{"report_id":"bf1567e3-f5d4-4f67-96c3-48a1fc7046b2","version":6,"status":"done","tags":[],"date":"2023-10-13T14:53:38Z","url":{"schema":"http","addr":"hj91acfc.top","fqdn":"hj91acfc.top","domain":"hj91acfc.top","tld":"top"},"ip":{"addr":"104.21.12.238","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"hjac73.top/","fqdn":"hjac73.top","domain":"hjac73.top","tld":"top"},"title":"Document"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T20:12:20Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"hjac73.top","ip":{"addr":"172.64.111.34","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":5,"received_data":116229,"sent_data":2172,"comment":"","tags":null,"fingerprints":null},{"fqdn":"hj91acfc.top","ip":{"addr":"104.21.12.238","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-09-30","domain_rank":0,"first_seen":"2023-10-12 11:56:43","last_seen":"2023-10-12 11:56:43","alert_count":0,"request_count":1,"received_data":16261,"sent_data":469,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2023-10-13T14:53:21Z","timestamp":1697208801,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":50929,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET DNS Query to a *.top domain - Likely Hostile","source":"{\"timestamp\":\"2023-10-13T14:53:21.158515+0000\",\"flow_id\":1706014057524019,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.35\",\"src_port\":50929,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023883,\"rev\":4,\"signature\":\"ET DNS Query to a *.top domain - Likely Hostile\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Major\"],\"updated_at\":[\"2020_09_15\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":13985,\"rrname\":\"hj91acfc.top\",\"rrtype\":\"A\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":83,\"bytes_toclient\":0,\"start\":\"2023-10-13T14:53:21.158515+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"hjac73.top/","fqdn":"hjac73.top","domain":"hjac73.top","tld":"top"},"ip":{"addr":"172.64.111.34","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T05:45:54.968102Z","times_seen":13318572,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"hjac73.top/images/ff1.png","fqdn":"hjac73.top","domain":"hjac73.top","tld":"top"},"ip":{"addr":"172.64.111.34","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://hjac73.top/","date":"2023-10-13T14:53:22.593Z","timestamp":1697208802593,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hjac73.top","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Thu, 12 Oct 2023 10:28:16 GMT","end":"Wed, 10 Jan 2024 10:28:15 GMT"},"fingerprint":{"sha1":"9F:95:5D:79:5B:CF:1D:23:D4:21:18:57:CE:97:B3:69:0A:4E:20:48","sha256":"26:73:90:52:2D:BC:F8:00:1B:C1:EB:31:DD:77:C6:DD:C9:1F:13:2B:EB:12:92:06:0A:07:36:C9:65:2B:6C:EB"}}},"request":{"raw":"GET /images/ff1.png HTTP/1.1\r\nHost: hjac73.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://hjac73.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 13 Oct 2023 14:53:21 GMT\r\ncontent-type: image/png\r\ncontent-length: 45612\r\nlast-modified: Tue, 10 Oct 2023 01:23:09 GMT\r\netag: \"6524a77d-b22c\"\r\nexpires: Sun, 12 Nov 2023 12:10:26 GMT\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nage: 9775\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=5PXYdlXnJYyO3nHNIXyjRhAuEe%2BFZ9QXTQEl4GbCAH6kR%2F0i77y9DD2LIA6hEQoH%2BZgOSOtB6cpCHy%2FslHdHL3B5wbo8WoOae0TPo6vzMYFyIh3p3poL94l%2FAhta\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 815869646e2f63f7-LHR\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":45612,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1920 x 611, 8-bit/color RGBA, non-interlaced\\012- data","md5":"dabd9a9917ec1918db000983f23bb3bf","sha1":"42362a56986f54896241b5e5bec8f3f078db0da3","sha256":"fba75d5c9149d11f40d75b28dc9ef007867f6277df61562e70447a9f94a8bf09","sha512":"aa532b9d97acfe06dc8580fd4d2d76c5861a4c93b0ad8a3dc97d4ab18b8158d17b7a3f9e6fbb9c2369f395fef11e267d78fd423f628d0bb798e464817c45f9a8","ssdeep":"768:bUdI+cfdQYjO2JGoweQVi7Iv019mvMieozSOIsucHEUNWxbM4AMJ1:btfdQYihUIv01965jFI1nUNWBMLg1","tlshash":"2b23bf08c6674ca9d86d017dbddf2a78b3385e124d6393cf6b301a58bf4f6b49881280","first_seen":"2023-08-21T21:59:43Z","last_seen":"2026-04-03T11:48:44.130334Z","times_seen":113,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":63,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hj91acfc.top/","fqdn":"hj91acfc.top","domain":"hj91acfc.top","tld":"top"},"ip":{"addr":"104.21.12.238","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-10-13T14:53:21.185Z","timestamp":1697208801185,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hj91acfc.top","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 Sep 2023 02:35:46 GMT","end":"Fri, 29 Dec 2023 02:35:45 GMT"},"fingerprint":{"sha1":"50:67:E7:AE:24:F6:8F:EF:88:5F:1B:7E:11:88:1A:D9:22:89:DC:FE","sha256":"9F:61:16:1D:B4:CE:01:87:BD:2E:39:6A:2C:14:F4:09:58:40:E7:9D:5F:23:01:0D:1A:5F:48:B3:77:2F:39:FD"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: hj91acfc.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Fri, 13 Oct 2023 14:53:21 GMT\r\ncontent-type: text/html; charset=utf-8\r\nlocation: https://hjac73.top/\r\naccess-control-allow-credentials: true\r\napi-server: api-server-73\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=a5KMNd5jmMqt2p1ZZ%2BsWf2cob46cQ8vjyJzkaRjwM2EgSjQHbshuAXRYqEvZgjxJXbrAm2Bsz5MttUihmf3QvajmuQTpvS%2BnozulifvyWLcGQU3%2BCaSjm76ovdXQogk%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8158695bbc7a56b7-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":15607,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"data","md5":"0df75933fdbeaf8ec75986b5b1ed82be","sha1":"8bd17790af488c45f2684d4e1c69d37a4ec3973c","sha256":"e1eeb95d2b5680b5fdcc52a4a7c148065e5b7b8ef09631abd32c8f21601b9efe","sha512":"0a57ad12d2e124bd46a478d3f75a3b31d536f677fa0e34020849b4464d19ceebdd2454799396f875d1711e2d78214fd6f6639716e2d1055158a3af7a3b7b8655","ssdeep":"384:T5iqvR7YYxD4Tmx7rz/rlWL3Nee9o2Tx50wbFhwDWnUKLZO7Z:N3iQ4SNrzrgdee+yL0wbUCrO7Z","tlshash":"5162d0c45777b5b408ab1b7fdab5f9b0ca0b34a0c20d08d63eea63e89c551fa8016527","first_seen":"2023-10-13T16:53:45Z","last_seen":"2023-10-13T16:53:45Z","times_seen":1,"resource_available":false,"data":null}},"time_used":720,"timings":{"blocked":24,"dns":1,"connect":1,"send":0,"wait":668,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hjac73.top/images/fff2.png","fqdn":"hjac73.top","domain":"hjac73.top","tld":"top"},"ip":{"addr":"172.64.111.34","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://hjac73.top/","date":"2023-10-13T14:53:22.596Z","timestamp":1697208802596,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hjac73.top","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Thu, 12 Oct 2023 10:28:16 GMT","end":"Wed, 10 Jan 2024 10:28:15 GMT"},"fingerprint":{"sha1":"9F:95:5D:79:5B:CF:1D:23:D4:21:18:57:CE:97:B3:69:0A:4E:20:48","sha256":"26:73:90:52:2D:BC:F8:00:1B:C1:EB:31:DD:77:C6:DD:C9:1F:13:2B:EB:12:92:06:0A:07:36:C9:65:2B:6C:EB"}}},"request":{"raw":"GET /images/fff2.png HTTP/1.1\r\nHost: hjac73.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://hjac73.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 13 Oct 2023 14:53:22 GMT\r\ncontent-type: image/png\r\ncontent-length: 44616\r\nlast-modified: Tue, 10 Oct 2023 01:23:09 GMT\r\netag: \"6524a77d-ae48\"\r\nexpires: Sun, 12 Nov 2023 12:10:26 GMT\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nage: 9776\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=4PygfOyfg%2BUP1nIWDvxQQmOngs4ATOGR6rxrkRQiC3AxxKApmoanrUI42xMu9WiBEQ3jywMIo9XPKk2fzaF5ZFLssokwH3P4QFB5j3UV3zLPx5dFK00F7lYTPl12\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 815869648e5663f7-LHR\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":44616,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1920 x 355, 8-bit/color RGBA, non-interlaced\\012- data","md5":"717db4cfc4adc6c916b4abb7bdffc03b","sha1":"59b3ca9c6dbe30b55867dae00992b429695d9b55","sha256":"f1ee7fd96ba32cb055b18bb13ba036b1260136f0f5d55b25145c2a29c1b730da","sha512":"ba40f83cac5b333429ad60735f04645b79a102bb9fccc9c727ed58055ec8a0d907ab3fb5ef4553047e074ce6da4366748f816de226a589313d0aeb81dc7a4bab","ssdeep":"768:vEe60T+qLJSQWTsac0ocHA+t1TCYs2zCZizTzZ3B1:8Zy9pWoac2/t1TCY4iLVB1","tlshash":"8b13e18c8c720ddfc59d243679472a3a2330cffad65597259615788c3ee8836ea230f4","first_seen":"2023-08-21T21:59:43Z","last_seen":"2026-04-03T11:48:44.129473Z","times_seen":114,"resource_available":false,"data":null}},"time_used":128,"timings":{"blocked":7,"dns":0,"connect":0,"send":0,"wait":89,"receive":32,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hjac73.top/","fqdn":"hjac73.top","domain":"hjac73.top","tld":"top"},"ip":{"addr":"172.64.111.34","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-10-13T14:53:21.883Z","timestamp":1697208801883,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hjac73.top","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Thu, 12 Oct 2023 10:28:16 GMT","end":"Wed, 10 Jan 2024 10:28:15 GMT"},"fingerprint":{"sha1":"9F:95:5D:79:5B:CF:1D:23:D4:21:18:57:CE:97:B3:69:0A:4E:20:48","sha256":"26:73:90:52:2D:BC:F8:00:1B:C1:EB:31:DD:77:C6:DD:C9:1F:13:2B:EB:12:92:06:0A:07:36:C9:65:2B:6C:EB"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: hjac73.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 13 Oct 2023 14:53:21 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-credentials: true\r\napi-server: api-server-73\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=kZmIF1%2F7Up35VbkBNzf73zWpB894JG%2Ft3mrxFW6%2FM8FVikTEuOOWsdjCxCtMtpP%2B7w04jzulFO%2FGax2%2BLw6L5qmtN4Iy8fCW3ZYjpll1Lt9blSm0Fx5fVNjSU32t\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 81586960bb4560f6-LHR\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1121,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (1291), with no line terminators","md5":"576df3afb3470e03b622950fbdfc2710","sha1":"ba8c494db054e7b5ea7b36f390ed840086e29ff6","sha256":"3260fa94a19f2ad99f09bbb8456d12694586150ae00fd0f33dbf1ce7f3d18364","sha512":"04fff3082ad4ca98d5a1ac0ff18dce2495185866c0e680deaa5c7b48d6f80827056088da1f4879c7ce9bbf4ceb0eba855db2f44701041efe5bdb57c0e51320a2","ssdeep":"","tlshash":"8921bb3e6d0f31bf4a0181b83ce49949855f3c07af7289083ac86480c7c9188c977ee5","first_seen":"2023-10-13T16:53:45Z","last_seen":"2025-01-04T12:22:42.190901Z","times_seen":30,"resource_available":false,"data":null}},"time_used":645,"timings":{"blocked":109,"dns":32,"connect":30,"send":0,"wait":427,"receive":0,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hjac73.top/images/conf.png","fqdn":"hjac73.top","domain":"hjac73.top","tld":"top"},"ip":{"addr":"172.64.111.34","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://hjac73.top/","date":"2023-10-13T14:53:22.595Z","timestamp":1697208802595,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hjac73.top","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Thu, 12 Oct 2023 10:28:16 GMT","end":"Wed, 10 Jan 2024 10:28:15 GMT"},"fingerprint":{"sha1":"9F:95:5D:79:5B:CF:1D:23:D4:21:18:57:CE:97:B3:69:0A:4E:20:48","sha256":"26:73:90:52:2D:BC:F8:00:1B:C1:EB:31:DD:77:C6:DD:C9:1F:13:2B:EB:12:92:06:0A:07:36:C9:65:2B:6C:EB"}}},"request":{"raw":"GET /images/conf.png HTTP/1.1\r\nHost: hjac73.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://hjac73.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 13 Oct 2023 14:53:22 GMT\r\ncontent-type: image/png\r\ncontent-length: 15565\r\nlast-modified: Tue, 10 Oct 2023 01:23:09 GMT\r\netag: \"6524a77d-3ccd\"\r\nexpires: Sun, 12 Nov 2023 12:10:26 GMT\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nage: 9775\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=4u1bGaScFtoL%2FAJ5OZ5gj%2BldGbo8oJ8OFwb7KIvmyES51H26FzaPff1a3w3pPT4an7e4%2F%2FlQO98DdieHRD5hpe2Z8UE%2B9FIzWwSTaJQN7bEtIROS77NdeHLjGEJ%2F\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 815869648e5363f7-LHR\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15565,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 232 x 86, 8-bit/color RGBA, non-interlaced\\012- data","md5":"e4e9d4cb439109e5ce29606045c49f18","sha1":"507057bb3c196cc3138b0e1052114b195d402b36","sha256":"359abd4a76100a0c1ff60f52189836bb6398dbc407f2fdd2a6477f599bdbeac6","sha512":"2b5ad84dc614fb30ff1d847d33d8c0b66442344bfab9426cf39855763dba99fb6cf969bfdfaf56b1b491f076df1751b821221154389308044f52ab29d210329b","ssdeep":"384:55iqvR7YYxD4Tmx7rz/rlWL3Nee9o2Tx50wbFhwDWnUKLZO7Z:73iQ4SNrzrgdee+yL0wbUCrO7Z","tlshash":"e262d1c45737b5b408ab1a7fdab5f9b0ca1b34a0c20d08d63eea73e89c551fb8016527","first_seen":"2023-08-21T21:59:43Z","last_seen":"2026-04-03T11:48:44.126845Z","times_seen":114,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":8,"dns":0,"connect":0,"send":0,"wait":88,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hjac73.top/favicon.ico","fqdn":"hjac73.top","domain":"hjac73.top","tld":"top"},"ip":{"addr":"172.64.111.34","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://hjac73.top/","date":"2023-10-13T14:53:22.731Z","timestamp":1697208802731,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hjac73.top","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Thu, 12 Oct 2023 10:28:16 GMT","end":"Wed, 10 Jan 2024 10:28:15 GMT"},"fingerprint":{"sha1":"9F:95:5D:79:5B:CF:1D:23:D4:21:18:57:CE:97:B3:69:0A:4E:20:48","sha256":"26:73:90:52:2D:BC:F8:00:1B:C1:EB:31:DD:77:C6:DD:C9:1F:13:2B:EB:12:92:06:0A:07:36:C9:65:2B:6C:EB"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: hjac73.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://hjac73.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 13 Oct 2023 14:53:22 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding, Accept-Encoding\r\nlast-modified: Tue, 10 Oct 2023 01:23:08 GMT\r\nexpires: Sun, 12 Nov 2023 12:10:03 GMT\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nage: 9799\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=1zlI08ZAl%2BomMz5kIOUreES47Qq5AcesRG6tGdE7JN7pKb2bbGN8tMZ7gyLve4zNx5opIO3nonxefk9mPIgP6lAfUFkq0eizAAvOa8ow56Se8yMlJlKrYolcEBDF\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 81586965480e63f7-LHR\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5821,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (6187), with no line terminators","md5":"b76d89e5d3087e3fe66efacfc4fde304","sha1":"24d1f67976641f1ebfe6f6fda80972a451d93a44","sha256":"e74f2026c0b610e706e0f053d8300e70f6fbd9e340519bc7bc481c4b994584c5","sha512":"6965922685ea1efd3da1a2ae3264750fd028d1ea5ba0d435d740f78e3a840416d1a81c8bb5b9bc765b7179a1aa9d96677a69f5ca53ef78bad9f94a3360e43574","ssdeep":"48:u4RwfOdxhY6AmzR1OitMaZMEpD7rTKlrSXAHMMjMQMJMRbKAmnMULHIrKeeEPjKn:TW8x7Ud52pu8r7VJ","tlshash":"4dd1042aca80da6f6d31c6e3e715b56cc866ec1d0c78d451e08c2ede88e8bd8056f753","first_seen":"2023-10-13T16:53:45Z","last_seen":"2023-10-31T05:00:40Z","times_seen":11,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}