{"report_id":"99821201-0d1b-4a08-a1fc-1f5b9c149de7","version":0,"status":"done","tags":[],"date":"2026-06-28T13:19:23Z","url":{"schema":"http","addr":"yjzaxyey.com","fqdn":"yjzaxyey.com","domain":"yjzaxyey.com","tld":"com"},"ip":{"addr":"104.21.62.242","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"yjzaxyey.com/","fqdn":"yjzaxyey.com","domain":"yjzaxyey.com","tld":"com"},"title":"重庆科电广远商贸有限公司","dom":{"size":680,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"8d7ea8ce7b0066e53a17423f11751489","sha1":"fb3696f32dc53f050dafcdd666812c2f0f5978db","sha256":"edfc4d5c6e7261cf6116fad37919957b02b29eb93968f139a2cfbab4fed4d1f8","sha512":"ead76f8007ed73a9b55238f315fa10ebc468c0e4a73c14e521943dc8cea27015850b12ce066754f97969e419a373bd7e2e1d0ec899b92fdf0795b0ca119d9522","ssdeep":"","tlshash":"6e01d3074c00fc1959615b2478c573acd2c1783c3e24dd40b68f0a9b0ee4ac6cb9cc60","dom_hash":"domhash8b47307ccdc21c06e853d46afa388f8d","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"yjzaxyey.com","fqdn":"yjzaxyey.com","domain":"yjzaxyey.com","tld":"com"},"ip":{"addr":"104.21.62.242","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-02T13:19:23Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-28","alert":"Phishing Block","trigger":"yjzaxyey.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"amo.jlidesign.com","ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2017-10-18","domain_rank":0,"first_seen":"2025-12-21T12:03:49.686397Z","last_seen":"2026-06-28T10:22:24.886527Z","alert_count":0,"request_count":2,"received_data":0,"sent_data":1103,"comment":"","tags":null,"fingerprints":null},{"fqdn":"at.alicdn.com","ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2008-06-25","domain_rank":96084,"first_seen":"2013-11-28T05:03:29Z","last_seen":"2026-06-26T03:45:52.797316Z","alert_count":0,"request_count":2,"received_data":0,"sent_data":1000,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ok2yy.top","ip":{"addr":"104.21.37.86","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-02-03","domain_rank":0,"first_seen":"2026-03-04T12:17:46.521666Z","last_seen":"2026-06-28T13:05:28.972764Z","alert_count":0,"request_count":1,"received_data":900,"sent_data":459,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"w.bemorehn.com","ip":{"addr":"104.21.35.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2018-08-29","domain_rank":0,"first_seen":"2026-06-28T13:19:23.608709Z","last_seen":"2026-06-28T13:19:23.608709Z","alert_count":0,"request_count":10,"received_data":21691,"sent_data":5510,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"yjzaxyey.com","ip":{"addr":"104.21.62.242","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-04-09","domain_rank":0,"first_seen":"2026-06-28T13:05:28.166492Z","last_seen":"2026-06-28T13:05:28.166492Z","alert_count":18,"request_count":6,"received_data":449938,"sent_data":3134,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery:1.10.2","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"gp.tuku8.fit","ip":{"addr":"104.26.2.21","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-11-16","domain_rank":0,"first_seen":"2025-11-22T19:57:39.127852Z","last_seen":"2026-06-21T09:55:17.107482Z","alert_count":0,"request_count":1,"received_data":57667,"sent_data":569,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"amo.jlidesign.com:4949/col/179/alalx18m.jpg","fqdn":"amo.jlidesign.com","domain":"jlidesign.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.946Z","timestamp":1782652731946,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /col/179/alalx18m.jpg HTTP/1.1\r\nHost: amo.jlidesign.com:4949\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T20:32:15.499955Z","times_seen":16835046,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"at.alicdn.com/t/font_2805178_apwa1emhlkv.css","fqdn":"at.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.885Z","timestamp":1782652731885,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /t/font_2805178_apwa1emhlkv.css HTTP/1.1\r\nHost: at.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T20:32:15.499955Z","times_seen":16835046,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ok2yy.top/ccc2.js","fqdn":"ok2yy.top","domain":"ok2yy.top","tld":"top"},"ip":{"addr":"104.21.37.86","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.891Z","timestamp":1782652731891,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ok2yy.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 01 Jun 2026 07:48:13 GMT","end":"Sun, 30 Aug 2026 08:40:14 GMT"},"fingerprint":{"sha1":"2A:A8:FA:6F:D8:DB:3A:08:4B:E9:13:A2:96:5F:17:5E:B3:01:0D:5E","sha256":"E3:A4:DF:2D:EE:62:C6:D7:7C:27:BE:7E:23:00:0C:D0:13:7E:2D:FC:07:A4:B0:ED:DE:6D:60:90:AB:CD:DA:FD"}}},"request":{"raw":"GET /ccc2.js HTTP/1.1\r\nHost: ok2yy.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:18:52 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a3e0421-b1\"\r\nlast-modified: Fri, 26 Jun 2026 04:46:25 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Mon, 29 Jun 2026 01:04:59 GMT\r\ncache-control: max-age=43200\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fNVGHJh0rdeK4ArqVIxG2UD147IuISV4RxsnZFPrwcawD2Jh1qAhK0ne%2BDDBRZGJTJeKVYgX%2BU8qvPVH7xcxw4DgDGBQGJZ7ScyGvktsLukdQvIus8RWVvwNSiA%3D\"}]}\r\nage: 832\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a12cfad72906b28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":177,"size_decoded":874,"mime_type":"application/javascript","magic":"ASCII text, with no line terminators","md5":"b85fc6b08b988da83dcd70ddf14646ec","sha1":"fffe18b39b607038bdc8b831a443cdebe7adc98d","sha256":"26a8565ad2848f400929021242c0756ae18f622358acde38047ee1e5383025fd","sha512":"ac50ec294a452f7bba28351ecc0a2196e3f9ff1277310083a49955f640cb0c46811ba03dad46bd8c7f21a2e499967bc2fd77aa11a1fdfae57d1ec05850366c9d","ssdeep":"","tlshash":"19c0125b4a221c2a550500a428a5c5dca6f691f07a5402717d9ca465939916258d1b8d","first_seen":"2026-06-28T13:05:32.905012Z","last_seen":"2026-06-28T13:44:36.525307Z","times_seen":3,"resource_available":false,"data":null}},"time_used":144,"timings":{"blocked":-1,"dns":100,"connect":32,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"w.bemorehn.com/navi/06845134691202433.png","fqdn":"w.bemorehn.com","domain":"bemorehn.com","tld":"com"},"ip":{"addr":"104.21.35.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.913Z","timestamp":1782652731913,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bemorehn.com","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 10:22:21 GMT","end":"Thu, 17 Sep 2026 10:22:20 GMT"},"fingerprint":{"sha1":"6F:3E:10:D2:A9:20:3D:7C:CF:EF:5A:EA:35:36:D0:6B:EB:9F:FC:30","sha256":"EE:AB:2F:91:57:3B:80:74:3E:FC:96:CB:E8:8D:F2:B5:B7:84:3C:E5:1C:7E:DF:2F:55:20:78:7D:36:C1:94:E4"}}},"request":{"raw":"GET /navi/06845134691202433.png HTTP/1.1\r\nHost: w.bemorehn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sun, 28 Jun 2026 13:18:52 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 02 Dec 2021 11:05:46 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\netag: W/\"61a8a88a-8f1\"\r\nexpires: Tue, 28 Jul 2026 13:04:56 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 835\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=br2s2z6gurPrpCN21DT7SclhVk4cFXWm6RypnzwW8lMRbYcCqnzbNEtuq2gBfks814Epcx2X5yhixUhh3A0kynNJh0iaGC5G8k2U%2F8Up5Xb8XvZzcmjw3%2FcdRF4VDOQm5Q%3D%3D\"}]}\r\ncf-ray: a12cfad86c198deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2289,"size_decoded":3038,"mime_type":"image/png","magic":"PNG image data, 87 x 87, 8-bit/color RGBA, non-interlaced","md5":"deac00b717343376ef6569e3456c7da2","sha1":"ded768734f4b2273bccb0b2670dee1f4ec97d557","sha256":"d72b93389f9869a296f75ed5937242af0a29d95d3bae7867c2a0fcd423464fda","sha512":"f0e806f4d53129c4d9ce0a8afe5843d35fb5fbfce8023b6461072ed01778400fedd11a39dea139962c32c34c899a55e01ee125d4a8d5cce6aa82efa6a22fd3f4","ssdeep":"","tlshash":"ce413dd36bd83b2b1ec774d00714671eea33989a8f3a431b6c46d50662511936be4854","first_seen":"2023-05-14T18:06:53Z","last_seen":"2026-06-28T13:44:36.530346Z","times_seen":435,"resource_available":false,"data":null}},"time_used":301,"timings":{"blocked":288,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"w.bemorehn.com/navi/06845136129416013.png","fqdn":"w.bemorehn.com","domain":"bemorehn.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.918Z","timestamp":1782652731918,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /navi/06845136129416013.png HTTP/1.1\r\nHost: w.bemorehn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T20:32:15.499955Z","times_seen":16835046,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"w.bemorehn.com/navi/06845136605233278.png","fqdn":"w.bemorehn.com","domain":"bemorehn.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.919Z","timestamp":1782652731919,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /navi/06845136605233278.png HTTP/1.1\r\nHost: w.bemorehn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T20:32:15.499955Z","times_seen":16835046,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"w.bemorehn.com/navi/06845138413812691.png","fqdn":"w.bemorehn.com","domain":"bemorehn.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.922Z","timestamp":1782652731922,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /navi/06845138413812691.png HTTP/1.1\r\nHost: w.bemorehn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T20:32:15.499955Z","times_seen":16835046,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"amo.jlidesign.com:4949/col/179/amgjp.jpg","fqdn":"amo.jlidesign.com","domain":"jlidesign.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.945Z","timestamp":1782652731945,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /col/179/amgjp.jpg HTTP/1.1\r\nHost: amo.jlidesign.com:4949\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T20:32:15.499955Z","times_seen":16835046,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"at.alicdn.com/t/font_2748176_bvpzrxyy7vc.css","fqdn":"at.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.881Z","timestamp":1782652731881,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /t/font_2748176_bvpzrxyy7vc.css HTTP/1.1\r\nHost: at.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T20:32:15.499955Z","times_seen":16835046,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yjzaxyey.com/static/javascripts/jquery-1.10.2.min.js","fqdn":"yjzaxyey.com","domain":"yjzaxyey.com","tld":"com"},"ip":{"addr":"104.21.62.242","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.887Z","timestamp":1782652731887,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yjzaxyey.com","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Jun 2026 02:04:14 GMT","end":"Wed, 09 Sep 2026 02:04:13 GMT"},"fingerprint":{"sha1":"7E:5A:EF:D3:D1:C2:12:77:93:01:CD:E4:3E:60:09:84:D8:58:96:DE","sha256":"4E:D1:8A:05:C7:15:AD:85:75:AE:35:91:72:05:73:35:90:A7:6C:81:6E:87:04:66:66:6E:53:28:C4:3E:D8:9B"}}},"request":{"raw":"GET /static/javascripts/jquery-1.10.2.min.js HTTP/1.1\r\nHost: yjzaxyey.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nCookie: CMS_Session_ID=g00hgo937fek62erg829ou1ma5\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:18:51 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 02 Dec 2021 11:05:53 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"61a8a891-16b87\"\r\nexpires: Mon, 29 Jun 2026 01:04:56 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nage: 835\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AnfiowEr%2Fxd%2FbASYOe5L3VmqK7PG2VJPA4jN%2FcxlS0AuFM8kLxLoFUzdnXfm2oqGEpLMUrJkANu1rqbcjKDKDFrB%2F19cmKvFiDu3%2FvSA6i6zgpuFe0ilovwuKYbG%2BKI%3D\"}]}\r\ncf-ray: a12cfad649c4712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":93063,"size_decoded":33809,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32072)","md5":"bdf204d82233419b3dd2c8eeff2e0b53","sha1":"7190f524bd8396329161e3a593c18baacb806600","sha256":"6c1a56367032d031feb64ec8dda18f6fc4722d20ccf9391fdad5942e3d46fc31","sha512":"a47d4088962a499d613f2c2adb81fa4013c5d4525b9678afef496657220edc9c223992d8790389e5165adba8d01fbb35a800c0b6339b934e902d33a15c7bbd69","ssdeep":"1536:34mCgi8DyCuXXFiJ+L0kJQsJVPEKLQRZdC/RlfDknv+p0WzH/IoSZ7qABZnu0sFn:3GsKXlI2p0WPSbDrstfak","tlshash":"5f93f8ddb2d1b06257bb21bd006f540ff236195e280d8850f129e8eabc74a4d9277fad","first_seen":"2023-03-07T12:09:26Z","last_seen":"2026-06-28T13:44:36.529761Z","times_seen":709,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-28","alert":"Phishing Block","trigger":"yjzaxyey.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"w.bemorehn.com/navi/06845124576521969.png","fqdn":"w.bemorehn.com","domain":"bemorehn.com","tld":"com"},"ip":{"addr":"104.21.35.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.908Z","timestamp":1782652731908,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bemorehn.com","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 10:22:21 GMT","end":"Thu, 17 Sep 2026 10:22:20 GMT"},"fingerprint":{"sha1":"6F:3E:10:D2:A9:20:3D:7C:CF:EF:5A:EA:35:36:D0:6B:EB:9F:FC:30","sha256":"EE:AB:2F:91:57:3B:80:74:3E:FC:96:CB:E8:8D:F2:B5:B7:84:3C:E5:1C:7E:DF:2F:55:20:78:7D:36:C1:94:E4"}}},"request":{"raw":"GET /navi/06845124576521969.png HTTP/1.1\r\nHost: w.bemorehn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sun, 28 Jun 2026 13:18:52 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 02 Dec 2021 11:05:47 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\netag: W/\"61a8a88b-712\"\r\nexpires: Tue, 28 Jul 2026 13:04:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 831\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Lmj%2Ffdoh4PnnlHfRT4rgrG%2BN5EqCsYU4JDAnrL0Jy6imGgCY0qV123g87udglNzcXf0uhW6AafLDHf8WxWMEMJHxNQns2qFJ8LXEvNpJ3SbWhUnefuz1uIZKbGnIwr9Trw%3D%3D\"}]}\r\ncf-ray: a12cfad72ff58deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1810,"size_decoded":2245,"mime_type":"image/png","magic":"PNG image data, 87 x 87, 8-bit colormap, non-interlaced","md5":"bdd3edd033dfc1f967d2badf124f561a","sha1":"8c3bfc41727e63239dd3f35ecbb2b89845e0357b","sha256":"a433ba91d30c446dc4a7e4f24191459a36032964c5348cd8837dbd3b2d198e89","sha512":"e2e5ebeafc5fc85ba36fb3160d58b203727d1ef7f3c88717b492f3a06953ec10dcaec72a148ccea31741676231bc73d3d520f51dfce1a82102937d5c7b8911eb","ssdeep":"","tlshash":"6131ec654a9cfe34cadb5a1039bbb3548c0b654a441ba373363241e71f6d23c53875e1","first_seen":"2023-05-14T18:06:53Z","last_seen":"2026-06-28T13:44:36.526811Z","times_seen":442,"resource_available":false,"data":null}},"time_used":129,"timings":{"blocked":90,"dns":3,"connect":1,"send":0,"wait":10,"receive":0,"ssl":25},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"w.bemorehn.com/navi/06845135806059856.png","fqdn":"w.bemorehn.com","domain":"bemorehn.com","tld":"com"},"ip":{"addr":"104.21.35.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.916Z","timestamp":1782652731916,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bemorehn.com","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 10:22:21 GMT","end":"Thu, 17 Sep 2026 10:22:20 GMT"},"fingerprint":{"sha1":"6F:3E:10:D2:A9:20:3D:7C:CF:EF:5A:EA:35:36:D0:6B:EB:9F:FC:30","sha256":"EE:AB:2F:91:57:3B:80:74:3E:FC:96:CB:E8:8D:F2:B5:B7:84:3C:E5:1C:7E:DF:2F:55:20:78:7D:36:C1:94:E4"}}},"request":{"raw":"GET /navi/06845135806059856.png HTTP/1.1\r\nHost: w.bemorehn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sun, 28 Jun 2026 13:18:58 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 02 Dec 2021 11:05:46 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\netag: W/\"61a8a88a-c55\"\r\nexpires: Tue, 28 Jul 2026 13:04:56 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 841\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OppwN2f6QRf5Atij1MW0wy9W6sLYIJIIdGZPcoFWvtTDQvz08fm2lXdSWRxb5CKmebLl%2BNVho%2B7HfnrBQ5vh77kvGkuq%2FJrScEfHD1npgVOJZ035BE8pBsLaL%2B5fSY2g6A%3D%3D\"}]}\r\ncf-ray: a12cfb008ac68deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3157,"size_decoded":3910,"mime_type":"image/png","magic":"PNG image data, 87 x 87, 8-bit/color RGBA, non-interlaced","md5":"b06073e79f47a8a3ccf571e37bcaa9ad","sha1":"4668130ed0f0024bd5764b931a7e10b8373f7220","sha256":"9dbccf333c83ef08160e445d48118e269a20f63f83e1201de4d19757b2034818","sha512":"f466db1ef57f8953b5bfa8e65d98615ae1265b37357f26f62dd038ff78d89d94e2700d1b96d5a2e9547ee6d8bc47cfc0592aced639180fda99dba57d38eadba3","ssdeep":"","tlshash":"22513deb6456505fcf8bfe1e040b533aeb565e0d0d51c99898f46c14ec871ac50e78d1","first_seen":"2023-05-14T18:06:53Z","last_seen":"2026-06-28T13:44:36.531418Z","times_seen":436,"resource_available":false,"data":null}},"time_used":6724,"timings":{"blocked":6714,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yjzaxyey.com/","fqdn":"yjzaxyey.com","domain":"yjzaxyey.com","tld":"com"},"ip":{"addr":"104.21.62.242","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-28T13:18:50.791Z","timestamp":1782652730791,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yjzaxyey.com","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Jun 2026 02:04:14 GMT","end":"Wed, 09 Sep 2026 02:04:13 GMT"},"fingerprint":{"sha1":"7E:5A:EF:D3:D1:C2:12:77:93:01:CD:E4:3E:60:09:84:D8:58:96:DE","sha256":"4E:D1:8A:05:C7:15:AD:85:75:AE:35:91:72:05:73:35:90:A7:6C:81:6E:87:04:66:66:6E:53:28:C4:3E:D8:9B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: yjzaxyey.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:18:51 GMT\r\ncontent-type: text/html; charset=utf-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=0,i\r\nvary: Accept-Encoding\r\nset-cookie: CMS_Session_ID=g00hgo937fek62erg829ou1ma5; path=/\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hKzvU1DMZDoF0zyc8YLT1n%2Bu4063Bh%2FevSBlMlYlvhI8UMKA93v396Krno%2FXIXDIABishhjpVOoC4D%2FxHq6WMTFZZSJdi0zK9fMS%2FcfgCo%2FTb0g0S1T%2F9s23HpWmTJw%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: zstd\r\ncf-ray: a12cfacfb978712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery:1.10.2","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":230907,"size_decoded":39726,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (3597), with CRLF, CR, LF line terminators","md5":"8bb579bf4d73ba4ba866ccfdfa2c12d8","sha1":"abc7f30913fe8c5390c47e7033e3bea929e8f9e5","sha256":"fb5134145eb97ec11fd1c7ed507f6a8d79ebb223755cf2694056fd311031e165","sha512":"a9904c395480eb5d00a6edae574404b16519da15b0ac2b8d25ac77b42d6efa07ceb7592810b5240c1c7a1250b412e715daf130f861a1dee023f78b60e5869918","ssdeep":"1536:LvhgsfI+PbjGq3UsTneCd4zGmcFI01J2jx5cil0+M08PnoRnV8c3A5a9tN6vDk7Z:J2jx5ciqpPo6aKSJN3","tlshash":"10347ca9d7782227273901b979b1d3b428fee170ed236745b12f4869d5c4a0cececd86","first_seen":"2026-06-28T13:05:32.902392Z","last_seen":"2026-06-28T13:19:27.096316Z","times_seen":2,"resource_available":true,"data":null}},"time_used":866,"timings":{"blocked":-1,"dns":9,"connect":24,"send":0,"wait":573,"receive":259,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-28","alert":"Phishing Block","trigger":"yjzaxyey.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yjzaxyey.com/static/css/home.css","fqdn":"yjzaxyey.com","domain":"yjzaxyey.com","tld":"com"},"ip":{"addr":"104.21.62.242","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.878Z","timestamp":1782652731878,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yjzaxyey.com","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Jun 2026 02:04:14 GMT","end":"Wed, 09 Sep 2026 02:04:13 GMT"},"fingerprint":{"sha1":"7E:5A:EF:D3:D1:C2:12:77:93:01:CD:E4:3E:60:09:84:D8:58:96:DE","sha256":"4E:D1:8A:05:C7:15:AD:85:75:AE:35:91:72:05:73:35:90:A7:6C:81:6E:87:04:66:66:6E:53:28:C4:3E:D8:9B"}}},"request":{"raw":"GET /static/css/home.css HTTP/1.1\r\nHost: yjzaxyey.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nCookie: CMS_Session_ID=g00hgo937fek62erg829ou1ma5\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:18:51 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 14 Feb 2025 14:00:39 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"67af4c87-3edb\"\r\nexpires: Mon, 29 Jun 2026 01:04:56 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nage: 835\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1%2FJ1JYbu%2BR4ZqUcSwTvQjpHAP1M%2FVw5aRXyVDJowZSSooFmCi7RrsK7kYOmovdM55nprkxbpYSJpmt34TdL0fn6ZXa%2F073crvR%2BUeifgTeIoVciMO40wxXm4SaKejo0%3D\"}]}\r\ncf-ray: a12cfad649c3712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":16091,"size_decoded":4639,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (375)","md5":"db0ea92bd2ea5d9cc1b4e65eedc5bd4f","sha1":"472cbcfb690ad68a769f7551e92af2bf74bf6fd9","sha256":"2ca92eded6f6553a6ba3bd8cb4d7a667e36150887aaa26c37674f70374ce9ad3","sha512":"a3a1326aa13abc327b5ad0d65ee1684c5e28e66944834fca6b6b2e1d12ec2094eeb2a13f5210a8bf8a9ebf71125ee911190120996e03c9f981150a0e6fbd6a42","ssdeep":"192:OHH05eigoY1uqzH4AbfUfNeIcyJ6gbCG7UVmp02UC9CGZhKHz+HTuw2GI:/QAtaXbeNNcywg+G7UUprUCMGZiz+HKL","tlshash":"2c724631d3b1300db13fd0b2ba946b9a77149007d10faefdfa5579a9de4a0822762b4d","first_seen":"2025-04-17T17:51:47.28364Z","last_seen":"2026-06-28T13:44:36.528702Z","times_seen":44,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-28","alert":"Phishing Block","trigger":"yjzaxyey.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"w.bemorehn.com/navi/06845125845798953.png","fqdn":"w.bemorehn.com","domain":"bemorehn.com","tld":"com"},"ip":{"addr":"104.21.35.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.910Z","timestamp":1782652731910,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bemorehn.com","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 10:22:21 GMT","end":"Thu, 17 Sep 2026 10:22:20 GMT"},"fingerprint":{"sha1":"6F:3E:10:D2:A9:20:3D:7C:CF:EF:5A:EA:35:36:D0:6B:EB:9F:FC:30","sha256":"EE:AB:2F:91:57:3B:80:74:3E:FC:96:CB:E8:8D:F2:B5:B7:84:3C:E5:1C:7E:DF:2F:55:20:78:7D:36:C1:94:E4"}}},"request":{"raw":"GET /navi/06845125845798953.png HTTP/1.1\r\nHost: w.bemorehn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sun, 28 Jun 2026 13:18:52 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 02 Dec 2021 11:05:47 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\netag: W/\"61a8a88b-de9\"\r\nexpires: Tue, 28 Jul 2026 13:04:56 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 835\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7G%2FUb4JPxtFacPB2tUMqJF%2FE6%2FpjVOhdjZgKiZZKN5WGVkVho2kpPEFQKKgyyJuSEaDHFu4XEzFTGypvvq2KgUPPbFEWl7jtjCINEM0tc%2BdKqMkVf8hsx4NS%2BMiD7UpiNg%3D%3D\"}]}\r\ncf-ray: a12cfad87c6c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3561,"size_decoded":4316,"mime_type":"image/png","magic":"PNG image data, 87 x 87, 8-bit/color RGBA, non-interlaced","md5":"a80eef05773d6b505d89395c7918aa75","sha1":"5ff5a5afbf1e162ff2c11004e432af3b5506bee7","sha256":"3991866cbb3296483717573269466df5c2f244877a98e6e02fda238052605309","sha512":"f819347763b500147a2a0d1fb37fa1ce2e0064a84956e3deeb631f8c14186f1a5abdb738bcbcc4c894f4cc7aecaf8150a50672bdd6c34113c777deb099bd8022","ssdeep":"","tlshash":"a1716d16616e4464963738e41a6bd9b04b13e21ec02d838cc3df98ee24147d56a00a56","first_seen":"2023-05-14T18:06:53Z","last_seen":"2026-06-28T13:44:36.533585Z","times_seen":434,"resource_available":false,"data":null}},"time_used":312,"timings":{"blocked":303,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"w.bemorehn.com/navi/06845134967367633.png","fqdn":"w.bemorehn.com","domain":"bemorehn.com","tld":"com"},"ip":{"addr":"104.21.35.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.915Z","timestamp":1782652731915,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bemorehn.com","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 10:22:21 GMT","end":"Thu, 17 Sep 2026 10:22:20 GMT"},"fingerprint":{"sha1":"6F:3E:10:D2:A9:20:3D:7C:CF:EF:5A:EA:35:36:D0:6B:EB:9F:FC:30","sha256":"EE:AB:2F:91:57:3B:80:74:3E:FC:96:CB:E8:8D:F2:B5:B7:84:3C:E5:1C:7E:DF:2F:55:20:78:7D:36:C1:94:E4"}}},"request":{"raw":"GET /navi/06845134967367633.png HTTP/1.1\r\nHost: w.bemorehn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sun, 28 Jun 2026 13:18:52 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 02 Dec 2021 11:05:46 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\netag: W/\"61a8a88a-f81\"\r\nexpires: Tue, 28 Jul 2026 13:04:56 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 835\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=R%2Fs%2FdfhrVIxEEcSI0by9pv71CP2zsZvrkZDpbss8TE1etcTQvJV13VRo8Hav6FEbUJ9rKR5e8stsfmgEHzH%2FrmFrj3aK0x%2Fja9bwChzAAmBl3MvVE1ALljabEkRzaqiGVw%3D%3D\"}]}\r\ncf-ray: a12cfad86c348deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3969,"size_decoded":4717,"mime_type":"image/png","magic":"PNG image data, 87 x 87, 8-bit/color RGBA, non-interlaced","md5":"78b735b5dee41c6399b34323e4fa7b98","sha1":"eebdf460327ce83641628e32e9484448a10ce194","sha256":"4a99d8179b7cfef4a2366b23196abf40ff91d512c75f83233c6824d7a22cd2f8","sha512":"337786c5a891113c97bde96bd435c5c4e48d1f31e05b36f75c767df0eecf4954bfc3bf91442eece09372f0769c8e56a3b45c803b959c4a95f3880c019c4fc3d9","ssdeep":"","tlshash":"a3813b5d96e290be0af08df553c138ad0c1cad8e2aa6c1688d9243b1ac9362adcf0584","first_seen":"2023-05-14T18:06:53Z","last_seen":"2026-06-28T13:44:36.509246Z","times_seen":432,"resource_available":false,"data":null}},"time_used":301,"timings":{"blocked":293,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"w.bemorehn.com/navi/06831428620561815.png","fqdn":"w.bemorehn.com","domain":"bemorehn.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.920Z","timestamp":1782652731920,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /navi/06831428620561815.png HTTP/1.1\r\nHost: w.bemorehn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T20:32:15.499955Z","times_seen":16835046,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gp.tuku8.fit/Public/gp/0b6c7588c92a10951a76c9d2895492c3.jpg","fqdn":"gp.tuku8.fit","domain":"tuku8.fit","tld":"fit"},"ip":{"addr":"104.26.2.21","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.923Z","timestamp":1782652731923,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tuku8.fit","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 21:51:56 GMT","end":"Mon, 10 Aug 2026 22:51:46 GMT"},"fingerprint":{"sha1":"DE:90:E5:83:9E:F3:FF:F6:CA:62:73:5D:FF:E0:A3:B1:3C:C8:FD:74","sha256":"31:9D:B2:C4:D2:B7:26:4F:C9:2F:9E:14:87:31:08:48:2E:25:54:60:DA:70:87:D9:72:38:14:41:B9:C3:D5:B5"}}},"request":{"raw":"GET /Public/gp/0b6c7588c92a10951a76c9d2895492c3.jpg HTTP/1.1\r\nHost: gp.tuku8.fit\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sun, 28 Jun 2026 13:18:55 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nlast-modified: Sat, 27 Jun 2026 15:10:01 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\netag: W/\"6a3fe7c9-de09\"\r\nexpires: Tue, 28 Jul 2026 08:40:19 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\ncf-polished: format_not_supported\r\ncf-bgj: h2pri,imgq:85\r\nage: 16715\r\ncf-cache-status: HIT\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ahr8K6Q%2B5uFHWo5Oe6xOjNyBRYEQVZoeawhAgi9zBJ8%2BGDNcisGoXDHaROhXh77wPQKN7dSSg0VCEConzLtjoPuc8gC%2Fm3za3dbPAeD30UbmOQQD4LH0heyy%2FhJVFg%3D%3D\"}]}\r\ncf-ray: a12cfaeadb9eb4f4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":56841,"size_decoded":57384,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80\", progressive, precision 8, 500x500, components 3","md5":"009a59444d8258ac49a7eee9c9c77873","sha1":"205070e82d15adef4ff3c283cda64501c9a58b92","sha256":"0e5fd5f2b7c9441de70bed7b093feb23b94abc37e4344f270e70f37cabe5021c","sha512":"f678909340deebf7f329682eb523f7ff2d4765e1be632dbfa26121847fb60dc5e5093ce61733f6e82f564353d77e0326ba778612348c799879ff0405e4b37ead","ssdeep":"1536:udlVwrajGwW74jW7W7z3U/gpoGE3Z/iKEYDq5Qd:+O4GqW74U/UEJNEYDqud","tlshash":"8a430159f70d424eac5a8ff1807b61b3cd08898cad1d9dde6105f3682521bc9ebf6127","first_seen":"2026-06-28T13:05:32.865005Z","last_seen":"2026-06-28T13:44:36.531985Z","times_seen":3,"resource_available":false,"data":null}},"time_used":6401,"timings":{"blocked":3237,"dns":1,"connect":2,"send":0,"wait":16,"receive":0,"ssl":3145},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yjzaxyey.com/static/images/aqlm.png","fqdn":"yjzaxyey.com","domain":"yjzaxyey.com","tld":"com"},"ip":{"addr":"104.21.62.242","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.947Z","timestamp":1782652731947,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yjzaxyey.com","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Jun 2026 02:04:14 GMT","end":"Wed, 09 Sep 2026 02:04:13 GMT"},"fingerprint":{"sha1":"7E:5A:EF:D3:D1:C2:12:77:93:01:CD:E4:3E:60:09:84:D8:58:96:DE","sha256":"4E:D1:8A:05:C7:15:AD:85:75:AE:35:91:72:05:73:35:90:A7:6C:81:6E:87:04:66:66:6E:53:28:C4:3E:D8:9B"}}},"request":{"raw":"GET /static/images/aqlm.png HTTP/1.1\r\nHost: yjzaxyey.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nCookie: CMS_Session_ID=g00hgo937fek62erg829ou1ma5\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:18:51 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 14 Feb 2025 13:52:27 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nvary: Accept-Encoding\r\netag: W/\"67af4a9b-1708c\"\r\nexpires: Tue, 28 Jul 2026 13:04:56 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 835\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yVyEHJ%2FXZdyjhreyKTPjSDPvCoWEUkBCtVtUp9RITQ1FPzLtz4WlvgVrvU%2BTfwNB1pUKTa8COu7zXkA0dL%2FQjxTeTqvA%2B4CgoTwwL3hn%2BHWrNXd1wuuMXm0rL%2F5mUo0%3D\"}]}\r\ncf-ray: a12cfad6a9c8712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":94348,"size_decoded":94460,"mime_type":"image/png","magic":"PNG image data, 996 x 58, 8-bit/color RGBA, non-interlaced","md5":"8fcebad42eee50b43ee3bbaadac50ce7","sha1":"ab6736043a2315b5c1c27c7f420e194c71949fe4","sha256":"eb68a3a654d3d6d702d7e2362e2686fa0a70548beb5c7057a02d167e77c4e614","sha512":"bcc9062c0e1fc894f5c7588880dffacee17026737ebf14b4c383bd0d4a12c3954a7be9a0b5708d232565cca56167e5b5ed3e77ab10247c4e3ac81ef0629b2ac6","ssdeep":"1536:Cr0A/LdNlwLJz43BpnCz4pvehgl7DriLExZ/qw0DoVL+Uzw03KXeM7jni6Lf:CrnTdDGdz4pt1ryeZLBhEWZEtD","tlshash":"039312c7838f2badd443f627992f2dc510a8cbd249295049c74e27b6e3363ed3b2155a","first_seen":"2024-09-12T05:52:03Z","last_seen":"2026-06-28T13:44:36.528125Z","times_seen":66,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-28","alert":"Phishing Block","trigger":"yjzaxyey.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yjzaxyey.com/static/images/favicon.ico","fqdn":"yjzaxyey.com","domain":"yjzaxyey.com","tld":"com"},"ip":{"addr":"104.21.62.242","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:19:03.803Z","timestamp":1782652743803,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yjzaxyey.com","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Jun 2026 02:04:14 GMT","end":"Wed, 09 Sep 2026 02:04:13 GMT"},"fingerprint":{"sha1":"7E:5A:EF:D3:D1:C2:12:77:93:01:CD:E4:3E:60:09:84:D8:58:96:DE","sha256":"4E:D1:8A:05:C7:15:AD:85:75:AE:35:91:72:05:73:35:90:A7:6C:81:6E:87:04:66:66:6E:53:28:C4:3E:D8:9B"}}},"request":{"raw":"GET /static/images/favicon.ico HTTP/1.1\r\nHost: yjzaxyey.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nCookie: CMS_Session_ID=g00hgo937fek62erg829ou1ma5\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:19:03 GMT\r\ncontent-type: image/x-icon\r\netag: W/\"61a8a891-25be\"\r\nlast-modified: Thu, 02 Dec 2021 11:05:53 GMT\r\npriority: u=6,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VdZdRnwBX7z73o7Y6ZQfBLZciI41DlFFPbMS4KQYSCbTUsm1yyMVFM6tjG6aDGzJ%2FssHOT1hyyCM24RZ%2FTj69PuVlR0DAZY%2FhT9gfDQzBECv%2FJUs2oLhq%2Fm5GU0FIzQ%3D\"}]}\r\nage: 837\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a12cfb20cc5a712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9662,"size_decoded":6608,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel","md5":"cadf40951a2d1c4178faf67243325ebe","sha1":"9866b72f5a5938d834a15be0556ba8444f43358a","sha256":"e7ec617bbf2c82ed6586f7dc9686ef228b9025c8e399dfd50e39b0ec9079b4b5","sha512":"3873db2429ec11c21814effb53cc1fdfff54afd0a095c8681b80b0379a74fda33dc250263a994dc42800ae3c2fd8a2bbba86457283cde252cbf8edb142074587","ssdeep":"192:sn9rhZm7LUhAAQkbgDaQ2gmD9mkm8F8oTilq:snT2LUh25aQ2gy9mkm8F8osq","tlshash":"44126d837bc64663d4282830709bd72603969c21dee9f67b018abb07217b5b97870a28","first_seen":"2023-05-14T18:06:53Z","last_seen":"2026-06-28T13:44:36.515659Z","times_seen":578,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-28","alert":"Phishing Block","trigger":"yjzaxyey.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yjzaxyey.com/static/javascripts/bash.js","fqdn":"yjzaxyey.com","domain":"yjzaxyey.com","tld":"com"},"ip":{"addr":"104.21.62.242","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.889Z","timestamp":1782652731889,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yjzaxyey.com","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Jun 2026 02:04:14 GMT","end":"Wed, 09 Sep 2026 02:04:13 GMT"},"fingerprint":{"sha1":"7E:5A:EF:D3:D1:C2:12:77:93:01:CD:E4:3E:60:09:84:D8:58:96:DE","sha256":"4E:D1:8A:05:C7:15:AD:85:75:AE:35:91:72:05:73:35:90:A7:6C:81:6E:87:04:66:66:6E:53:28:C4:3E:D8:9B"}}},"request":{"raw":"GET /static/javascripts/bash.js HTTP/1.1\r\nHost: yjzaxyey.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nCookie: CMS_Session_ID=g00hgo937fek62erg829ou1ma5\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:18:51 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 02 Dec 2021 11:05:53 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"61a8a891-56e\"\r\nexpires: Mon, 29 Jun 2026 01:04:56 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nage: 835\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TGkV80PQgQ8Ztt%2BoSegqhgseJqm9HzZ%2BBddlAhuz5ihTFT30mxhxR%2FbK61dL9HzULeJAScjOjDueBsj32vWyoZrsz8VTL3UPqJvcUNwJIf4g7iDhBYEw6MLZaW6iI20%3D\"}]}\r\ncf-ray: a12cfad659c5712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1390,"size_decoded":1110,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"c54822212c05910c3af32d285d8434c9","sha1":"4682b179821b08ba9076cbd0ea2b7e734b190ca4","sha256":"bd87b277ab23a31f82c177ae878c76ec0f927129a20468de02850ea267d8e4e6","sha512":"684ffbc1293a16fd074ff8e421286618f4acbb272f4417ea9b59d2936da29084cf4ea364463ce9ffb407ceb6ad2243b96f2770490b4823ca7e72a9c5adfe7245","ssdeep":"","tlshash":"a921672db97a147600f7ba17163bee882803042fc606c600b17eadf51fe4286f66712a","first_seen":"2023-03-08T20:31:32Z","last_seen":"2026-06-28T13:44:36.526117Z","times_seen":624,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"yjzaxyey.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-28","alert":"Phishing Block","trigger":"yjzaxyey.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"w.bemorehn.com/navi/06845134360643832.png","fqdn":"w.bemorehn.com","domain":"bemorehn.com","tld":"com"},"ip":{"addr":"104.21.35.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://yjzaxyey.com/","date":"2026-06-28T13:18:51.911Z","timestamp":1782652731911,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bemorehn.com","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 10:22:21 GMT","end":"Thu, 17 Sep 2026 10:22:20 GMT"},"fingerprint":{"sha1":"6F:3E:10:D2:A9:20:3D:7C:CF:EF:5A:EA:35:36:D0:6B:EB:9F:FC:30","sha256":"EE:AB:2F:91:57:3B:80:74:3E:FC:96:CB:E8:8D:F2:B5:B7:84:3C:E5:1C:7E:DF:2F:55:20:78:7D:36:C1:94:E4"}}},"request":{"raw":"GET /navi/06845134360643832.png HTTP/1.1\r\nHost: w.bemorehn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://yjzaxyey.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sun, 28 Jun 2026 13:18:52 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 02 Dec 2021 11:05:46 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\netag: W/\"61a8a88a-a05\"\r\nexpires: Tue, 28 Jul 2026 13:04:56 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 835\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FAlIfpd5nY2OIKw%2BmRDAvISwMIxj95vVr70UXlw1wL90%2ByqEnuh7KE7nlNebgalzQy9WAgvODZrSu51EPwLbdW2dHrnlO2EftygxNnp4WsEByf1akAQOMxinF2JYGjsa7Q%3D%3D\"}]}\r\ncf-ray: a12cfad87c678deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2565,"size_decoded":3314,"mime_type":"image/png","magic":"PNG image data, 87 x 87, 8-bit/color RGBA, non-interlaced","md5":"1d541b70d710aed818362b484d8f38f2","sha1":"2935136cdda889e17d6f59f88ad24dae5e7c2d2b","sha256":"042f5e1bd11672fcb44421a233653f6d49e171c276b254f2f63b42ee4eaa1d89","sha512":"cdf6a8d8f60cc97278dab242a5544ea20df127005d2ff83d01fbb94bc383e8d0dec0abbc424d48dab278ec0e047548b032d01785d02cf348bb67f7fad9c5fff1","ssdeep":"","tlshash":"fd516c9a31f158a64912cc0348af20c87ddb85967335a2e594a9ac4b6d6b000467a289","first_seen":"2023-05-14T18:06:53Z","last_seen":"2026-06-28T13:44:36.527485Z","times_seen":434,"resource_available":false,"data":null}},"time_used":311,"timings":{"blocked":302,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}