{"report_id":"6914c544-70af-4aed-95a5-c239b65f5151","version":6,"status":"done","tags":[],"date":"2026-03-19T13:37:13Z","url":{"schema":"https","addr":"oxpquant.com/","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":0,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"https","addr":"oxpquant.com/desktop/#/","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"title":"Options Xpress","dom":{"size":152272,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (63341)","md5":"e8cc0fd6eb6f78f273a6637e1fb9f835","sha1":"d60d3faa7f762eafb0d2bc6f818136fa6524b783","sha256":"340337b1b809d620d12153033c31ebec8cc33dae3e847eea3645cc2bab7cdb97","sha512":"a9bbd8d268050181cfdbcc1a308bbc4cc371ce4df8c14c9cc4200785b7bf140d57a3d6ad0d81daaad6fd73b8c3318bbd93462a349ab48d9cb4296c597b0dca06","ssdeep":"1536:mcHMhYUkkmbWbh50xjZMjbmrweqeXuwuatF52sdUfaM28+ebryee:mrYU2Nf3UfNbo","tlshash":"2be3d720e70112af413794c0e8713f5a714be39bd356417466ec96a2afdbde0f9248eb","dom_hash":"domhashb1e883dad9a717041431948fde891840","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"oxpquant.com/","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":0,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-23T13:37:13Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"oxpquant.com","ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2025-01-20","domain_rank":0,"first_seen":"2025-08-06T15:14:00.234807Z","last_seen":"2025-08-06T15:14:00.234807Z","alert_count":134,"request_count":134,"received_data":4483681,"sent_data":63420,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Vue.js:2.6.10","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Axios:1.0.0","description":"Promise based HTTP client for the browser and node.js","website":"https://github.com/axios/axios","common_platform_enumeration":"","icon":"Axios.svg","categories":["JavaScript libraries"]}]},{"fqdn":"api.livechatinc.com","ip":{"addr":"2.22.225.83","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"domain_registered":"2005-10-31","domain_rank":29526,"first_seen":"2013-12-20T14:27:35Z","last_seen":"2026-03-16T21:42:39.776913Z","alert_count":0,"request_count":1,"received_data":341,"sent_data":667,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.livechatinc.com","ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2005-10-31","domain_rank":36142,"first_seen":"2012-06-22T08:37:34Z","last_seen":"2026-03-16T10:30:40.245025Z","alert_count":0,"request_count":1,"received_data":103468,"sent_data":416,"comment":"","tags":null,"fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"api.livechatinc.com/global-mapper/lc_license_id/18964748/region?jsonp=__lc_region","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b17346aced6298b7e1cadcd62f40003c","sha1":"c28b849fff4b4d9d006d803bc4d18368446ddce4","sha256":"a379b1707064386da00957301b6eb053249cfb462047d44e4fb6d52898f5b78b","sha512":"93be3c00856eedc8cedd0c7bd2b2a5873aa85dcf9e893d9e972421d122c568cbb1c9b4ca633497bc80900f688898040a218616dc69a4716fcd3d5a2dc93fb928","ssdeep":"","tlshash":"8080000e20002ae30a20ef3e8023ec0cb03e033223008288c302208228002b0822ae0b","size":35,"data":"","first_seen":"2025-05-16T12:26:33.454661Z","last_seen":"2026-06-07T08:09:45.682147Z","times_seen":27952,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/cdn/element-ui/2.13.2/index.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"321c03f34e4abe3a0470a10a3d8bd196","sha1":"89798e59f47fe93b4fc881e2f2e3040ecf7a7496","sha256":"e1cd3be235811a5c986f935c6e3fefef0a22fab0516c73dc593c48d90504bd11","sha512":"bae26199204e08b34622e9225babae57cde00d480151dba4a80dbb9a1419cadf5523e262f374337d6e2aa966db1f6c4b9a28af41f79751682ed129b65745e4e5","ssdeep":"6144:v5lrnBuxN5U5Y+7EBPfPUMfNa6eiHzsvjV2InspHtsdt588ispZhu2:hxBuxN5U5Y+7EBPUMf2iD6IHSdU2","tlshash":"87c41b8d72c1b5314ba36071503f250bb337299ca80980ecb679d4ea6dbd909526ffbd","size":567715,"data":"","first_seen":"2023-03-13T02:30:00Z","last_seen":"2026-05-17T18:05:14.152241Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-30a9a8ff.8684e43e.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"35231cd70c7d3fc5b4091ddf7f410bdf","sha1":"c6042ed7ab6a0057724775b71ab8a7b1a8428f80","sha256":"c75b9da7bfb5e928c3fe778a560ac83bc9b8a09e71ef02fa931caa1cd2c4f7b5","sha512":"b6580de647ccdca2ed526cc14b552f18e2106fa5f1bddd6190866aac304efc921bd155c004761ca41241bca39a3eb94e769a49e08aa1d6dc16c328f4495604f2","ssdeep":"192:mT/FcbRwLnVg2LcyQR/ZRdyko2eEzYoeoSH67EeO03tGL1i6T4o6hc5AizlVJMSY:gtCwbsyaRfU2a6o10g5nVJMSvQ","tlshash":"4a42b609f1c7f5ee88279041200f2620b0b23fe590198992f776d9d5ab98d58632ff2e","size":12916,"data":"","first_seen":"2025-08-06T15:14:05.966371Z","last_seen":"2026-03-19T13:41:44.49757Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"f7edca0495911bc0c9381f4f4cf2885f","sha1":"de5e7b87ce50c1a52a1076f5abca5b8dd81b97f4","sha256":"35622075ce3f28679620c17daa41aeef051f6864b5956be0bbee444bed12609d","sha512":"961461631445060b4336751c1d81188a971fdee7588fd20d9c9dc2ccb761369ada7a10608c54b62b97ecca68cf92319a4520bd7cd4080cfb7b0288bb60deab68","ssdeep":"","tlshash":"2521abcdbce260ba96573169252faa017121101b208d9e333e8cd746df61cbb8722acc","size":1301,"data":"","first_seen":"2025-08-06T15:14:06.020452Z","last_seen":"2026-03-19T13:41:44.512964Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/cdn/vue/2.6.10/vue.min.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"f121238864e2a9ff7e97bf60b159feb0","sha1":"a624ad4e931043ac63ae5c2d8820004163ee7914","sha256":"309fbabff84fc5d37b4526113ee36e71aca5b4d656a5faa9b8dae23dec63e526","sha512":"3b21fbdbf22e0b5d08c95badae0bd962d9d56b05c5b31afd00996bf9f3985816c28a8f2aeb86742e76c7cffa80fbe437e912f88643798aaa3c0f106d6394fca0","ssdeep":"1536:KUXY7qLtpHt2Pqe1mZ8I6H82RaLiMBlo2VV2B/S/g:xYeJpN2yefjMBlPV00/g","tlshash":"3e9308dc7299b07157eb31f1107f140bf2365a19ac0ec194b222e4e67cb984d92abe7d","size":93680,"data":"","first_seen":"2023-03-07T14:22:57Z","last_seen":"2026-06-08T12:50:48.644352Z","times_seen":372,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/cdn/axios/1.0.0/axios.min.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"c42cd03c654cb660f17ae6082bffc47f","sha1":"bedd2879ab587dd9f5e6b1fe5df95f857c31ff10","sha256":"104840bf105259d57d70c1dd737c254d63a696ff7c20bcb1e26d5b00c5a46d45","sha512":"36ccb0591342cc562e2629331c1acef96f2f60c66493db63364aa3ac69d42be077ed2da56cfb5b650a9467a1470745c3065a7e288131a6ec76257be1820640e3","ssdeep":"384:Kao8KsKMMT6nbNp0nkJFP5F0YS6DagzzNYT9ee8u:sGNp0EPb46DaT9edu","tlshash":"9c42a7ce78a1b4d747e320f0905f5a0fb2b6992a644d84b0e560e8f66cb546e8737f4c","size":12977,"data":"","first_seen":"2023-03-08T16:18:48Z","last_seen":"2026-05-29T00:26:55.0229Z","times_seen":61,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-vendors.76e03b8f.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"fe8835b477b3577cc2044eb3953a3233","sha1":"329ee088fd4a224e95ccbd858fe6bc80117dd022","sha256":"f663a6c3ab3b5c09227cfd944af38ab409cf617bdf257a9d76cbac3385dc9f8b","sha512":"671dfc0c4d960baac9a3993c092d95baeeddd7394dca76e9b631a0812f0046dcd6ab673ccbed483ab61b9e3c124cedad36ecf27036ac02365899d52331902916","ssdeep":"24576:44mVLAGU/H2UHIanFW4kPKxRHpLjvGvBT:44mVA24I8W4kPKxRHpHvGvBT","tlshash":"b4351a9db384b06552e735b4506f250b92367808b40bc9d4fa66e5c6acbc95f223bf3c","size":1141261,"data":"","first_seen":"2023-09-18T16:52:25Z","last_seen":"2026-03-19T13:41:44.514362Z","times_seen":26,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-b1ce37e2.34850eaa.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"d0fe04f861024922dcef6229e40d8b8b","sha1":"241922b1c9e088d7b7efa823c417df871dfd9a54","sha256":"3280ec6a87ec8d6008a4c307733901fe7fd31db70adf9f2b13a4cb64fd997ff4","sha512":"0fb03fdf29e8ba86112ed98795baa6eb2332ef7b2cca1260e7043daddfc3ec54ae2b743b2ed3d1a5697cc3eda4607cbafb63de0036edd2df9f01094b3852d0d8","ssdeep":"1536:VML1AZUAc7eaj+PvSjfrvi9C8fcYPf2sdkS8HkFIsQI:aL1h9IPvyinfD3ki2I","tlshash":"4573c0f971236d835e7f2c24312fdd586ce9b403d2dca3b770608f4294b469c76a22a8","size":75963,"data":"","first_seen":"2025-08-06T15:14:05.954703Z","last_seen":"2026-03-19T13:41:44.507133Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-b438fd4e.4c38efb0.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"314c5f2ed4a7210153d85b95203e6b94","sha1":"4ea8c3f2416c78145064a838a0797bb84f4aed11","sha256":"8031fe1f466a15f4d3a151f7d667d7f49cd9e42840115f227145b8801f9cf47b","sha512":"680739f3e3e360ffa9382d975bbd779b45ee65b0bf0cbae7d3de2f8d11b9fd2be66c4596ebd58a5d657d139e28b5e8f456a310fc642af3c854506cdb8fe6cb22","ssdeep":"768:4RDYnUYB+kbil6onNuodTvjTyYbabJYcbB5DxQ:4hYUwVonNusjPbabL95+","tlshash":"2b23d799f754a0b82b4b41e4953f1099762fa8ed79c289b4b1d8ccf0a4b3ddd8602f5c","size":48935,"data":"","first_seen":"2023-03-13T02:30:00Z","last_seen":"2026-03-19T13:41:44.492784Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/tracking.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"ee82cb7c832e7a6449ca97660b108e1a","sha1":"9ac44590d327b289161e1401133373acbbf74729","sha256":"17d08dfb47783b628c3118cbad60cc4f03c08641324b560ff4552da05c0bc2f9","sha512":"dd13fb0c559c9cdf58daf5374d2e24fd166894a3d4d3299b8f9d603d168c76f7c773ab194b184ff10a989c322e9eb3be6a55bc48a002e6a33c36d45c5bc8494f","ssdeep":"1536:E5y/uRri7DJnagIckNmeuR5bydWiBwpDwLCPoRvCRW6RYt:E4/uRu79aXuRxyk8vCdRo","tlshash":"0ba338d67282b03493f785e7a17f6216b33a291c740d8410f17cec6a396a9879177f2e","size":102724,"data":"","first_seen":"2026-03-19T10:21:05.337716Z","last_seen":"2026-05-16T09:29:04.050927Z","times_seen":55,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/cdn/vue-router/3.0.1/vue-router.min.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"efaab15e02a58e04969131674b16ae94","sha1":"4c021daa835cb0aff0bc9a2ef56d4fb0c6d5d753","sha256":"4340198e80cdeef16fc5d919bd8ac000b0416c905e66cc60bc3db0dcdd387697","sha512":"81c1357b05dd1ea1a1a42e7504001a3ac64eed50bbf805ad7f8d26d09bb46cca67b88eba43da002004eee35e792ad948a72ca9959fb887db4ec320e66cc3e045","ssdeep":"384:fxwp+JvwAmXRZOYQFoB5RKbKBpZn6ySH1DhUxjImhFVP:up+JvwAGjOYQFoB5RK+nnTMa/hXP","tlshash":"77b2c69db582b03247d326a0816f150bf23b7999744e84a8f2a9f4d43cbd85e8427f7d","size":24560,"data":"","first_seen":"2023-03-08T16:18:48Z","last_seen":"2026-04-27T20:33:57.376122Z","times_seen":69,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/cdn/vuex/3.1.1/vuex.min.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"523fd0003a2d5752369f3a6c1ed2e4ef","sha1":"700851f0610166761548335ee7eb3abfcac2af2f","sha256":"39bd72dde7538a33e2fd11645beae7b0091104be75aec5f655883058c0963773","sha512":"111899e8a1537782b6d2846cdba31fec448a517b14b29a5941dc7b15e5d9c7fcb279cc0323e42897471ec0643a0b489ca1c7b7b193fa435a859ee1761c8343da","ssdeep":"192:aiDaQv4w9nWp4UvouC3Dqs/778IG0zqLVFcu8XCnrdVpVAQflmGcXg3H8VnbZqlp:aeJgqnWp4kYj78p16CrdKMQ0CbMB+a4+","tlshash":"ab32cb9a73e1762aca57b0b0ac5f9c08f275a9dc1686400c6a4dc0f99c754bccb7ed9c","size":11658,"data":"","first_seen":"2023-03-08T16:18:48Z","last_seen":"2026-04-27T20:33:57.335599Z","times_seen":52,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?x-region=us-south1\u0026license_id=18964748\u0026client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5\u0026url=https%3A%2F%2Foxpquant.com%2Fdesktop%2F\u0026channel_type=code\u0026origin=livechat\u0026implementation_type=manual_channels\u0026jsonp=__fm8hp6jf12l","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.83","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"ea5c9702daf8d5d3e56a57eee7d7f14c","sha1":"9b005523cb8f3d98f4e3588b37de342bbfda1785","sha256":"dd151ce884e0e1f31de716acab43b67c43409c1982707fab7a08657de9169260","sha512":"5c54879e94864e70d84257df40e31f4c3b342c221c8a50ca0f6e55d27e2170d404103c4b1545f1c2449bf6168133b139da1bca5490a7f63534c2129cb2d9de9a","ssdeep":"","tlshash":"6fb0222bfb2280b22080e303c0cc2a0220200aa80000aa2a30ace280820eec80320b0a","size":126,"data":"","first_seen":"2026-03-19T13:37:22.828458Z","last_seen":"2026-03-19T13:37:22.828458Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/app.d1207a89.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"765ec11e9a5ff2a94b98a105cafbe7f7","sha1":"8e8d5a7b52950637f9b792e0c64f8f6c5f948d76","sha256":"69a31cc1022e0a00d0488418566729ed5c13334d9ce72bb6ef8fd24e22e46509","sha512":"345955b0fecc8f3cb1a240cf4f1d5d7ca9dc3b66bae78a389b0a2cd82489f437c4ae8b90208c28e1943a48c49b86598e3f78e1ad4d3d17830b0332e773a9954b","ssdeep":"12288:tfpZCMcpsVrCaGOeCqTJGbJ/eEbcLO0zfPp72rz3czdSBvbEMpBK/Qvo4:tfp3A/M","tlshash":"15d41a7b33c7dab4246253ca2a46b345b99d9d61bb12f0d048bdd25623e4b49c113fb3","size":601264,"data":"","first_seen":"2026-03-19T13:37:22.698013Z","last_seen":"2026-03-19T13:41:44.514995Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"oxpquant.com/desktop/cdn/vuex/3.1.1/vuex.min.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:52.291Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/cdn/vuex/3.1.1/vuex.min.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-2d8a\"\r\nexpires: Fri, 20 Mar 2026 01:36:52 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11658,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (11593), with CRLF line terminators","md5":"523fd0003a2d5752369f3a6c1ed2e4ef","sha1":"700851f0610166761548335ee7eb3abfcac2af2f","sha256":"39bd72dde7538a33e2fd11645beae7b0091104be75aec5f655883058c0963773","sha512":"111899e8a1537782b6d2846cdba31fec448a517b14b29a5941dc7b15e5d9c7fcb279cc0323e42897471ec0643a0b489ca1c7b7b193fa435a859ee1761c8343da","ssdeep":"192:aiDaQv4w9nWp4UvouC3Dqs/778IG0zqLVFcu8XCnrdVpVAQflmGcXg3H8VnbZqlp:aeJgqnWp4kYj78p16CrdKMQ0CbMB+a4+","tlshash":"ab32cb9a73e1762aca57b0b0ac5f9c08f275a9dc1686400c6a4dc0f99c754bccb7ed9c","first_seen":"2023-03-08T16:18:48Z","last_seen":"2026-04-27T20:33:57.335599Z","times_seen":52,"resource_available":true,"data":null}},"time_used":707,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":707,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/app.9cdac168.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:52.283Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/app.9cdac168.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-3fa5\"\r\nexpires: Fri, 20 Mar 2026 01:36:52 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16293,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (16293), with no line terminators","md5":"d6e539d072f3096ad5ac9e4be8733c93","sha1":"77d27394b16c05c033d0fb8d8932a58efd01d4fd","sha256":"fe7d300b09246a4c6b2a01eb95cadc8e1b5e3998bb937dab3af36dd4ee7d73b5","sha512":"92b1d94f86d9ef22cff7f93f2294736d4b5f8828d7f1c6b67976d80b581a3b7f881a6f86dfde1fd14bb4e8647f2c6e4b18418c22390d6c545fa57d5d0e24a5c4","ssdeep":"192:D+89v/7Ljwp/tnK0d+Y5AMmGPsny9iIRI54FbRw8/D5kpGAKAdbiRw8/D5k2:zTveGks0C8mKA8z","tlshash":"eb72d932b79e2419b42be171a5807ed97808c11782a31be4bda3763acdc74d26f7634d","first_seen":"2026-03-19T13:37:22.694338Z","last_seen":"2026-03-19T13:41:44.491624Z","times_seen":2,"resource_available":false,"data":null}},"time_used":398,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":398,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-44270b27.291d13f7.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:56.345Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-44270b27.291d13f7.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-819\"\r\nexpires: Fri, 20 Mar 2026 01:36:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2073,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2073), with no line terminators","md5":"40d266a22263b793d1ec9cc47af263bc","sha1":"bda1bb7a624460d3e6f734f9d825f40ac890b316","sha256":"a0ab020ddd2e24eae7b743cb4d00a6a30c587b044ab287837de637c63a313a02","sha512":"0fa749b774f24d83899e27ea094189f77a9bc93ddc8baff760b5142f2a254ba35fcd88d39470fdc4c97dc1754fe28e861ec9e44f7488699f8ab4eda21c252d7f","ssdeep":"","tlshash":"f241bc32733e30182433e12455e39bff6045f30a83d511bc6f8b78a659a72897db26b9","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:41:44.510125Z","times_seen":12,"resource_available":false,"data":null}},"time_used":662,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":662,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-7b1dd94c.7b662044.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.942Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-7b1dd94c.7b662044.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-1e08\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7688,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (7532), with no line terminators","md5":"9644b1ff5507cfd77f49eee5895c4b29","sha1":"b5508d678ac3e737348ba690e5d54967fabfca69","sha256":"52bb2b2ba07d9ca4d0433f79cb667a85d731966f49355e12161e808bced5145e","sha512":"1dcbe56e951b451903fdc2870009bea7acf10d88a26aed6e676072f39ea767a1828db61dd62c257739b77d2ce60f81f42c7be7ba8457e3504754338e6162ed60","ssdeep":"96:SfO8x5X7TOFwMICLQtupMBW3yafJfqQUuUWByatJvJc0fVrIQFdJpr4dXmVkJ:cO8vr9tBUBUnWTPfJ1Fd78tWY","tlshash":"2bf17614e445eaeadd379402814e7a71a4216fb4d034e8d7f678cd6897e8af01f1e35c","first_seen":"2025-07-26T22:21:08.522047Z","last_seen":"2026-03-19T13:37:22.697008Z","times_seen":5,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/app.d1207a89.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:52.286Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/app.d1207a89.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-92cb0\"\r\nexpires: Fri, 20 Mar 2026 01:36:52 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":601264,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (60013), with no line terminators","md5":"765ec11e9a5ff2a94b98a105cafbe7f7","sha1":"8e8d5a7b52950637f9b792e0c64f8f6c5f948d76","sha256":"69a31cc1022e0a00d0488418566729ed5c13334d9ce72bb6ef8fd24e22e46509","sha512":"345955b0fecc8f3cb1a240cf4f1d5d7ca9dc3b66bae78a389b0a2cd82489f437c4ae8b90208c28e1943a48c49b86598e3f78e1ad4d3d17830b0332e773a9954b","ssdeep":"12288:tfpZCMcpsVrCaGOeCqTJGbJ/eEbcLO0zfPp72rz3czdSBvbEMpBK/Qvo4:tfp3A/M","tlshash":"15d41a7b33c7dab4246253ca2a46b345b99d9d61bb12f0d048bdd25623e4b49c113fb3","first_seen":"2026-03-19T13:37:22.698013Z","last_seen":"2026-03-19T13:41:44.514995Z","times_seen":2,"resource_available":true,"data":null}},"time_used":569,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":569,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-02e5d0d2.2c8f3c7e.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-02e5d0d2.2c8f3c7e.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: text/css\r\ncontent-length: 818\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-332\"\r\nexpires: Fri, 20 Mar 2026 01:36:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":818,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (818), with no line terminators","md5":"40f185c025e403a26a6bbb60d471a841","sha1":"a49b1217ae42acf59c46d21316a1cb4492023b5a","sha256":"8f75f6f4ac1c7a45063339f92a711af7bb513e8328a4654ca00dcf1339804e2a","sha512":"a4d12ae9771b55516db29a48fecc4788f418fd61ba41e9027c8cf02d08e09e05db50e7b5635fd2de297becc4df5e1f55fe8f9a8860e2c23f6e9d1d55670b2a19","ssdeep":"","tlshash":"5f0166f2b30b1518a13fed1661429faaa0689a37d1cfa2e4cd62a01adcb2cc155a0248","first_seen":"2025-07-26T22:21:08.566666Z","last_seen":"2026-03-19T13:41:44.50413Z","times_seen":6,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-2d799c39.883033e7.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.457Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-2d799c39.883033e7.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: text/css\r\ncontent-length: 416\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-1a0\"\r\nexpires: Fri, 20 Mar 2026 01:36:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":416,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (416), with no line terminators","md5":"d3243193a56519c8ea70f937a71a30e4","sha1":"180fe5380eabc19bb2da3e41162cb3a40a06083e","sha256":"915c87ed221fc4003eccf108a72f8e54c49e855a14af1e323022e4b6e9121cf1","sha512":"d2cb24f9c9787cab5253169c97ab12b2698fc824f9b8f7a96bbeefa0e09b69dc2e56612e3944fd86b3ff5fffcc09acd267a2003e7fbc1722754816e0facabce7","ssdeep":"","tlshash":"74e02b31b12d590eb817e3e16581caaa74409763504a87656f713037c48619377d434c","first_seen":"2025-07-26T22:21:08.599422Z","last_seen":"2026-03-19T13:41:44.508331Z","times_seen":6,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-60278842.5460ef03.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.047Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-60278842.5460ef03.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-d73\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3443,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3443), with no line terminators","md5":"6b3a63e83af671c4754cd72a7ed02d21","sha1":"316346ade3c8a9892021b77a98086d7fd59f77b0","sha256":"ff38e3af70386c297375d4bdc22f5b6e6acda8e131bb366b24b743c4d5f4e100","sha512":"3e94c244642ae182e08f86ecb1cc92ce232cb3a15b81c25b9e8f48f25b6d1b66d3ee088cae14150e08aa4bdb8121e01b15c6bc98d7995e56c59dcf0febf9e5b9","ssdeep":"","tlshash":"3c618131b6a9d22cb237c4b863d06a5c2025b35f51194fb5ec5a3e97cdc21a327a364e","first_seen":"2026-03-19T13:37:22.701458Z","last_seen":"2026-03-19T13:37:22.701458Z","times_seen":1,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":178,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/cdn/element-ui/2.13.2/theme-chalk/index.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:52.279Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/cdn/element-ui/2.13.2/theme-chalk/index.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-38d92\"\r\nexpires: Fri, 20 Mar 2026 01:36:52 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":232850,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"64d5cedd307cc3305c86bae464e8517d","sha1":"b0faf4c7cf705e7872f5e2cad6599e4ad71f8274","sha256":"8dd08052f3d1532018bd28d4880b30809b1d2fd44eea1afc51fdecfc75da1a9f","sha512":"2eefbdbff5dc8b3cab1abb60fdf56c08db03c278a13ed9fde03d181c82561d26ccaaa4e37bad88b9bef5813f981d2a4de6bb28b4883b3912d821c308f825d026","ssdeep":"1536:c28Y7SrW3YeWXA1u9w4HCe/l4nEg5fNMEV3qPe8OwZkW1YO8eQpN4G5ffwgIcoGc:lT93ddf6Gws1J8","tlshash":"683496219b07216b612bde6ca6c0ba895f18c323d4725bbbfe95340dc7d34891267e4f","first_seen":"2023-08-09T00:42:41Z","last_seen":"2026-03-19T13:41:44.510615Z","times_seen":37,"resource_available":false,"data":null}},"time_used":363,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":363,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-2e9838ef.2572b445.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:56.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-2e9838ef.2572b445.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-1630\"\r\nexpires: Fri, 20 Mar 2026 01:36:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5680,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (5680), with no line terminators","md5":"02a36d9c0e384530e1c31ff741ebe0dd","sha1":"c1afb6c93f528b8955dd200ece945019fc00e7d0","sha256":"36c82cf7593cfd5859d5cf11146288759a96cde2a8d317e7a368c3339cacd4f1","sha512":"46a749551645a012a43b6c42dfcd111f62a9196c3391473e98cfeed5e8d170ebfe0b43ac94afc0b2076251500bff7dd7dcfacc6b7cf7fc34045804e3ad562aae","ssdeep":"48:Ncy2HKpVZz6N225OtexeITO3X3j2buCR0EyhNDz74h/ybmWjj5At:Ncy2qlzqy3X3j2zRvyhZ4hk9At","tlshash":"b7c1cf2bb1be1d18bd3fc57474e15be52084b25b9113427fbdb3382688c3446363a2ba","first_seen":"2026-03-19T13:37:22.714792Z","last_seen":"2026-03-19T13:41:44.500625Z","times_seen":2,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-467d9116.8216207a.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.484Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-467d9116.8216207a.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-2563\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9571,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (9571), with no line terminators","md5":"80c0124edc0196801f509b0e9ccf0d27","sha1":"aa0e9291bf068bea847d585ce8ff1f1b69274e67","sha256":"fad903b3c6279ae46a489699650085d066d9192257f46e95cf5ab1cbdb3894a8","sha512":"57226fd748ca382fa080216fc78dd32e360edfe28da8353b3015180d45213dfb5b6ed4a06b8dc4188ef2b0b3ebb057e6fce07e5da01abadbb717964493324fff","ssdeep":"192:qOsR2IGgb1islupulsqosusXrnin4rn8nnrnXnirnenPFUwNzb69k2SDDUa3wK/w:yIPpM0BlrwpD","tlshash":"a812e9665166f95ecea3a082320e31f492b13ed4500859a3fe35d94fa39cc90571ffaa","first_seen":"2026-03-19T13:37:22.715803Z","last_seen":"2026-03-19T13:37:22.715803Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-cd506eb4.2d827de4.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.324Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-cd506eb4.2d827de4.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-eb9\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3769,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3769), with no line terminators","md5":"7f14bc2befd29cc29051a7a8a6b69719","sha1":"96ee21e7b3ed8dd92dff507744d40e3e7fa60e2d","sha256":"ab8ebf18ab878984ded8eee55eacf7c98a10bd174d9fdb8ff5b1fc3da5411f61","sha512":"2bb76abb4e714d6bc15f2ff8c51856dbdd0033ffb1ec93669973b62531d6a24c5a2366f9cf562fc5989dc54fbcfb4d95709e016a210069505e86f92b8370d10c","ssdeep":"","tlshash":"7471411ba347bd6907b7d142311b3256a0827854e01e5af6f564e5dea7489842603f3b","first_seen":"2026-03-19T13:37:22.716908Z","last_seen":"2026-03-19T13:37:22.716908Z","times_seen":1,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/cdn/element-ui/2.13.2/index.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:52.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/cdn/element-ui/2.13.2/index.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-8a9a3\"\r\nexpires: Fri, 20 Mar 2026 01:36:52 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":567715,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65113), with no line terminators","md5":"321c03f34e4abe3a0470a10a3d8bd196","sha1":"89798e59f47fe93b4fc881e2f2e3040ecf7a7496","sha256":"e1cd3be235811a5c986f935c6e3fefef0a22fab0516c73dc593c48d90504bd11","sha512":"bae26199204e08b34622e9225babae57cde00d480151dba4a80dbb9a1419cadf5523e262f374337d6e2aa966db1f6c4b9a28af41f79751682ed129b65745e4e5","ssdeep":"6144:v5lrnBuxN5U5Y+7EBPfPUMfNa6eiHzsvjV2InspHtsdt588ispZhu2:hxBuxN5U5Y+7EBPUMf2iD6IHSdU2","tlshash":"87c41b8d72c1b5314ba36071503f250bb337299ca80980ecb679d4ea6dbd909526ffbd","first_seen":"2023-03-13T02:30:00Z","last_seen":"2026-05-17T18:05:14.152241Z","times_seen":51,"resource_available":true,"data":null}},"time_used":705,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":705,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-4fbd05f8.9f4142b9.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:56.360Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-4fbd05f8.9f4142b9.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:56 GMT\r\ncontent-type: text/css\r\ncontent-length: 820\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-334\"\r\nexpires: Fri, 20 Mar 2026 01:36:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":820,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (820), with no line terminators","md5":"1dbd8ee3d790ca12e03da3af86225e2d","sha1":"da94ee4508201000efcf9a6795ce736fc59f2a27","sha256":"30933db721b538163e761b99926797b64e6a715c824493b197abc5d2bf2b71a2","sha512":"0720668766cf7f9d0a2efb503700da0e34b98a04ea4fe60d332f40cc9de5f4cae611c6a5ebce23e961c7b87fa315df0c5be8fe664c1216b9943b44089deccfe4","ssdeep":"","tlshash":"d701f9f2f20b1558a13fcc367142abdaa174db37959fa5f5cd62a11accf3c4526b0188","first_seen":"2026-03-19T13:37:22.719174Z","last_seen":"2026-03-19T13:41:44.498758Z","times_seen":2,"resource_available":false,"data":null}},"time_used":662,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":656,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-2d0dd46a.2030732a.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-2d0dd46a.2030732a.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 418\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-1a2\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":418,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (418), with no line terminators","md5":"2e015cab89a54be621d46c504f0c1141","sha1":"aabfd3aa4b1e9f816310f39089d557c48a6f8587","sha256":"2e9d266589a58af9918c3064f3d755c42c5f64c73845dc80333f581f505058fd","sha512":"6f1e4fa1580cbeeba330cf7c5528dcf36e2656cac3bcd2a3cdeda5e248087c8c134a0eab9cbd68110dc8e125648dc6378a6383ce98a43b20f5f11538f9e28e35","ssdeep":"","tlshash":"b1e0a39e309bb4480abd805521aa7354b317556d7f1659d1d3f0e5c93130489501175e","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.720099Z","times_seen":11,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-b438fd4e.4c38efb0.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.133Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-b438fd4e.4c38efb0.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-bf27\"\r\nexpires: Fri, 20 Mar 2026 01:36:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48935,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (29247)","md5":"314c5f2ed4a7210153d85b95203e6b94","sha1":"4ea8c3f2416c78145064a838a0797bb84f4aed11","sha256":"8031fe1f466a15f4d3a151f7d667d7f49cd9e42840115f227145b8801f9cf47b","sha512":"680739f3e3e360ffa9382d975bbd779b45ee65b0bf0cbae7d3de2f8d11b9fd2be66c4596ebd58a5d657d139e28b5e8f456a310fc642af3c854506cdb8fe6cb22","ssdeep":"768:4RDYnUYB+kbil6onNuodTvjTyYbabJYcbB5DxQ:4hYUwVonNusjPbabL95+","tlshash":"2b23d799f754a0b82b4b41e4953f1099762fa8ed79c289b4b1d8ccf0a4b3ddd8602f5c","first_seen":"2023-03-13T02:30:00Z","last_seen":"2026-03-19T13:41:44.492784Z","times_seen":19,"resource_available":true,"data":null}},"time_used":179,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-4d03f4d5.5eb92faa.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:56.355Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-4d03f4d5.5eb92faa.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-683\"\r\nexpires: Fri, 20 Mar 2026 01:36:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1667,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1667), with no line terminators","md5":"03a791924baee84fcc05ed7d32b5e2c6","sha1":"b7e295130766bd7969e4edd3ccf14c8567c3c363","sha256":"41092a5a50ef2288cf0d2e041bd131155fa93f23fcba55efe0ab40d0bb9fe4d4","sha512":"1c2b2a4e56bf3ef3ab73574e4affb3b7806b7b482817abe8f8b401b2195f859b9fcd185d66caa9d01c7a352156409a558b78715c7b1a0f403e71053a9d3e8c07","ssdeep":"","tlshash":"a1316c21b1e9392d6327fd6850b086b96034d20aca6f63ba1e661311cdf71835f756dc","first_seen":"2026-03-19T13:37:22.722844Z","last_seen":"2026-03-19T13:41:44.490157Z","times_seen":2,"resource_available":false,"data":null}},"time_used":660,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":660,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-a11d02fa.142b0531.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.479Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-a11d02fa.142b0531.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 403\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-193\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":403,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (403), with no line terminators","md5":"4d6565853198f2b1921e8f9589241758","sha1":"b21f587cc3f1d1ad32993d210816efe11dad46c4","sha256":"0e02c855420a4e5244f1c006d850417daa3f1be2836550d1775bfb08f78e5b6c","sha512":"cd00e4a3fad77efac8565748b6a4459c6091f76cb06980715dda7235fdcc3dfe11e5906c7cc0aead082b3fcabdd27f7ef16392e768463723ab45a8edd399f0c9","ssdeep":"","tlshash":"6ee02b51775ae4001422c905e481dfca054541038312676af56538eccddbca63b33285","first_seen":"2025-07-26T22:21:08.604578Z","last_seen":"2026-03-19T13:37:22.723879Z","times_seen":5,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-44270b27.4154c92e.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.483Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-44270b27.4154c92e.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-3836\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14390,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (14390), with no line terminators","md5":"b9cc857b99c390101a2b24b0d56c0785","sha1":"6e931407a23baab19e1487fc6125dd7e248e014d","sha256":"5907a2a8f287c3f2d557bd17c7a859f75f6a86cc7a45b9d466ac68cff079e96c","sha512":"08c410a1dde3c1a734844de4eaebbcb15e0efc5f0928303dd04800983a2a72f4120745db6e6669f72b6864e1f214019158da9a228d11a665adae0e7599ddaa04","ssdeep":"192:ZweKV+LmX3IXhh+VMXd1+5+XPj+z6joP5BpJP05IevnU31p5:ZweKkyI+SW0C0WPeSz","tlshash":"1352310ab49be5bdddab9026318c2538f12a1fe4d024a187f73cdca452c4c28675e7ad","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.725032Z","times_seen":11,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/product/indexList","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.245Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"POST /exchange/app/product/indexList HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nticket: \r\nContent-Length: 30\r\nOrigin: https://oxpquant.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":30,"data":"{\"pageIndex\":1,\"pageSize\":500}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/json;charset=UTF-8\r\naccess-control-allow-origin: https://oxpquant.com\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3475,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"e3cb417fa4393d4062a7d42314ddc1f2","sha1":"65cdde5370f65a0985dbb1b6c85ad0201c66b400","sha256":"38d0cd4feaeac82f08d66e1687891d7ffbced0036570b2bd7b79390c9d5ea7b7","sha512":"bedde795834412d58559378b709aaa8c8828989ae20f1c67c73e451a3ebecd5d7cca25a81f88b96042bbdf55e7dd3f5c2ace1a0bd2898d19628ec06110c9819d","ssdeep":"","tlshash":"db6146cf8f30899d237413a249e6328db7ca3ad8cfef56106fc55ebe41282157615a1a","first_seen":"2026-03-19T13:37:22.726133Z","last_seen":"2026-03-19T13:37:22.726133Z","times_seen":1,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-f46e8968.784c3c38.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-f46e8968.784c3c38.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-21134\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":135476,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (23169), with NEL line terminators","md5":"9d8ad1efc6004d6bef99ea3d9c6dfbc7","sha1":"39d7885e168fe802fcc0c78339df142dd23da634","sha256":"17fa089cefd7f5bc244c46982902578ef9b8eaacef9ccab57248258d6e4ac9ac","sha512":"9b4b0e0258b6e31304a77f43a30cb42a9ff2f0a2eb7a84e7a17a7af220e278adc9346b2002bf38efec116e55527618ab9b47e97178b1e64a32c160cf26ec5435","ssdeep":"6144:ukqPKp/6ux39W22mJ713CFqOmmRkP39t8dTvsvjB/iMS:LrbESATu6","tlshash":"f02430d1c1a7c3b646e439f42c29a38697f949db438e635f1b0efc8c35dd87820a9895","first_seen":"2026-03-19T13:37:22.727029Z","last_seen":"2026-03-19T13:37:22.727029Z","times_seen":1,"resource_available":false,"data":null}},"time_used":182,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":182,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/account/getUserInfo","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:53.912Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /exchange/app/account/getUserInfo HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nticket: \r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 500 Internal Server Error\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: application/json;charset=UTF-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"500","status_text":"Internal Server Error","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":71,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"64a4329be6bfef780d2e15c60b3816cc","sha1":"e08dc79d035017fe868f1a744cb3c48c5f502fd4","sha256":"f992fb6f4e13c400e704e91566d714c7fb27dde94da003f30d1df2b0bd52902c","sha512":"a544c2f6ba65b0d66934fbe3e49ecf5a51e7d466800812979af7de786027f794d9289d488821987ea6ea310f7848d9db868e324bc7f0836de93c0f94e92c32a0","ssdeep":"","tlshash":"92a0220eae0c8ca02b032ee8308820a0022c00c380f0cf0cacfa830c2f2082880a3032","first_seen":"2023-09-17T16:40:37Z","last_seen":"2026-03-19T13:41:44.484216Z","times_seen":30,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":178,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-4d6e6b16.509b3244.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:56.358Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-4d6e6b16.509b3244.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:56 GMT\r\ncontent-type: text/css\r\ncontent-length: 865\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-361\"\r\nexpires: Fri, 20 Mar 2026 01:36:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":865,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (865), with no line terminators","md5":"22d183202288e8cae26ea56f81198132","sha1":"efb2d3b61d666f064469a1184d3c807ed135238c","sha256":"dff58260970fe985c5d31f47d3cfe1d45c08e8a5f8a7d97b5296aded5c6a912e","sha512":"4af120ae66dd848c05512e341ac3592569f773cfd141f12f40d2ecc413b4baad393e4ff6e692aca0df883d621d340c4a480c1e079346d6960e89b5cbfb6a0660","ssdeep":"","tlshash":"9c11c223b2588038b23ec5b162d103de7599670bb713e6fcdd9e742689371122fa19cd","first_seen":"2026-03-19T13:37:22.732425Z","last_seen":"2026-03-19T13:41:44.499393Z","times_seen":2,"resource_available":false,"data":null}},"time_used":662,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":657,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-ec41851c.7682d2f0.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.680Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-ec41851c.7682d2f0.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 844\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-34c\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":844,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (844), with no line terminators","md5":"7298e5525c943a0e3d0deb34b2bf55e7","sha1":"1eb0743e0fd7efc124843c893444d192ce5f0d3c","sha256":"7637dd41d2be618711ffae081b46caf2104aa900cb40d9c9b0786da884b10918","sha512":"bd95328c4da3a299180e2199277e96c1a6bf9d459e141ffe114875dca7fb111d4ee4f29eebc7f4de000a7b0466f284bc8cdac1f91f94eeffdb9e53c6e3be5a1b","ssdeep":"","tlshash":"07012533ed1db42eecabea37b28279dc3319612bd74b8159c840b755e9c29636168284","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.733881Z","times_seen":7,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-19dd08a4.3dbb13a3.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.876Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-19dd08a4.3dbb13a3.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-336c\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13164,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (13144), with no line terminators","md5":"e008345fb436d9a9163725f6972bac13","sha1":"aef9f6a82c295ee2e0eda5fd131132fc37d50f53","sha256":"e1550aa73dd969c132fb47ae9ce4e959623ac1e81dbbc89987c4de5d310afb42","sha512":"de105dc76506dbb305166765af938a2a59dc66154d3be07471d7035705ceae41dc859dc8fe5f31867fd1f3f48b06bc3c7c5b050c16150fcd10cd8fffdd603ff6","ssdeep":"192:DVSYsUMie9QfEw9k/w3PKHIFupnp0XkwROT/S5kRueaeR/:DtojwKIf8OKnplOiSIXas/","tlshash":"10422206b097f2aed87f4142210d7225a1b13fd44059d163e7b8d5aaabe8c20a71ffdd","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.735887Z","times_seen":11,"resource_available":false,"data":null}},"time_used":193,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":193,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-76ca92d8.00442ae7.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.854Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-76ca92d8.00442ae7.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-667\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1639,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1639), with no line terminators","md5":"f2d01815b1f0ab8bca47b9d8049ffa8c","sha1":"5b579860d6b36051607bd97845e42d244dbf4aa3","sha256":"2ed4614b1542d0ebf1bb9a4c4e9357b9514bfcb0d0b704f3f3b70d241b442ab5","sha512":"b30d3a4a5cae6a1db3c5d15765dce794858fa3a895f771422101570ec5305e3155b08781cd78ac49bf15034d547d587f720e24a4aa0d0018fd4ed7394ba3bb13","ssdeep":"","tlshash":"6631be06b043f6eded7e9141210e1130d1723fd840159192fb79de51abd4db8ab1fb68","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.736647Z","times_seen":11,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-30a9a8ff.cc2044c3.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:53.893Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-30a9a8ff.cc2044c3.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:53 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-1967\"\r\nexpires: Fri, 20 Mar 2026 01:36:53 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6503,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (6503), with no line terminators","md5":"caf0346659e41dc8c0a6aacee9ac5882","sha1":"eb9ec02e6b2bb3db13ed14f18a1e7f1d98efc9d2","sha256":"cca3f2f2e457e7a02fcc3e95527bfbc5751f2bb3e11a21c4d3a7052b98939157","sha512":"0c9423f2cf0548e53defa3811b021c450629faba4f42db60b15686330749ec6aec2129bf66f0dd53d482002d4ae2955375c096ea9bf877d8b7fc28eb38a49b89","ssdeep":"96:U0966NSPSrqywxjch4uVYeGBMeG2XeGC0+eGBeGDeG/LFiT0smM9kP8:tHAcZaLO+pR6LI0sL","tlshash":"e5d11211b08a12e9d13ff4a579c21dbf306ff76f925703b14a172112cae78476634a4b","first_seen":"2025-08-06T15:14:05.98679Z","last_seen":"2026-03-19T13:41:44.488582Z","times_seen":12,"resource_available":false,"data":null}},"time_used":184,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-1ab2e2c6.c1d97ca1.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.015Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-1ab2e2c6.c1d97ca1.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-12f9\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4857,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4857), with no line terminators","md5":"03bef38bd62c1a0aa7214c5829026752","sha1":"4b6cec8b1a4281eed54c0b4a40631d9979e780d3","sha256":"253e7a903b003efcd7587701c21270a3ef990fee5b9bf4c3896eb4349f543ca7","sha512":"d3cf8a66dc37f1b65af7a96941c775b0bde1b9cb451e4dd99f7596ce6ad1035f5b2e02ead21b988d0004d8da08c71dc35b4d004c748980dd6d53a894116158d3","ssdeep":"96:Je2DSp+U67Echh1w03AzyL1i6TP3ZBsETcRZGju:JeoSH67EeO03hL1i6TgocWu","tlshash":"59a13014a297f5ad983bd181214d7a30a0723fe58029c993f638c999b78cca4671fb3d","first_seen":"2026-03-19T13:37:22.74008Z","last_seen":"2026-03-19T13:37:22.74008Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-678c5037.459691e0.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.671Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-678c5037.459691e0.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-3774\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14196,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (14196), with no line terminators","md5":"516b41b1320b3a1ee7d733fd8f6b86b8","sha1":"4b98c9b2894a9dc053810a2f3950134fd69bac37","sha256":"1e0b5f0f91f86fda8c2925555d38c51f26abc1bab5da28e336327dba254fce56","sha512":"ca25e098aea7e3c45f1fcfc6fca4c89557bfed6c8fea7b40cec842b93aed40d2bd772b3654e57aad12d3d76b37cfbf94d5144cd62d358c8b08a4de3d6ae85b9e","ssdeep":"192:GydQcCi5pkiqpz1lSqQGzWLuWKqFfVuWK7lGBikuNUt2bNR82L1H2oQsZjSYrTg1:RRa4N2bNR8unZjpTBt1YE9NrKzJ","tlshash":"f2528606e396fa5c46b39052311a718ab1e13840a09f52f7e735f9feb79c9401207b7e","first_seen":"2026-03-19T13:37:22.741151Z","last_seen":"2026-03-19T13:37:22.741151Z","times_seen":1,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/announce/newOne","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.306Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /exchange/app/announce/newOne HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nticket: \r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: application/json;charset=UTF-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":205,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"2db85e62836d19e78f9f5578b21fefe8","sha1":"0f6c2d6920ecafe48a3c6913e8df6188aba21226","sha256":"1ea99201965d0627d920e44cc03f9e2e33e83441d4240fc9c10336bd2c88edad","sha512":"85e83e59d3f1fb5a638b4a4e54d9a66f77086121a6ea87325a0064c260ad956d501848ca95539c3a388c674971941bbcaddcc0286405d4e15a0dfdc3a91d633d","ssdeep":"","tlshash":"20d0235bf4490b6443416051745e315d52df7351d0c0ad557b45e5188795449c447c37","first_seen":"2026-03-19T13:37:22.744537Z","last_seen":"2026-03-19T13:41:44.485269Z","times_seen":2,"resource_available":false,"data":null}},"time_used":203,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":203,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-678c5037.79fdede2.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.048Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-678c5037.79fdede2.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 315\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-13b\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":315,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (315), with no line terminators","md5":"5a5be566ad60eb22a9c9336787a85356","sha1":"8b7a5febb2ca6d7a76656242bacf90d5eaf33f40","sha256":"330cf09c7e84ed4433aef06424b67d123e63766ca721bcc5f0d30322913e86ba","sha512":"3a1ca7992b50cd9a0a45dbfaf3c4a1d3bb01cd2548962dc312654c72ba8cfe5e86ffb98b64ae8c65d8671c5272b132e4435ff707ed57fc93b665e370a07146a3","ssdeep":"","tlshash":"03e02620ba083456693fc9097a9500cc262a33101131692798627121ea92892a2abb05","first_seen":"2026-03-19T13:37:22.745557Z","last_seen":"2026-03-19T13:37:22.745557Z","times_seen":1,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":178,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-cd506eb4.68bdf8b6.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.677Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-cd506eb4.68bdf8b6.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 320\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-140\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":320,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (320), with no line terminators","md5":"86900288dd5358f86ea897459a752c05","sha1":"98d77333917db8d5117d39f0b2238a6f1584d200","sha256":"5b73953a52599ffbb3c3fb92f865924f5da6d85b46b9063a73dd359bac5a3ca8","sha512":"e99780d9198d98aee4d3abd08be375ebec82406ee04ae9468157a78306442847f3a73b6b641dc664b5d4c83110c907329ea51b2cecbdd2dbbcc33a7c02198bde","ssdeep":"","tlshash":"bfe07d21ff3820d665bfcf40f2a20adc366533125512f973d8a17220af828c220a5b01","first_seen":"2026-03-19T13:37:22.746515Z","last_seen":"2026-03-19T13:37:22.746515Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-f46e8968.8c151805.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.833Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-f46e8968.8c151805.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 820\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-334\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":820,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (820), with no line terminators","md5":"8e8bd371c142f7221361386656f35a66","sha1":"da96f42bf177b9e4997d819142444a95eec75d4c","sha256":"5e54d3fca54d9287f8f8720ece4aff5849ba6c7860dce603fc583f8816cce122","sha512":"8b8486c9a3e5d8880c3ca7474dc34269da7a3e89234a2ae518aa5e7bc639e82065155c22b7ec20005c9bb5fab2ace5dc348522682594a54e46b62ecdb99da755","ssdeep":"","tlshash":"a00189f2b74f1908a17fcc266142abdfa074ea37a08f65e4cd62e41eccf6c8115a024c","first_seen":"2025-07-26T22:21:08.57364Z","last_seen":"2026-03-19T13:37:22.747361Z","times_seen":5,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-336cf604.1c2a1184.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.283Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-336cf604.1c2a1184.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-2243\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8771,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (8771), with no line terminators","md5":"c3329e903771681f31e2883b6c9abebf","sha1":"307f76204fc3ba51656ce4a0818db431c4825559","sha256":"60cffd27039b2d4c0510a41f4e3dfec8a4d69c5a91ec9791422d5c83695c9391","sha512":"0b087fad425a445de49da0518baa899db37e1c7016273dd42dc83e13813952dbedee28ded9cc1b052707428e318d01e271def8650153be442c25aea70ec6335c","ssdeep":"192:4Rr/NCmACMCuC6vCQCCVC3xEgLsEbhX+sOytmz3BXsDBi9v9BiQ0i:4F/NCmACMCuC6vCQCCVC3ptJl9tkzFBh","tlshash":"7202090868dbf8ed4cae5053720a5e71c1691fea5060b093e738c9646e94a31bf1e7cd","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.750429Z","times_seen":7,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/cdn/vue/2.6.10/vue.min.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:52.288Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/cdn/vue/2.6.10/vue.min.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-16df0\"\r\nexpires: Fri, 20 Mar 2026 01:36:52 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":93680,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65444), with CRLF line terminators","md5":"f121238864e2a9ff7e97bf60b159feb0","sha1":"a624ad4e931043ac63ae5c2d8820004163ee7914","sha256":"309fbabff84fc5d37b4526113ee36e71aca5b4d656a5faa9b8dae23dec63e526","sha512":"3b21fbdbf22e0b5d08c95badae0bd962d9d56b05c5b31afd00996bf9f3985816c28a8f2aeb86742e76c7cffa80fbe437e912f88643798aaa3c0f106d6394fca0","ssdeep":"1536:KUXY7qLtpHt2Pqe1mZ8I6H82RaLiMBlo2VV2B/S/g:xYeJpN2yefjMBlPV00/g","tlshash":"3e9308dc7299b07157eb31f1107f140bf2365a19ac0ec194b222e4e67cb984d92abe7d","first_seen":"2023-03-07T14:22:57Z","last_seen":"2026-06-08T12:50:48.644352Z","times_seen":372,"resource_available":true,"data":null}},"time_used":708,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":708,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-5fedd1f2.693f5d9a.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.045Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-5fedd1f2.693f5d9a.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 426\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-1aa\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":426,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (426), with no line terminators","md5":"0adad8ef8103ff262adbfda78883f843","sha1":"5a2f86c4924847c9d0e87ecc632ed6b102bd1e92","sha256":"183b066c521f761cb41604db44577fc3b11b2b580c0c522d34cc564122c7f73b","sha512":"16a14ca057a73b836010cc2ac2bcbb2187439c8007e3dc142807951dbe98724261d1f78088773b9334f34532e9c397e5efa7f6491877485b5d028b31c48b811b","ssdeep":"","tlshash":"a4e0a035612ee029b077d5eaf5a15c0b218c530ba6064a70ea773d6ae84b8633951f98","first_seen":"2026-03-19T13:37:22.755329Z","last_seen":"2026-03-19T13:37:22.755329Z","times_seen":1,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-2d22d284.87da3d62.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.198Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-2d22d284.87da3d62.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-b05\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2821,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2821), with no line terminators","md5":"e424fd1567e2c6e8101c9704f760792f","sha1":"c0f13374b591fa053053dc85beb436e3ac12701c","sha256":"ea432fe8b56e4146aebd6ee2bb8a853a3077ba6a855259f2f198187769ad03ca","sha512":"d1b24cc3f9597d61423a36d5b7940a9a549739d73d522e7923bc1de99224e86ad5a6d8c107184b1184ec9c9beb212f3899ebffefb095a92afe14bb114d4c349e","ssdeep":"","tlshash":"e1514849525e7d8d0336a29131973141a051312b100d16b6f6b4de9fbebcd553a13bbb","first_seen":"2025-07-26T22:21:08.545551Z","last_seen":"2026-03-19T13:37:22.756491Z","times_seen":5,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-60278842.11ce0592.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.668Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-60278842.11ce0592.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-2331\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9009,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (8999), with no line terminators","md5":"9ddf7817e5349b66b59bcf8a6f743f4d","sha1":"5d68cd73c3f45e9f33a65efd273b29c826ce29ef","sha256":"be312eba05286f8b6499ca5cdc2ab3f86be250d2c3800f0bc99d53aa017bdb65","sha512":"cd73048eb8a072a773b79781381e694e38b3e394a237bee8e45b62bd739b62f8453e78fcb183af8a2f71f7325b216d09fbf6140155decaa0f478019f3f85d6ca","ssdeep":"192:+OsR2vkxT31RqsRrIku5HQEy/wtrn1EGfE1F1fD8VvieE:uu8zlrDua/EnQfD8BvE","tlshash":"9e02930a719bf65d89779042310e7220a0b13ec15009d5a3fa78dfeae798d50a71ffad","first_seen":"2026-03-19T13:37:22.758492Z","last_seen":"2026-03-19T13:37:22.758492Z","times_seen":1,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/systemConfig/getByKey?key=custom_whatsapp","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.299Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /exchange/app/systemConfig/getByKey?key=custom_whatsapp HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nticket: \r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: application/json;charset=UTF-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":58,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"330c7b7374669e4a219bff6cfede6fe2","sha1":"76410d09cbb5d077e39605770e9bbb71a1c4c697","sha256":"b16bad3341945868f240ab32ef0375548051abb175dd52f44c9ce9937d5eadde","sha512":"34ba773010ed476fae90e74eb886c0b5cf6055aff1b81a1f31155be4ab63774ecfd3e2b2edf82f07552806002ace90253ecee74e6b6ffaa7fbfa82ad9f4454a3","ssdeep":"","tlshash":"cfa0029225191ea54b436451351d250061d8354691e49a4ac85c91589e8981aa043960","first_seen":"2023-10-29T04:48:57Z","last_seen":"2026-03-19T13:41:44.484744Z","times_seen":23,"resource_available":false,"data":null}},"time_used":206,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":206,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-733f4d6e.cb8cf21e.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.051Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-733f4d6e.cb8cf21e.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 476\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-1dc\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":476,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (476), with no line terminators","md5":"73e270090957367550b6e87e6be4893e","sha1":"aab58419ac18412fd8abe10035abe0e4a7c62e40","sha256":"055210b6fc69b67b2a33615aa337c729ce7796b2156f6c1fdee9f6b12e5a9177","sha512":"05a6021dc007e15489be4eaa2ee21529c362964e454d14512f617dc88742708088567eccc329bc0036033df7fcf0d86bf5a0f57ec91400ff25a48426a27eb057","ssdeep":"","tlshash":"f3f05cb07925101df57b9d55736138867080d60bc757a3f2ed82362adac75c72d5238c","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.760258Z","times_seen":11,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-2d799c39.a590dc05.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.199Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-2d799c39.a590dc05.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-5e6\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1510,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1510), with no line terminators","md5":"d8f2951ff3acec3eb1625ffa381ed16b","sha1":"fa3dff2c0a63389628f8295202a09358d565308d","sha256":"2a30cd068f7ef0e5ab0e4239c1646f7a5aa6e3bac04a581a69fb289f4176c6c7","sha512":"3b3e172bd076d457fd656ffdf72a3a0ab827124da74d02a0a125b469699c6c61a02342abd3354ed7236441fa631f67fe74968c882babfc56393c7212f426ab61","ssdeep":"","tlshash":"d0318d0ab4a3e59d9c6ed063200daa35d1b21fec4424a093e378cd507698c747b2fb98","first_seen":"2025-07-26T22:21:08.62732Z","last_seen":"2026-03-19T13:37:22.761386Z","times_seen":5,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-af767178.c4f72d62.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.235Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-af767178.c4f72d62.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-5b4\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1460,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1460), with no line terminators","md5":"33a76136ef4672fac3323eaa823fcecd","sha1":"cc090564f1342b953fbe9c87c2f07f54f32fe418","sha256":"7139b2d50f8414f4685f06699287626191f1bcede06a8be017c436dae0b9bfa8","sha512":"93b3fca8c2c259a0f345363cb6cde4eb51d752ea20d59a572f9c101db543cf5d028af78d20f70c7b32e3fc13defef945acd988002d16b5f5c257b576cdd7375e","ssdeep":"","tlshash":"d1318816e05bb6feec6e4482210dd674d0b12fa84425e497b368c9b4e7e4cb0570fb89","first_seen":"2025-07-26T22:21:08.648387Z","last_seen":"2026-03-19T13:37:22.762568Z","times_seen":5,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/favicon.ico","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/favicon.ico HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: text/html\r\ncontent-length: 628\r\nlast-modified: Mon, 14 Jul 2025 04:09:56 GMT\r\netag: \"68748314-274\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":628,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"59098817936ee533ac8ce4ec5ece5416","sha1":"24a07325ac33b9907683579ad04b5d8cd21c8e62","sha256":"459251133a573d9f2c3b3d7d27f94b2c78ee36ba2e8220cd9f43f35c07fbeb23","sha512":"11f12cb2dadd5efe3134bdf9c9fa775173f26294d826e3e36c7cfd722fd151dc6da91fb211b9449cf0e2530f28aa161bd43454462da652c49dbf7f2887ea4868","ssdeep":"","tlshash":"44f042ce17e2510511e168206ae7b205655701efcc5ae8017a8c5640bf5175fd5a7fec","first_seen":"2025-07-26T22:21:08.524075Z","last_seen":"2026-03-19T13:41:44.500028Z","times_seen":24,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-b438fd4e.12a65c82.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.132Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-b438fd4e.12a65c82.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: text/css\r\ncontent-length: 154\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-9a\"\r\nexpires: Fri, 20 Mar 2026 01:36:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":154,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with no line terminators","md5":"e08e2582804a9c16f9974e33c75e37dd","sha1":"d54423ed1b6e2cce4b58c75a1e49f56482f27bbe","sha256":"2f6c5acd4e7b1c7ae98f4ff38f9ffc259da68f4f88bf1117a6e01c8b0fb3b604","sha512":"0ac3581c37c75ad17dcc7ce2506ba4aa88c874bb3c9901ee4547d78e77c38c1ce6765213c70b77d54f4e0a92bbeb09ee29344865f14dd0de1ddd083ccf7ac51d","ssdeep":"","tlshash":"dbc0801220e4a5719076cd25194126de1e71f3e115811689850255100d3e4486b2455a","first_seen":"2023-09-17T16:40:37Z","last_seen":"2026-03-19T13:41:44.489525Z","times_seen":24,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-336cf604.452243e2.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:56.089Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-336cf604.452243e2.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-9b4\"\r\nexpires: Fri, 20 Mar 2026 01:36:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2484,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2484), with no line terminators","md5":"536224f3a77616022ea1536e5225735e","sha1":"87e6cf08872c1885aa37db354cae74bdbd8b2313","sha256":"855821349719d575ce5632866f76fb437f78d9070e96f50b124c3d389cba6552","sha512":"1108a2cd3112224a419788e410ec26e8c68987904e2ea37cf5933c4e8a9d954744ab8820597e3b0d0ce5abc54e06e9eb06d64a281d1a934ea2c1a3539c9752ca","ssdeep":"","tlshash":"df517cf1e26a182cbe7ae16077c019eb380e726f6053c54dcc3a1615c86684d3af598b","first_seen":"2023-09-17T16:40:37Z","last_seen":"2026-03-19T13:41:44.507715Z","times_seen":8,"resource_available":false,"data":null}},"time_used":176,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-2d0b9434.af6cbfa5.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.083Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-2d0b9434.af6cbfa5.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-d4c\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3404,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3404), with no line terminators","md5":"2fa641dde4dd54ebe3c7f4afea29c4fc","sha1":"e2f2e8cc1c2031b82e80b54047ec89ffc65633ad","sha256":"01c85caca162ed57b13d7488a022ce0db7ec3990306389a61099f0ed978f9c48","sha512":"440955cdf9a189e3b836daa53ed6f940f31bc8d41bc65e221c10520aa9a5ebe6d9949ab045fa6905dfbd36b9fc2d2d5436371968612bd11709f5ad3522b3b793","ssdeep":"","tlshash":"7361524a525daccd023ae3a631d73051b156602b20091b76b3f9cabebf799811d07be7","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.769573Z","times_seen":11,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-b438fd4e.4c38efb0.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.322Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-b438fd4e.4c38efb0.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-bf27\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48935,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (29247)","md5":"314c5f2ed4a7210153d85b95203e6b94","sha1":"4ea8c3f2416c78145064a838a0797bb84f4aed11","sha256":"8031fe1f466a15f4d3a151f7d667d7f49cd9e42840115f227145b8801f9cf47b","sha512":"680739f3e3e360ffa9382d975bbd779b45ee65b0bf0cbae7d3de2f8d11b9fd2be66c4596ebd58a5d657d139e28b5e8f456a310fc642af3c854506cdb8fe6cb22","ssdeep":"768:4RDYnUYB+kbil6onNuodTvjTyYbabJYcbB5DxQ:4hYUwVonNusjPbabL95+","tlshash":"2b23d799f754a0b82b4b41e4953f1099762fa8ed79c289b4b1d8ccf0a4b3ddd8602f5c","first_seen":"2023-03-13T02:30:00Z","last_seen":"2026-03-19T13:41:44.492784Z","times_seen":19,"resource_available":true,"data":null}},"time_used":181,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/cdn/animate/3.5.2/animate.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:52.281Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/cdn/animate/3.5.2/animate.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-61a\"\r\nexpires: Fri, 20 Mar 2026 01:36:52 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1562,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"1c08c160e0981dcacbd6d8a377188a7d","sha1":"331a3ca40f3118af780cb7ceb56c6a7e257c1ccd","sha256":"c05f00538efe63c086429386ded42affaf244aaf40900c9e632faa64da01d26b","sha512":"3fe64abc1baaeaecc07687d0fc74c7e1037a553c851cd5b66f3e8f5f6d300530199f2006698e260e5e6eaa52f035db3c20a792bcca67daa6fe4026faebb2d1ac","ssdeep":"","tlshash":"1a31926e7652159813524e5183fe4ea89d3dba7354314cfdb380084f8f66b5c638a68b","first_seen":"2023-08-09T00:42:41Z","last_seen":"2026-03-19T13:41:44.486419Z","times_seen":20,"resource_available":false,"data":null}},"time_used":365,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":365,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/product/indexList","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.289Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"POST /exchange/app/product/indexList HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nticket: \r\nContent-Length: 30\r\nOrigin: https://oxpquant.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":30,"data":"{\"pageIndex\":1,\"pageSize\":200}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: application/json;charset=UTF-8\r\naccess-control-allow-origin: https://oxpquant.com\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3470,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"f3626f37bfbe546ef66aed723f50fdcf","sha1":"d668752fb3ba5791f1ddbe870046814e6e3fdbcb","sha256":"14ffa87c7fb0d313814db99c1c25c6b5cd0c9dbb284a879f1da82b66a42cec29","sha512":"a0816636c46d2d2ff329d714a110107e380765cc2c5052b96181988771162297c3e73f70991adf7865db1cc05d37c618acc7b3e7231c95f870e76dc2a2f7f41b","ssdeep":"","tlshash":"496147cf8f30899d237413a24de6328db7c93ad8cfef56106fc59ebe51282157914a19","first_seen":"2026-03-19T13:37:22.771389Z","last_seen":"2026-03-19T13:37:22.771389Z","times_seen":1,"resource_available":false,"data":null}},"time_used":190,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":190,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-4a8ab527.1270b13f.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:56.353Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-4a8ab527.1270b13f.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-1de7\"\r\nexpires: Fri, 20 Mar 2026 01:36:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7655,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (7655), with no line terminators","md5":"f4df01daa973944d138eab9827a4057c","sha1":"4bf70a1527482ac8f337f2f9505befa98454f508","sha256":"e5748074fc7f719806a3cf1756d90ec4127c386019e472dae130a01727ef7c96","sha512":"5a07040511348c7304797021dfc0bb8a0c84230ff3ffacb504258fde7a7317568e2d3e7392611701dcbcd4b87f74e7ed60a35bfdb6c6036bff25581b9214d05f","ssdeep":"192:VNSz5Bfx4esWeWqiSvyXSat27BZSgmoqlXPpIEhY+3UtE5:eb1CVb6n9++5","tlshash":"e5f12220b23f3119a567c025f4e04eef7a1fd24f961612dfea16342b99db8921e9138c","first_seen":"2026-03-19T13:37:22.772294Z","last_seen":"2026-03-19T13:41:44.496331Z","times_seen":2,"resource_available":false,"data":null}},"time_used":659,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":659,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/cdn/vue-router/3.0.1/vue-router.min.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:52.292Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/cdn/vue-router/3.0.1/vue-router.min.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-5ff0\"\r\nexpires: Fri, 20 Mar 2026 01:36:52 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":24560,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (24485), with CRLF line terminators","md5":"efaab15e02a58e04969131674b16ae94","sha1":"4c021daa835cb0aff0bc9a2ef56d4fb0c6d5d753","sha256":"4340198e80cdeef16fc5d919bd8ac000b0416c905e66cc60bc3db0dcdd387697","sha512":"81c1357b05dd1ea1a1a42e7504001a3ac64eed50bbf805ad7f8d26d09bb46cca67b88eba43da002004eee35e792ad948a72ca9959fb887db4ec320e66cc3e045","ssdeep":"384:fxwp+JvwAmXRZOYQFoB5RKbKBpZn6ySH1DhUxjImhFVP:up+JvwAGjOYQFoB5RK+nnTMa/hXP","tlshash":"77b2c69db582b03247d326a0816f150bf23b7999744e84a8f2a9f4d43cbd85e8427f7d","first_seen":"2023-03-08T16:18:48Z","last_seen":"2026-04-27T20:33:57.376122Z","times_seen":69,"resource_available":true,"data":null}},"time_used":706,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":706,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/systemConfig/getByKey?key=custom_line","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.298Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /exchange/app/systemConfig/getByKey?key=custom_line HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nticket: \r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: application/json;charset=UTF-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":58,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"330c7b7374669e4a219bff6cfede6fe2","sha1":"76410d09cbb5d077e39605770e9bbb71a1c4c697","sha256":"b16bad3341945868f240ab32ef0375548051abb175dd52f44c9ce9937d5eadde","sha512":"34ba773010ed476fae90e74eb886c0b5cf6055aff1b81a1f31155be4ab63774ecfd3e2b2edf82f07552806002ace90253ecee74e6b6ffaa7fbfa82ad9f4454a3","ssdeep":"","tlshash":"cfa0029225191ea54b436451351d250061d8354691e49a4ac85c91589e8981aa043960","first_seen":"2023-10-29T04:48:57Z","last_seen":"2026-03-19T13:41:44.484744Z","times_seen":23,"resource_available":false,"data":null}},"time_used":208,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":208,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-30a9a8ff.cc2044c3.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:56.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-30a9a8ff.cc2044c3.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-1967\"\r\nexpires: Fri, 20 Mar 2026 01:36:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6503,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (6503), with no line terminators","md5":"caf0346659e41dc8c0a6aacee9ac5882","sha1":"eb9ec02e6b2bb3db13ed14f18a1e7f1d98efc9d2","sha256":"cca3f2f2e457e7a02fcc3e95527bfbc5751f2bb3e11a21c4d3a7052b98939157","sha512":"0c9423f2cf0548e53defa3811b021c450629faba4f42db60b15686330749ec6aec2129bf66f0dd53d482002d4ae2955375c096ea9bf877d8b7fc28eb38a49b89","ssdeep":"96:U0966NSPSrqywxjch4uVYeGBMeG2XeGC0+eGBeGDeG/LFiT0smM9kP8:tHAcZaLO+pR6LI0sL","tlshash":"e5d11211b08a12e9d13ff4a579c21dbf306ff76f925703b14a172112cae78476634a4b","first_seen":"2025-08-06T15:14:05.98679Z","last_seen":"2026-03-19T13:41:44.488582Z","times_seen":12,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-b1ad560e.171dcff9.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.647Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-b1ad560e.171dcff9.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 604\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-25c\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":604,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (604), with no line terminators","md5":"059d0347deaee36d790b3eb70b96330b","sha1":"3f112f882faa0ef35c60115633abfdd9ed80d9ad","sha256":"2ebe28957662cd08bc7458fbf01c3227ef07de265aa4eba92db019fabf973176","sha512":"dcf573a27d1ee20f1618d48eefe48e53b83304d4c621de83f1b891913f340551441811357e10bc95d0ae3d92367d1126d22bcee11140e376ba7d3538cff6920c","ssdeep":"","tlshash":"75f02d326258943a6a39c561a0e5ca9b336cef8b970362fcdd19552ecc230511d93c88","first_seen":"2026-03-19T13:37:22.774319Z","last_seen":"2026-03-19T13:37:22.774319Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/product/indexList","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.162Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"POST /exchange/app/product/indexList HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nticket: \r\nContent-Length: 30\r\nOrigin: https://oxpquant.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":30,"data":"{\"pageIndex\":1,\"pageSize\":200}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/json;charset=UTF-8\r\naccess-control-allow-origin: https://oxpquant.com\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3475,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"e3cb417fa4393d4062a7d42314ddc1f2","sha1":"65cdde5370f65a0985dbb1b6c85ad0201c66b400","sha256":"38d0cd4feaeac82f08d66e1687891d7ffbced0036570b2bd7b79390c9d5ea7b7","sha512":"bedde795834412d58559378b709aaa8c8828989ae20f1c67c73e451a3ebecd5d7cca25a81f88b96042bbdf55e7dd3f5c2ace1a0bd2898d19628ec06110c9819d","ssdeep":"","tlshash":"db6146cf8f30899d237413a249e6328db7ca3ad8cfef56106fc55ebe41282157615a1a","first_seen":"2026-03-19T13:37:22.726133Z","last_seen":"2026-03-19T13:37:22.726133Z","times_seen":1,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-7aee5050.64d4ef5c.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.857Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-7aee5050.64d4ef5c.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-460\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1120,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1120), with no line terminators","md5":"5a7da65393e165aba56c1e94fd820f9c","sha1":"cd3c923b0f3d24d70bb772a7b0f05b97ac0f8bde","sha256":"e3aeb160b432b6e3afb6675320999ff09a003c506716f1fa70803bb1435fd632","sha512":"a749b3eacfb29f42ad096ee43848db8ded7a248c1c8802d023d54d7641f0f29d0526360e03ad27befb724fd2a1981bcc36488fa752f1e6aa2d9a03037e042e51","ssdeep":"","tlshash":"d6216b14e05be9ec887e4441210ef774f0a22fd96415e886e7a8c998b3b8d64260f7dd","first_seen":"2026-03-19T13:37:22.778836Z","last_seen":"2026-03-19T13:37:22.778836Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-9b0c98c8.dad1a121.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-9b0c98c8.dad1a121.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-7de7\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":32231,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32231), with no line terminators","md5":"aa237fd3807b29d4c62da6b0ad7a84ba","sha1":"b1737b747f1b1615802704507395a7deaac0c88a","sha256":"6b3ba403d61985f70d88980d6a0aee0342b354e34121d542261b047d72ff562a","sha512":"1d033425276964cdf6175a15beee8c59460cef28b324ceaa23c9a6336edd6324b97aff8b9b1b36ea6b44f9e23d918521d695599a3247df6c9a4310787535c0c9","ssdeep":"384:3J1Ll2Lf/cfHRTCyvZDsENyAo8PtK7JRnc+IsB7JsBcz14hL0L9/vqc4l4AUP0nQ:3J1x2LncJTJDs5xfRnc9sFv1W8vDd","tlshash":"d7e2f886330bfbac579f0446b80a3d40a0d138f87465e7cde276d9f52b8d5a15a0be78","first_seen":"2026-03-19T13:37:22.790564Z","last_seen":"2026-03-19T13:37:22.790564Z","times_seen":1,"resource_available":false,"data":null}},"time_used":179,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-34dfd9d4.f59d1230.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.387Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-34dfd9d4.f59d1230.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-2c70\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11376,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (11102), with no line terminators","md5":"8028069d47084a3909d7c137d35e8117","sha1":"6cb988d7e1dca81801b364318685ead6fc07aa97","sha256":"62807a48141bac687bbc1413aa8df4efd1930e4a3601c2342166213e998bcf00","sha512":"2ea2406076f1d4a3d8bbf2b8a862988566abc502c25bbe307c262ac1060517bab744cedbe70b1bfe6b2aa0a583391b0660882349052fd5703b385d3ca9e2a480","ssdeep":"192:Jli+j0aaIPJJ/YhlKKcYPWKV/ChE/Zga9gcX:Jli+j0YYLcSWKV/CQZgU","tlshash":"14320d0bd907dcac6531c3c2a88614005969cd5ae97d0c42abcd69f835cb94f561bffb","first_seen":"2025-07-26T22:21:08.632502Z","last_seen":"2026-03-19T13:37:22.793653Z","times_seen":5,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/img/imte1.c1ed4f6c.c1ed4f6c.png","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.174Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/img/imte1.c1ed4f6c.c1ed4f6c.png HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: image/png\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-2c672\"\r\nexpires: Sat, 18 Apr 2026 13:36:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":181874,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 584 x 520, 8-bit/color RGBA, non-interlaced","md5":"c1ed4f6cf8215a14c15749d77904529a","sha1":"7f513dd0f6f9029c65bf48cc517d92115538bee6","sha256":"2b4756e1d03ff4198d1644b47cd8d8a859a0e091b5e0c8da71b39a3013ad1e59","sha512":"455133ee9bf0111203375b79fef1a65fc309e98caa66b01c292dee8e7afc4f66cef948a9de63c3d190d88ec5d0dae963b78945ed61a3bc3d4a601125bb31a613","ssdeep":"3072:wtQ9vTGozSGW15k43blyF7GjqBQXT6MMexCAct7E1rgU2x38Itpf3:BvTGj5gF7KqBGT6e9FgX8Of3","tlshash":"0d0412fcf7d27ea56e7dac9e08bfe44d2a187d022c69b2e6e474e140c0186c5653724b","first_seen":"2023-09-17T16:40:37Z","last_seen":"2026-03-19T13:41:44.511739Z","times_seen":20,"resource_available":false,"data":null}},"time_used":179,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-67f00e9a.5f62d79d.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.049Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-67f00e9a.5f62d79d.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 839\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-347\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":839,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (839), with no line terminators","md5":"03f190ca141c21adc93e98c36159e81a","sha1":"22bed35b7752912910e6b8465970ac55188a1c14","sha256":"33659b64ef5708ed5d32820a1c1e57628fd2092132fb3abfc014a12192e70a82","sha512":"452d3bf002bfd91e9f614f0243307730c4e2035ffa7d1c823162f7642be281c726f988dc0136955e6998ce16ac9e8b29103fdb810578851d37ca81b9d291cfac","ssdeep":"","tlshash":"5e01af33202d2538a437c26065c2c6dd29287a37d01bd6dbf6c8b510cd8314b3a3d2cb","first_seen":"2026-03-19T13:37:22.795902Z","last_seen":"2026-03-19T13:37:22.795902Z","times_seen":1,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-0c79a969.831e6623.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.872Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-0c79a969.831e6623.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-503d\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20541,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20541), with no line terminators","md5":"73aa2c4621c88241f65ed649205addaf","sha1":"3e84d8cf722bf2b0124197237a0bda8c673110d1","sha256":"368db5f3f11bc8241550320b21597f037fe378f8b0c3c14524616e1bcfc4026d","sha512":"d8f3619e5f423d0c6db5a6a1a2b5dfc7233c28319098f3208ec93f861da3356629134409f461fc8e651118590daae403e6fb6abdde6d4016bcc57a7cd850a6b6","ssdeep":"384:k3v3YBYcLdAAdTRA7v0zwr7SHHHsglQGxHm1OPNtOVSLMyPLyUhyy2//jYPsKp:Hzwr7SPq8DOy2Uoy6m","tlshash":"ec92d7d9f35142f6529d5cc5286f201ba4b0a4662c1a41acbfb5c0e7e8b8fd1747af70","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.79732Z","times_seen":11,"resource_available":false,"data":null}},"time_used":195,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":195,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-2d216454.419e3dff.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.087Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-2d216454.419e3dff.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 440\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-1b8\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":440,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (440), with no line terminators","md5":"89f25f214ef1523fe93bafb86cae847e","sha1":"0d129919a0e7f0ad4e0fb087a0d460273ef73b85","sha256":"fda11d9b818b0cf06f1226222f4a7757a7c07749ec14e3fe9c1ca709cb8fc0f0","sha512":"54b28577c1be83d8b0a9967437c278343dc641ca35d3ec22a217e908d94facc0e5ff4d63dda3a2ffeb0c094e1a59d7a0167120c736955eb5e1366ae1f7db504e","ssdeep":"","tlshash":"4bf0dcde30abb40805b9842531af3344b243990ebf2a49e393f0a5dc223458ac01129a","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.798265Z","times_seen":7,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-7f0e2094.7d85e59a.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.020Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-7f0e2094.7d85e59a.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-55e\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1374,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1374), with no line terminators","md5":"5510aa92f670eadac9954232e2cb686e","sha1":"6fcb64efe264d7ea4b026631a97a27021f890f09","sha256":"9d94ddf7cbedacd3cde0e48bcb3af471bf4dbc12f37492f99648fffc3ea64dae","sha512":"e94a2f0350b89a28d802fe237494f966ce928a362ecf0c5896a07701c1c1dda3d0e3725a8cb1151fdbc88980848e1f354aaa0c10af02c797529dcb2bb25f6e06","ssdeep":"","tlshash":"c421ed88f483e5ed8c2f5043712f6735f0a23f9841b49480b3b4c9887368ea9971ea5d","first_seen":"2025-07-26T22:21:08.510091Z","last_seen":"2026-03-19T13:37:22.799637Z","times_seen":5,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-19T13:36:51.875Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:51 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://oxpquant.com/desktop/\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10477,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T15:34:22.145557Z","times_seen":16243359,"resource_available":true,"data":null}},"time_used":175,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-19T13:36:52.058Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/ HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: text/html\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-28ed\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vue.js:2.6.10","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Axios:1.0.0","description":"Promise based HTTP client for the browser and node.js","website":"https://github.com/axios/axios","common_platform_enumeration":"","icon":"Axios.svg","categories":["JavaScript libraries"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10477,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8359), with CRLF line terminators","md5":"37ee4d913d508b54583e15bff7cb4895","sha1":"1fdc3f2c80d8bd51d001f0e21186b8f3b90b2bd0","sha256":"d442095a68aa7c75dcae2b88349c07de418480611a817914dabd212358f553f2","sha512":"0e05a7a4d8231f5efdb613c889f20992747a3c57e19d0e79b199dbb07e339514b1a5984f1d6bd5b033016d6f0b308efbde6bfd94c5b38a80febbcda71178d062","ssdeep":"192:o27JXH63cokoU2S1xK4xgmxTSBNAgUf3HfIkrOz9E3PyouEmyouS5djiLD6ymNIx:o8j+/oR/gw55GQ","tlshash":"3022906a8c40d26f7830cd33f76ab769d58aee6908789811f49f0e5dd7a5bc043268c3","first_seen":"2026-03-19T13:37:22.801377Z","last_seen":"2026-03-19T13:41:44.490724Z","times_seen":2,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-94a8555c.57b18612.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.477Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-94a8555c.57b18612.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-c01\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3073,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3073), with no line terminators","md5":"52fa35bae00cf84ff756377c5175ba03","sha1":"b26711f2845eb439f234a85ad23d8ae50f7d759e","sha256":"c73547977f1788783c153a69b4316eaac8f428ebf783b071b370f8d3f0962d57","sha512":"b544ea2924f4052bccdc206556ea1a0b383249306a117ac11b4b7c319ee702018c3fcf8106a45f63de958168d6f0e1af938167de9c69411017aad0cb44295170","ssdeep":"","tlshash":"87518a11607d11fbd73fb4c0b554533f29a3732fe02743e6859e161acb964a6ae20e63","first_seen":"2026-03-19T13:37:22.804112Z","last_seen":"2026-03-19T13:37:22.804112Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-eec71106.e568e7f0.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.831Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-eec71106.e568e7f0.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-1313\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4883,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (4883), with no line terminators","md5":"6e4e077eeef63f1967cd1dba22df8781","sha1":"5f52c39513553b1151bc027e39f43b6aa1106bbc","sha256":"3402375a6887649fc770cd86ee7aa63a1cf05216efa5e3f5e5cbd9c2d65d4f04","sha512":"47c6af1aca8c488c2246602b5af490306f541a5fe30c0a8649027c16bd61d05e067e13ae3a1c1ddf0030665c4b518e218f96c008bf13756f31b7cc913c1ab212","ssdeep":"96:9+x+s1CmshpWptI4MoIdRXPx40qDFCxDTDBU+xyQSXGuOKavOALU:o8ACmshpWpS4MomtPx40qsxndPxyQSXr","tlshash":"82a12533b65d5089793ad6a1b8918ed97244bb1b4117d3e9dd81e02ec8e38863f693cc","first_seen":"2026-03-19T13:37:22.804898Z","last_seen":"2026-03-19T13:37:22.804898Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-30a9a8ff.8684e43e.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.281Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-30a9a8ff.8684e43e.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-3274\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12916,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (12916), with no line terminators","md5":"35231cd70c7d3fc5b4091ddf7f410bdf","sha1":"c6042ed7ab6a0057724775b71ab8a7b1a8428f80","sha256":"c75b9da7bfb5e928c3fe778a560ac83bc9b8a09e71ef02fa931caa1cd2c4f7b5","sha512":"b6580de647ccdca2ed526cc14b552f18e2106fa5f1bddd6190866aac304efc921bd155c004761ca41241bca39a3eb94e769a49e08aa1d6dc16c328f4495604f2","ssdeep":"192:mT/FcbRwLnVg2LcyQR/ZRdyko2eEzYoeoSH67EeO03tGL1i6T4o6hc5AizlVJMSY:gtCwbsyaRfU2a6o10g5nVJMSvQ","tlshash":"4a42b609f1c7f5ee88279041200f2620b0b23fe590198992f776d9d5ab98d58632ff2e","first_seen":"2025-08-06T15:14:05.966371Z","last_seen":"2026-03-19T13:41:44.49757Z","times_seen":12,"resource_available":true,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-4d03f4d5.331e6bbf.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.575Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-4d03f4d5.331e6bbf.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-6094\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24724,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (24394), with no line terminators","md5":"88766eb266a958014cf4de79c95e560d","sha1":"670f1efe3bf4755af60a59c20562f0aec6d37447","sha256":"01ab0bc9d803885aae854feb651387b2ac21be2c7df8da88553cf8d976256bb0","sha512":"de101dd3b73bf14ffc926da64a45ce4b888c0cb548802968f122c84204954485717aae9e47a70a39343f19bcd14a1961de119a1e00af20f0592dd57d997030f8","ssdeep":"384:tK3WKV/CQZgISMgDVlh4z7RKOvLzX+7H1+7G:tK3kESMgDV34zbvmEC","tlshash":"46b2630ff10adc6f9e32e296344b10106066dd54e8294d46e7bda5e936cbc4b431bfba","first_seen":"2026-03-19T13:37:22.806672Z","last_seen":"2026-03-19T13:37:22.806672Z","times_seen":1,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-94761c56.69d86b3d.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.053Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-94761c56.69d86b3d.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-2131\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8497,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (8494), with no line terminators","md5":"578a426e5a0c72b8a3e05c4918dc4df5","sha1":"9a904e50ee179a3b9636dfaf982a8f39eb13e556","sha256":"6bbb64498d776baac2d3b7bde82b54b984e1a8bfc577495cec63233ca298d5c4","sha512":"ed22db540c6ef9a3b735fadf768d496de9fed12b32e86eac1d2b0ed37adc01e8df46eb298949fd2b9c01967bc67204019952476c3724f6610883685cb3ce6857","ssdeep":"192:mnlk2vyqNkLQbDlXCYiRxaxqU+Eh5LBYjGh6v:4lk2vyqNkkbDlXCYiRxaxqfWBYjGh6v","tlshash":"78023e1569d3e6be5c5ee02310182b35e1663ffe9454a1c3e2f4ce90e698da03b1fd15","first_seen":"2026-03-19T13:37:22.811226Z","last_seen":"2026-03-19T13:37:22.811226Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-94761c56.10e351a8.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.425Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-94761c56.10e351a8.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-a4d\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2637,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2637), with no line terminators","md5":"9a298e94f78b4772a2a02ca1d8103f01","sha1":"6e7bb7af8d9b0f13be2986f4c4cd361ab71577f4","sha256":"040e4ce61f773e2210379819b1f684a98daea6f760ed690b84dbc0cd321c41f7","sha512":"0237a62a6cf163ba8d473920bde25894211b350d7bd223dd67ea8acdf64653a2add74b84cfe9e383f4bfc8e76a3cdfdb0d9666095a2f05964f5843b8a7f8f174","ssdeep":"","tlshash":"9951c122a26e761e7d57c2f09180caaf744d975b640793bccda37026c58e8133ba57c9","first_seen":"2025-07-26T22:21:08.557499Z","last_seen":"2026-03-19T13:37:22.812331Z","times_seen":5,"resource_available":false,"data":null}},"time_used":205,"timings":{"blocked":31,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-e7ecad56.c3e9c44d.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.678Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-e7ecad56.c3e9c44d.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-1978\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6520,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (6520), with no line terminators","md5":"d31aef5f9ccb70fd5e90fe4a00f90ecb","sha1":"5e39ecb646b0fcc5ca252c9421a9a4cb331f8aba","sha256":"83ab3f7ee428c8ee07477349693c6dec253c670f16945e519eda8ba4ac9c47a6","sha512":"cf0aa146e6e555a9f9fc7c3b24e876508e81271327f942b2b0fc42d07ed5bb204e140e0b6b2ad14ddd98d227110ba815aa3848b13820c41cfb8dab044019c944","ssdeep":"48:p3f/e0U//Qih4s3GmaQdEWo2xw/e2mShSKsKsJWIbrzfpekv4M6bqOS7BJOsglvN:pE//QQdE92PHKs3jvuM22DOpiQaCGB0","tlshash":"3dd10131727531196127d15425e6e6fe200cf31bc256a2ff9ea2211d8df33436a726ed","first_seen":"2026-03-19T13:37:22.813378Z","last_seen":"2026-03-19T13:37:22.813378Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-4a8ab527.20d9fc42.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.486Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-4a8ab527.20d9fc42.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-6a67\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":27239,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (27235), with no line terminators","md5":"77b4c786b2446aa688aad44c4a4ece02","sha1":"9362e12ee19494d1cb72d2f0e35d93ce6a7684ed","sha256":"0cb21d09b8d4fb8896da0b506b856a03adf32dc451735366ad3a3c4d9805daf5","sha512":"2c94011001a4a9a599ba8d84a19682f54bc5938504b8286f58bcd5a9082cdc97dc5e259145d224bbfce54fd58ed9d8c4f589b6031a8fe18c8a1f0a17f36275fe","ssdeep":"384:hutMUUbNR8gXd/8kWs14sUyPD/Dox9H6s3Et4KyD4F:hh9bNpXd0kWs1VD/UYs3ENycF","tlshash":"2cc29605b197fa6c89ab905231097421a0b13ee4d04fd293fb34eda9a7c4d94631fb7e","first_seen":"2026-03-19T13:37:22.814273Z","last_seen":"2026-03-19T13:37:22.814273Z","times_seen":1,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/systemConfig/getByKey?key=online_service","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /exchange/app/systemConfig/getByKey?key=online_service HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nticket: \r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: application/json;charset=UTF-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":89,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"ff55b2dc67c021acfa95825a39f733c0","sha1":"67e981368c7b749cf26ac6cee0b32d7134780ee8","sha256":"3df92f655e52353d7d8df9ea35d50b53b4f85b6720956906d7b4c26db41d9584","sha512":"ec95702f0445c1bb4f99e9f1de9b76edfc0242ec705e997d978d863c6b07467bcc1d51552cf00336f8d9b7b5facfc53c5dd93b37e5cb8bc110cbe3919204f6de","ssdeep":"","tlshash":"dcb012863a480e740f012592341d250470a1200660f8651fc80c45148d0449690029b0","first_seen":"2025-08-06T15:14:05.937423Z","last_seen":"2026-03-19T13:41:44.505343Z","times_seen":12,"resource_available":false,"data":null}},"time_used":209,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":209,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-a454f8a4.003fa052.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.201Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-a454f8a4.003fa052.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-1859\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6233,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (6233), with no line terminators","md5":"bc8e2c9dcfc5a70cef772cec1adf0476","sha1":"0e61678809262f22776d88ca6cc856fea0542c45","sha256":"6be76f917dc12dc0c57fd00eaf2845a2a2a671fc2c5828f2c5a4f79d05028fb0","sha512":"4b816b3b2c77e98a74e6b01239b994b90efb2ea73a49ef7f0bb906dbd2de04158e0ccc8235cceb72be35e7b463cd86221ef5bfbf419343ab399f023927245ecd","ssdeep":"192:bPWQHM+G3CHsiB7/83zHAWbr3ZHlmgK3ZHlUF534HYA8U7f3RH5N4A3RH5Xf:bPWQHM+G3CHsiB7/83zHAWbr3ZHlmgK9","tlshash":"cdd1a325a08ba7eefd6f80c26218b270c1707be08816e153b778c568e3d5e657b1f794","first_seen":"2026-03-19T13:37:22.816098Z","last_seen":"2026-03-19T13:37:22.816098Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-305d2a72.02c39477.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:56.082Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-305d2a72.02c39477.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-a63\"\r\nexpires: Fri, 20 Mar 2026 01:36:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2659,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2659), with no line terminators","md5":"e081b613f083bde02f9e0182b0fcdbe9","sha1":"e801886668d878912ee9275a51f7e32b16ca95cc","sha256":"0772c4a2aaaaa3138a7451cd6a3409e3359148f10aded511645b58b796f343dc","sha512":"3a53ce0eb189038efffd4dabce136ba589eca0edd65b4b95231771d17adfa99f7f768a9cd8ff08ba45d9b06f7df294ddcd329817cb3bb74ec43976557435cb9c","ssdeep":"","tlshash":"da515c31ad5e369c723ac7b8d8954dd9b34cb33fe162818a5ec1e234c697803b971295","first_seen":"2026-03-19T13:37:22.817028Z","last_seen":"2026-03-19T13:41:44.485866Z","times_seen":2,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-7a24df6d.490169a3.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.245Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-7a24df6d.490169a3.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 841\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-349\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":841,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (841), with no line terminators","md5":"0ecb5cbb9ced91b7bc1d58347ba6debb","sha1":"a25ccdbe02928283af1f457c5ebda305ae0e6a8c","sha256":"f4d150cbb3c0fda04e1e9d97dffb229d0b4b5eb69f587371834c1cd682971718","sha512":"3da8805c07c60129a3a2e819362ff2912d198d61c435743e3cffe1575a73e8f3d9b214dca25c2f4109c5ad25b7dbeea21410de6dac634d998e56ac7510b0ff09","ssdeep":"","tlshash":"a1010c11b16ea60fa813d6e1e083dd7f3c08676f4447cb295e62a027c997d533f00384","first_seen":"2025-07-26T22:21:08.713385Z","last_seen":"2026-03-19T13:37:22.818002Z","times_seen":5,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-7f0e2094.a95eee21.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.250Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-7f0e2094.a95eee21.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-835\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2101,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2101), with no line terminators","md5":"05ffd6163756a8a6446c5fa45937bb9c","sha1":"ab3ffee8e53504264d1fa4e6939f742bed3d17c3","sha256":"853366b8706c340f2aed8e06ad9709f9380016b547d43d0353c1042256d5b53e","sha512":"e2c4cfbe76709a56678aa04e33a9d03c4aafc05e85625b155a1cd1814d86195221cbac6ab4e7b99f49642d4d874989cda1bcc1d4a39f7e016942b07c90f59d34","ssdeep":"","tlshash":"7041be3a721c51ce5273d77250c29ab7a48be32b787345ddaf83154e8c8f466369048f","first_seen":"2025-07-26T22:21:08.700165Z","last_seen":"2026-03-19T13:37:22.818883Z","times_seen":5,"resource_available":false,"data":null}},"time_used":212,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":212,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-30a9a8ff.8684e43e.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:53.895Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-30a9a8ff.8684e43e.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:53 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-3274\"\r\nexpires: Fri, 20 Mar 2026 01:36:53 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12916,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (12916), with no line terminators","md5":"35231cd70c7d3fc5b4091ddf7f410bdf","sha1":"c6042ed7ab6a0057724775b71ab8a7b1a8428f80","sha256":"c75b9da7bfb5e928c3fe778a560ac83bc9b8a09e71ef02fa931caa1cd2c4f7b5","sha512":"b6580de647ccdca2ed526cc14b552f18e2106fa5f1bddd6190866aac304efc921bd155c004761ca41241bca39a3eb94e769a49e08aa1d6dc16c328f4495604f2","ssdeep":"192:mT/FcbRwLnVg2LcyQR/ZRdyko2eEzYoeoSH67EeO03tGL1i6T4o6hc5AizlVJMSY:gtCwbsyaRfU2a6o10g5nVJMSvQ","tlshash":"4a42b609f1c7f5ee88279041200f2620b0b23fe590198992f776d9d5ab98d58632ff2e","first_seen":"2025-08-06T15:14:05.966371Z","last_seen":"2026-03-19T13:41:44.49757Z","times_seen":12,"resource_available":true,"data":null}},"time_used":182,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":182,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-8e270962.563d255d.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.049Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-8e270962.563d255d.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-60b3\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":24755,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (24743), with no line terminators","md5":"e220a3e2ec0fcfdfe464004de7f26b31","sha1":"57d37ca54134ad400ab8ceffdb7aa81a31f344e5","sha256":"68e29c704add24efc2f4939be6fd418ef6493bc6ba853972ef534a3d994c76b8","sha512":"0b7e855adeb66ba0abd1fa09f6083b26b39f963839b752e894b69ecb2827171cc7f5968f78054d7a871bb226697b33745caafc168077b1f0a3c7563a153ef154","ssdeep":"384:08eKykaQs4a864Qe5g8bY6IXLQt86C6H319tWKhfXsZ:0pKykaQs4a8/j5gL6MQBC6HqZ","tlshash":"59b24215b487e97dedab5022318d7438f02a2be49024a297f77c8de567c8c58270f7ad","first_seen":"2026-03-19T13:37:22.820349Z","last_seen":"2026-03-19T13:37:22.820349Z","times_seen":1,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/product/indexList","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:37:04.242Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"POST /exchange/app/product/indexList HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nticket: \r\nContent-Length: 30\r\nOrigin: https://oxpquant.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":30,"data":"{\"pageIndex\":1,\"pageSize\":500}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:37:04 GMT\r\ncontent-type: application/json;charset=UTF-8\r\naccess-control-allow-origin: https://oxpquant.com\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3472,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"0ad732a44cf8f38bf41dffbeb2dfee00","sha1":"7eead461e59a2e751ae2565fbd4a4a9e72017caa","sha256":"f35bbae6ce124a6f258a18bbc5fde8d84d92cab2460be4bba3bc9084db5d0836","sha512":"02951c6e728fe0fc5a8a9f56626be01f64eb8a26cfe677e1e33c5fb72ef6c5d37428f6a41f2f869f1d1bee18fccf15472795ed377630e0b39cc3b315518eb844","ssdeep":"","tlshash":"906165cf8f308a9c237417a249e2328dbbc93bd8cfee55106fc56dbe41282057515b1a","first_seen":"2026-03-19T13:37:22.821549Z","last_seen":"2026-03-19T13:37:22.821549Z","times_seen":1,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-19T13:36:50.985Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:51 GMT\r\ncontent-type: text/html\r\ncontent-length: 628\r\nlast-modified: Mon, 14 Jul 2025 04:09:56 GMT\r\netag: \"68748314-274\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":628,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"59098817936ee533ac8ce4ec5ece5416","sha1":"24a07325ac33b9907683579ad04b5d8cd21c8e62","sha256":"459251133a573d9f2c3b3d7d27f94b2c78ee36ba2e8220cd9f43f35c07fbeb23","sha512":"11f12cb2dadd5efe3134bdf9c9fa775173f26294d826e3e36c7cfd722fd151dc6da91fb211b9449cf0e2530f28aa161bd43454462da652c49dbf7f2887ea4868","ssdeep":"","tlshash":"44f042ce17e2510511e168206ae7b205655701efcc5ae8017a8c5640bf5175fd5a7fec","first_seen":"2025-07-26T22:21:08.524075Z","last_seen":"2026-03-19T13:41:44.500028Z","times_seen":24,"resource_available":false,"data":null}},"time_used":1082,"timings":{"blocked":452,"dns":98,"connect":174,"send":0,"wait":174,"receive":1,"ssl":180},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/cdn/axios/1.0.0/axios.min.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:52.295Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/cdn/axios/1.0.0/axios.min.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-32b1\"\r\nexpires: Fri, 20 Mar 2026 01:36:52 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12977,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (9720), with CRLF line terminators","md5":"c42cd03c654cb660f17ae6082bffc47f","sha1":"bedd2879ab587dd9f5e6b1fe5df95f857c31ff10","sha256":"104840bf105259d57d70c1dd737c254d63a696ff7c20bcb1e26d5b00c5a46d45","sha512":"36ccb0591342cc562e2629331c1acef96f2f60c66493db63364aa3ac69d42be077ed2da56cfb5b650a9467a1470745c3065a7e288131a6ec76257be1820640e3","ssdeep":"384:Kao8KsKMMT6nbNp0nkJFP5F0YS6DagzzNYT9ee8u:sGNp0EPb46DaT9edu","tlshash":"9c42a7ce78a1b4d747e320f0905f5a0fb2b6992a644d84b0e560e8f66cb546e8737f4c","first_seen":"2023-03-08T16:18:48Z","last_seen":"2026-05-29T00:26:55.0229Z","times_seen":61,"resource_available":true,"data":null}},"time_used":705,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":705,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-29b5e6f0.5ed2b528.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-29b5e6f0.5ed2b528.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: text/css\r\ncontent-length: 124\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-7c\"\r\nexpires: Fri, 20 Mar 2026 01:36:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":124,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, ASCII text, with no line terminators","md5":"c72531036f90342dfbbbc5619f89a6ca","sha1":"fbe4edb50acfb489b115886eec28853e441d5fbd","sha256":"b16e8bf8de1d5684899018a0eb97c7ec2f4c20f52cfc9c7fda440b4a83bc1b5f","sha512":"1391f8e456b3f68e62625d919cb9bd17175fbfb37ccbf61779b6488970266ca1b51c2300ea07d4a57341f8e7814a02847e3629385f5e762ffb4f0f6fee25ec81","ssdeep":"","tlshash":"fab09b11310d638539357c236445c48373cdf257b67013f567c3d455999545d7b50646","first_seen":"2023-09-17T16:40:37Z","last_seen":"2026-03-19T13:41:44.498133Z","times_seen":12,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-6be4e8c2.2b4103d2.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.050Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-6be4e8c2.2b4103d2.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 745\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-2e9\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":745,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (745), with no line terminators","md5":"c1d3f7bb91b39b3f06b3e24fdecbf061","sha1":"d6bf80e0b0361b6269cc7a8e1d8be1652cac3e15","sha256":"0f2a3d130d01f7bbf5f77874799b02b361d809937ca50954c5064d94a6a38a18","sha512":"a99ed13391426dd46542a74d40cceac27e8bdbcb72405a7fa13e994e2fc8ac50ae318be968462c60b0253f819f0db26c593cfd53b937d043d8a7311362f3a2da","ssdeep":"","tlshash":"a401902561a45d2cb066f5117d90aee66340bb77921783b68d81013e4ce74522bb13dc","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.824377Z","times_seen":7,"resource_available":false,"data":null}},"time_used":176,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-a454f8a4.8a83dffa.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.480Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-a454f8a4.8a83dffa.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-5c8\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1480,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1480), with no line terminators","md5":"cc1c283e0cd8295b3a01362cab7e4ea7","sha1":"16a8f789adced447e1974561ed8568a68acdc02e","sha256":"0ba0832d61f2c2df7a913189b80f3bd632f4beda094ed3d574d19387332e40e9","sha512":"14f6822331fa21157af339ce0638d948d9d684b37a2fecde24eefd5e56866d0daecee0e404500d043934073118de2bc4467734205502964d1b34121c20c9700d","ssdeep":"","tlshash":"7431be35521906bcb42fd67069a556cea204b53ee12e57ce8e92d236cac78037d7118c","first_seen":"2026-03-19T13:37:22.825299Z","last_seen":"2026-03-19T13:37:22.825299Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-02e5d0d2.cc161fbe.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.870Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-02e5d0d2.cc161fbe.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-413a1\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":267169,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (48288), with no line terminators","md5":"f65c7a8e31a7bd13944ccb6cccac0acb","sha1":"5bfe28a53f2574a0c402683284b643c2e7d8b44d","sha256":"1fcf059afdf509f707ce04b8bc47a99b28c6586213d24664e8789c92e38a7227","sha512":"29338942861461dd13171a1721893a6892942af3f94a31c959d0fd23a1984b0324c228f08698f47d55e92e96009ea3e0fae36119a56170f7b669c2b848f9718c","ssdeep":"6144:9kMcaD4XokkcT+bMJJBAXXPWwbUFo4bbcDj:9kMcaD4XokkhbMJJBAXX+wbUFo4bbcDj","tlshash":"c154c5bb928697a834c036867d2e3346a7189c597a73f9ec084cf464b6f0755c231ef6","first_seen":"2026-03-19T13:37:22.826178Z","last_seen":"2026-03-19T13:37:22.826178Z","times_seen":1,"resource_available":false,"data":null}},"time_used":182,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":182,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-11cebc84.0034db31.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.874Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-11cebc84.0034db31.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-1203\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4611,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4611), with no line terminators","md5":"4a03404b85d56e00992ba0e05335b4ad","sha1":"f0fa56535832a6976e0b21d907e51c27bf8a8836","sha256":"bfec2392eab74faac269c673f600cdf1ed7aaa40cc0a7b1c7581282ef7e238c1","sha512":"1f4575928c2a899e898b3da13da6baf721ed26f327891f36299bf04de26e39e122d94631d83a50e0de6efcd8c83ed5202b4618c3efff98c6d22e4c0773c6f001","ssdeep":"96:U6TXX389zKeqsAzl+OSmxl/JFpfQIJ8OEBDC4xyd:3THlH++7/9ZCBDPU","tlshash":"a9914d5df042693d189361c9150f36948cf13ae5a178b5677f308cc43e98ee6751ee4d","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.827483Z","times_seen":7,"resource_available":false,"data":null}},"time_used":194,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":194,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?x-region=us-south1\u0026license_id=18964748\u0026client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5\u0026url=https%3A%2F%2Foxpquant.com%2Fdesktop%2F\u0026channel_type=code\u0026origin=livechat\u0026implementation_type=manual_channels\u0026jsonp=__fm8hp6jf12l","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.83","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:53.270Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /v3.6/customer/action/get_dynamic_configuration?x-region=us-south1\u0026license_id=18964748\u0026client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5\u0026url=https%3A%2F%2Foxpquant.com%2Fdesktop%2F\u0026channel_type=code\u0026origin=livechat\u0026implementation_type=manual_channels\u0026jsonp=__fm8hp6jf12l HTTP/1.1\r\nHost: api.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Encoding\r\ncontent-length: 126\r\ndate: Thu, 19 Mar 2026 13:36:53 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":126,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"ea5c9702daf8d5d3e56a57eee7d7f14c","sha1":"9b005523cb8f3d98f4e3588b37de342bbfda1785","sha256":"dd151ce884e0e1f31de716acab43b67c43409c1982707fab7a08657de9169260","sha512":"5c54879e94864e70d84257df40e31f4c3b342c221c8a50ca0f6e55d27e2170d404103c4b1545f1c2449bf6168133b139da1bca5490a7f63534c2129cb2d9de9a","ssdeep":"","tlshash":"6fb0222bfb2280b22080e303c0cc2a0220200aa80000aa2a30ace280820eec80320b0a","first_seen":"2026-03-19T13:37:22.828458Z","last_seen":"2026-03-19T13:37:22.828458Z","times_seen":1,"resource_available":true,"data":null}},"time_used":228,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":228,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-b1ce37e2.34850eaa.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:53.891Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-b1ce37e2.34850eaa.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:53 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-128bb\"\r\nexpires: Fri, 20 Mar 2026 01:36:53 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":75963,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"d0fe04f861024922dcef6229e40d8b8b","sha1":"241922b1c9e088d7b7efa823c417df871dfd9a54","sha256":"3280ec6a87ec8d6008a4c307733901fe7fd31db70adf9f2b13a4cb64fd997ff4","sha512":"0fb03fdf29e8ba86112ed98795baa6eb2332ef7b2cca1260e7043daddfc3ec54ae2b743b2ed3d1a5697cc3eda4607cbafb63de0036edd2df9f01094b3852d0d8","ssdeep":"1536:VML1AZUAc7eaj+PvSjfrvi9C8fcYPf2sdkS8HkFIsQI:aL1h9IPvyinfD3ki2I","tlshash":"4573c0f971236d835e7f2c24312fdd586ce9b403d2dca3b770608f4294b469c76a22a8","first_seen":"2025-08-06T15:14:05.954703Z","last_seen":"2026-03-19T13:41:44.507133Z","times_seen":12,"resource_available":true,"data":null}},"time_used":181,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-19dd08a4.47bd3234.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.451Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-19dd08a4.47bd3234.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-b98\"\r\nexpires: Fri, 20 Mar 2026 01:36:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2968,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2968), with no line terminators","md5":"2800f674ca1dc2ba18eef940633da295","sha1":"a3d9ba32634c543670a2631dcedc1f4b90fbe150","sha256":"65cc5fbbeff15de47ed73a8dc30103ff973ddbf711e109867f4afe99c0c5226b","sha512":"3a9086cff3a80c524a7d3681dbbd5043427a7bd4d286fb5009c505608987330097c1e53ad4544ba04299fed9ae2f77910315cc100cec0b9728697ecb9bba5fc8","ssdeep":"","tlshash":"af514131b1a93128b527ca5674c41ade6c04e20bd43692b59e772719c8f7113ab2b3ff","first_seen":"2023-09-17T16:40:37Z","last_seen":"2026-03-19T13:41:44.512331Z","times_seen":12,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-7b1dd94c.bd593657.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.248Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-7b1dd94c.bd593657.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-dd8\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3544,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3544), with no line terminators","md5":"94b22ded8f462dbdd04f4df9c2fdcf75","sha1":"a200b96b62913a7f1f505b28e227a309cc334681","sha256":"743960b6937e85584b76dabfd4aee44cc7b19b6de898b2c25aafacc5f7e15a07","sha512":"863bd76f126b10ff76ff9390b9effc75b790702351e9013db5069e289cbb1efe90ddb96b7cec8fe3492b4baee8e77caaf7c7d343e2bb31fe0c23bdafff90c0a4","ssdeep":"","tlshash":"ed71cb21f51b70886a76e06437e397ca1070953345868fb99843ec26c5cb54b2ffaab8","first_seen":"2025-07-26T22:21:08.518743Z","last_seen":"2026-03-19T13:37:22.831592Z","times_seen":5,"resource_available":false,"data":null}},"time_used":214,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":214,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-b438fd4e.12a65c82.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.675Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-b438fd4e.12a65c82.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 154\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-9a\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":154,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with no line terminators","md5":"e08e2582804a9c16f9974e33c75e37dd","sha1":"d54423ed1b6e2cce4b58c75a1e49f56482f27bbe","sha256":"2f6c5acd4e7b1c7ae98f4ff38f9ffc259da68f4f88bf1117a6e01c8b0fb3b604","sha512":"0ac3581c37c75ad17dcc7ce2506ba4aa88c874bb3c9901ee4547d78e77c38c1ce6765213c70b77d54f4e0a92bbeb09ee29344865f14dd0de1ddd083ccf7ac51d","ssdeep":"","tlshash":"dbc0801220e4a5719076cd25194126de1e71f3e115811689850255100d3e4486b2455a","first_seen":"2023-09-17T16:40:37Z","last_seen":"2026-03-19T13:41:44.489525Z","times_seen":24,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-305d2a72.dd182ab4.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.280Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-305d2a72.dd182ab4.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-629\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1577,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1577), with no line terminators","md5":"ca7537666ccd55c6a3216cdd781739aa","sha1":"7ef61915d173786d3fd342049bed2b2880fc9905","sha256":"f0e918ec8946c6c8c70b919f77f53322d68b66b5ac76275032f09f5dc3dec001","sha512":"ab7f03d28f96ec91fce9b61ee5264865e1476a773895a84cc68df946b34439cf85b72e95f5f06c59aea09546caf382ca5d1fcbbb677b2b574e78c056b81f9896","ssdeep":"","tlshash":"bb31004c708bd4fdda2ba186404e6470a0623fec942098e2ab34dde06764db9773db49","first_seen":"2026-03-19T13:37:22.832575Z","last_seen":"2026-03-19T13:37:22.832575Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-b1ce37e2.34850eaa.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.244Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-b1ce37e2.34850eaa.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-128bb\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":75963,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"d0fe04f861024922dcef6229e40d8b8b","sha1":"241922b1c9e088d7b7efa823c417df871dfd9a54","sha256":"3280ec6a87ec8d6008a4c307733901fe7fd31db70adf9f2b13a4cb64fd997ff4","sha512":"0fb03fdf29e8ba86112ed98795baa6eb2332ef7b2cca1260e7043daddfc3ec54ae2b743b2ed3d1a5697cc3eda4607cbafb63de0036edd2df9f01094b3852d0d8","ssdeep":"1536:VML1AZUAc7eaj+PvSjfrvi9C8fcYPf2sdkS8HkFIsQI:aL1h9IPvyinfD3ki2I","tlshash":"4573c0f971236d835e7f2c24312fdd586ce9b403d2dca3b770608f4294b469c76a22a8","first_seen":"2025-08-06T15:14:05.954703Z","last_seen":"2026-03-19T13:41:44.507133Z","times_seen":12,"resource_available":true,"data":null}},"time_used":181,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/product/indexList","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.301Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"POST /exchange/app/product/indexList HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nticket: \r\nContent-Length: 30\r\nOrigin: https://oxpquant.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":30,"data":"{\"pageIndex\":1,\"pageSize\":500}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: application/json;charset=UTF-8\r\naccess-control-allow-origin: https://oxpquant.com\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3470,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"f3626f37bfbe546ef66aed723f50fdcf","sha1":"d668752fb3ba5791f1ddbe870046814e6e3fdbcb","sha256":"14ffa87c7fb0d313814db99c1c25c6b5cd0c9dbb284a879f1da82b66a42cec29","sha512":"a0816636c46d2d2ff329d714a110107e380765cc2c5052b96181988771162297c3e73f70991adf7865db1cc05d37c618acc7b3e7231c95f870e76dc2a2f7f41b","ssdeep":"","tlshash":"496147cf8f30899d237413a24de6328db7c93ad8cfef56106fc59ebe51282157914a19","first_seen":"2026-03-19T13:37:22.771389Z","last_seen":"2026-03-19T13:37:22.771389Z","times_seen":1,"resource_available":false,"data":null}},"time_used":202,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":202,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-76ca92d8.9481e696.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.243Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-76ca92d8.9481e696.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 356\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-164\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":356,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (356), with no line terminators","md5":"1ac84d418aac66870515fa8c4b5a5808","sha1":"cc042113dd486019e630c0bcfe4d0b49e480340a","sha256":"45bb5b5e8f4e1ad4c996ab9cf450662a3b343026fbfba63a3c0677a986a8214d","sha512":"5f00d33720ac42a7caab0fe335702557f4c14d679febf4efc244971e8ae81bf6aa29505cd1a7b4eca911d41cafdefc42c0b906b8d74dd07115f99f6318ab1378","ssdeep":"","tlshash":"f3e0d873625fd00fb3b2d5d53081181d7096a75f5b0a95668d46642f89628017711397","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.833584Z","times_seen":11,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-40753382.ec028fe6.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.389Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-40753382.ec028fe6.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-108d\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4237,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4237), with no line terminators","md5":"1065fbf8be4c0df5d59f8271b712b7a6","sha1":"13218beaa8ab2250d19a2b5cd8d88692a88e11ec","sha256":"9dfcb823014a9cb129dad357fd192c81744c3d8373cd2e9d46cd16989bddc2ed","sha512":"a77b062c40447b75317b748c9c8ecb304875ac5f891b2292b03cfe64fdbebf5da7f42beae06feeaa519ee90153af2a3844708e02f4f4f087852fa3395c64b77f","ssdeep":"96:oTcrztMMdi3gCHyGA5R3nAh1HV9t25te5R8:ogZrJlGA5R3nYVLzk","tlshash":"1e91304bf082f5b815f35381622f73a460a23994a44b8a8af6b4d5d8661cccc623bb75","first_seen":"2026-03-19T13:37:22.834491Z","last_seen":"2026-03-19T13:37:22.834491Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-467d9116.381d9b99.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:56.350Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-467d9116.381d9b99.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-ab3\"\r\nexpires: Fri, 20 Mar 2026 01:36:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2739,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2739), with no line terminators","md5":"127dfac7aacc812dd279d1a106013a72","sha1":"791ce96d268555cb0241bb813289764998d35b5f","sha256":"087232d5607c7520a4698db4cd8e9ffffd8b526d0ba0821b070ee3ca93ffc765","sha512":"e4a9940921d6c2072357e5208793eb2751854c1370f98134336d9c0a534b8b9a76c6995f8381c6e72174c3f54dcce61d09df777c3eef62e27559a3d77761be26","ssdeep":"","tlshash":"6951fc36b259347c78abc4e4a2e1067c3248b3d784198bb56c26b717cfc2297276274c","first_seen":"2026-03-19T13:37:22.835617Z","last_seen":"2026-03-19T13:41:44.506555Z","times_seen":2,"resource_available":false,"data":null}},"time_used":662,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":662,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-5fedd1f2.4af58972.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.667Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-5fedd1f2.4af58972.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-11c1\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4545,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4545), with no line terminators","md5":"5a66e812477eaee7718b75b955a6338b","sha1":"29911f32d27c822c29f200ded5dac085b674a858","sha256":"e9b5914763fbde5ffbafa30cb2d92255086663da6df84f7df1516c49a8f3a5ac","sha512":"379994e6748f3515f441d2b2b22159b8f7770268bac0198f633327ed2e7742cb6bcad6a367a835d95008caac763a241042a082e7ee505ed98215639e5fdd4ff0","ssdeep":"96:Aujcz5RgiSuQwRlvCRZLNcwC6cwgsQhP7sQh5psQhrEJop:Au4z5RgiSuQwRlvCRMwww8zPkG","tlshash":"1891841af253f5588ae39146221f62d6e3b13d84a02f56f5f235facd67488c0630fa39","first_seen":"2026-03-19T13:37:22.836498Z","last_seen":"2026-03-19T13:37:22.836498Z","times_seen":1,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-a11d02fa.de75df9a.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.137Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-a11d02fa.de75df9a.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-1b6e\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7022,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (7022), with no line terminators","md5":"9cd1e43af440ef3c09028ca621e0c42d","sha1":"76b1741263671b9ee1bc966591e4c79d900deb0a","sha256":"05cacbb8fd5579784b0f683a2533345596a664fd7ad7b2279b7ff81bcab43a7c","sha512":"31795a9db138a22e571fab267c2351d1d4b84cf6f788afb0b5c122aa57e7c9ffdff9f74554e8fe227df1660ea9d49499517b4c5d7fa8e367ac0f553c97737aed","ssdeep":"96:IZCpRmJ544Q5CYZA1M6ZuyMroyW1M6ZuQMroycX986kJlJh+7twn4YnTVNOjqO:IspReI5HZFhE9q3XT3YH","tlshash":"40e1a68a619ae8ce141792b2708fb1c1a31b221b10544a93fb79c5e9e39cd58351bbbd","first_seen":"2025-07-26T22:21:08.653542Z","last_seen":"2026-03-19T13:37:22.837414Z","times_seen":5,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/img/chat.7497788e.png","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.120Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/img/chat.7497788e.png HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: image/png\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-126d\"\r\nexpires: Sat, 18 Apr 2026 13:36:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4717,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"7497788ec5adc53e2cdcd680ea903e68","sha1":"951e2269eaf11281765947844717b8030fc274a5","sha256":"fdc8573f34b66d0d173be5a771f49717e3e3bae04e8f4f7fd0e4a7e1f8b75ec2","sha512":"1a08de4d78ebaa4295e8d797daed5937f34d9823b58057373c37596a992ba39fecd3870410b369a7538e62d5985a76df89f778351c3a1f0f604cafc1c37bf7ee","ssdeep":"96:fwZebeukW/pyl0hKUZrO/iZ+870f0kQeHfbRCsJc1trmU/l7BLUybebe6:+qiImzeU0QHfbhOrrmUd7tUx","tlshash":"daa17e5e84e794558c94f63dad3f949814362c9c1a040b4bb5cadc6c31b3f077a493e8","first_seen":"2023-09-17T16:40:37Z","last_seen":"2026-03-19T13:41:44.495731Z","times_seen":18,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-8e270962.00ec394f.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.424Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-8e270962.00ec394f.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-1601\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5633,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (5633), with no line terminators","md5":"daa688e90aecf9706e2f1657695b8d02","sha1":"6829a1f9380a1c9a9567eca59e4d911989cb7324","sha256":"f6ae87892607ffbae6a5c0428c5dd11d595912a925b6e384a362ecd86cfc2a93","sha512":"dbb82edf053d92f29f13174d0b7c2a5f7a1b32c437d11e01e94e2065d40caf89e983b4637aa99faf397e66156b03b424c32442a7244462fa278c64256e8808b2","ssdeep":"96:pE//QQdE92Qwp+x7PdYmHnx8Qx9incj3sP3sr2zs7R9N3EON70hahflCCztQd5hD:MdE92Qwp+x7Pi8nx8Qx9Scj3sP3sr2z3","tlshash":"26c1ef31793d6518a43bc66979e1aeee6014f22b82d143b99d8f7825ccd304e3f3229d","first_seen":"2026-03-19T13:37:22.839711Z","last_seen":"2026-03-19T13:37:22.839711Z","times_seen":1,"resource_available":false,"data":null}},"time_used":206,"timings":{"blocked":32,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-af767178.49623e7b.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.644Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-af767178.49623e7b.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-4cd\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1229,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1229), with no line terminators","md5":"36020efcbfa186321a02985789ee1fd6","sha1":"9c3e0702743e8e954078422966e927b2b192a893","sha256":"063fa8bed1bd164a9c7c8612d42648600192d63868dc7f8d9ad2fd389565dbd4","sha512":"591e1b2e4e106f9f69bc773cd7ca8b3f8d3a7b52399cdbf614044e33471e4cdf055cd04dc8d7bee17a50af1de3480f99271ae0853ace965e7ffe8fc4c9cab3fe","ssdeep":"","tlshash":"96219d247619324cb52bf2a16259d6cf7900b81ea73a1fe5cf90a532c6925c33eb074e","first_seen":"2025-07-26T22:21:08.722651Z","last_seen":"2026-03-19T13:37:22.840693Z","times_seen":5,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-ec41851c.eb1a7395.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.440Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-ec41851c.eb1a7395.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-a57\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2647,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2647), with no line terminators","md5":"57cac49e1c59e9c76e219c1738722f4c","sha1":"0ef0e58a4aa2cebb6202cdc49993bd85d227694a","sha256":"c5d9e38f0fde9dbf25c0d674d746418e41a5d985149561ca98ce94f7263b76fb","sha512":"c9042a8f943d30b198c36b45cd3b21d175bb9b034d284533c9e0c1e5921ae27e68973cea70431df7368b0bb1c617f73778105d23181c54288e4b979a514ed4a7","ssdeep":"","tlshash":"a451e705a09be9bedc2b844357096670d4612ffc8568e083eb78dc7867c8d78176e768","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.841643Z","times_seen":6,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-vendors.679b0d61.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:52.284Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-vendors.679b0d61.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-36203\"\r\nexpires: Fri, 20 Mar 2026 01:36:52 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":221699,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"c0ad654ebe059486f8746b12a45f6484","sha1":"a809662859ab3639c96bb7a73694b8606a4d6e71","sha256":"e45eeb82baa039a89130401f4b50ba6cb4a82dee2af802d4a1affa28910577bf","sha512":"3a91f7ccee427981eb29e20b625ef300a4f2f0d02d6b19b1730e09a920120024f7450d9a57253cce940784e4b56d99a136a01411acf96d8b60c4d0a9ec291cec","ssdeep":"1536:c28Y7SrW3YeWXA1u9w4HCe/l4H3gW9cMEwxGd78O6iZkJgYu8e2dySFyffkIcK7c:lr9xrUfX7OxzGqSI","tlshash":"8224b710db17206b622bd7adb5c0ba896f28c323d4725b7bfd95340cc6e64891227e5f","first_seen":"2023-08-09T00:42:41Z","last_seen":"2026-03-19T13:41:44.481283Z","times_seen":33,"resource_available":false,"data":null}},"time_used":535,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":535,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/tracking.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:52.715Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /tracking.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AGQBYWxhyWN6IiLjHjujbq4NDt7sb7TcEMNa_CNQMtRXuu6QxKUhDNKaNhSrXn3CX-Np6ld6cEKVsps\r\nlast-modified: Thu, 19 Mar 2026 09:57:17 GMT\r\nx-goog-generation: 1773914237844980\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 102724\r\nx-goog-hash: crc32c=Vv7qVg==, md5=7oLLfIMuemRJypdmCxCOGg==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 33199\r\ncache-control: public, max-age=28800\r\nexpires: Thu, 19 Mar 2026 21:36:52 GMT\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":102724,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"data","md5":"ee82cb7c832e7a6449ca97660b108e1a","sha1":"9ac44590d327b289161e1401133373acbbf74729","sha256":"17d08dfb47783b628c3118cbad60cc4f03c08641324b560ff4552da05c0bc2f9","sha512":"dd13fb0c559c9cdf58daf5374d2e24fd166894a3d4d3299b8f9d603d168c76f7c773ab194b184ff10a989c322e9eb3be6a55bc48a002e6a33c36d45c5bc8494f","ssdeep":"1536:E5y/uRri7DJnagIckNmeuR5bydWiBwpDwLCPoRvCRW6RYt:E4/uRu79aXuRxyk8vCdRo","tlshash":"0ba338d67282b03493f785e7a17f6216b33a291c740d8410f17cec6a396a9879177f2e","first_seen":"2026-03-19T10:21:05.337716Z","last_seen":"2026-05-16T09:29:04.050927Z","times_seen":55,"resource_available":true,"data":null}},"time_used":178,"timings":{"blocked":83,"dns":60,"connect":1,"send":0,"wait":2,"receive":4,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-40753382.b978e885.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:56.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-40753382.b978e885.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-556\"\r\nexpires: Fri, 20 Mar 2026 01:36:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1366,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1366), with no line terminators","md5":"f6f20e2fc02396f776be9be0259d532f","sha1":"00beba25f46207711a051c08af14365eaa459172","sha256":"51bf388b35ece29719958e242e5e711f28923a0aa660ec1764585e3b97a151b3","sha512":"129a642e5f690b43e3414f230311ffd061db88c7e722fc4360a0f5e0878583017ec535d0e1f3338837bad869f3f8856c96ff6354666a0997ddae4d80e46ffe50","ssdeep":"","tlshash":"bd21fe32257c2528f47ad29079c186dd2528b637a107caeae9c87c20cd8704e2a3e2c7","first_seen":"2026-03-19T13:37:22.844322Z","last_seen":"2026-03-19T13:41:44.505988Z","times_seen":2,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-4d6e6b16.cf0b13a2.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.577Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-4d6e6b16.cf0b13a2.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-27c0\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10176,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10091), with no line terminators","md5":"881b91febf783cf07cd8dd57841eaf8e","sha1":"b6024d74ec362f49ad12e993098e6cc1c8153fcc","sha256":"26ce419429b888c624000198bc38da13a25062844e1dbfac84cf465376741f99","sha512":"a11ef3476ae93b3bd8391d7aa71dbaef477221fdc6784af2ad96789e898cc4a25300b88ca31abd13aeb2b65555c9fab83113b7b46ca0954b80d1e429b55a3016","ssdeep":"96:hEm7oibp95lt7YXZEsCZenDJolnf5rAHMEA76J3f8AfNh2TA7yexuACJZReIZR8Y:hEaP95ltkms09ffQB12tII7ZUWMSJ5","tlshash":"ec22750971d7fb6d41bb9151300a7019b0f17a40a04ed597eb78eaefb798c84231bb7a","first_seen":"2026-03-19T13:37:22.845315Z","last_seen":"2026-03-19T13:37:22.845315Z","times_seen":1,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-e7ecad56.48617abf.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.438Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-e7ecad56.48617abf.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-63e5\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25573,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (25569), with no line terminators","md5":"ed25ecf0f0a0a6f16987189b95ced446","sha1":"7076296db13f758c69b11c32992a1e308401a899","sha256":"80eda3d79dcf11487b4275920dfa9e5d05dcfabf37fb5dd1cc87ff6b7defa2a4","sha512":"af8d2c698aa7b04962d86d9aee2295b57e18e63bb6938e87a1f10057c55cdd07c011292627e236976580c5db16a5544730cabd9e6de38d4c6514af4956b0caf9","ssdeep":"384:s0XYMOXQ1f71L+yweKkyI+SW0C0WpeMQkj:s0XYZX8d9KkyI+SW0CXphZj","tlshash":"0ab251067497e6bdddab4126310d2138f0762fe08015e152f77cdeb8a2d8ca4a71fb99","first_seen":"2026-03-19T13:37:22.846206Z","last_seen":"2026-03-19T13:37:22.846206Z","times_seen":1,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-eec71106.e43eb3b8.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.447Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-eec71106.e43eb3b8.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-ab94\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43924,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (43644), with no line terminators","md5":"5d63961d36d78a70264f4bb7b0427f3b","sha1":"b9ac50d58f88d6f5d7c4e331f0cb43e31b26e926","sha256":"2ddfa229e049b2c6b7f0df05089f4c139d290898c68808ffbd994567a427abfb","sha512":"af4f8bfb07a7b2978d15792fc1d49d036df91df35f9fe915ef81c257265d4738411cc2bcc2f2781b6e8d173ce881b9db7cbaa6e2fecddbebe1ded2e1cc8483ed","ssdeep":"768:UjBxR+3fj1EeR+WSzQttTQfSYEkaHeI5H/tC63Cfr7hKKSkBylX4:w+vjGeR+WSGQfyk6dfti7X+X4","tlshash":"e013080be00aec9da933d292304f305092616e5590191d92fbbdd9e873cdd5a271fbbe","first_seen":"2026-03-19T13:37:22.847714Z","last_seen":"2026-03-19T13:37:22.847714Z","times_seen":1,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-421b54d2.0673bc01.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:56.092Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-421b54d2.0673bc01.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-615\"\r\nexpires: Fri, 20 Mar 2026 01:36:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1557,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1557), with no line terminators","md5":"5c08f6ee7c7720d7bb802753348f0a90","sha1":"c2eb2d1803e2578f49b83a5f099fd201d7b259eb","sha256":"6cd8c1ef90c18e230c81481c308f60e8716ecb73cd9e399aff4233403c73da92","sha512":"b57863a1daee243a3b474b2b9856be5f21ea2c1c8365c70f9dd52a91cd07e8ffb404254f790ddb96f9b19e95d98d2cf2c31e397aa4b974c4797404aa05699ed7","ssdeep":"","tlshash":"1131b3247179726eb12bd06163458e8f6104f41ea23b52d74fb5f631c786543bdb238d","first_seen":"2025-07-26T22:21:08.663165Z","last_seen":"2026-03-19T13:41:44.501161Z","times_seen":6,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-7aee5050.b9213bd3.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.246Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-7aee5050.b9213bd3.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 966\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-3c6\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":966,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (966), with no line terminators","md5":"82a1460cf6a85020f2189dfd8ac46a98","sha1":"cd42e54ee6b74fb1d37a3bb33dd4f764802b8caa","sha256":"75aec3ccb572aacd474a7cd9fef8e5c4cdb4ef7298a86ccc1c734335ae4bea16","sha512":"3b9600eef31c0a92a9e1b55dcd41deab18cfff48ead1b7093e62213e9ef67c59b1c6166da9b1ec5eef175a50ad6fa2eb246e08c2749c6f8dfaa26e5673b3397a","ssdeep":"","tlshash":"0c11bd327e1d360fb03bc21264454dee3420a9475edb57ead8472439d88b3a3791b398","first_seen":"2026-03-19T13:37:22.849549Z","last_seen":"2026-03-19T13:37:22.849549Z","times_seen":1,"resource_available":false,"data":null}},"time_used":214,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":39,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-9b0c98c8.0ed9864b.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.478Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-9b0c98c8.0ed9864b.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-3fbe\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16318,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (16318), with no line terminators","md5":"33d27135c2750903c4933303d4a4342e","sha1":"b1b52ac9b00c25a215859a7fd8021265d0f65da8","sha256":"b1bade3efd850ab89f3440ccce67ede6e0cc948dc018a561c7d12ddf4b0e8ef0","sha512":"55ef983f3808919ef5ae69b419f9313ce102c98abcf7406c065867a6dca63b77da6bb9d2da05e16d3ff4417a8d5a29cd872cd2684e5b7b301ea74e013eb3d34a","ssdeep":"192:NR2qlx3X3j2zR317IJDzYmxFprXQr5iNVtf2cUpZSgmoqlXPpIEhY+3UtE5:rNq6n9++5","tlshash":"8a723429b53f052d69abc534f0915fdfb260e21a860602effe5e391384d38911d6e359","first_seen":"2026-03-19T13:37:22.850355Z","last_seen":"2026-03-19T13:37:22.850355Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-67f00e9a.8b7508a2.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.759Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-67f00e9a.8b7508a2.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-e53\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3667,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3667), with no line terminators","md5":"b109e9e38f016f02c37bee712c54e169","sha1":"b0b18c94a3a441cdc96df91801f49b9579ba6509","sha256":"949915bb6e0bfeabc38902c437ef76cf0e2ee5b344bda2dea0b585d1ab650b4f","sha512":"084ca7d93c8df2ea5b25789a2b0b31bed1fa8434f75837e704fc3c90146b2aa346e6d4ac4b59dab2292a55d9a53b6f811b90a15457afcfd8fee2b4379a2a6c43","ssdeep":"","tlshash":"5771414bf083f5b805f35781622f72a470a22990a44bca4bf7b4d5dd661cc8c623bb75","first_seen":"2026-03-19T13:37:22.851267Z","last_seen":"2026-03-19T13:37:22.851267Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-7a24df6d.9ea093dc.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.855Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-7a24df6d.9ea093dc.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-a0c\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2572,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2569), with no line terminators","md5":"c3ac8801faeda131a4b13c2fe61df381","sha1":"459620836ac8f9f230c1926bc35146e2dd72d813","sha256":"c4f26f4ee7fba1658c66b8f50c3d06878771efe81ac49a41f4fa7731f33393a8","sha512":"e596851ff52324d7f6d666a11fa8aa9628e4e4274dd2d09a752f80083654b18b7324733925b384a226a0523974a01a0061e625bff28c5b7d139960e2be4415be","ssdeep":"","tlshash":"86513a04a9d3e6ae9c5ea06310186b30e1b23ffd8415a183e2b4ce949698db07f0fe55","first_seen":"2025-07-26T22:21:08.606322Z","last_seen":"2026-03-19T13:37:22.852119Z","times_seen":5,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-94a8555c.282f5fee.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.055Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-94a8555c.282f5fee.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-2ac1\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10945,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10945), with no line terminators","md5":"f1fef7581a4da82dc6457e73d7e6ff6c","sha1":"c278eff0bbdf8d25fb759660f85d565657b2c730","sha256":"351464091a0b0972dcc8822b8d1b204b7cbd5728fa9de74a14ec26f0877433c5","sha512":"24fd4c0068d36089a522ed3dc5ef24aaf31bd449a32964ed3dd25289cdce98309881888520c33509403f34c36f81e2c6c3998c31613c4fcdfadfcfd1eef2f4a6","ssdeep":"192:W6fmDz2j/gPxVgVJY5Qc121aTMGt1f1aDIoIMpFhE312T4bJAizquJJZS+AUb:cYW1FTH1g+MpLuFbJlJJZSvA","tlshash":"2832f949b183b4ed85eb6164102fa610a0722fd8a41e80e2e7b5f4d6dee4948571ff2e","first_seen":"2026-03-19T13:37:22.852998Z","last_seen":"2026-03-19T13:37:22.852998Z","times_seen":1,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-b1ad560e.4c26c340.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:59.238Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-b1ad560e.4c26c340.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-2459\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9305,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (9305), with no line terminators","md5":"233a6ca5c8518e0a517e5df2691731cf","sha1":"486ab0a3b5111d2f29ef91eafd4bf9429c14bd82","sha256":"315b27dd82e4e09405c5954360c449421c0c470adc52a5207017ab025296a9ee","sha512":"5d3e314e36c7fb2f4d14f770dd84bf68ca299cfc318e5fc9df12ef48c2ab89e35e39ae98a60ab3834dd9feebf636bce35fbde0e42d1e55f384f0a57379f9c803","ssdeep":"192:Ntuj5Qheppi7pCCppi1t6r3N/RUFEUFKROX77eD+P:Hc6rT9lR/D+P","tlshash":"f8127617a262f968c6728052311a71d8b3f13900709f42faf239e6adf79cc44530bb7a","first_seen":"2026-03-19T13:37:22.853855Z","last_seen":"2026-03-19T13:37:22.853855Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/product/indexList","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:37:04.159Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"POST /exchange/app/product/indexList HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nticket: \r\nContent-Length: 30\r\nOrigin: https://oxpquant.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":30,"data":"{\"pageIndex\":1,\"pageSize\":200}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:37:04 GMT\r\ncontent-type: application/json;charset=UTF-8\r\naccess-control-allow-origin: https://oxpquant.com\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3470,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"d738deacfbbc72c44dccf8268c6314df","sha1":"4951c526c4f4bc00710cc60d5c87757be32a54c9","sha256":"e77f3e543cfde587be738264d307dff40a5f7a7e3271e11f18aa23c3cf42c621","sha512":"d7ad2d17f2147d03aca774b89d337f6e65f62c48e93ed38bf65a2f2dfc71ecbffbd7f8fdf7ca6a12286c72c762ad4ce8676b547f9248a744166814837aeb5f6b","ssdeep":"","tlshash":"386165cf8f30ca9d233417a249e6328dbbc97ad8cfee55106fc56dbe41282157914b1a","first_seen":"2026-03-19T13:37:22.855016Z","last_seen":"2026-03-19T13:37:22.855016Z","times_seen":1,"resource_available":false,"data":null}},"time_used":182,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":182,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/favicon.ico","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oxpquant.com/","date":"2026-03-19T13:36:51.975Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: text/html\r\ncontent-length: 628\r\nlast-modified: Mon, 14 Jul 2025 04:09:56 GMT\r\netag: \"68748314-274\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":628,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"59098817936ee533ac8ce4ec5ece5416","sha1":"24a07325ac33b9907683579ad04b5d8cd21c8e62","sha256":"459251133a573d9f2c3b3d7d27f94b2c78ee36ba2e8220cd9f43f35c07fbeb23","sha512":"11f12cb2dadd5efe3134bdf9c9fa775173f26294d826e3e36c7cfd722fd151dc6da91fb211b9449cf0e2530f28aa161bd43454462da652c49dbf7f2887ea4868","ssdeep":"","tlshash":"44f042ce17e2510511e168206ae7b205655701efcc5ae8017a8c5640bf5175fd5a7fec","first_seen":"2025-07-26T22:21:08.524075Z","last_seen":"2026-03-19T13:41:44.500028Z","times_seen":24,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-vendors.76e03b8f.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:52.287Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-vendors.76e03b8f.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:52 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-116a0d\"\r\nexpires: Fri, 20 Mar 2026 01:36:52 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1141261,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65527), with no line terminators","md5":"958abbc7ae2a4554924ac95efaa472ed","sha1":"04b14cbffff2d72c3f50cd9e29197fd090456a90","sha256":"1ac7e8195a81488c5a7c96d91d3ec9ca29a8c490bfbd528d7fdba90877d462a9","sha512":"8cc2f3024208eaa970fd2f60abd254314459dc025f5602c4e7c429465481d8571a8a31a714f35d2580768b1180dbb7718cff02ac1cd948f4162f6e8e0e14f4ff","ssdeep":"12288:7rI4ITIt4tDLAGU/W22UHyKbORab7/NHW4kPKxiOHpQToN9vWFvsc:44mVLAGU/H2UHIanFW4kPKxRHpLjvGvr","tlshash":"84251a9db384b06552e734b4506f650b92367808b40bc9d4fa66e5c6acbc95f223bf3c","first_seen":"2025-07-26T22:21:08.673947Z","last_seen":"2026-03-19T13:41:44.482869Z","times_seen":11,"resource_available":false,"data":null}},"time_used":708,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":708,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-29b5e6f0.47d23fdc.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.016Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-29b5e6f0.47d23fdc.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-940\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2368,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2368), with no line terminators","md5":"2c7d90f0db49a1125b3ec8bafc5d0dd7","sha1":"94f331ef090d7f483b3a2da610c8f915c79a0164","sha256":"85a3eb7cdb65258982584f09e6593a4d9f526980d90c8f0329b7450443e3be21","sha512":"b25bd79cd17c1fffff85fa8fb8701666aefa218f597d99256e690d88807cd9d5507f0ebd506306f8922dd33b6e0e1830633b6c7fea7380d63766db3410abe0bf","ssdeep":"","tlshash":"7141440e704fe5fe443b85a1305fa114a1a33b0580089956fb78dda967acda43f37b9d","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.856807Z","times_seen":11,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-6be4e8c2.402c94be.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.761Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-6be4e8c2.402c94be.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-caf\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3247,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3247), with no line terminators","md5":"c13e8f4bcc1445f892d385f145d136e3","sha1":"739b2f2b4e655eb2e0b44f495a9b140fa72fa32d","sha256":"5fdc946a1e28f9426b9e16a8a26acfd86bf8eac18f8099a21d7639e31543458f","sha512":"a2a9dac198ce4f87f56474621b485d560660af6a1773b72a9b441e714d9d56966cb97f4e472b41a70e428b2bedaf0b1a21f37ff3c1f77548e8cceff2513d706c","ssdeep":"","tlshash":"8561564b708bec9e4a33a255320f7158f2e5391960091965ff75ce97f66c8007317bae","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.857683Z","times_seen":7,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-733f4d6e.d6a44824.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.840Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-733f4d6e.d6a44824.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 747\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-2eb\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":747,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (715), with no line terminators","md5":"cdb5d832e740a0842fef1723377c482a","sha1":"def17bfce439adab7843365a9a7343eef97b8f7b","sha256":"29766cec5a065cc27390dac6915bf50fc82f08fd90b582af758176e1e90b840e","sha512":"003e92d157ded08c16d225744dda23943bcf30e5a1b86ee4b625dc3da759533627af7386a27a18399db8811539542ff5102635516657d2971a4dadb1bbf33023","ssdeep":"","tlshash":"2101892c7493e39c8d7f8a85530b2771a0553f59853064c3e7f5c6a85270aa90a1fa69","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.8587Z","times_seen":10,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":174,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-7e0ec83a.0af78355.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.944Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-7e0ec83a.0af78355.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-6aa\"\r\nexpires: Fri, 20 Mar 2026 01:36:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1706,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (1622), with no line terminators","md5":"f5eb9017953638a0bd895c089b3fb8f8","sha1":"cefcf1baea6b58fb8262a13d1e69989013680c2e","sha256":"c4a9966a7edc4b82511ae9c7df88b02703dd758735885d9cd5a866d79c3937f7","sha512":"551d47ad4bbbf97b71a10b7054f73a46409df835a22ed619671062846ec8f94ef01675e1621595e136b58aab69f9dab022f92b5450495ff732c6fd34fa826f7a","ssdeep":"","tlshash":"7731565c70e7f65d5df6a171414b3835b0631f95a60858835f748be0aae089c2b1eebc","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.861637Z","times_seen":10,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/product/indexList","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:37:09.152Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"POST /exchange/app/product/indexList HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nticket: \r\nContent-Length: 30\r\nOrigin: https://oxpquant.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":30,"data":"{\"pageIndex\":1,\"pageSize\":200}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:37:09 GMT\r\ncontent-type: application/json;charset=UTF-8\r\naccess-control-allow-origin: https://oxpquant.com\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3467,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"10b6f3cd57533a3143936854bcadaac7","sha1":"6c7ca162ee08ae998a54308dd214707b825f95df","sha256":"c8bab1e4a64c9d1e994ea32a5671f5588e02ca236e92ac94ca63ff20d616db1b","sha512":"e87671780e0c0ab01ed8855273e671469ab80d36ae932a0d289f6544e7751fdb43ead206d3a7622a2f672b27aae0179a1036add354e85c6f14464df13218f61d","ssdeep":"","tlshash":"9f6156cf8f308a9c237417a249e6328dbbc976d9cfef55106fc56dbe41282057514b1a","first_seen":"2026-03-19T13:37:22.862607Z","last_seen":"2026-03-19T13:37:22.862607Z","times_seen":1,"resource_available":false,"data":null}},"time_used":182,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":182,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-11cebc84.fde89aa2.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.450Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-11cebc84.fde89aa2.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-865\"\r\nexpires: Fri, 20 Mar 2026 01:36:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2149,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2149), with no line terminators","md5":"11b2af88756ec953a81341648c52b744","sha1":"3417ce240c832bf11b1d0fad9722aab21847406b","sha256":"43ef0b8a02de15d144e0c7186d8fd6b5f62bf0c89ea81ae089412f3ddb7a46d6","sha512":"15fb058642fd992abde8065a62fbf7bd54831a5e69abb36a6d0fb7e986880ac6528287634097dac0f90d24424179003315c529bdf4b7ac75ee96005370f6b93b","ssdeep":"","tlshash":"db417bf1a2991a3c7dfbf2a475c01adf7c1d72bf95a3425cc8222229c45388d76a15cb","first_seen":"2023-09-17T16:40:37Z","last_seen":"2026-03-19T13:41:44.509528Z","times_seen":8,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-1ab2e2c6.6e46e8cc.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.454Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-1ab2e2c6.6e46e8cc.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-93f\"\r\nexpires: Fri, 20 Mar 2026 01:36:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2367,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2367), with no line terminators","md5":"fe5a29bb7e4be22f3dcb4bebf76c7e15","sha1":"f070f44d381be39d8d9a2acf86302b465f9db488","sha256":"4762b15ce383a055fbb4078616949636b5068923c2a3c6fa3c1f42dfac318af8","sha512":"2bbc134ee90cde9c4bb4fd2e0b332c28c5640939779b120c91014ac5d6f050555a569cebee7367727842c7beca69ed16a75e16afef6c6c2acd4cf6e9de6baa1b","ssdeep":"","tlshash":"9e41fc2172e824dca22af49269c117eb7404bd7b424e43f58f536032cca7d6b5770b8c","first_seen":"2026-03-19T13:37:22.864328Z","last_seen":"2026-03-19T13:41:44.504746Z","times_seen":2,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-2d222368.dd902b9c.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.088Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-2d222368.dd902b9c.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-cce\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3278,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3278), with no line terminators","md5":"d00a682ee374f7fc63e7f3075fdf19ed","sha1":"13c7039b2f0b77bf4736404ce18b463db736d607","sha256":"869bdee90e70471bde996325a0edbe01ed6d2b47566311b3b89677c2562e2a94","sha512":"fc2e72c644f144c4a56a32f8675e18024e6c7b318aa480b27d1078c21f0bd64ccd1bb52d780ceaa8cf2f1d3677165713bb0fb37177801caab8b50ef080608ce8","ssdeep":"","tlshash":"2661a6524fd6e76f6c5ae53710241a34a0a61bf89410a0d3eab4dfd0b2d8c772f1e538","first_seen":"2025-07-26T22:21:08.543656Z","last_seen":"2026-03-19T13:37:22.865108Z","times_seen":5,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-2e9838ef.3c5cf1a0.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.276Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-2e9838ef.3c5cf1a0.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-16e9\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5865,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5865), with no line terminators","md5":"c115093d17a5c96f321d6f2d7d593218","sha1":"75b423a083c7a15317ecb78e0b477871a1ee595b","sha256":"0b6b46722dda70a32a90cc43eb32888447f881d1fe1c1d489a397136996c46dd","sha512":"f8500de653057cecf4183278c3408cfa39ae3d496a54b76a07a27db888469b2c3cb6d9a2b328fa3a7d92bdb8ffa432bdb1db79730ff82b4c87fb00ef71678cf4","ssdeep":"96:IXmnhCnA5Rn75OmmO7OpuFgu1n4fXIqVf/7H9zUZO82IdsPbpH9eVbgw5phFgpuC:oGhSA5h7WObpnUYqV3NUXNdqeVbgwlGZ","tlshash":"27c1a57c744fb94e075b60b6211f10c8d6fd2878a51cca7afba5e8f1a75c8041323ada","first_seen":"2026-03-19T13:37:22.865908Z","last_seen":"2026-03-19T13:37:22.865908Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-421b54d2.daaa7fc0.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.479Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-421b54d2.daaa7fc0.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-430\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1072,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1072), with no line terminators","md5":"ff07179415b0562961df681b3ae846d0","sha1":"0a1e4b474656b76d43ba6ccf88298c32f6dbc20b","sha256":"a3d4c0587a7a679259bfdb100c6b1227278eedecef05dab3b7e4d1f982a1a5d9","sha512":"e20cf22fa06674afb78737131df438d0e1eca7dcbe63472e6a5e55403aceb1f597daf8122a0369d6141fa5937102da9d925a640f71c09fcc5eb99f069081526e","ssdeep":"","tlshash":"ec11d029b096e5bcfd3ba0c1115eb33490652be4546090c7bbb4c594e7e0da9230fb2d","first_seen":"2025-07-26T22:21:08.725426Z","last_seen":"2026-03-19T13:37:22.86677Z","times_seen":5,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/fonts/element-icons.535877f5.woff","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.214Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/fonts/element-icons.535877f5.woff HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/static/css/chunk-vendors.679b0d61.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: font/woff\r\ncontent-length: 28200\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-6e28\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":28200,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 28200, version 1.0","md5":"535877f50039c0cb49a6196a5b7517cd","sha1":"0000c4e27d38f9f8bbe4e58b5ce2477e589507a7","sha256":"ab40a58972be2ceab32e7e35dab3131b959aae63835d7bda1a79ae51f9a73c17","sha512":"da269b20f13fb5b0bb4628b75ec29e69bb2d36999e94b61a846cb58db679287a13d0aa38cdf64b2893558d183c4cc5df8da770e5a5b2a3288622cd4bd0e1c87b","ssdeep":"768:gOvv6ExpCVxUtrT6w8ClFd80EjPVerMKBaGXjAlEm:Hvv6xVWewtlFdGjPlkFjAlEm","tlshash":"b9c2e13197213ae9d9824ef876e498fef1651402290f390e8696adb3a98d5c73e16831","first_seen":"2023-04-05T15:22:49Z","last_seen":"2026-06-08T15:00:34.750907Z","times_seen":26041,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":175,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/carousel/list","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:54.304Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"POST /exchange/app/carousel/list HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nticket: \r\nContent-Length: 29\r\nOrigin: https://oxpquant.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":29,"data":"{\"pageIndex\":1,\"pageSize\":10}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:54 GMT\r\ncontent-type: application/json;charset=UTF-8\r\naccess-control-allow-origin: https://oxpquant.com\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":258,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"2c89287a18c5797dd231bed10d73c814","sha1":"26896d72528680b2782b53b1455bb282272bec82","sha256":"46d7ab108ef9f4ca304e210adfdb2c15242c80257222cc823b397382d1e6287f","sha512":"bbb8b7c2f66d616176c3bd60d9fd294f414414909d3f0de45333ce561616f8f98eafa3400f47f691890bc14e0ac92f1defc0f29f1ffa2282dcd77cb07d0ecab6","ssdeep":"","tlshash":"fad05b62a5942be1db8035c0319fe41c45eb1d439cc19d8ee74dbf0d46c70a29256515","first_seen":"2026-03-19T13:37:22.869439Z","last_seen":"2026-03-19T13:41:44.508963Z","times_seen":2,"resource_available":false,"data":null}},"time_used":214,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":214,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/css/chunk-7e0ec83a.a2d63768.css","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:57.249Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/css/chunk-7e0ec83a.a2d63768.css HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:57 GMT\r\ncontent-type: text/css\r\ncontent-length: 261\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\netag: \"6958896e-105\"\r\nexpires: Fri, 20 Mar 2026 01:36:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":261,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with no line terminators","md5":"42e9ef315dbc2611da06ed4c87f7a5ba","sha1":"88708567ac29df5d13c85745bf527098433c8c80","sha256":"fa10c2656238d1fa35900450912f9eac248459e229672e2d1f6d22452cf0d291","sha512":"5f26f90de7a3694d10c928425100ba0e2d9df79ff586036355963cde0ae4547da5040b182040f61797bdb42537046e783ffa8df68876027b85562706d22aaf8b","ssdeep":"","tlshash":"93d0950370504474f52fc47011f103f1b01d17175372e3fe09131174d8761215b45acc","first_seen":"2023-09-17T16:40:38Z","last_seen":"2026-03-19T13:37:22.87051Z","times_seen":11,"resource_available":false,"data":null}},"time_used":213,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":213,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/desktop/static/js/chunk-4fbd05f8.cbae6310.js","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:36:58.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"GET /desktop/static/js/chunk-4fbd05f8.cbae6310.js HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:36:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 03 Jan 2026 03:13:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6958896e-7778\"\r\nexpires: Fri, 20 Mar 2026 01:36:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":30584,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (14672), with no line terminators","md5":"b8da6e9fed45c5fff75cf5758520131b","sha1":"d279b464ecd14b4ee35f7712bd95ef4bad60851d","sha256":"f7b8fe3a71200280cec62de55850bddc9bf8d32f7989d65d565d1b752d6fff36","sha512":"611323c0b25d394b5363f01a000765e2fda6d63d5e898a3f0b08626a83ea464f87cefd3ac79918c0f76d022b7a7ef105cbe7f85b27f3f2aa9024dba442275177","ssdeep":"768:TYxmBlO0A4buUWYh0hih1irkcTQzznW8nR3PUxUKUDmExXu+oDhx/iXARY26cB6p:PTRA4XgaABxs","tlshash":"24d2ecb7a285d1b868802b85159933a5631d9c36bf63f4f45c8d901ab3f071ac532efb","first_seen":"2026-03-19T13:37:22.871866Z","last_seen":"2026-03-19T13:37:22.871866Z","times_seen":1,"resource_available":false,"data":null}},"time_used":176,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oxpquant.com/exchange/app/product/indexList","fqdn":"oxpquant.com","domain":"oxpquant.com","tld":"com"},"ip":{"addr":"148.66.7.26","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oxpquant.com/desktop/","date":"2026-03-19T13:37:09.241Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oxpressai.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 23:42:09 GMT","end":"Tue, 31 Mar 2026 23:42:08 GMT"},"fingerprint":{"sha1":"DA:DB:1C:63:AF:D4:22:7C:40:5D:F8:22:7D:33:C5:BA:0C:04:98:BF","sha256":"1D:FF:0B:9A:D1:2A:6A:EB:91:A0:7F:C6:0E:51:0B:68:BD:96:F1:30:E0:F7:28:2A:F2:F7:D7:B0:88:80:A0:99"}}},"request":{"raw":"POST /exchange/app/product/indexList HTTP/1.1\r\nHost: oxpquant.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nticket: \r\nContent-Length: 30\r\nOrigin: https://oxpquant.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://oxpquant.com/desktop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":30,"data":"{\"pageIndex\":1,\"pageSize\":500}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 13:37:09 GMT\r\ncontent-type: application/json;charset=UTF-8\r\naccess-control-allow-origin: https://oxpquant.com\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3467,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"10b6f3cd57533a3143936854bcadaac7","sha1":"6c7ca162ee08ae998a54308dd214707b825f95df","sha256":"c8bab1e4a64c9d1e994ea32a5671f5588e02ca236e92ac94ca63ff20d616db1b","sha512":"e87671780e0c0ab01ed8855273e671469ab80d36ae932a0d289f6544e7751fdb43ead206d3a7622a2f672b27aae0179a1036add354e85c6f14464df13218f61d","ssdeep":"","tlshash":"9f6156cf8f308a9c237417a249e6328dbbc976d9cfef55106fc56dbe41282057514b1a","first_seen":"2026-03-19T13:37:22.862607Z","last_seen":"2026-03-19T13:37:22.862607Z","times_seen":1,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"oxpquant.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}