2c3ce3c74c20387b94ff59d0ea22bcdef22d8535d2c0bcdc8e0f035006c4c14a47025","ssdeep":"","tlshash":"e6c08cd4a0c22d001602651460bf24e49024402670481b12cc94e8483e220b08233e9c","size":140,"data":"","first_seen":"2023-06-09T20:52:21Z","last_seen":"2026-06-08T03:14:52.246361Z","times_seen":85,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"bf5ed1faed6974f6cd435a8653e040ac","sha1":"ff5f6ea3b843d05f75a1392f21ed02ae8f85a466","sha256":"cbdd69ef74cc399dd1af7fb45da1b1206929d024a53efe75ff3d0850961075b8","sha512":"c8b98a172fa004b1ee14fce60d7a3b25dd0ceb4e34faf689cb5f7dc56b767d7bedcd8742c05b761d517a7cf77484a9686567489b7c7c2f6968a1fdc2b6b0dbc9","ssdeep":"","tlshash":"00c022e661d22d003a012050806f39e48020403b608c86a38c90e8442e930b0822be8c","size":185,"data":"","first_seen":"2025-06-18T03:28:03.548367Z","last_seen":"2026-02-15T06:53:08.924084Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"ada7152c5e7ee57808e4f741519658da","sha1":"dfaddb4593dc2dbdeaf38640c0e7a6c52f7b116c","sha256":"7a8b22f9d68aa4f5a2586a8f6fd67f47194576d09617eeeca1a11484bcb3baf1","sha512":"401ca6533a106aa75e584c4b2f66c4e24d463d6cea236531c1749b08a900c873bc5eb4de411da8c23d0c5c448809db713ae9487eaf5480e4cfb9615aa4e49a78","ssdeep":"","tlshash":"0ac08cc5a1c26e401606746519afa4e49034842f74885b068cd8d8483e220f48333f9c","size":152,"data":"","first_seen":"2025-06-18T03:28:03.535155Z","last_seen":"2026-02-15T06:53:08.929446Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"55a7f0b8d3a7d423e4050b80fb4518d8","sha1":"9f5ac3be637c88fcceb99673597dbcd366d2b425","sha256":"d0676dc6d0a2536f256fa651f774df6e6c08844ad7c4e6ee5dd149c4b803b006","sha512":"cff2984bc1b992e05a5e48fb88c8c09e2de88c419290f574703ba26fc5e4fcb552c0dee5c3a0da8cb1ba8b65a8b37e9601e0d136295434e482b2d2568bff8847","ssdeep":"","tlshash":"21c08cc4a0c22d006612681010bf24e4a0248027b0485b028dd4d8893e234f08233e9c","size":141,"data":"","first_seen":"2025-06-18T03:28:03.549602Z","last_seen":"2026-02-15T06:53:08.920627Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"889d4561e3cd75171fa8c92d6c648d8b","sha1":"698455ae8f7f4b447b648146a91fcac09b659074","sha256":"69c7855ffcebc5b14c4da28f772654f1be7c371156f87467948c01466b9e1284","sha512":"d8b0be104a3fc6007007e955b2dc7f8706a9d927229c4dbe3fbf07d27a359c2012b52e1ed386c974e0ab5d470f2b050575b22f814f8b2867ddf2324363d576ca","ssdeep":"","tlshash":"d4c08cc4a0d23e001602691020af35e49024402670481b428c94e9483e220b09237e9c","size":139,"data":"","first_seen":"2024-01-08T06:17:44Z","last_seen":"2026-06-07T21:30:11.14693Z","times_seen":765,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-D4sLAD1_.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"importedModule","is_inline":false,"md5":"ca4bb2ae9e728a1be16b3d967df5dd44","sha1":"f8753899127e16e8ec6c20f469fbfb5ed22a5863","sha256":"b3387afebcb528ad23a0d17c9471b782fb48c997a03648119f1088c4e0ad7666","sha512":"55c5dbe5516591ad276cdc8b8a8dbdff3edbac000180e54da9ed0252260d2e98fd0373c34687302f40ecada3ee1c53833f8ed4896031e574e2e5850c3d040112","ssdeep":"6144:hF4gBV+CbNzGtRTAoD7ftSY/ZUUAH7p9/4AN:BBV+Cb67tSYm/4o","tlshash":"75545c98368ab07057a385f4805f0506b3392a21f80ad5d4f079d8e535b9b7de27bf38","size":281211,"data":"","first_seen":"2026-02-15T06:49:32.859184Z","last_seen":"2026-02-15T06:53:08.883444Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"1cd627572a22207a42000c57cd208552","sha1":"547000fbfc8726dc90c6510c08d3613996ab39d9","sha256":"75d385ac5aa0f287428a7b54d970f824db3f89703837753f3f22051f00c9540e","sha512":"6c0dfe0e5df6b8ad97b7cb95e5ce1ee24a7618541d45012f170b0c7ee3aaa9ee515dfebafe0a520552c3841cb22999f807d0e7175dfab1337361e37a85df7385","ssdeep":"","tlshash":"33c08cc4a0c22d20660265255aaf25e49034802ab04c1b528ee4d8482e230b08233f98","size":150,"data":"","first_seen":"2025-06-18T03:28:03.546734Z","last_seen":"2026-02-15T06:53:08.909988Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"introduction_type":"Function","is_inline":false,"md5":"55f88344662d50ea7844dc13d5f882da","sha1":"5610df8f007a3b193d9101aed8df14fd7cb8219a","sha256":"529bea05396740759e86d185b5846eb9197def6dcd4e53d3837a0e96b7c35574","sha512":"bf654bf99bbac8a8329621b9ab7f32a4080c4b3ae586ed792c602a308a0aafb7afc5fb88edafe604752e8f1b41e9eba215cb585354b0fc9844b3f208690cf066","ssdeep":"","tlshash":"50c08cc9a0d32e002612651110bf24e89024402670481b028ca8e8583e230b08233e9c","size":140,"data":"","first_seen":"2024-01-08T06:17:45Z","last_seen":"2026-06-07T21:30:11.24826Z","times_seen":763,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/login","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"35e0563db9526e0c5fb582a10302458c","sha1":"a1f9f0f5d0b5c690795b05928ad7ca0c103b9777","sha256":"65edd78a29d50b17ea83883ed1d346bb8e350b5cc13e7bb107b7507199fa8eef","sha512":"c7c38f574d0cda3932f3e34d78956e744ea361286aba39e79003d524f9f19ab05603900fe145662c11a0c04a43898bf00b76ab2f8a3783d319092bf55b430d3f","ssdeep":"","tlshash":"51c08cc4b0c32d002602645050af24e49024802770481b029c94ec492e220b08233ea8","size":141,"data":"","first_seen":"2023-05-05T08:00:34Z","last_seen":"2026-06-05T23:43:56.983347Z","times_seen":663,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"mixer.352345.com/assets/defaultBackground-B0I1lE-6.jpg","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:09.304Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/defaultBackground-B0I1lE-6.jpg HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:09 GMT\r\ncontent-type: image/jpeg\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":309320,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, resolution (DPI), density 720x720, segment length 16, baseline, precision 8, 4000x3000, components 3","md5":"b117dbbcbefaa8a11e6d07d08669e961","sha1":"c5d55d979267c6a2725af23df1ef338c10d11e51","sha256":"146a5dcbad31cbe06f1ba3bda8bf8d9e623cc6ad7f8db95e69ae8e71d17887ef","sha512":"ede4d94d2bf197c3651a40cf6adb8c9c7ac5441c93a1a2e043dfaa0d2589a3194128b891a76ba336d262571460a66695083d9bdd88f526d09396733d52add9c0","ssdeep":"6144:HxKtDteD4qIDKinQV4oChAoKu3YF7T+tB2+EKxfqicjFo7qiIS0YQE+3ZfZJ0s0Y:Ra0UHDK+Q7IWu3YF7iA+4j+Wi+Evs0V6","tlshash":"7964f13b7760ea06e9c55b31d487e3267f1286a1b02d0586f7ae2c3903663cc7ded256","first_seen":"2025-06-18T03:28:03.460564Z","last_seen":"2026-02-15T06:53:08.891636Z","times_seen":7,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/api/panel/globalSetting/getSiteStting","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:10.544Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"POST /api/panel/globalSetting/getSiteStting HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nlang: en-US\r\nContent-Length: 2\r\nOrigin: https://mixer.352345.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2,"data":"{}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:10 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 140\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":140,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"375bee84fac3e7ccd8f01e648b56b134","sha1":"be76bdd81296b530d8ca3a11d9da90dfbf7b6e36","sha256":"314689a3d7ac234eefcc37cafe31eaa3c47e6d79be7165f5bcc36e9bcca1dbb4","sha512":"a9c1ab354a8378342be64478d6f181261922b5af45e88110b06df9bee11a58c324a6a2e6597162456c05d1dd54b720404b48f3b980eb044e6f0532de6aa30a39","ssdeep":"","tlshash":"a5c02b00000c06681f0fc0fb0148c980c38c0883984cee98cc2eff2995ce4440323c02","first_seen":"2026-01-16T22:11:12.616681Z","last_seen":"2026-02-15T06:53:08.889084Z","times_seen":5,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-15T06:50:05.938Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:06 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1851,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"bbcf964b845620099cd3944a6d55717f","sha1":"3a5fcdbf11d9cc7bb01bba4bbf0d2d5249211310","sha256":"8714bf586f75af144633aba56f313b4ffa80e4bce051c6c89a778ff5a44a4039","sha512":"550ba2dca72b0648d6a6ca730c982f898ee0ef10abfb011501d159df6dcff13d1b19c67d3caad4a11c926e7d0c28dfb2f9bc6ffcf74240af4b791584e25a3957","ssdeep":"","tlshash":"a931e0418f0c450e8721020998d865c8c06fed3997579dbffea3b23f4dc9a8c466e6a6","first_seen":"2026-02-15T06:49:32.856381Z","last_seen":"2026-02-15T06:53:08.876853Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1433,"timings":{"blocked":584,"dns":62,"connect":259,"send":0,"wait":260,"receive":0,"ssl":265},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/custom/index.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:07.037Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /custom/index.js HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:07 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1851,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"bbcf964b845620099cd3944a6d55717f","sha1":"3a5fcdbf11d9cc7bb01bba4bbf0d2d5249211310","sha256":"8714bf586f75af144633aba56f313b4ffa80e4bce051c6c89a778ff5a44a4039","sha512":"550ba2dca72b0648d6a6ca730c982f898ee0ef10abfb011501d159df6dcff13d1b19c67d3caad4a11c926e7d0c28dfb2f9bc6ffcf74240af4b791584e25a3957","ssdeep":"","tlshash":"a931e0418f0c450e8721020998d865c8c06fed3997579dbffea3b23f4dc9a8c466e6a6","first_seen":"2026-02-15T06:49:32.856381Z","last_seen":"2026-02-15T06:53:08.876853Z","times_seen":4,"resource_available":false,"data":null}},"time_used":281,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":281,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/favicon.ico","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:08.777Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:08 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 11500\r\nlast-modified: Wed, 31 Dec 2025 03:32:19 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11500,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel","md5":"fe4bf97569ba2a689c6b0b10a4930a42","sha1":"25f726459336e61c72378b720228848d25e6a854","sha256":"9a6e62653e3cc1807920a97e6bdc3f5c4effae1d4b03879cbe95e39e3df0900b","sha512":"df28a4f0252932cd57a422b2b8568118b2f402f14afdd1d0433db3fae2f9e810768ab29da754d4aa05eb0bd46b34ef5ea13d40ef565c1632a2ac08ef6a8dfa3d","ssdeep":"192:MSq+SFRrfqAqnyQjKb8Fc4MrzhJVK9D2f7VnKmi/VHHr/N/3k2JnhAtQiS18FdPs:8zLz6y8O4M9Oyf7grNHr/dVgFNsjN","tlshash":"2132bfb0b1c59719b496bdba60d626d33307c79461734d2627fcef42de818051ff9186","first_seen":"2025-06-18T03:28:03.368886Z","last_seen":"2026-02-15T06:53:08.898759Z","times_seen":8,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-C_vEeM3W.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:09.898Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/index-C_vEeM3W.js HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:10 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4805,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, Unicode text, UTF-8 text, with very long lines (4794)","md5":"22745b191c48ddc0068ee8e43b3c1056","sha1":"3653f868ade228192a149b99a1a1fbb422bf0728","sha256":"dc57c1a9fa69cf2142037be23c6ac8775508b717e34b594fd08c8017fd3aa635","sha512":"673c6908fca78ae4218e943a7677c998d5dc72978cb1630779f8fc3731585e544128945895d15af70dfd488d0781a2233046a10244e28865228f1e47192a5708","ssdeep":"96:0cSgKc2iPWnwvQpcGTCaXW7qyANf6G3bRiEzm6ud6Rh6YRKQU7kZs:4gKcFWnwvQpcGTtX6q5i0bRQKUQU7kZs","tlshash":"54a1f909752e84fdba338c48ad5a5500211c576e6210d6e0617a5b503ee5fb4d3aef3b","first_seen":"2026-02-15T06:49:32.877797Z","last_seen":"2026-02-15T06:53:08.89349Z","times_seen":4,"resource_available":true,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/api/panel/itemIcon/getListAllGroup","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:09.905Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"POST /api/panel/itemIcon/getListAllGroup HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nlang: en-US\r\nContent-Length: 2\r\nOrigin: https://mixer.352345.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2,"data":"{}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:10 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 39\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":39,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"9520190b0219093d8432fd0846de80cb","sha1":"b2ce0ebdbb44d2673ba80f5d2aecc1b6bf7c6c38","sha256":"de8fb6ab48d4fc8b3ad602996f6328d576dece7388f072172fd59ab1ea104e2c","sha512":"e4a21f46af373fc84a374c46fe05f58ab6e7bc0d17734521760ee6abb877434595d9cfc9ab50d94617257c810601e4af71b8e7b8dcc6ee92ccc1111cbf100230","ssdeep":"","tlshash":"909004cd040cc3731011504c110d53c533d434c4400c07345c3d513c1d075510055334","first_seen":"2026-01-16T22:11:12.619261Z","last_seen":"2026-02-15T06:53:08.880626Z","times_seen":5,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-C9Kg_QMv.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:08.223Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/index-C9Kg_QMv.js HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:08 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":469138,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (16062)","md5":"653d8576b0af886108d34e03cb91b825","sha1":"bcb87c24055f3ecde988549794f0ed7ce1698964","sha256":"8894337ddb5057cb66e698442a9042d3cb2b6de8eb8ddc581e93e71545294bec","sha512":"9c4f1a08a53d418431c8a13a5c4a17d7d80df47cf93d8a81868c9582aa260efbccf9a5bcf42880a08d40ae0348fa169bb2b4df7686f1a2dc31bcc43776afa931","ssdeep":"6144:oINLsUtBX/Ku0Y0utI3fpHTCT5rHxcDYkek6EJo7ajv5pLFrTgukGUvWw:LX/Ku0Y0r3hiQxINR","tlshash":"cba43cd8b649f07563f754b4806f050672396b4ae509c4e0f0b698e429f9e78a27bf3c","first_seen":"2026-02-15T06:49:32.879048Z","last_seen":"2026-02-15T06:53:08.886551Z","times_seen":4,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/_plugin-vue_export-helper-DlAUqK2U.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:08.228Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/_plugin-vue_export-helper-DlAUqK2U.js HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:08 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 91\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":91,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text","md5":"25e3a5dcaf00fb2b1ba0c8ecea6d2560","sha1":"7850b3fd4aeb69387bdb5a60025d15c41351d5eb","sha256":"cb85b0f263dbe24e857338301c0627076592e9f1f1a5662929f86d2c126444aa","sha512":"2e5cc9b53d5641147f68c73e5db0442d93fb6a64da45cfc051da5550a2fad07e912e651bd730e54325ef74eb706be0c5df612355c1dca144ab6e9cc8c4ecc73b","ssdeep":"","tlshash":"1fb012c81cc3e078939818d47738c15844380448310742b0808c0943e2c20809797c1d","first_seen":"2023-03-08T16:39:49Z","last_seen":"2026-06-08T19:45:21.722132Z","times_seen":22274,"resource_available":true,"data":null}},"time_used":524,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":520,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/favicon.ico","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:08.775Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:08 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 11500\r\nlast-modified: Wed, 31 Dec 2025 03:32:19 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11500,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel","md5":"fe4bf97569ba2a689c6b0b10a4930a42","sha1":"25f726459336e61c72378b720228848d25e6a854","sha256":"9a6e62653e3cc1807920a97e6bdc3f5c4effae1d4b03879cbe95e39e3df0900b","sha512":"df28a4f0252932cd57a422b2b8568118b2f402f14afdd1d0433db3fae2f9e810768ab29da754d4aa05eb0bd46b34ef5ea13d40ef565c1632a2ac08ef6a8dfa3d","ssdeep":"192:MSq+SFRrfqAqnyQjKb8Fc4MrzhJVK9D2f7VnKmi/VHHr/N/3k2JnhAtQiS18FdPs:8zLz6y8O4M9Oyf7grNHr/dVgFNsjN","tlshash":"2132bfb0b1c59719b496bdba60d626d33307c79461734d2627fcef42de818051ff9186","first_seen":"2025-06-18T03:28:03.368886Z","last_seen":"2026-02-15T06:53:08.898759Z","times_seen":8,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":260,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/api/user/getAuthInfo","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:09.614Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"POST /api/user/getAuthInfo HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nlang: en-US\r\nContent-Length: 2\r\nOrigin: https://mixer.352345.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2,"data":"{}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:09 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 39\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":39,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"9520190b0219093d8432fd0846de80cb","sha1":"b2ce0ebdbb44d2673ba80f5d2aecc1b6bf7c6c38","sha256":"de8fb6ab48d4fc8b3ad602996f6328d576dece7388f072172fd59ab1ea104e2c","sha512":"e4a21f46af373fc84a374c46fe05f58ab6e7bc0d17734521760ee6abb877434595d9cfc9ab50d94617257c810601e4af71b8e7b8dcc6ee92ccc1111cbf100230","ssdeep":"","tlshash":"909004cd040cc3731011504c110d53c533d434c4400c07345c3d513c1d075510055334","first_seen":"2026-01-16T22:11:12.619261Z","last_seen":"2026-02-15T06:53:08.880626Z","times_seen":5,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-CdhJe7C1.css","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:09.897Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/index-CdhJe7C1.css HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:10 GMT\r\ncontent-type: text/css; charset=utf-8\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1054,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1053)","md5":"0b7a30f75d70c2738b7dd511802ebdec","sha1":"b6382d9fd0486672d475c17aa1ef61b6ae11e6db","sha256":"445668dff9e6347b2e1412852cf5171f3fcd70a436f371cb9a2e8f0efeb0b602","sha512":"64aa0bfee4d5a75afab2ee1e1bcae8288273e149e05f6ff340529719464cea69855b49d881ebd22b22661d96ff8e997c2e4a6a11d3b4af633964c3278a8320d8","ssdeep":"","tlshash":"59116a50608a472df81b5868b0f42b68613e9e63d7069f7c7569f6605bc3ac233b3619","first_seen":"2026-01-16T22:11:12.634458Z","last_seen":"2026-02-15T06:53:08.895301Z","times_seen":5,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-C_vEeM3W.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:10.166Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/index-C_vEeM3W.js HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:10 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4805,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, Unicode text, UTF-8 text, with very long lines (4794)","md5":"22745b191c48ddc0068ee8e43b3c1056","sha1":"3653f868ade228192a149b99a1a1fbb422bf0728","sha256":"dc57c1a9fa69cf2142037be23c6ac8775508b717e34b594fd08c8017fd3aa635","sha512":"673c6908fca78ae4218e943a7677c998d5dc72978cb1630779f8fc3731585e544128945895d15af70dfd488d0781a2233046a10244e28865228f1e47192a5708","ssdeep":"96:0cSgKc2iPWnwvQpcGTCaXW7qyANf6G3bRiEzm6ud6Rh6YRKQU7kZs:4gKcFWnwvQpcGTtX6q5i0bRQKUQU7kZs","tlshash":"54a1f909752e84fdba338c48ad5a5500211c576e6210d6e0617a5b503ee5fb4d3aef3b","first_seen":"2026-02-15T06:49:32.877797Z","last_seen":"2026-02-15T06:53:08.89349Z","times_seen":4,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/loginDefaultBackground-Nz2u8RAw.webp","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:10.557Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/loginDefaultBackground-Nz2u8RAw.webp HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:10 GMT\r\ncontent-type: image/webp\r\ncontent-length: 121616\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":121616,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"9e6cc9605cd7fa60213454ab84de0ce3","sha1":"6a9be01d5664e845f6fb1621383f19db856a5a8c","sha256":"53e3853756ae4d9fd1bb157cb344f6f290ef42c78a48fcd38a9cdc9882f5c67a","sha512":"8e1b3136b5fdb5233073bb0f5d82466d252e29e6ff92f3a40b54289bc1af781f93a6a3389d92f0d67ebd4e91de80abe708612cbb2e209019524a9b1220b2a52b","ssdeep":"1536:dv0DcyS/mnNAatSAWOV/a/Ya6AKK1M/QFUhznDoorbtfPPisg31RzubhT78jfoo8:u1NAagAW6/iv60faznDnX9g319u5myF5","tlshash":"67c3127d1445b06528ba29e3f1e34f4bd35017ed43ae0252d39b0503e6bfafcc5aa985","first_seen":"2026-01-16T22:11:12.645819Z","last_seen":"2026-02-15T06:53:08.89706Z","times_seen":5,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":263,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-Dca3OcbT.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:07.034Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/index-Dca3OcbT.js HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:07 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":611630,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65247)","md5":"0a04995f9b2051d9e4065bd329aac0a3","sha1":"958198c937fcb1a528f58be7e1197c74d263d394","sha256":"a675f63a83c86a7dd53032e0aca59f4e3b33678c3a0a106ff7cc646235446014","sha512":"3f6dac071eafa7ef4d0ec7afa876225e5c2004b45a01cca1e86323a6b1d7c92d32187635b7f867437902aa9f52e3b673aaab148c859d2bb897891ecbc1c45058","ssdeep":"12288:dlU146qR0Si+OTMit/nxP5VwQkYZxteQgFiGr3kCy:dlU5qRITbtPR5VjThgFiGr3kCy","tlshash":"dbd46ce8724a706553b388ec50bf140af32b3591784dc5d4f16d8ada39b256ce2b7f28","first_seen":"2026-02-15T06:49:32.867122Z","last_seen":"2026-02-15T06:53:08.885548Z","times_seen":4,"resource_available":true,"data":null}},"time_used":282,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":282,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-C9Kg_QMv.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:08.488Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/index-C9Kg_QMv.js HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:08 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":469138,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (16062)","md5":"653d8576b0af886108d34e03cb91b825","sha1":"bcb87c24055f3ecde988549794f0ed7ce1698964","sha256":"8894337ddb5057cb66e698442a9042d3cb2b6de8eb8ddc581e93e71545294bec","sha512":"9c4f1a08a53d418431c8a13a5c4a17d7d80df47cf93d8a81868c9582aa260efbccf9a5bcf42880a08d40ae0348fa169bb2b4df7686f1a2dc31bcc43776afa931","ssdeep":"6144:oINLsUtBX/Ku0Y0utI3fpHTCT5rHxcDYkek6EJo7ajv5pLFrTgukGUvWw:LX/Ku0Y0r3hiQxINR","tlshash":"cba43cd8b649f07563f754b4806f050672396b4ae509c4e0f0b698e429f9e78a27bf3c","first_seen":"2026-02-15T06:49:32.879048Z","last_seen":"2026-02-15T06:53:08.886551Z","times_seen":4,"resource_available":true,"data":null}},"time_used":267,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-D4sLAD1_.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:08.859Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/index-D4sLAD1_.js HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:08 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":281211,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (53737)","md5":"ca4bb2ae9e728a1be16b3d967df5dd44","sha1":"f8753899127e16e8ec6c20f469fbfb5ed22a5863","sha256":"b3387afebcb528ad23a0d17c9471b782fb48c997a03648119f1088c4e0ad7666","sha512":"55c5dbe5516591ad276cdc8b8a8dbdff3edbac000180e54da9ed0252260d2e98fd0373c34687302f40ecada3ee1c53833f8ed4896031e574e2e5850c3d040112","ssdeep":"6144:hF4gBV+CbNzGtRTAoD7ftSY/ZUUAH7p9/4AN:BBV+Cb67tSYm/4o","tlshash":"75545c98368ab07057a385f4805f0506b3392a21f80ad5d4f079d8e535b9b7de27bf38","first_seen":"2026-02-15T06:49:32.859184Z","last_seen":"2026-02-15T06:53:08.883444Z","times_seen":4,"resource_available":true,"data":null}},"time_used":268,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":268,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/api/panel/globalSetting/getSiteStting","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:09.322Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"POST /api/panel/globalSetting/getSiteStting HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nlang: en-US\r\nContent-Length: 2\r\nOrigin: https://mixer.352345.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2,"data":"{}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:09 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 140\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":140,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"375bee84fac3e7ccd8f01e648b56b134","sha1":"be76bdd81296b530d8ca3a11d9da90dfbf7b6e36","sha256":"314689a3d7ac234eefcc37cafe31eaa3c47e6d79be7165f5bcc36e9bcca1dbb4","sha512":"a9c1ab354a8378342be64478d6f181261922b5af45e88110b06df9bee11a58c324a6a2e6597162456c05d1dd54b720404b48f3b980eb044e6f0532de6aa30a39","ssdeep":"","tlshash":"a5c02b00000c06681f0fc0fb0148c980c38c0883984cee98cc2eff2995ce4440323c02","first_seen":"2026-01-16T22:11:12.616681Z","last_seen":"2026-02-15T06:53:08.889084Z","times_seen":5,"resource_available":false,"data":null}},"time_used":264,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":261,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/api/panel/userConfig/get","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:09.891Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"POST /api/panel/userConfig/get HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nlang: en-US\r\nContent-Length: 2\r\nOrigin: https://mixer.352345.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2,"data":"{}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:09 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 39\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":39,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"9520190b0219093d8432fd0846de80cb","sha1":"b2ce0ebdbb44d2673ba80f5d2aecc1b6bf7c6c38","sha256":"de8fb6ab48d4fc8b3ad602996f6328d576dece7388f072172fd59ab1ea104e2c","sha512":"e4a21f46af373fc84a374c46fe05f58ab6e7bc0d17734521760ee6abb877434595d9cfc9ab50d94617257c810601e4af71b8e7b8dcc6ee92ccc1111cbf100230","ssdeep":"","tlshash":"909004cd040cc3731011504c110d53c533d434c4400c07345c3d513c1d075510055334","first_seen":"2026-01-16T22:11:12.619261Z","last_seen":"2026-02-15T06:53:08.880626Z","times_seen":5,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/custom/index.css","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:07.032Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /custom/index.css HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:07 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1851,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"bbcf964b845620099cd3944a6d55717f","sha1":"3a5fcdbf11d9cc7bb01bba4bbf0d2d5249211310","sha256":"8714bf586f75af144633aba56f313b4ffa80e4bce051c6c89a778ff5a44a4039","sha512":"550ba2dca72b0648d6a6ca730c982f898ee0ef10abfb011501d159df6dcff13d1b19c67d3caad4a11c926e7d0c28dfb2f9bc6ffcf74240af4b791584e25a3957","ssdeep":"","tlshash":"a931e0418f0c450e8721020998d865c8c06fed3997579dbffea3b23f4dc9a8c466e6a6","first_seen":"2026-02-15T06:49:32.856381Z","last_seen":"2026-02-15T06:53:08.876853Z","times_seen":4,"resource_available":false,"data":null}},"time_used":272,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-C_OxTiKz.css","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:07.036Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/index-C_OxTiKz.css HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:07 GMT\r\ncontent-type: text/css; charset=utf-8\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":23827,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (23826)","md5":"c31689c6a3fbc989dcec5efc391b2930","sha1":"3c5af967ce6b7f95dfa23c9adeec447ea29267f8","sha256":"a6a93efdfa94b3ee9ec2e7a0b9c4547a02819cdc77282688f6ffb5cc2ed148a6","sha512":"e4dd2c3dc42fa85cfc75b524a6b7402ae2914368f1401e223bdc905a9c7c00b4af0c23c52434bf38e127dbc00543bcefd64298cc6a6d5cceb34ea8509847e926","ssdeep":"384:Vvw4F9n8wSbT5F0dChOKCugjNOEezTD/T/HZNUd+xXQ:V44FaT5F0dChOKCSvZNUf","tlshash":"52b275596b14003b7d2340f6d6e8aa4db12e70c5ef2a9bfe7d8721109bc63f61d93618","first_seen":"2026-02-15T06:49:32.869382Z","last_seen":"2026-02-15T06:53:08.882292Z","times_seen":4,"resource_available":false,"data":null}},"time_used":282,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":282,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-C-usxoLL.css","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:08.221Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/index-C-usxoLL.css HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:08 GMT\r\ncontent-type: text/css; charset=utf-8\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3410,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (3409)","md5":"a77ea334004352d60febf64ad3adacbe","sha1":"14e62f81c5df4c01ccfa7e6855df174f81c844e8","sha256":"21201bc66c381b302458392e957c42b3fea4079bc4920e81b460fd3f131a4af3","sha512":"f9488b3f74b60c882d8e95c127b586a6cd08c2feb31b12db1b85097e3abdca98ba3dde9403de54b11b1870be891be3e468352e05e450f31fc1ad3c8c3caf0e05","ssdeep":"","tlshash":"416141a178052099b23bda78f4d1264d752df303fa830fa8f6db7450aa7fcad24251d2","first_seen":"2026-02-15T06:49:32.857546Z","last_seen":"2026-02-15T06:53:08.878897Z","times_seen":4,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/index-D4sLAD1_.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:08.227Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/index-D4sLAD1_.js HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:08 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":281211,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (53737)","md5":"ca4bb2ae9e728a1be16b3d967df5dd44","sha1":"f8753899127e16e8ec6c20f469fbfb5ed22a5863","sha256":"b3387afebcb528ad23a0d17c9471b782fb48c997a03648119f1088c4e0ad7666","sha512":"55c5dbe5516591ad276cdc8b8a8dbdff3edbac000180e54da9ed0252260d2e98fd0373c34687302f40ecada3ee1c53833f8ed4896031e574e2e5850c3d040112","ssdeep":"6144:hF4gBV+CbNzGtRTAoD7ftSY/ZUUAH7p9/4AN:BBV+Cb67tSYm/4o","tlshash":"75545c98368ab07057a385f4805f0506b3392a21f80ad5d4f079d8e535b9b7de27bf38","first_seen":"2026-02-15T06:49:32.859184Z","last_seen":"2026-02-15T06:53:08.883444Z","times_seen":4,"resource_available":true,"data":null}},"time_used":287,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":287,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixer.352345.com/assets/_plugin-vue_export-helper-DlAUqK2U.js","fqdn":"mixer.352345.com","domain":"352345.com","tld":"com"},"ip":{"addr":"47.107.83.133","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mixer.352345.com/","date":"2026-02-15T06:50:08.860Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixer.352345.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Feb 2026 15:10:27 GMT","end":"Sun, 10 May 2026 15:10:26 GMT"},"fingerprint":{"sha1":"D6:01:1F:EF:00:0C:C9:96:C8:60:4A:E2:F1:95:19:1E:B3:BC:6C:A7","sha256":"A6:4C:C7:E2:9A:F4:CB:6B:55:7A:1F:A7:3F:28:8C:CB:4D:AA:17:89:37:31:A0:97:9C:E9:AA:20:5C:97:98:32"}}},"request":{"raw":"GET /assets/_plugin-vue_export-helper-DlAUqK2U.js HTTP/1.1\r\nHost: mixer.352345.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Feb 2026 06:50:08 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 91\r\nlast-modified: Wed, 31 Dec 2025 03:32:30 GMT\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":91,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text","md5":"25e3a5dcaf00fb2b1ba0c8ecea6d2560","sha1":"7850b3fd4aeb69387bdb5a60025d15c41351d5eb","sha256":"cb85b0f263dbe24e857338301c0627076592e9f1f1a5662929f86d2c126444aa","sha512":"2e5cc9b53d5641147f68c73e5db0442d93fb6a64da45cfc051da5550a2fad07e912e651bd730e54325ef74eb706be0c5df612355c1dca144ab6e9cc8c4ecc73b","ssdeep":"","tlshash":"1fb012c81cc3e078939818d47738c15844380448310742b0808c0943e2c20809797c1d","first_seen":"2023-03-08T16:39:49Z","last_seen":"2026-06-08T19:45:21.722132Z","times_seen":22274,"resource_available":true,"data":null}},"time_used":274,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":269,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-15","alert":"Sinkholed","trigger":"mixer.352345.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}