{"report_id":"42306134-c9dd-4ea2-b1b0-8093c6e490af","version":6,"status":"done","tags":[],"date":"2025-11-20T17:17:05Z","url":{"schema":"http","addr":"gnrjiasu.cc/","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":0,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"final":{"url":{"schema":"http","addr":"gnrjiasu.cc/","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"title":"一元机场. com-一元加速器-一元机场官网登录入口-一元机场clash订阅购买-一元机场最新官网","dom":{"size":73858,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (22698)","md5":"3f947438af410342919052dccbae1b83","sha1":"7b316595fbac8ea3b2848cc4dba3164f7188d309","sha256":"f9c7815d81f231d1034ff169370e8b52fc19fce493fb384aac50e5d47caea1a5","sha512":"0c672e0d93b5f47afd7746273d14c4a65b57926449bd60541f695ddc3d2a7a0857d66f8fcbd142c8ccb5f07a5418b157dd515990850c50c3516131abe3b16a30","ssdeep":"768:rs2qA7kImtdURT+zIzptZaezJPZvvxkp3ImMpyszjF7Q/hV+:rNqAwImkVaedB5QYmMpZdk5V+","tlshash":"0a73856323a18425323692c5fc10eb8d7980e987e56925d9ffec803fbf42cb94d1698d","dom_hash":"domhash0dd442e5a88c54b3d6c902a8a72b846a","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"gnrjiasu.cc/","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":0,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"tags":null,"meta":null,"user":{"country_code":"zz"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-12-25T17:17:05Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"js.passport.qihucdn.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"r2.fastnodes.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.nntj.cc","ip":{"addr":"172.67.166.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-05-18","domain_rank":0,"first_seen":"2023-06-05T09:46:23Z","last_seen":"2025-11-19T01:09:43.480509Z","alert_count":0,"request_count":3,"received_data":2843,"sent_data":1461,"comment":"","tags":null,"fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"s.360.cn","ip":{"addr":"101.198.2.147","port":80,"asn":23724,"as":"IDC, China Telecommunications Corporation","country":"China","country_code":"CN"},"domain_registered":"2003-03-17","domain_rank":216068,"first_seen":"2012-07-10T16:01:51Z","last_seen":"2025-11-17T18:28:54.714876Z","alert_count":0,"request_count":1,"received_data":240,"sent_data":450,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty:1.15.8.2","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"push.zhanzhang.baidu.com","ip":{"addr":"163.177.17.97","port":80,"asn":136958,"as":"China Unicom Guangdong IP network","country":"China","country_code":"CN"},"domain_registered":"1999-10-11","domain_rank":1485849,"first_seen":"2015-07-22T05:44:02Z","last_seen":"2025-11-19T04:59:29.969041Z","alert_count":0,"request_count":1,"received_data":426,"sent_data":334,"comment":"","tags":null,"fingerprints":null},{"fqdn":"tj.manatj.cc","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2023-12-19","domain_rank":0,"first_seen":"2023-12-19T14:43:48Z","last_seen":"2025-11-19T01:09:43.44331Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":324,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r2.fastnodes.cc","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-07-24","domain_rank":0,"first_seen":"2024-10-07T03:46:24Z","last_seen":"2025-11-19T01:09:43.352684Z","alert_count":1,"request_count":1,"received_data":42273,"sent_data":431,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"js.passport.qihucdn.com","ip":{"addr":"104.192.108.23","port":80,"asn":55992,"as":"Beijing Qihu Technology Company Limited","country":"United States","country_code":"US"},"domain_registered":"2013-02-18","domain_rank":6843030,"first_seen":"2014-08-12T01:08:07Z","last_seen":"2025-11-20T15:06:10.446713Z","alert_count":1,"request_count":1,"received_data":457,"sent_data":368,"comment":"","tags":null,"fingerprints":null},{"fqdn":"s6.qhres2.com","ip":{"addr":"54.240.174.129","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2016-08-09","domain_rank":0,"first_seen":"2022-01-25T09:18:01Z","last_seen":"2025-11-19T03:09:31.660601Z","alert_count":0,"request_count":1,"received_data":1171,"sent_data":342,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"api.share.baidu.com","ip":{"addr":"112.34.113.148","port":80,"asn":9808,"as":"China Mobile Communications Group Co., Ltd.","country":"China","country_code":"CN"},"domain_registered":"1999-10-11","domain_rank":1421601,"first_seen":"2013-04-25T14:45:11Z","last_seen":"2025-11-18T09:51:52.913322Z","alert_count":0,"request_count":1,"received_data":116,"sent_data":371,"comment":"","tags":null,"fingerprints":null},{"fqdn":"gnrjiasu.cc","ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":24,"received_data":596843,"sent_data":8832,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:1.11.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/js/jquery-1.11.1.min.js","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"22b3edfb29c091734a40f75d06878254","sha1":"71cb5302ccc1e71ad9a04ec6c4f16ed6ff1dbb57","sha256":"fd34f775e3455fa8a89ec70c0b5daadb8ab0daa83b41c36e032d55ac3d96b21d","sha512":"531565f16fb7c390dd0dffdff9c06ba1de1ae2b535989ca380aca22fc951286b16103704ba8a7323fd20154bd95077fac11c94e1ab6ba0761a7a751388340261","ssdeep":"1536:EPEkjP+iADIOr/NEe876nmBu3HvF38sEeLOFoqqhJ7SerN5wVI+xcBpPv7E+nzmN:bNM5qhJvN32cBd7M6Whca98Hr4","tlshash":"a693c8d9b6d27162977730b850bf510bb13a98eab80c4c60f1a4d8e47d78e89507bf2d","size":95808,"data":"","first_seen":"2024-01-01T05:07:17Z","last_seen":"2026-03-29T00:55:08.72874Z","times_seen":184,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/js/rem.js","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"4616a2cce944b82381148cb8f34f4737","sha1":"1a372ceed33fae30939954c0ed13092ade4d71b4","sha256":"f27a9ad47cfe035a0f79082bdba0ddb7c56c69c9ab848e0de5b2f52f004cc3b4","sha512":"2af804aa2242fe0fdc5e7ad6ca393a0098344c3b586cb508d6c4b592bb3d54f4ea1f7cc62088b816090d119299582bd2b7ff3c183702ee2328e9beb97aa4fe30","ssdeep":"","tlshash":"fa31a9a9850182a56c7a3a65273f564cfef356330203cb80bd4de9601ff09126296fdc","size":1579,"data":"","first_seen":"2024-01-01T05:07:17Z","last_seen":"2026-03-29T00:55:08.72965Z","times_seen":185,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/common.js","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"9c81e4827c40d190f99afc0200519d7d","sha1":"49f434a2b69fff70aa55078d91b96e069cf1ca21","sha256":"4b37bd7fb8a43d7fc3462a1723287f3eb7327d6064bc4c65b6572558bc2c7698","sha512":"d10750aab0f0c0de62a5571b1fee0ae2b73e1151951e9d78a396410c291e399cee0b41925541ac8cbf4582b1da93fa0aa87ba269305f3b1cfaa3ceeff6a179bd","ssdeep":"96:BBV62JO5rPynP2QERWh9CqO/xVj660MvUbDA0aui4K35n4HWDQ:rV62JOZc+LkhAj6PlDA0aui4aMCQ","tlshash":"e5021cb79c260de5063211be683f7496f796142bccc0888fb4acd5894f389f3c49e896","size":8498,"data":"","first_seen":"2025-09-28T12:00:05.473211Z","last_seen":"2026-02-13T00:52:43.813318Z","times_seen":161,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"push.zhanzhang.baidu.com/push.js","fqdn":"push.zhanzhang.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"163.177.17.97","port":80,"asn":136958,"as":"China Unicom Guangdong IP network","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"1bb5a3267c9865ad4abe8d937734b62b","sha1":"b5478dd2edb3e64242eced1db2dbd945ef81f592","sha256":"674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2","sha512":"33318ed944a49a8fa334983408d68853b1fbe4f80b19adef6235f23d7708b616cd4f8dd28c8b8ebfbb5776aab8088229f3060cd789af34fe1db5038a98bd0d39","ssdeep":"","tlshash":"91d02be874a0c41c0ce710b17fab328cfab20b2755244d40c05b90013614b1f824bfe9","size":281,"data":"","first_seen":"2023-03-07T01:02:09Z","last_seen":"2026-04-05T15:36:10.305853Z","times_seen":20939,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"js.passport.qihucdn.com/11.0.1.js?e0e9d9a5060e23cf5cc34c84d7cd9d61","fqdn":"js.passport.qihucdn.com","domain":"qihucdn.com","tld":"com"},"ip":{"addr":"104.192.108.23","port":80,"asn":55992,"as":"Beijing Qihu Technology Company Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"06b5672f6400f1eb3255c53b8716ec1b","sha1":"f35120a5317fa4f91b98abb29d0ee3ad899b55f7","sha256":"42e703267bb95fd28b350c6f27fd014f39e6d88443a50b7322c14b76bb513e99","sha512":"69943b4bb34ae9f028aa2bc9da0158dbcecf283d4beba1a2a8808faf252a29c5401f274d966d88d98e6ff62215682df2787021c4ab3dd6116781b3f00f899ada","ssdeep":"","tlshash":"0bb012cb0c01e9544610cc9d5570d63c90b8f0bbf8a0c9918dfb3c5425412f71e59e74","size":105,"data":"","first_seen":"2023-03-07T12:57:51Z","last_seen":"2026-04-05T16:48:57.618209Z","times_seen":686,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"s6.qhres2.com/static/ab77b6ea7f3fbf79.js","fqdn":"s6.qhres2.com","domain":"qhres2.com","tld":"com"},"ip":{"addr":"54.240.174.129","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5dd27f8f2b042194c3cdabd62fd80110","sha1":"c035036a939799d4c29b9c0f7229ae1953d03109","sha256":"928131ab2183d971cdbfe2ed1329200212d0021db70574a35c89ae169c0f6e0a","sha512":"95c7b2dba57dd75e6120794c0ff14750258d8ca3c86e6efcf04790d347bda18e246e14d5fd8ce645e46e268f978132407bafa93ca97fa003103b59c6135334ba","ssdeep":"","tlshash":"41f0dcda70d6d91949daa8392e4f389d52fa051f140c5a00a212e0813fec27b43b3ee0","size":478,"data":"","first_seen":"2023-03-07T01:24:56Z","last_seen":"2026-04-05T06:15:47.318765Z","times_seen":3080,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/js/unslider.min.js","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"9a26a6f0cbc6d9e8cbc368a0b303e8f3","sha1":"4cbcb1e321eeca9232e3f962fc239605135fbfd5","sha256":"19ed101b5cbba5ec44ca6d4d0c527002e6e4a2a3bc636d669aca2728a49d0348","sha512":"5f56688fff931132432a3b5befcf269c41b1f771134e5e5a6eadf2e418bfbd1078dbd2390d0bdccc82abbfd1deb4bb8b0bf5babbd0d1567ad67bb4b2e900b13c","ssdeep":"96:39oxGyd2+SRxrBs8dJQHZ+o/TExOywJw7WSyVCHixFdnsUqXG+kG4cggV++Wzv/E:NsTSRxrBs8dJ4L8ObRCCMLy+WzX2VD","tlshash":"6fe12dd4735e119f8c92336e423ee918da7ec034921583397cdd59ac1ee5b0903eadea","size":6946,"data":"","first_seen":"2024-01-01T05:07:17Z","last_seen":"2026-03-29T00:55:08.725587Z","times_seen":183,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"3f29bbcc525590a03819212ce0de9b19","sha1":"f857b4ba3f5818498893cc9b695ee48157612d64","sha256":"5dcf63ade00be013e61241f497c8b7491bc3984632f82bdad1896dd0992bb105","sha512":"61cbc650e1f6545421b8e9661f11789f7f2d05ea4f3b00a7d54df496ad752d3ed8c23db4d5f45ea660c696912ba01ead7790bda56a8bc7e0e508f218bd22b491","ssdeep":"","tlshash":"33e0c20ab5f6224400332464072fe008d6a6b64f1a4dca90bdec6680cf489286a5bae4","size":322,"data":"","first_seen":"2025-11-20T17:17:18.71894Z","last_seen":"2025-11-20T17:17:18.71894Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"82239f5065700c8be8c8f8670256ef72","sha1":"71d4b7abf8fe5a7b9dd186eedb578c6e23bafb61","sha256":"4d8981749fbf10e30a9ceb143efad4c3aac73bccdccba1e77a69323af77907f7","sha512":"c6cb1e4b6c335e4f282e72c31f221033155243b53b721dc2d52072cda630bd909c883a07adbf9cad8ae6b89aeb52991e145e3c1dd38c86efe24c2341f8a688d2","ssdeep":"","tlshash":"efb0122944685d38042581c6e23076c49c14126aa4c24046000c7002a5c4d810d90060","size":89,"data":"","first_seen":"2023-03-09T23:31:00Z","last_seen":"2026-04-05T16:48:57.622912Z","times_seen":239,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"52210b6c81d4a77b79ead6d41ee817a2","sha1":"6d22ffdc7c36b30b9f9497a91d6e6a5bcc26e1e6","sha256":"4d942bce15c79d5a7123835fb14faf69fc95fff21b38ba2c80e86c2cbdb43c67","sha512":"32dc5224c785c8e682dcd675cb5135fabf1151c95b3c00f110cb395c0ddcc74a67a6dcdac6040ab6dbf79c257af8df36e038ec7ba5b91611ecdbc52d1acfaf8d","ssdeep":"","tlshash":"4741ce1fbaf7462416ef52243fbe46447870441b2d0291087b3c84b2cf65d92b566ed5","size":1917,"data":"","first_seen":"2023-03-09T01:12:37Z","last_seen":"2026-03-31T14:53:18.956527Z","times_seen":455,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"a18fb168da9b923673695c5d5c7305a6","sha1":"6d80806602aa98059da20439f965354fbcf58175","sha256":"c23621c30dec0e788ba163ac95d2620c5b9bd23e2175939a77e253dee7e65b50","sha512":"97b5baa5d357fed8ba22c330a1ac220115dd84a2b8e8d6af426fad64d4d61b9441205777f5b296ec4b375bdb59340a547ca231ece91da4ed3ad754fe49252e51","ssdeep":"","tlshash":"efb012c22d2de5904945c89b74f1b1dcc9545847d4c0c8435db0471912331cb7409460","size":107,"data":"","first_seen":"2024-10-21T21:42:59.956848Z","last_seen":"2026-04-05T16:48:57.623667Z","times_seen":114,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"49ab76f98f0ffd3c06e5f9e8fd523616","sha1":"8ff32ae013817b78b340ba1c1ee24f34ca2d8b2a","sha256":"dacba7ea3ae581abd50497c748a9455c720f9c23b96c3826f9d45ef4db4f8db0","sha512":"e049d1895fdc94fd4ad2553aff8c844623c3c7f82812ca7f91af1996bf697e4da5418bc60025327ebc3b0341264f6c4d3fb02bb99a9732246893a9d8ee57f573","ssdeep":"","tlshash":"50b012cb0c00c0444510cc8c5170d53c8040f0a77460c8918de5384425010f31a55e74","size":87,"data":"","first_seen":"2023-03-07T12:57:51Z","last_seen":"2026-04-05T16:48:57.624179Z","times_seen":490,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/img/rank.png","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.613Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/download1/img/rank.png HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/png\r\nContent-Length: 451\r\nLast-Modified: Sun, 24 Aug 2025 06:48:31 GMT\r\nConnection: keep-alive\r\nETag: \"68aab5bf-1c3\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":451,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 70 x 60, 8-bit/color RGBA, non-interlaced","md5":"94bbefb87db53da558b5bfaf65f22ae6","sha1":"b1540ffb9139bd0370afe25a1c861eb19d365496","sha256":"c0db0d0b230258e6a5e642d17e40f1537a50582cd3cf31df3ab45c5cb5490196","sha512":"33ea8e58b05a18f0050e7558f20221338d1a4ad7c3c54cf4cca56e5e69254ab94c2aeb5ede491e6b5a12ce5f8c72b7b5b10d4814b6ed6a9d4e5adfd6aa70fab4","ssdeep":"","tlshash":"06f0547357d7a430c044dd4150b69c330d1d5986e52e7c4e55c406f670e6c1f5755553","first_seen":"2024-01-01T05:07:17Z","last_seen":"2026-03-29T00:55:08.739042Z","times_seen":183,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":74,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/img/app/PjXaozSMHh.jpg","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.635Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /img/app/PjXaozSMHh.jpg HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 4440\r\nLast-Modified: Sun, 07 Sep 2025 08:39:30 GMT\r\nConnection: keep-alive\r\nETag: \"68bd44c2-1158\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4440,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced","md5":"cf6bfd2f990da6f68f0c6d3c1273fe42","sha1":"7915ab8ff3b154b25e46424b5ac4d21a95b10d30","sha256":"90ce13d653471a149690aa0b5e38a543cdb1900078e3fc2add555ef5f6b17075","sha512":"b66baee75d1295f3eedb0691bebc439d72d6cef7206aebbec0d6c2b5e6fc4358b2ec25c87650ed201db6d59191274d23a033e6ce55ab7970765ead564b8705ec","ssdeep":"96:vdXVgVT//j/EivL67yJl6y4AfhWvxt8yaUjcXFOa+fO8yweKmt:vdlQ/b/EWgOfh0zjcCf0weK0","tlshash":"56917ec23a7cbbf99c20437394a817e252f5a14412d1adf17af44b26610fd994a33a43","first_seen":"2025-06-25T08:14:56.099269Z","last_seen":"2026-03-02T02:20:01.502707Z","times_seen":25,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":33,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.nntj.cc/api/websiteFlow","fqdn":"www.nntj.cc","domain":"nntj.cc","tld":"cc"},"ip":{"addr":"172.67.166.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.744Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nntj.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 13:38:40 GMT","end":"Wed, 21 Jan 2026 14:36:17 GMT"},"fingerprint":{"sha1":"DB:99:44:70:C0:41:37:45:B7:59:A9:89:C0:3B:6D:13:78:BC:D5:BA","sha256":"CC:70:6A:3B:AE:F4:A7:6F:E7:C6:00:44:6F:A8:C5:65:70:20:BF:1E:A6:28:6F:36:6E:4C:38:E2:12:6D:02:BE"}}},"request":{"raw":"OPTIONS /api/websiteFlow HTTP/1.1\r\nHost: www.nntj.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: http://gnrjiasu.cc/\r\nOrigin: http://gnrjiasu.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 20 Nov 2025 17:16:44 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With, Access-Token\r\naccess-control-allow-origin: http://gnrjiasu.cc\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tU8y7myGTEL8ACWDx%2FQB5qPW8sGjnK9jKhU%2Fie8ai4SLGK5dQ22XQnnzxDR%2Buci6jSrjb4L4LgowAsdAUBB5V8Msqjplc8htxQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1998c5d8ed56be-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T16:47:07.54892Z","times_seen":13384334,"resource_available":true,"data":null}},"time_used":524,"timings":{"blocked":76,"dns":26,"connect":8,"send":0,"wait":357,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/css/newindex.css","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.598Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/download1/css/newindex.css HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: text/css\r\nContent-Length: 23616\r\nLast-Modified: Sun, 24 Aug 2025 06:48:31 GMT\r\nConnection: keep-alive\r\nETag: \"68aab5bf-5c40\"\r\nExpires: Fri, 21 Nov 2025 05:16:43 GMT\r\nCache-Control: max-age=43200\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23616,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (2214)","md5":"811cb5e5074b88916358584fd2f87360","sha1":"1c0f6b9dfbfd4979273042ab86cf70bd3976b171","sha256":"7a884364acec48a3e7bc143db16b947f4d3d254bbc3a3d59d6527d1acea04fb1","sha512":"518ffc562462d81de5b0fc3774ae03f42c59fa03c82423f71926073d6ef7fe59d5fed76a805cda39b27d067b57f5a163c9f978a79d1eb941a6e8d18f84239cd4","ssdeep":"384:OUFIAl6FHtJI1TBiFsyG94pbIsBLaNgFiEwgTvlDWxA4pbjsXGIyoHZA5nFh:OZFHtJI8syG94ZIsBFCxAnXLyoHZA5n3","tlshash":"54b26b378aa32d817a17c2647bae67852e3940474d1ee83c7bce7a448f8b554d433bc8","first_seen":"2024-08-19T14:05:50.317834Z","last_seen":"2026-03-29T00:55:08.733441Z","times_seen":178,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/js/rem.js","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.606Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/download1/js/rem.js HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 1579\r\nLast-Modified: Sun, 24 Aug 2025 06:48:31 GMT\r\nConnection: keep-alive\r\nETag: \"68aab5bf-62b\"\r\nExpires: Fri, 21 Nov 2025 05:16:43 GMT\r\nCache-Control: max-age=43200\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1579,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"4616a2cce944b82381148cb8f34f4737","sha1":"1a372ceed33fae30939954c0ed13092ade4d71b4","sha256":"f27a9ad47cfe035a0f79082bdba0ddb7c56c69c9ab848e0de5b2f52f004cc3b4","sha512":"2af804aa2242fe0fdc5e7ad6ca393a0098344c3b586cb508d6c4b592bb3d54f4ea1f7cc62088b816090d119299582bd2b7ff3c183702ee2328e9beb97aa4fe30","ssdeep":"","tlshash":"fa31a9a9850182a56c7a3a65273f564cfef356330203cb80bd4de9601ff09126296fdc","first_seen":"2024-01-01T05:07:17Z","last_seen":"2026-03-29T00:55:08.72965Z","times_seen":185,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":1,"connect":19,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/img/app/default.png","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.609Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /img/app/default.png HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/png\r\nContent-Length: 84586\r\nLast-Modified: Sun, 07 Sep 2025 08:39:30 GMT\r\nConnection: keep-alive\r\nETag: \"68bd44c2-14a6a\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":84586,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 335 x 337, 8-bit/color RGBA, non-interlaced","md5":"4f9199a543b7ccaaad2a538d23c5e3cc","sha1":"c786a2f1533f33d14255f3c64bf369a667c871ff","sha256":"019e30fa46b7f5d1962279e59003a8beb182a6754883cc6bc11989653eb5703c","sha512":"ed7d37b58f3320871cb49882e2391ed0d78c284935abe310e4b14817ddb2fc8662493214bafeb325e346cc213050cc86be5bb162288459c72ce29b1338081cc3","ssdeep":"1536:uwJsyJAaxAkUsKDDhE1StZ61YPBhsSGt834wLkUAJ90vr84fGl5:uwaylAjrPh1tg1Y5hslthwoUAU5U5","tlshash":"4a8312bd7a2cc54ca301b5b99722d41170afb4dd21d5aad3d5b31340fc9a2444eabe3e","first_seen":"2025-06-25T08:14:56.114981Z","last_seen":"2026-03-21T16:29:02.012751Z","times_seen":138,"resource_available":false,"data":null}},"time_used":120,"timings":{"blocked":79,"dns":0,"connect":0,"send":0,"wait":20,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/img/app/CaGtdfgcqY.jpg","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.625Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /img/app/CaGtdfgcqY.jpg HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 8588\r\nLast-Modified: Sun, 07 Sep 2025 08:39:30 GMT\r\nConnection: keep-alive\r\nETag: \"68bd44c2-218c\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8588,"size_decoded":0,"mime_type":"image/jpeg","magic":"RIFF (little-endian) data, Web/P image","md5":"d8d0893e3af2e09223d6cfb437c7586f","sha1":"f2af7d5c9f6e4294a5b842fa7c9213763d0af253","sha256":"c62019dfa8047d6178fae4f0d6b297a4232811db010f24cf088da2715e7281ce","sha512":"c8efa8053c580a0b36207a9251210565e595ff6fa287d5188e002172adab0eb8e1c2932ec8df1ca4038a0978e775ed0409ccb79757f8d196c16d214a08a712df","ssdeep":"192:O10CyEAfbmM0NYmBboUU7n7FB4bdHuRCujRvMwu0nFC:QAzmM0mmBbnU7nhB4bdmCu6wu0nFC","tlshash":"7a02afc3da073815e00c653ec78a33192812da71be19644f37897b587d932bdaed9b18","first_seen":"2025-08-17T04:35:17.007836Z","last_seen":"2026-03-21T16:29:02.016291Z","times_seen":50,"resource_available":false,"data":null}},"time_used":102,"timings":{"blocked":81,"dns":0,"connect":0,"send":0,"wait":20,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/common.js","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.639Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /common.js HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 8498\r\nConnection: keep-alive\r\nLast-Modified: Sat, 27 Sep 2025 14:58:14 GMT\r\nETag: \"68d7fb86-2132\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8498,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF, LF line terminators","md5":"9c81e4827c40d190f99afc0200519d7d","sha1":"49f434a2b69fff70aa55078d91b96e069cf1ca21","sha256":"4b37bd7fb8a43d7fc3462a1723287f3eb7327d6064bc4c65b6572558bc2c7698","sha512":"d10750aab0f0c0de62a5571b1fee0ae2b73e1151951e9d78a396410c291e399cee0b41925541ac8cbf4582b1da93fa0aa87ba269305f3b1cfaa3ceeff6a179bd","ssdeep":"96:BBV62JO5rPynP2QERWh9CqO/xVj660MvUbDA0aui4K35n4HWDQ:rV62JOZc+LkhAj6PlDA0aui4aMCQ","tlshash":"e5021cb79c260de5063211be683f7496f796142bccc0888fb4acd5894f389f3c49e896","first_seen":"2025-09-28T12:00:05.473211Z","last_seen":"2026-02-13T00:52:43.813318Z","times_seen":161,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":1,"connect":19,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/js/unslider.min.js","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.604Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/download1/js/unslider.min.js HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 6946\r\nLast-Modified: Sun, 24 Aug 2025 06:48:31 GMT\r\nConnection: keep-alive\r\nETag: \"68aab5bf-1b22\"\r\nExpires: Fri, 21 Nov 2025 05:16:43 GMT\r\nCache-Control: max-age=43200\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6946,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"9a26a6f0cbc6d9e8cbc368a0b303e8f3","sha1":"4cbcb1e321eeca9232e3f962fc239605135fbfd5","sha256":"19ed101b5cbba5ec44ca6d4d0c527002e6e4a2a3bc636d669aca2728a49d0348","sha512":"5f56688fff931132432a3b5befcf269c41b1f771134e5e5a6eadf2e418bfbd1078dbd2390d0bdccc82abbfd1deb4bb8b0bf5babbd0d1567ad67bb4b2e900b13c","ssdeep":"96:39oxGyd2+SRxrBs8dJQHZ+o/TExOywJw7WSyVCHixFdnsUqXG+kG4cggV++Wzv/E:NsTSRxrBs8dJ4L8ObRCCMLy+WzX2VD","tlshash":"6fe12dd4735e119f8c92336e423ee918da7ec034921583397cdd59ac1ee5b0903eadea","first_seen":"2024-01-01T05:07:17Z","last_seen":"2026-03-29T00:55:08.725587Z","times_seen":183,"resource_available":true,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":1,"connect":20,"send":0,"wait":19,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"js.passport.qihucdn.com/11.0.1.js?e0e9d9a5060e23cf5cc34c84d7cd9d61","fqdn":"js.passport.qihucdn.com","domain":"qihucdn.com","tld":"com"},"ip":{"addr":"104.192.108.23","port":80,"asn":55992,"as":"Beijing Qihu Technology Company Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.729Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /11.0.1.js?e0e9d9a5060e23cf5cc34c84d7cd9d61 HTTP/1.1\r\nHost: js.passport.qihucdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 20 Nov 2025 17:16:45 GMT\r\nContent-Type: application/x-javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Wed, 28 Nov 2018 07:43:20 GMT\r\nCache-Control: s-maxage=600, max-age=600\r\nExpires: Thu, 20 Nov 2025 17:26:45 GMT\r\nKCS-Via: HIT from w-fc02.lato;HIT from w-sc02.lyct\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":105,"size_decoded":0,"mime_type":"application/x-javascript","magic":"HTML document, ASCII text, with no line terminators","md5":"06b5672f6400f1eb3255c53b8716ec1b","sha1":"f35120a5317fa4f91b98abb29d0ee3ad899b55f7","sha256":"42e703267bb95fd28b350c6f27fd014f39e6d88443a50b7322c14b76bb513e99","sha512":"69943b4bb34ae9f028aa2bc9da0158dbcecf283d4beba1a2a8808faf252a29c5401f274d966d88d98e6ff62215682df2787021c4ab3dd6116781b3f00f899ada","ssdeep":"","tlshash":"0bb012cb0c01e9544610cc9d5570d63c90b8f0bbf8a0c9918dfb3c5425412f71e59e74","first_seen":"2023-03-07T12:57:51Z","last_seen":"2026-04-05T16:48:57.618209Z","times_seen":686,"resource_available":true,"data":null}},"time_used":2949,"timings":{"blocked":1398,"dns":1255,"connect":148,"send":0,"wait":148,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"js.passport.qihucdn.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/img/title-icon.png","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.748Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/download1/img/title-icon.png HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/static/download1/css/newindex.css\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/png\r\nContent-Length: 1113\r\nLast-Modified: Sun, 24 Aug 2025 06:48:31 GMT\r\nConnection: keep-alive\r\nETag: \"68aab5bf-459\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1113,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 28 x 36, 8-bit colormap, non-interlaced","md5":"921dd7bb1ffde36e666b3ecbddcf4eae","sha1":"eb99fcda2826160e3858aca1a16ddc9b65def811","sha256":"78798858d622bb79ad2d6ac69ac2986a233d15bb647e50add4d46f2a883eaf05","sha512":"cad46a8eab65214eb15d631f012aa5436f1a6df23a7d2e4c5798b199eae2d8bfee978a9cd39d6ed6c900ac843594051b884740bb6d02bc29b39af85887453f41","ssdeep":"","tlshash":"9f21b9f13602293ad55757bf839a1c9d222506a398224b1d72d9ddc50c751c993826b3","first_seen":"2023-05-26T04:53:30Z","last_seen":"2026-03-29T00:55:08.73554Z","times_seen":182,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"s6.qhres2.com/static/ab77b6ea7f3fbf79.js","fqdn":"s6.qhres2.com","domain":"qhres2.com","tld":"com"},"ip":{"addr":"54.240.174.129","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:45.283Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/ab77b6ea7f3fbf79.js HTTP/1.1\r\nHost: s6.qhres2.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 478\r\nConnection: keep-alive\r\nDate: Sun, 20 Apr 2025 23:01:21 GMT\r\nX-QSTATIC-HIT: 1\r\nLast-Modified: Mon, 01 Jan 2018 00:00:00 GMT\r\nETag: W/\"057d2822c0565acc\"\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nCache-Control: s-maxage=315360000, max-age=315360000, immutable\r\nExpires: Wed, 18 Apr 2035 23:01:21 GMT\r\nKCS-Via: HIT from w-fc03.lato;MISS from w-sc07.zzzc\r\nAccept-Ranges: bytes\r\nX-Cache: Hit from cloudfront\r\nVia: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)\r\nX-Amz-Cf-Pop: OSL50-P1\r\nX-Amz-Cf-Id: 40WzPcSxn9bTIRQ9l-baw87LBQGtiics4wzZyL45AC_MDbF6cIddxw==\r\nAge: 18468925\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":478,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (478), with no line terminators","md5":"5dd27f8f2b042194c3cdabd62fd80110","sha1":"c035036a939799d4c29b9c0f7229ae1953d03109","sha256":"928131ab2183d971cdbfe2ed1329200212d0021db70574a35c89ae169c0f6e0a","sha512":"95c7b2dba57dd75e6120794c0ff14750258d8ca3c86e6efcf04790d347bda18e246e14d5fd8ce645e46e268f978132407bafa93ca97fa003103b59c6135334ba","ssdeep":"","tlshash":"41f0dcda70d6d91949daa8392e4f389d52fa051f140c5a00a212e0813fec27b43b3ee0","first_seen":"2023-03-07T01:24:56Z","last_seen":"2026-04-05T06:15:47.318765Z","times_seen":3080,"resource_available":true,"data":null}},"time_used":3326,"timings":{"blocked":1661,"dns":1661,"connect":1,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/img/zt.png","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.617Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/download1/img/zt.png HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/png\r\nContent-Length: 1471\r\nLast-Modified: Sun, 24 Aug 2025 06:48:31 GMT\r\nConnection: keep-alive\r\nETag: \"68aab5bf-5bf\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1471,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 70 x 60, 8-bit/color RGBA, non-interlaced","md5":"f91ae0569f3614611f1d9f8988aaaadd","sha1":"544109091092c1107619d0bfc84dc276de8ff057","sha256":"aeedd5b8c5043eca492382b0dd9a0b73744741fff1ad887b4cd3bd0eca5f4745","sha512":"f3d4b9374e495a2741b54b99b8fe4d4518da404f5138a852727d5a1c5757f8616f95a317127cb432ede5d44980b266787b146d0d3e022403af31a5c655a721cf","ssdeep":"","tlshash":"4b31ec1511bdd42d85105cdf3eb72cfac6d60fd6581180880e9c9dde223a2bdc4a2f36","first_seen":"2024-01-01T05:07:17Z","last_seen":"2026-03-29T00:55:08.727849Z","times_seen":182,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":90,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"api.share.baidu.com/s.gif?l=http://gnrjiasu.cc/","fqdn":"api.share.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"112.34.113.148","port":80,"asn":9808,"as":"China Mobile Communications Group Co., Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:44.701Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /s.gif?l=http://gnrjiasu.cc/ HTTP/1.1\r\nHost: api.share.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Length: 0\r\nContent-Type: text/plain; charset=utf-8\r\nDate: Thu, 20 Nov 2025 17:16:45 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T16:47:07.54892Z","times_seen":13384334,"resource_available":true,"data":null}},"time_used":1203,"timings":{"blocked":510,"dns":341,"connect":169,"send":0,"wait":182,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"s.360.cn/so/zz.gif?url=http%3A%2F%2Fgnrjiasu.cc%2F\u0026sid=e0e9d9a5060e23cf5cc34c84d7cd9d61\u0026token=e/0cec9.du9saa5i0j6r0neg2/3/c:fp","fqdn":"s.360.cn","domain":"360.cn","tld":"cn"},"ip":{"addr":"101.198.2.147","port":80,"asn":23724,"as":"IDC, China Telecommunications Corporation","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:46.955Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /so/zz.gif?url=http%3A%2F%2Fgnrjiasu.cc%2F\u0026sid=e0e9d9a5060e23cf5cc34c84d7cd9d61\u0026token=e/0cec9.du9saa5i0j6r0neg2/3/c:fp HTTP/1.1\r\nHost: s.360.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.15.8.2\r\nDate: Thu, 20 Nov 2025 17:16:47 GMT\r\nContent-Type: image/gif\r\nContent-Length: 0\r\nLast-Modified: Fri, 27 May 2022 03:45:05 GMT\r\nConnection: keep-alive\r\nETag: \"62904941-0\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty:1.15.8.2","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T16:47:07.54892Z","times_seen":13384334,"resource_available":true,"data":null}},"time_used":1374,"timings":{"blocked":569,"dns":337,"connect":233,"send":0,"wait":235,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/css/shou.css","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.601Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/download1/css/shou.css HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: text/css\r\nContent-Length: 63928\r\nLast-Modified: Sun, 24 Aug 2025 06:48:31 GMT\r\nConnection: keep-alive\r\nETag: \"68aab5bf-f9b8\"\r\nExpires: Fri, 21 Nov 2025 05:16:43 GMT\r\nCache-Control: max-age=43200\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":63928,"size_decoded":0,"mime_type":"text/css","magic":"troff or preprocessor input, ASCII text, with very long lines (1278)","md5":"a34be62f25b34a360972929ecf2b9278","sha1":"d04918bdda8cd25ce0987bba1b9ea5ed0d9d292e","sha256":"2b3bd5a6c3c8042de676348efbe945889adc889db5a93355d1acbeed47313b5a","sha512":"54b99415779cad94c279c693cad2055a2712974c8d130c7c328d5e49383acbd5c10aa0897fb716692502ff8e6ab2c8c167808376e62e88f8a0edc8f652dfebe1","ssdeep":"1536:F6cVF5eIrqiOx2w2Y2Q2Z2/2B2W2Nr272H2H212J2ORQFeyF4VMsnHHUxrmAy8xN:wcVOCrOx2w2Y2Q2Z2/2B2W2Nr272H2Hi","tlshash":"5b53626986b71984b95e86982fa927c4631040578d0bc97d7fc3be849f4d2a0a4b3fcd","first_seen":"2024-01-01T05:07:17Z","last_seen":"2026-03-29T00:55:08.734606Z","times_seen":182,"resource_available":false,"data":null}},"time_used":90,"timings":{"blocked":-1,"dns":1,"connect":21,"send":0,"wait":22,"receive":46,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/img/app/aZdLvRpQYx.jpg","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.627Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /img/app/aZdLvRpQYx.jpg HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 27955\r\nLast-Modified: Sun, 07 Sep 2025 08:39:30 GMT\r\nConnection: keep-alive\r\nETag: \"68bd44c2-6d33\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":27955,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"0e7f1a3343a2e72668df2a5031ecfcab","sha1":"59596cddaf912b829275f0b02cd689531db872fc","sha256":"f02722184e010a9bfeebdeb4b5f57db1cac50688db6f959c297940ae3c4d7002","sha512":"c05bf8584141fa03a3937edcf1522dff151423f8ad147a36d4550ac9afb0f61377b36ca33b6e3dd266fa92de92e959109a08559b5f6400f040d6b3c00fbf152d","ssdeep":"768:4453Qz7/bqh+HiLt3onT0pCkZ0Rl/2tP+Be7adBDd/Bja:4453QD8+UonDQQBYmd/da","tlshash":"c7c2e1e1435ba4e093f200f3f536ab604824bff4acbca706f6d9c1da1244e77a455ca6","first_seen":"2025-06-25T08:14:56.107391Z","last_seen":"2026-03-02T02:20:01.422246Z","times_seen":11,"resource_available":false,"data":null}},"time_used":82,"timings":{"blocked":41,"dns":0,"connect":0,"send":0,"wait":20,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/img/app/TlhIjcWXqs.jpg","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.638Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /img/app/TlhIjcWXqs.jpg HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 10129\r\nLast-Modified: Sun, 07 Sep 2025 08:39:30 GMT\r\nConnection: keep-alive\r\nETag: \"68bd44c2-2791\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10129,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"d61734c9cc8d42565a065421e1090322","sha1":"8cc63964841806feaa6e08097e3bb366eef250a9","sha256":"eddd61f9a4dfe9be1438467ff20d386e9faf0e51f93e8ddbbac5650185f5e431","sha512":"20e865ca62e8641875a0c4c5104240b41e98035c87bfe36f53b7a9e6eedca07f0c44f478b313603af7ca5c48b9e862c430e0f20340a6beabaebf3ebdb6b8dc1e","ssdeep":"192:sMs/0AtXWbEiHokGbD+gYRKyvPlJWImEiPTmbysxNwWsJpGq3HZl:sMa0ZvIZD+tRVJWImE2alxNBsphX","tlshash":"9622a0359758881bdc9e23b73c0553b89eb9bdd2b2172357cba30794272d1f46b600e5","first_seen":"2025-09-09T12:29:01.223756Z","last_seen":"2026-01-12T14:49:13.012102Z","times_seen":14,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":30,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.nntj.cc/api/websiteFlow","fqdn":"www.nntj.cc","domain":"nntj.cc","tld":"cc"},"ip":{"addr":"172.67.166.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:44.215Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nntj.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 13:38:40 GMT","end":"Wed, 21 Jan 2026 14:36:17 GMT"},"fingerprint":{"sha1":"DB:99:44:70:C0:41:37:45:B7:59:A9:89:C0:3B:6D:13:78:BC:D5:BA","sha256":"CC:70:6A:3B:AE:F4:A7:6F:E7:C6:00:44:6F:A8:C5:65:70:20:BF:1E:A6:28:6F:36:6E:4C:38:E2:12:6D:02:BE"}}},"request":{"raw":"POST /api/websiteFlow HTTP/1.1\r\nHost: www.nntj.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: http://gnrjiasu.cc/\r\nContent-Type: application/json\r\nContent-Length: 303\r\nOrigin: http://gnrjiasu.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 20 Nov 2025 17:16:44 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With, Access-Token\r\naccess-control-allow-origin: http://gnrjiasu.cc\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=v4qGIUjL8anURKpSnpRfvh1%2BUn1KE0hh0%2B2cbrRQRLUGwxKEAeTBY1AuD7rvOue0VxaRxDrKxi4N5BTAdDNW0vJmkKcT1DZ8CA%3D%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9a1998c81b8156be-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":40,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"96e5404522aba6711be9b480440bf727","sha1":"917061d7df42bb036876061529e659a9e1996aae","sha256":"ab0fd308c86c3c254a48f09497a7cd1bb5ef374bdd77b33bc9aa2d3398f89f03","sha512":"847373662a852de16b83efea04376f2c86394ea9d9dfff7bbbb70f4f37cc01e0e30d48265b326d9968835114a44cc98afaabf7ab3663ad8989fbb1aaf5816263","ssdeep":"","tlshash":"2b90040115143c5407033447300d554010d41074cd401141cc5d513cc704415f543530","first_seen":"2023-06-05T11:46:59Z","last_seen":"2026-04-05T16:48:57.615922Z","times_seen":236,"resource_available":false,"data":null}},"time_used":220,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":220,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/img/star.png","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.747Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/download1/img/star.png HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/static/download1/css/shou.css\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/png\r\nContent-Length: 774\r\nLast-Modified: Sun, 24 Aug 2025 06:48:31 GMT\r\nConnection: keep-alive\r\nETag: \"68aab5bf-306\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":774,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"00ec0d1163e2e6ef55d8dd1f0cd0c1b8","sha1":"fadf2d4b3a0626c3df058688a0391e796b05b768","sha256":"7b4deb715a8b44bcd4269e5286e8fd65a031e10d36ae1149b8364b5a0115b94e","sha512":"043a0ac6187d25203972c6a971711fdfa69b5920616c11e211c51e7421079e5b0c9bafe35d1c758fae59593c6b76783c64786362dd72ac9977421c128cf3ef04","ssdeep":"","tlshash":"7f017052e328227c56a0897e3b4e6d64aef9b674060609179f21f0907418f813b1888e","first_seen":"2024-01-01T05:07:17Z","last_seen":"2026-03-23T01:09:07.033081Z","times_seen":153,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/img/app/fFkXjqKtbP.jpg","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.620Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /img/app/fFkXjqKtbP.jpg HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 139356\r\nLast-Modified: Sun, 07 Sep 2025 08:39:30 GMT\r\nConnection: keep-alive\r\nETag: \"68bd44c2-2205c\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":139356,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 480 x 480, 8-bit/color RGBA, non-interlaced","md5":"e91f5cce99344c661dafefab24d984fb","sha1":"d6cc6f611a85ffdc4d7d3b79104f72c3976eedb2","sha256":"8e99ec584e2e9865a16c7a114dde7cd9ce56e3bb8893dca6d4bb3bae11fbe389","sha512":"03a4b9f545b8255e802594a6e7b9b659d42d901edc02cb8884ffd7ea03d681540ee099d5165ad31b1edeca8cac51d5cd53c9ce58cc862836bff43e023d44f4e4","ssdeep":"1536:QCu8n61rK1Y0B6AW1sMsBzOD00qUUmmP3SZq9POQ0moSsW6xH+yp1/OujXchNfDl:QI61r2Bi/aB0qGoKIPOYsBTpQuYHfUSb","tlshash":"2dd31243a2e0ad75198e6a33aa4636d835725a20773736ac63b8cfc4d7d151d2e8c0df","first_seen":"2025-08-17T04:35:17.010799Z","last_seen":"2026-03-02T02:20:01.512229Z","times_seen":56,"resource_available":false,"data":null}},"time_used":134,"timings":{"blocked":69,"dns":0,"connect":0,"send":0,"wait":21,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/img/app/BksOFamwVg.jpg","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.629Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /img/app/BksOFamwVg.jpg HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 12950\r\nLast-Modified: Sun, 07 Sep 2025 08:39:30 GMT\r\nConnection: keep-alive\r\nETag: \"68bd44c2-3296\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12950,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 460x460, components 3","md5":"1f969f853ebd3ad4ecdcc4728e7cdf51","sha1":"e13b98cb14af26abe9521f2dd405cc59aa6baecc","sha256":"f600d0a67bfcdc8de15c8ac62f7272091f8daef495efaf9fb40578103bb53153","sha512":"85c089ac33e2c2ecc60c626673e52dca42bf466a9feebdc269840b20934bfca6c216ccdaa911de768e0d9c1d81bd6258019e6a5ca31521e413a91e867b943e9e","ssdeep":"192:tTWTE4C7aclsqBekzH39MHm9GghPHqzZYD1uljXI8y6a8qa6dBZgZ4+NQmV:tTWTE4lc93WQGEeo1yjXZypDfeZ4+Np","tlshash":"a442bf4937123508f5acfbf744d3d51bdeaa2e3ab52cc5eebb90913108615f20e2c8a5","first_seen":"2024-01-01T05:07:17Z","last_seen":"2026-03-21T16:29:02.016773Z","times_seen":44,"resource_available":false,"data":null}},"time_used":60,"timings":{"blocked":39,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/img/app/TpQhDPkCBG.png","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.630Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /img/app/TpQhDPkCBG.png HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/png\r\nContent-Length: 9954\r\nLast-Modified: Sun, 07 Sep 2025 08:39:30 GMT\r\nConnection: keep-alive\r\nETag: \"68bd44c2-26e2\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9954,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced","md5":"1d8fc63dc488f565a6b8164983d9bbac","sha1":"15a059644625719c6a3b7fb49c295c316d405df6","sha256":"b99c35109b03600936b37f61e214bf11ec4d9efa0feef4b241284666a85a5bc6","sha512":"d66632bc73b4464399483e6d448e140bbf726aa65b74528af0262bfc9790d0acafeaa7b7900943b0318ea2d346e0b37a01f885f5cc4849d82502d13c38aee04b","ssdeep":"192:xRvd6HG5ZlWQEnX64eJANjySJew+JELFdcdIdChcD3Xqg:LvzvlWPXMJANjyIJ4EL7hdChcrXqg","tlshash":"7522be115f7eeff5a08b2971a2918c383189dc024df417e186a2ee5a5426ba01f2b4cf","first_seen":"2024-08-19T14:05:50.313605Z","last_seen":"2026-03-21T16:29:02.007126Z","times_seen":55,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":59,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/img/gonglue.png","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.618Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/download1/img/gonglue.png HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/png\r\nContent-Length: 782\r\nLast-Modified: Sun, 24 Aug 2025 06:48:31 GMT\r\nConnection: keep-alive\r\nETag: \"68aab5bf-30e\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":782,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 70 x 60, 8-bit/color RGBA, non-interlaced","md5":"d2171b2b2e1cab2cfbb4f3f8f971c905","sha1":"4a17137c1470c483232d36c87ade10d80996bb41","sha256":"be84d0cd98ec3239355b9a231c55274f2ebc9ec2e3c426fa4d6c16627ed34578","sha512":"5054075d3335087313cbe41b51fb2d44fbf0d87cf1fdc139ae2c9e2f3498c956313f3f1a88888eb6375d0e68d32380ea380c225aacfb62fdc3c6049f28276c07","ssdeep":"","tlshash":"550141626fad2b448942e022967b0618cf3d600a1063e05b54adc579eaaff3a24720f2","first_seen":"2024-01-01T05:07:17Z","last_seen":"2026-03-29T00:55:08.721641Z","times_seen":183,"resource_available":false,"data":null}},"time_used":71,"timings":{"blocked":50,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"push.zhanzhang.baidu.com/push.js","fqdn":"push.zhanzhang.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"163.177.17.97","port":80,"asn":136958,"as":"China Unicom Guangdong IP network","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.731Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /push.js HTTP/1.1\r\nHost: push.zhanzhang.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Encoding: gzip\r\nContent-Length: 232\r\nContent-Type: text/javascript\r\nServer: bfe\r\nDate: Thu, 20 Nov 2025 17:16:44 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":281,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with no line terminators","md5":"1bb5a3267c9865ad4abe8d937734b62b","sha1":"b5478dd2edb3e64242eced1db2dbd945ef81f592","sha256":"674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2","sha512":"33318ed944a49a8fa334983408d68853b1fbe4f80b19adef6235f23d7708b616cd4f8dd28c8b8ebfbb5776aab8088229f3060cd789af34fe1db5038a98bd0d39","ssdeep":"","tlshash":"91d02be874a0c41c0ce710b17fab328cfab20b2755244d40c05b90013614b1f824bfe9","first_seen":"2023-03-07T01:02:09Z","last_seen":"2026-04-05T15:36:10.305853Z","times_seen":20939,"resource_available":true,"data":null}},"time_used":1657,"timings":{"blocked":688,"dns":421,"connect":272,"send":0,"wait":276,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/favicon.ico","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:47.060Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nCookie: thinkphp_show_page_trace=0|0\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:47 GMT\r\nContent-Type: text/html\r\nContent-Length: 169\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":169,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"f79a3b56717332ea45f2665454579943","sha1":"70e8b1e62b9e90ab1bf20852cf8ee4e55af7314b","sha256":"91fe1bb2ce31dfa39896c9a04ee23274a7e9dd0ad1fc91ec191e8b7307f652f2","sha512":"361d3cd55b890b2d8dd1b10eb979c0c18bb17dbd0b51cd1ac0449aa39ac79f485abcf8563ea104292d685c881202f84168f9056d4e06692e66f085cac6ac2611","ssdeep":"","tlshash":"eec08c6d6613bc8dca93227826c3a080c1d6932beaea45114580914370cb2998ac239a","first_seen":"2023-04-05T15:51:12Z","last_seen":"2026-04-05T16:48:57.618728Z","times_seen":1213,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gnrjiasu.cc/","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-20T17:16:43.238Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T16:47:07.54892Z","times_seen":13384334,"resource_available":true,"data":null}},"time_used":47,"timings":{"blocked":47,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/img/game.png","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.611Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/download1/img/game.png HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/png\r\nContent-Length: 1885\r\nLast-Modified: Sun, 24 Aug 2025 06:48:31 GMT\r\nConnection: keep-alive\r\nETag: \"68aab5bf-75d\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1885,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 70 x 60, 8-bit/color RGBA, non-interlaced","md5":"90a88fe7bbe5519191154529b862068e","sha1":"b8ec39c2f700d01577ab6dde1a96e91db46d4741","sha256":"64ce276dcf1ce6dac60ab29a187835b7453ac2451105984851a350233f921e5d","sha512":"b9280abfc499e4e4e9799279424082b6714c6220cdcf2c58dc95b6e398b332a8fff62db842112ddf51b83b5096fa7379e35cfab2d743758931da3ed7a13bb172","ssdeep":"","tlshash":"ba413bc99debfc5dca2102a792a51ae76230d1570b60c90942a3fdf2092226cdb8d6c5","first_seen":"2024-01-01T05:07:17Z","last_seen":"2026-03-29T00:55:08.73823Z","times_seen":183,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":77,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.nntj.cc/api/checkArea","fqdn":"www.nntj.cc","domain":"nntj.cc","tld":"cc"},"ip":{"addr":"172.67.166.30","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.738Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nntj.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 13:38:40 GMT","end":"Wed, 21 Jan 2026 14:36:17 GMT"},"fingerprint":{"sha1":"DB:99:44:70:C0:41:37:45:B7:59:A9:89:C0:3B:6D:13:78:BC:D5:BA","sha256":"CC:70:6A:3B:AE:F4:A7:6F:E7:C6:00:44:6F:A8:C5:65:70:20:BF:1E:A6:28:6F:36:6E:4C:38:E2:12:6D:02:BE"}}},"request":{"raw":"POST /api/checkArea HTTP/1.1\r\nHost: www.nntj.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: http://gnrjiasu.cc/\r\nOrigin: http://gnrjiasu.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 20 Nov 2025 17:16:46 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With, Access-Token\r\naccess-control-allow-origin: http://gnrjiasu.cc\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=apzbNjt4YsJNMzrI0uPCL8Ydz445yoNx6F47GPmhOQD3H6DhoLj3O%2F%2BwWEXR2ICSKZAHYe8Bv8YSoLHYYMXXkItXNDIoYq7Owg%3D%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9a1998c5e8f156be-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":40,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"96e5404522aba6711be9b480440bf727","sha1":"917061d7df42bb036876061529e659a9e1996aae","sha256":"ab0fd308c86c3c254a48f09497a7cd1bb5ef374bdd77b33bc9aa2d3398f89f03","sha512":"847373662a852de16b83efea04376f2c86394ea9d9dfff7bbbb70f4f37cc01e0e30d48265b326d9968835114a44cc98afaabf7ab3663ad8989fbb1aaf5816263","ssdeep":"","tlshash":"2b90040115143c5407033447300d554010d41074cd401141cc5d513cc704415f543530","first_seen":"2023-06-05T11:46:59Z","last_seen":"2026-04-05T16:48:57.615922Z","times_seen":236,"resource_available":false,"data":null}},"time_used":2533,"timings":{"blocked":84,"dns":27,"connect":8,"send":0,"wait":2355,"receive":0,"ssl":44},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"tj.manatj.cc/matomo.js","fqdn":"tj.manatj.cc","domain":"manatj.cc","tld":"cc"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.740Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /matomo.js HTTP/1.1\r\nHost: tj.manatj.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T16:47:07.54892Z","times_seen":13384334,"resource_available":true,"data":null}},"time_used":88,"timings":{"blocked":88,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r2.fastnodes.cc/300-600.jpg","fqdn":"r2.fastnodes.cc","domain":"fastnodes.cc","tld":"cc"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.732Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r2.fastnodes.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 22 Oct 2025 22:51:31 GMT","end":"Tue, 20 Jan 2026 23:51:29 GMT"},"fingerprint":{"sha1":"53:04:D1:40:F1:32:CE:BC:71:41:2F:01:BD:D6:4B:AF:E9:83:64:47","sha256":"F6:B9:FF:AF:D7:00:D8:2E:4C:1D:80:0E:B3:FE:BD:FF:36:19:E1:7F:07:2E:9F:EB:A9:FC:B5:3B:A4:55:3C:BD"}}},"request":{"raw":"GET /300-600.jpg HTTP/1.1\r\nHost: r2.fastnodes.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 20 Nov 2025 17:16:43 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 41608\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oBhXFF1mTHWBJTbZBul9uvXREC6I5f%2BRZgRQ9dWZ6bLdgM6SRCuy4YN%2BwnbK4B4EVIsnihMUwYUoGecgMlf9qUhtMMmf%2BGiUI%2B4Vva4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\naccept-ranges: bytes\r\netag: \"023b35b28cfb3062cff33fc33ccc7222\"\r\nlast-modified: Thu, 11 Sep 2025 06:55:40 GMT\r\nvary: Accept-Encoding\r\nage: 492\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncf-ray: 9a1998c5daa156a5-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":41608,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x586, components 3","md5":"023b35b28cfb3062cff33fc33ccc7222","sha1":"d74ed9861016793a88ff3373d7298a043a9903df","sha256":"af3ce9f086973e4c5281e8abd89790a9e934832cbb64bc445b0e671d033cb96c","sha512":"69f5278e71ba184a1301c63c975cf12f89772c409c5d1ee182a6e4a99cebfa1655c00bd06a8313dedaf675c99cfa80a255bab53adaeab0ef7786ab7f1d6e236b","ssdeep":"768:jVrn44DW9eh6cdVYeCI/KdhGhjtxxcfYIbNXgxk6boBU6rp77778:jV1WE156Qxyf7SxDbiUL","tlshash":"5213e10256613542cbdb33914eff22bebc488a01c677e98769fc1b7ec8e818a99c9554","first_seen":"2025-09-09T05:04:52.753229Z","last_seen":"2026-01-27T15:12:51.254396Z","times_seen":167,"resource_available":false,"data":null}},"time_used":182,"timings":{"blocked":82,"dns":27,"connect":1,"send":0,"wait":11,"receive":2,"ssl":51},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"r2.fastnodes.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-20T17:16:43.323Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: text/html\r\nContent-Length: 73738\r\nLast-Modified: Mon, 03 Nov 2025 17:49:37 GMT\r\nConnection: keep-alive\r\nETag: \"6908eb31-1200a\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:1.11.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":73738,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (22698), with CRLF line terminators","md5":"abf142ab03e0829ddc77722d08750e7c","sha1":"b55fbde5fb1f8dc40816c1405318d3eddff61d33","sha256":"532847a45bcc8d6eda687fdea8dc8257f20764aa2b211c1dd75e6f99bf01ae0f","sha512":"46bedc97f9064f8461cb5a4ffe1281e42ed2b6d0814edb9762084eb5b087d8e31a1ad1c56a10c75cb35867879b44cd951e7cbb72a65e99f95ed2e80400446f79","ssdeep":"768:fK8AujMKEmz/zHt/P9JPZvvxkZ3IrMpyszjF7Q/+S7c:fK8AniPbJ5wYrMpZdkWSY","tlshash":"1273416323859425323782c5ec10ebccf8809687e66a55d9ffec913bbf62c684d1798d","first_seen":"2025-11-20T17:17:18.716658Z","last_seen":"2025-11-20T17:17:18.716658Z","times_seen":1,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":20,"dns":1,"connect":20,"send":0,"wait":20,"receive":47,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/js/jquery-1.11.1.min.js","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.602Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/download1/js/jquery-1.11.1.min.js HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 95808\r\nLast-Modified: Sun, 24 Aug 2025 06:48:31 GMT\r\nConnection: keep-alive\r\nETag: \"68aab5bf-17640\"\r\nExpires: Fri, 21 Nov 2025 05:16:43 GMT\r\nCache-Control: max-age=43200\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":95808,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (64170), with CRLF line terminators","md5":"22b3edfb29c091734a40f75d06878254","sha1":"71cb5302ccc1e71ad9a04ec6c4f16ed6ff1dbb57","sha256":"fd34f775e3455fa8a89ec70c0b5daadb8ab0daa83b41c36e032d55ac3d96b21d","sha512":"531565f16fb7c390dd0dffdff9c06ba1de1ae2b535989ca380aca22fc951286b16103704ba8a7323fd20154bd95077fac11c94e1ab6ba0761a7a751388340261","ssdeep":"1536:EPEkjP+iADIOr/NEe876nmBu3HvF38sEeLOFoqqhJ7SerN5wVI+xcBpPv7E+nzmN:bNM5qhJvN32cBd7M6Whca98Hr4","tlshash":"a693c8d9b6d27162977730b850bf510bb13a98eab80c4c60f1a4d8e47d78e89507bf2d","first_seen":"2024-01-01T05:07:17Z","last_seen":"2026-03-29T00:55:08.72874Z","times_seen":184,"resource_available":true,"data":null}},"time_used":90,"timings":{"blocked":-1,"dns":1,"connect":20,"send":0,"wait":21,"receive":48,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gnrjiasu.cc/static/download1/img/logo.png","fqdn":"gnrjiasu.cc","domain":"gnrjiasu.cc","tld":"cc"},"ip":{"addr":"51.89.195.136","port":80,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gnrjiasu.cc/","date":"2025-11-20T17:16:43.608Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/download1/img/logo.png HTTP/1.1\r\nHost: gnrjiasu.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gnrjiasu.cc/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.14.1\r\nDate: Thu, 20 Nov 2025 17:16:43 GMT\r\nContent-Type: image/png\r\nContent-Length: 11201\r\nLast-Modified: Sun, 24 Aug 2025 06:48:31 GMT\r\nConnection: keep-alive\r\nETag: \"68aab5bf-2bc1\"\r\nExpires: Sat, 20 Dec 2025 17:16:43 GMT\r\nCache-Control: max-age=2592000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11201,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 400 x 116, 8-bit/color RGBA, non-interlaced","md5":"4c30792204820c438e5e6afff5ddc924","sha1":"8d7f6d51ca7552b3f18e951265f2248f640a6149","sha256":"b5d919fe254211d3428bc1e900eb041096b2d0276fb07e54ca741c846d9d803c","sha512":"8193c76d2f7737306e3aa43ac85131d1bcbbc1e597c092e971d0a6ba03ed2685583611b4a11cd458c6ccdc2a6ed97e3093b1defbd5fefc805570a55ce94eacad","ssdeep":"192:7OnVp+EgCKpR07xBhkJaQMwWvNUeAlBNyAOJijabG15/iPwkhn5djnLobIPp:6/+EpCRoxBhUkPvNUdlBgA2b89Jgn5dD","tlshash":"8432bf7753f072a88f870f75a7cd51e1c343264664c622db2eae2e0d8b3d56a7d8064a","first_seen":"2024-06-05T18:21:49Z","last_seen":"2026-03-29T00:55:08.726673Z","times_seen":184,"resource_available":false,"data":null}},"time_used":79,"timings":{"blocked":60,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}