{"report_id":"c1ad1459-a756-47c7-95a9-e5acfe878216","version":6,"status":"done","tags":[],"date":"2026-05-28T15:47:34Z","url":{"schema":"http","addr":"m.munaiyu.com/admin/logout.php","fqdn":"m.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":0,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"www.munaiyu.com/","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"title":"门徒平台 -〈门徒娱乐升级,精彩无限〉","dom":{"size":243,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"3294e3b4229e1c6af4ed47b48b1a7b89","sha1":"a6043732c52701fe83112bf3fe735358989bb982","sha256":"b5f04c23aae7320ef800ab3e2fdf754f22c2b88a51f9bb7d457bfaab39a35a36","sha512":"754a5d848df3d5670a761e03a8704d2b68864b680fa907a79f7da22567c95a6890acd0a65d3c7337b24c5dafa1f2d922cc64d241c711928c040121b6ba1cc025","ssdeep":"","tlshash":"8fd05e9a28d33502951383655ec73640e5b2c236a68c89e40483cbcb24cb44fc582fe4","dom_hash":"domhash4f9f328ae0806ebc90a665e0a84580b7","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"m.munaiyu.com/admin/logout.php","fqdn":"m.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":0,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-02T15:47:34Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"m.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"hm.baidu.com","ip":{"addr":"14.215.182.140","port":443,"asn":4134,"as":"Chinanet","country":"China","country_code":"CN"},"domain_registered":"1999-10-11","domain_rank":54491,"first_seen":"2012-05-26T08:38:45Z","last_seen":"2026-05-25T08:02:12.766553Z","alert_count":0,"request_count":2,"received_data":30873,"sent_data":1225,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"34.96.237.103","ip":{"addr":"34.96.237.103","port":33315,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Hong Kong","country_code":"HK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":697,"sent_data":974,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"push.zhanzhang.baidu.com","ip":{"addr":"14.215.182.161","port":80,"asn":4134,"as":"Chinanet","country":"China","country_code":"CN"},"domain_registered":"1999-10-11","domain_rank":1485849,"first_seen":"2015-07-22T05:44:02Z","last_seen":"2026-05-21T21:53:36.010112Z","alert_count":0,"request_count":1,"received_data":426,"sent_data":338,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.munaiyu.com","ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"domain_registered":"2025-08-04","domain_rank":0,"first_seen":"2026-05-28T15:47:36.172165Z","last_seen":"2026-05-28T15:47:36.172165Z","alert_count":40,"request_count":40,"received_data":3894779,"sent_data":20142,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"WOW","description":"Reveal CSS animation as you scroll down a page.","website":"https://www.delac.io/WOW","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks","JavaScript graphics"]},{"name":"CNZZ","description":"","website":"https://web.umeng.com/","common_platform_enumeration":"","icon":"cnzz.png","categories":["Analytics"]},{"name":"jQuery:1.10.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]}]},{"fqdn":"m.munaiyu.com","ip":{"addr":"154.203.106.93","port":443,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"domain_registered":"2025-08-04","domain_rank":0,"first_seen":"2026-05-27T09:20:22.712362Z","last_seen":"2026-05-27T09:20:22.712362Z","alert_count":1,"request_count":1,"received_data":33357,"sent_data":498,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"api.share.baidu.com","ip":{"addr":"182.61.244.229","port":80,"asn":38365,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"China","country_code":"CN"},"domain_registered":"1999-10-11","domain_rank":1421601,"first_seen":"2013-04-25T14:45:11Z","last_seen":"2026-05-28T09:55:26.924542Z","alert_count":0,"request_count":1,"received_data":116,"sent_data":379,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"www.munaiyu.com/","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"868d0f358e62f4c380bc8ce9f12122f7","sha1":"5f8c819c09c0212f49d3e007777561d6dd4d7474","sha256":"0482a1f5f18c5e751264f305bbbc9c35ea334783315d3dd53ce7871f9ff7d035","sha512":"732ea795dcbb37e3a71a50c1d7bd63dae8a4c1093a0bff305cebea006af7a3fbc6b9da61bc0210813eac4e43e1ec6e3cf42fd56fdaf681c12a633a459696821f","ssdeep":"","tlshash":"31c08c58ae3789a0c8320a2b8c34ec5c00b68d22c004e64c40873a0c1108bc44b083a4","size":160,"data":"","first_seen":"2024-12-08T03:18:54.033239Z","last_seen":"2026-05-28T17:41:40.132087Z","times_seen":764,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"1c5c9160600df2d96d69a4ea16cec7ed","sha1":"3cf678c9135cc952ba6970ef545035bb757a443f","sha256":"a3520fe88e248d2b6c9c6db93309a037ef969fe297208e5bd7e49a55bb32c808","sha512":"2a298a8c2552c6a6c6f8d3f7327d2e9abfa87a0dbb27e9e528a8539b416155c0860f54f46464dfe7e5d49c7906a9eacdac7e5181b86ef15a83276a8f4fee0546","ssdeep":"","tlshash":"078004d531c35040475331d400571cd4503444f014444d544040d4511c55030d1154dc","size":37,"data":"","first_seen":"2023-04-11T21:49:14Z","last_seen":"2026-05-28T17:41:40.132706Z","times_seen":118276,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/yyds.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2ebcf831f70a9e076c60779382e50d6e","sha1":"f987573f4a659408bd577f8dfaaec201b9c93f8a","sha256":"a1f7703e10151084eee03b1edcee20d3f7a7a917dba665165ca32f6a8b07f952","sha512":"b513253fbee08bc7f89f03110e4fcb9202ed14bb06d7b903f0ae2dc1dbf143fc0807058c922cd95bdd57ec8a5cbcbab2e6060552936d146d92ba43d8aba57ab5","ssdeep":"","tlshash":"0331e0de68b102bc52a210a85eff359cf1a9462bc854e741f86ed0411fb4a7707abed4","size":1464,"data":"","first_seen":"2024-12-08T03:18:54.031532Z","last_seen":"2026-05-28T17:28:10.600399Z","times_seen":874,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"2d313be4b5d93e9b681de954aaeb3006","sha1":"1e0508be1026244daf1812f988033612c3945bdb","sha256":"9059d0d74efaf0e229d59a9c05ace7b975b42ccacea21e01aa64c56b2157048c","sha512":"83b5d773d5184b8feefc9c7fa2637098ad1c9ca5839ac5dd68f59372c7b4329b8298f1236c8d9247b3b2fd6afc159b9dc8cabbd6a8bbe8e5e2707dd6a7fbc82b","ssdeep":"","tlshash":"b99002c9f196a475e2b96030551b9205a0164c4d8c3c415c6100347e381559a8857679","size":57,"data":"","first_seen":"2023-03-07T01:19:11Z","last_seen":"2026-05-28T17:28:10.620662Z","times_seen":10336,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/jquery-1.10.1.min.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"fe8f6e6538e981ef1bd555ea7e5b9357","sha1":"5f521e3aa4346dad707f8ae2068afb5f50ff5dde","sha256":"a7d310f0b926077fc92f9e1d7693e7fdd5d40bd5216174c7dcca5e8a24c984eb","sha512":"fbea49fc898a14ca4aca771e3a7ad2d679222a562dd4dddd47b5bcbb82290540f8200fe7e8284b1e00da9bed1905e55141e49fc3c80fe0f2c37a218723966320","ssdeep":"","tlshash":"82800080ca8828b0028088c828002cc203ba202b8082080882e0c3c002c82808008002","size":26,"data":"","first_seen":"2025-12-12T14:06:33.636702Z","last_seen":"2026-05-28T15:47:44.981952Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/idangerous.swiper.min.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7fa0becc9488d16db550a581133c6bf3","sha1":"777d7d386e720e9857a9f1118e66ad07e59a0be4","sha256":"9be49fba196185e105dccfefba26834e5dba146d5f6aee21cfc7486b3bd6e46b","sha512":"f81e3d5b2031845041a7b2fa4f2ac7fb66eba56888c893a9d8fd629b176652397f8e4501d28836da957608bb790e821c80cce667ce2a35f8423c8ea6ff5d4a4f","ssdeep":"768:GboOBwtxaCM9mwh9MTJlbaWNMZ8vyHMOzFGV8oJ0S:yoOBwt4uTOZ8vyHMOfS","tlshash":"e0230980e22131a742b7226f91afcb0232b589766505d09db5e944d81b74c9b13bbffd","size":46191,"data":"","first_seen":"2026-05-28T15:47:45.012836Z","last_seen":"2026-05-28T15:47:45.012836Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"e5e6dfa98763620681bcab770da8bffa","sha1":"c1185aee9800301a01cf0f5fc537c4d4b9a119f5","sha256":"49793b4dd32f5522e9c6aa6861bdac3c54bdd51f179facb234655f77082ad1ee","sha512":"8afedba617403850694219c4b7a29f5c38a7f3b37413dbde66ed4dbf76299c95992cd8800f0d64a413384409a760aaf4fbdeea89ae7bc2cd67380fe6098cde2a","ssdeep":"","tlshash":"48c022283a06308c007f30a2282b206820027c31a10ad400201465f04efa6ec2682e3c","size":180,"data":"","first_seen":"2026-05-28T15:47:45.068317Z","last_seen":"2026-05-28T15:47:45.068317Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/bideo.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"fd797bbc89b06a7950e2896e2e8fd6f8","sha1":"2ecc2725640647b9d15254ab19f4c276b09efd7d","sha256":"d83896c35a8719bedef2c32a563879ca4d171825baac133dc97d346047afb1fd","sha512":"96063c65a5185eb8eacd390cb86c08a5e77e8eb41deedba3cc02dad9fae2bea0615ddf24e5e3c169781c4a3fbbe66190e40d881f6385bcce3811961b3b36702c","ssdeep":"96:zf1qt2W7feBZeAmdTtUzDj2zThwRYwomGq1rMnguorozoUoPC7C1I/Bvb1vYwCqw:vWbeB6TtsDizT1woQrMgil/JbLHw","tlshash":"a5d1631a6ba55375981764aabfcf7149ab2dc0279339ca50bc3f83908f904704166efd","size":6163,"data":"","first_seen":"2026-05-28T15:47:45.058176Z","last_seen":"2026-05-28T15:47:45.058176Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"1c5c9160600df2d96d69a4ea16cec7ed","sha1":"3cf678c9135cc952ba6970ef545035bb757a443f","sha256":"a3520fe88e248d2b6c9c6db93309a037ef969fe297208e5bd7e49a55bb32c808","sha512":"2a298a8c2552c6a6c6f8d3f7327d2e9abfa87a0dbb27e9e528a8539b416155c0860f54f46464dfe7e5d49c7906a9eacdac7e5181b86ef15a83276a8f4fee0546","ssdeep":"","tlshash":"078004d531c35040475331d400571cd4503444f014444d544040d4511c55030d1154dc","size":37,"data":"","first_seen":"2023-04-11T21:49:14Z","last_seen":"2026-05-28T17:41:40.132706Z","times_seen":118276,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hm.baidu.com/hm.js?2daba12cace89580940e21fa2fe4eb2f","fqdn":"hm.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"14.215.182.140","port":443,"asn":4134,"as":"Chinanet","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"c5473a15aca60947a2399d9434e3d960","sha1":"a2a754c4bebbf67773a074d419d261e1c01e3dd8","sha256":"65170ae03e783f595a3dd0fb6bbd43ca6a734233c503438c11b15631956aefee","sha512":"6669eabfadb2c7b2ecadcd524e00aea9b8e2b01ff4c949195c93241c05801a6caa8b1d95fb79eda80b378f9457f8bc26c6dd4244fa33897256a8d0fc1397ebbc","ssdeep":"384:xWJSoLMJJTRl6s1JXFVCFI/TayvuodsZPIGm8XaR1JRwvutq1tGdc7M04gRw6:xW4VJfHgMdvussZPIx82Rwvutcto07v","tlshash":"59d2c9a9b282713293a324a5153f324ef07b5a54bd4968a4f11894c07d38fbb027bfdd","size":29891,"data":"","first_seen":"2026-05-28T15:47:45.024236Z","last_seen":"2026-05-28T15:47:45.024236Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/jquery.SuperSlide.2.1.2.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0f1cdaac6a79341072cf1932fff0840a","sha1":"94b7e6894423bb367a78f432a4ad0c59a62ae9c3","sha256":"e8a4e01985eeebca89a38875062c97fbbd54ea2e9d41955a59e6380edadac4f1","sha512":"02badd6d330ed1b93d12938a5bfb5edb5c715ed5eabf3050ff8b08b0739d0479df65cf07ad6c6d4f98e05fe5607d7a87fea405a00dfe0172ed120bb3e345bb6c","ssdeep":"192:Tu5D/er/dDxLBrAoiCtGvazQu2tpt4kF5FdBoFz3Zt0zj+uwLvP:TaGLdDx/iG8L7RPfBcAvwP","tlshash":"a742834a75f177aea2c7b3f0007f240a265bade18f4ac454f172c4953cbb5580a63abd","size":12962,"data":"","first_seen":"2026-05-28T15:47:45.00674Z","last_seen":"2026-05-28T15:47:45.00674Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/web.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"9a5da315243ac35046275251db10ac7b","sha1":"5f36c2a180b27bda57fa8bf528a3f8e98b3cfecc","sha256":"c79622e24aaf239bae0658cc749900cb79a086a4adf050f991e328f55eff76ee","sha512":"64582f2852cddcb0d2ef6bec55a3d259ca5af93bf5d74cb9e998a3b7aa5ba80c498ab3e49e3d2cd86f9cd6594048c49343bd6a8510932e61abfbc51a1738fdc7","ssdeep":"","tlshash":"7311358d74312275453c4b38167f645dbf6628223a42aa64b0c888d4ff343fa9b22add","size":1051,"data":"","first_seen":"2026-05-28T15:47:45.053169Z","last_seen":"2026-05-28T15:47:45.053169Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/main.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"582779de838e1a5d70e70c1818ae3efa","sha1":"74769c06117be3fbc505e98a40f62e0fd6f4ee97","sha256":"2b67f97abab2a548109bc6f30f7fc786f5305bb2de741c1b39b8e1d1149490e7","sha512":"149e5697f356e49de559adbe96032915b571dd497bd519fb583df17af2aaf5a95f38decee521bdeb475098ea9cc92649c6b39ad5b705b3847cb45433a7f7b061","ssdeep":"","tlshash":"b311c82e19b1a43c2927109f2bef43887964005fee48ba977c6e03987f8482161218ea","size":898,"data":"","first_seen":"2026-05-28T15:47:44.993017Z","last_seen":"2026-05-28T15:47:44.993017Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"fda13a8a9455beb106e9f53eba70e3ce","sha1":"051ccd88aad0672177f4096ccaa0b424d5261a80","sha256":"1763938d713430539346f1a7b661735dd65d682e5781b3f1651f4d7e0e5e900b","sha512":"e9e0cfa24324477dc312758c9e51c1b11b582d848589d215b0ae232cc096aeb5c3bc37d006837ee13145665974cae841597ed4439022a75cef052c8bfc9775a5","ssdeep":"","tlshash":"f2e0abce2341cc8d1ed22daaf52d206861194f211ad45c6c4c0024651ad265391c329f","size":418,"data":"","first_seen":"2026-05-28T15:47:45.074544Z","last_seen":"2026-05-28T15:47:45.074544Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/fafafa.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a7672e44d11687362be2baa105f2764f","sha1":"e0f4d1899394fbe5a83f984e506d31feae7f48d6","sha256":"abe3aba578e37e107fac35142d95423857302c922b8fbaf8c8e8dfcf4faa4d9b","sha512":"f9dbc9c83203738a0655160cd516d1ba8fdc7a896ed14e86bfd05e3e8cb21a7acf3f538359c1b1bf4b21b2e0079e5caf9eb920e1831f3602715f7e1cc4d35bdc","ssdeep":"","tlshash":"d531ffeb4863a418e332502d753a974c75b44057ab35d901ac9cada9af94f44a0efbcc","size":1582,"data":"","first_seen":"2026-05-27T07:05:16.865853Z","last_seen":"2026-05-28T17:41:40.070127Z","times_seen":227,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/wow.min.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ef51af8eb4305f0e6bfcc9350e3a556a","sha1":"c85f4dfc47f47d674b5ad20c539ce75d559d5b56","sha256":"8a2bf3b4238e160bc86ad0db791ce664689b52faf8769c5a5181ddf258e7b549","sha512":"3e3361e55ac30250d210a22d887b7a41d341c984f97c69c94226cebb4e41252cb3dd97dc4e243b074c002645418b7a453b4442510d8ff8aed120cea23e082f63","ssdeep":"","tlshash":"b87154dab246713147ef92b6843f1245e6365de9a80544bcb4ad88f4ea38d589223f38","size":3547,"data":"","first_seen":"2026-05-28T15:47:44.996625Z","last_seen":"2026-05-28T15:47:44.996625Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"push.zhanzhang.baidu.com/push.js","fqdn":"push.zhanzhang.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"14.215.182.161","port":80,"asn":4134,"as":"Chinanet","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"1bb5a3267c9865ad4abe8d937734b62b","sha1":"b5478dd2edb3e64242eced1db2dbd945ef81f592","sha256":"674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2","sha512":"33318ed944a49a8fa334983408d68853b1fbe4f80b19adef6235f23d7708b616cd4f8dd28c8b8ebfbb5776aab8088229f3060cd789af34fe1db5038a98bd0d39","ssdeep":"","tlshash":"91d02be874a0c41c0ce710b17fab328cfab20b2755244d40c05b90013614b1f824bfe9","size":281,"data":"","first_seen":"2023-03-07T01:02:09Z","last_seen":"2026-05-28T16:58:04.9929Z","times_seen":23842,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"bc94d56edb9ea292ad5721e432e44cf8","sha1":"3774be01fb708816fcdc1ef125706d4f16d0b5ee","sha256":"a503379ad1a43ea0bef48168116de8e8c7e15c87893be2eff7821030c192900a","sha512":"72752567b80d364c3a27a3009aa50d35bb3e405ee977597353030af85d8857d0375875894072967043cc9c41a3860f2e8f45721c7c32b55acf9d989442e3f9a4","ssdeep":"","tlshash":"0490023a9e0fd44540101c86d370e828900994505160dc9c45dd99655254edddd0a554","size":57,"data":"","first_seen":"2024-12-08T03:18:54.05807Z","last_seen":"2026-05-28T17:41:40.139536Z","times_seen":892,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"74312d9fd3d0d77a65b4edf6f7a9d543","sha1":"f8f99b78a90612dba2ab0f2f96d35ef3c77cd3c6","sha256":"e3932ed210d0dfb6820eacc496a3e5a609b8f011515b9324fe93b5d956a11f08","sha512":"12b6bcebb7867a2385206e03146b39db530208a5265d2e19423d7072042b085c883f48ba1d0757d1c27e624ae66da318eef2727806baf1c8caaec3df92c16312","ssdeep":"","tlshash":"52c080a34153d81c5125c151f471705c155d4e7457674c835d536e3eccbca9484e94dc","size":169,"data":"","first_seen":"2023-03-07T12:43:11Z","last_seen":"2026-05-28T17:41:40.140114Z","times_seen":6071,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"a46a36615e3c0f8cae8a9880ad5d50d1","sha1":"d8e435f10e482c8c24d95c971a27817e904f8887","sha256":"fdd3ca104e9343a534be2f6223993f57fe5f02e6afccfd4f891a7bacce97b124","sha512":"955d35a122df6587cbb856e8fb8cf9c3a539c586a2339b49b6e990b44bb6482fcdf8afac38acc4cc5fcbfef04007d729ba4656ccc819b4988750709595e3221a","ssdeep":"","tlshash":"c8d07da4cd9e5c5880a5f1e03030066d3a3b5346a7144e2420f239a1a24f29010178ea","size":291,"data":"","first_seen":"2026-05-27T07:05:16.896232Z","last_seen":"2026-05-28T17:41:40.140857Z","times_seen":227,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"http","addr":"www.munaiyu.com/images/fenl_bg.png","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:16.220Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/fenl_bg.png HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/css/style.css\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007; Hm_lvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; Hm_lpvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; HMACCOUNT=2AC3E0B4F57E6E97\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:18 GMT\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3013,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 80, 8-bit/color RGBA, non-interlaced","md5":"b66260fa70b68d9e9c70040b1f9538f4","sha1":"f9686c16cdf0bbb30f865b45151a28bd7072ece5","sha256":"56390240569a666a18f5b60da013b98827ac96763a31324dbb9443003eacfeb0","sha512":"87647478af5f98d0dd0a9a2409f2e820d155eccc0cb586f933e2260e8aeaa4e81b2fc4557c86c76e82be1af77f5f5a79d64dfb03c39489c1a7951045b7346285","ssdeep":"","tlshash":"0c516ec9a8404a5e204a07eb24bbde078927d780539e6e2ceeed430f8720d517d75f6b","first_seen":"2026-05-28T15:47:44.960471Z","last_seen":"2026-05-28T15:47:44.960471Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2398,"timings":{"blocked":2104,"dns":0,"connect":0,"send":0,"wait":294,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/fonts/fontawesome-webfont.woff2?v=4.7.0","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:16.223Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/css/font-awesome.min.css\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007; Hm_lvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; Hm_lpvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; HMACCOUNT=2AC3E0B4F57E6E97\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:17 GMT\r\nContent-Type: application/font-woff2;q=1.0;charset=utf-8\r\nContent-Length: 203\r\nConnection: keep-alive\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":203,"size_decoded":0,"mime_type":"application/font-woff2; charset=utf-8","magic":"HTML document, ASCII text, with no line terminators","md5":"cfd683e1d7fc185af1b4cccb21c8694d","sha1":"7d86abdb10a0b287f5f0e86ee51b24433c674ce2","sha256":"ec45de50d65876ac5076a54becb779e8631d39b10342837186efd95fcaa1f049","sha512":"0e6c9413631afadd7098f7e744a42d51a157cfd9e4c01112f55f96ecb7518889e987d3585c375abe7ba19d20141a823501fd1eaf8494d27d6b3d8923bb6ff541","ssdeep":"","tlshash":"23d01298bfb7c594d9720a166c34ec5c01769d26846ce54c54c7394c51187c54f08364","first_seen":"2026-05-28T14:02:37.880079Z","last_seen":"2026-05-28T15:47:44.977736Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1505,"timings":{"blocked":785,"dns":0,"connect":0,"send":0,"wait":719,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/jquery-1.10.1.min.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.769Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/jquery-1.10.1.min.js HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:15 GMT\r\nContent-Type: text/javascript;charset=utf-8\r\nContent-Length: 26\r\nConnection: keep-alive\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":26,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"exported SGML document, ASCII text, with no line terminators","md5":"fe8f6e6538e981ef1bd555ea7e5b9357","sha1":"5f521e3aa4346dad707f8ae2068afb5f50ff5dde","sha256":"a7d310f0b926077fc92f9e1d7693e7fdd5d40bd5216174c7dcca5e8a24c984eb","sha512":"fbea49fc898a14ca4aca771e3a7ad2d679222a562dd4dddd47b5bcbb82290540f8200fe7e8284b1e00da9bed1905e55141e49fc3c80fe0f2c37a218723966320","ssdeep":"","tlshash":"82800080ca8828b0028088c828002cc203ba202b8082080882e0c3c002c82808008002","first_seen":"2025-12-12T14:06:33.636702Z","last_seen":"2026-05-28T15:47:44.981952Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1420,"timings":{"blocked":1115,"dns":0,"connect":0,"send":0,"wait":305,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/UploadFiles/2022421111356446.jpg","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.779Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /UploadFiles/2022421111356446.jpg HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:16 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":143709,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=800, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=800], baseline, precision 8, 800x764, components 3","md5":"1a28a249e3059b3826688f64c29a0734","sha1":"8985afeecdd46d5a3b3f08821fe61d61f84934a8","sha256":"930b3fbb55ee0befc44f69906d8530a1c9fe9e6b053a50d95677d21bd34dbd7d","sha512":"e7a42da0decc1ef608acf9004c6031f5f81375f1b01dd23d53cf6aac9e893cf3a39604735dd74bf1e08cc7bcfa2d8cb8c36e0fae520da9266d14882681100485","ssdeep":"1536:Cvyv6rpJDHDLTle0YCOOuK5kF6EC7vgpWtAOA8sHFiKjTRZjgSCQ2+Wf7IGk5M1Y:uDLTl7upFfCLXtBA8Q0KnFCvFM7YmtXP","tlshash":"dee3f3665db0bb15ed15182817983aef415e3d1f0ae9020c7cadda9b3353cee74af881","first_seen":"2026-05-28T15:47:44.989598Z","last_seen":"2026-05-28T15:47:44.989598Z","times_seen":1,"resource_available":false,"data":null}},"time_used":5357,"timings":{"blocked":2386,"dns":0,"connect":0,"send":0,"wait":301,"receive":2670,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/main.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.788Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/main.js HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:14 GMT\r\nContent-Type: application/x-javascript;charset=utf-8\r\nContent-Length: 898\r\nConnection: keep-alive\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":898,"size_decoded":0,"mime_type":"application/x-javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"582779de838e1a5d70e70c1818ae3efa","sha1":"74769c06117be3fbc505e98a40f62e0fd6f4ee97","sha256":"2b67f97abab2a548109bc6f30f7fc786f5305bb2de741c1b39b8e1d1149490e7","sha512":"149e5697f356e49de559adbe96032915b571dd497bd519fb583df17af2aaf5a95f38decee521bdeb475098ea9cc92649c6b39ad5b705b3847cb45433a7f7b061","ssdeep":"","tlshash":"b311c82e19b1a43c2927109f2bef43887964005fee48ba977c6e03987f8482161218ea","first_seen":"2026-05-28T15:47:44.993017Z","last_seen":"2026-05-28T15:47:44.993017Z","times_seen":1,"resource_available":true,"data":null}},"time_used":838,"timings":{"blocked":540,"dns":0,"connect":0,"send":0,"wait":298,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/fonts/fontawesome-webfont.woff?v=4.7.0","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:17.734Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/css/font-awesome.min.css\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007; Hm_lvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; Hm_lpvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; HMACCOUNT=2AC3E0B4F57E6E97\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:28 GMT\r\nContent-Type: text/html; charset=gbk\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nLocation: http://www.munaiyu.com/\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":32725,"size_decoded":0,"mime_type":"application/font-woff2; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-28T17:37:38.968108Z","times_seen":15830666,"resource_available":true,"data":null}},"time_used":10699,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10699,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.munaiyu.com/admin/logout.php","fqdn":"m.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":443,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-28T15:47:10.814Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"11g25l.cn","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 21 Apr 2026 18:47:02 GMT","end":"Mon, 20 Jul 2026 18:47:01 GMT"},"fingerprint":{"sha1":"1C:EF:B4:83:B3:37:A9:B8:FE:65:D9:CF:D5:F7:B7:DE:71:16:15:42","sha256":"9B:E9:35:BE:B3:D1:13:6E:20:57:FF:FE:89:A2:BC:18:94:6D:38:36:17:37:17:F8:B3:45:D4:41:71:70:D9:E3"}}},"request":{"raw":"GET /admin/logout.php HTTP/1.1\r\nHost: m.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: nginx\r\ndate: Thu, 28 May 2026 15:47:12 GMT\r\ncontent-type: text/html; charset=gbk\r\nlocation: http://www.munaiyu.com/\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nset-cookie: PHPSESSID=ph6cpjg5guhbrb5epu7t7hsb2d; path=/\nserver_name_session=e49514067fe78acc3313471e9e11c007; Max-Age=86400; httponly; path=/\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":32725,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-28T17:37:38.968108Z","times_seen":15830666,"resource_available":true,"data":null}},"time_used":2610,"timings":{"blocked":746,"dns":206,"connect":262,"send":0,"wait":1118,"receive":0,"ssl":274},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"m.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/wow.min.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.772Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/wow.min.js HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:14 GMT\r\nContent-Type: application/x-javascript;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":3547,"size_decoded":0,"mime_type":"application/x-javascript; charset=utf-8","magic":"data","md5":"ef51af8eb4305f0e6bfcc9350e3a556a","sha1":"c85f4dfc47f47d674b5ad20c539ce75d559d5b56","sha256":"8a2bf3b4238e160bc86ad0db791ce664689b52faf8769c5a5181ddf258e7b549","sha512":"3e3361e55ac30250d210a22d887b7a41d341c984f97c69c94226cebb4e41252cb3dd97dc4e243b074c002645418b7a453b4442510d8ff8aed120cea23e082f63","ssdeep":"","tlshash":"b87154dab246713147ef92b6843f1245e6365de9a80544bcb4ad88f4ea38d589223f38","first_seen":"2026-05-28T15:47:44.996625Z","last_seen":"2026-05-28T15:47:44.996625Z","times_seen":1,"resource_available":true,"data":null}},"time_used":2185,"timings":{"blocked":494,"dns":1,"connect":519,"send":0,"wait":299,"receive":872,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/UploadFiles/20257281669244.jpg","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.776Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /UploadFiles/20257281669244.jpg HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:17 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":657973,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3252x2163, components 3","md5":"e097470a28e3f58d8766ddec9974c2fb","sha1":"ce4cdb599aa82c6337956eccef94c73187b5d9aa","sha256":"79041cbe5b672332aae1e55ec39af8f87ddcae4681876129dcafb4cee271fc6b","sha512":"9ddc1d168372560d54e8ad465984d16d67bd61b2c29c8fc586b534198bb6248715d212ecc4aafe947d6c98e7f07d80187f99c74dc12de5ff9acff98a895ad36a","ssdeep":"12288:eh8oN8PC8W1DRm+8/0jW0Nx4AlnNkU9XbIrK8uxWv7McKsQGXW:eh6PC8Qm+FK0NxnNTVyK8uFc9u","tlshash":"42e4235327a7c561ccad96bd3f279b4073ee531853ee14268220841e3528af1b4af4fe","first_seen":"2026-05-28T15:47:44.998538Z","last_seen":"2026-05-28T15:47:44.998538Z","times_seen":1,"resource_available":false,"data":null}},"time_used":9294,"timings":{"blocked":2390,"dns":0,"connect":0,"send":0,"wait":1051,"receive":5853,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/images/gongan.png","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.786Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/gongan.png HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:20 GMT\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19256,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced","md5":"d0289dc0a46fc5b15b3363ffa78cf6c7","sha1":"29c400bc3b89f6085766dac4e0330ded5cb73d52","sha256":"a20583c81805fe64f7fa210851ce29754af9d25fd6aa5a3225a9557529602513","sha512":"10a9cd6fd64b8107db8b058eb8c4cc0fe23bb5c13a91d40caf93d323f4a15f1b34463bf0eacb0239c6dbd699ec6c49a8625e86cec674cc7b351509155b889e7f","ssdeep":"96:VSMllcHitlIxv9vk7C1+I4wWHLihk/xGWvki7rxmVKXUsDEVWvdNGthls+GfNXrL:VSHIIHUCD4wabkijpso15909rfEx","tlshash":"1c823928fcf0b125548993393de674095c779bc3c681ac45badc8a0b6f00fa95d6b183","first_seen":"2023-04-16T20:03:19Z","last_seen":"2026-05-28T16:57:04.470261Z","times_seen":9944,"resource_available":false,"data":null}},"time_used":6395,"timings":{"blocked":6105,"dns":0,"connect":0,"send":0,"wait":289,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/images/zs41.jpg","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:16.211Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/zs41.jpg HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007; Hm_lvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; Hm_lpvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; HMACCOUNT=2AC3E0B4F57E6E97\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:16 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18242,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 380x220, components 3","md5":"48d9b40cbbc2afd5f3ee9afea5a3a776","sha1":"16895622b5ca9bfea611cd952021afe29b195d2e","sha256":"a5cfa9c2dc9e6dc4cbefdd6ce0d394dba335edd6b95c4db5e7d408d7219e0fb5","sha512":"543798c628f3b0bbfde3cb0a6dfc03a3844b4c80635b3d921b14b43390416618f9cb61d2bc36126c6ba30e833417442225551fc4daed9920b68f88af07a8bec5","ssdeep":"96:QTERNrh6Lb98ZkIONdBdsYISDI0O2Pe6oRelAlPaJGT7coTZtT3Vpl:QTANr0ek/dBdsYW0O2zl5Ql7b","tlshash":"68822b177e72f315e099da3109e265085e23170768a0dd59b8ef8863ff40b635c2b987","first_seen":"2026-05-28T15:47:45.001904Z","last_seen":"2026-05-28T15:47:45.001904Z","times_seen":1,"resource_available":false,"data":null}},"time_used":579,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":304,"receive":275,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/images/yl_01.png","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:16.219Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/yl_01.png HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/css/style.css\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007; Hm_lvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; Hm_lpvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; HMACCOUNT=2AC3E0B4F57E6E97\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:18 GMT\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2576,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 62 x 48, 8-bit/color RGBA, non-interlaced","md5":"83467d4737ad2ca0939eb1666b76c61e","sha1":"e6eaacd466df0b6e73e609f8b8fb944b1ebf2223","sha256":"7834de8c0044619153f35ebb1b97694ea3d59327d43d296cf8a2e37dacd5ae9e","sha512":"5fde23705322ac8003040ab7cf7dd67e84ef5841c266f1f0095e616d0230e39c08ec759a66ffc2df779ac42003e2dde36637e00ce0d6460bf45f4d80e794afc7","ssdeep":"","tlshash":"d651f9a8fc312ad4af9eed9184f6211742934981aad4e61370c696a3cc7c3f1ce2c9d5","first_seen":"2026-05-28T15:47:45.004056Z","last_seen":"2026-05-28T15:47:45.004056Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2105,"timings":{"blocked":1810,"dns":0,"connect":0,"send":0,"wait":295,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"api.share.baidu.com/s.gif?l=http://www.munaiyu.com/","fqdn":"api.share.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"182.61.244.229","port":80,"asn":38365,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:16.291Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /s.gif?l=http://www.munaiyu.com/ HTTP/1.1\r\nHost: api.share.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Length: 0\r\nContent-Type: text/plain; charset=utf-8\r\nDate: Thu, 28 May 2026 15:47:16 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-28T17:37:38.968108Z","times_seen":15830666,"resource_available":true,"data":null}},"time_used":703,"timings":{"blocked":232,"dns":1,"connect":232,"send":0,"wait":238,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-28T15:47:12.683Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:13 GMT\r\nContent-Type: text/html;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\nserver_name_session=e49514067fe78acc3313471e9e11c007; Max-Age=86400; httponly; path=/\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"WOW","description":"Reveal CSS animation as you scroll down a page.","website":"https://www.delac.io/WOW","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks","JavaScript graphics"]},{"name":"CNZZ","description":"","website":"https://web.umeng.com/","common_platform_enumeration":"","icon":"cnzz.png","categories":["Analytics"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery:1.10.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]}],"data":{"size":32725,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"data","md5":"43e619e1be7771f6f31567ce20c58d30","sha1":"990a15c89be6060aa0b5ff05af339da42e846300","sha256":"27e9c8877735d03cacf6600f7f639bfc90557a93d58fcbd41217bf033dd78335","sha512":"6b1d1b4b65639783e62e70981bd859cfbcc15e9ade88db26589cbfcf9de9cf4aa6d60c122c7bfd96108d024b59416695659986cda67844e549ac4cbb78af90d3","ssdeep":"768:Yk9GhNNaPv3OOAioj8PguoTv/nT8o0mymzhSZhjLCVKLpsR9dPIix:p9GhaPPUJTvvT8o0mymzhSZhjLCV2qzf","tlshash":"88e208194977ac3b173788f878716bf9b0c2b305db624c2476f823c3abd8dd948591a9","first_seen":"2026-05-28T15:47:45.005402Z","last_seen":"2026-05-28T15:47:45.005402Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1352,"timings":{"blocked":514,"dns":231,"connect":283,"send":0,"wait":322,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/jquery.SuperSlide.2.1.2.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.771Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/jquery.SuperSlide.2.1.2.js HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:14 GMT\r\nContent-Type: application/x-javascript;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13024,"size_decoded":0,"mime_type":"application/x-javascript; charset=utf-8","magic":"data","md5":"0f1cdaac6a79341072cf1932fff0840a","sha1":"94b7e6894423bb367a78f432a4ad0c59a62ae9c3","sha256":"e8a4e01985eeebca89a38875062c97fbbd54ea2e9d41955a59e6380edadac4f1","sha512":"02badd6d330ed1b93d12938a5bfb5edb5c715ed5eabf3050ff8b08b0739d0479df65cf07ad6c6d4f98e05fe5607d7a87fea405a00dfe0172ed120bb3e345bb6c","ssdeep":"192:Tu5D/er/dDxLBrAoiCtGvazQu2tpt4kF5FdBoFz3Zt0zj+uwLvP:TaGLdDx/iG8L7RPfBcAvwP","tlshash":"a742834a75f177aea2c7b3f0007f240a265bade18f4ac454f172c4953cbb5580a63abd","first_seen":"2026-05-28T15:47:45.00674Z","last_seen":"2026-05-28T15:47:45.00674Z","times_seen":1,"resource_available":true,"data":null}},"time_used":2911,"timings":{"blocked":493,"dns":1,"connect":268,"send":0,"wait":297,"receive":1605,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/images/20210819150441.jpg","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.774Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/20210819150441.jpg HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:19 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":519990,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=700, bps=182, compression=PackBits (Macintosh RLE), PhotometricInterpretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 1920x700, components 3","md5":"10b3ae82dc14d93714bd95e5655194c1","sha1":"2bcc850a08cea7a1afbf80b6b4412bdfce83d0fd","sha256":"7e8b09610efe5eecc24bd17438f84657fe62c01f72690505e54038ecdef25bf1","sha512":"f761b7fb3c17bf9622c09c8bf79fe502c531977623a3ed365fe68f6cf0b382dfccf7544c62fbda0f3ec941c925a1a9343a4b7bd48b329cf3e6be22324d083909","ssdeep":"12288:suk09m/EeLPJEWSearKW/QeMBgp/yde1q9qXPVOxMUZnbk7WlqK018V2:7kbJjAKoMBgp/aEMqabxlqr","tlshash":"07b423b0bd226e12fe4c6d3cd723ce5b992a253f4145925e3c0daa42b307759b1bee11","first_seen":"2026-05-28T15:47:45.008457Z","last_seen":"2026-05-28T15:47:45.008457Z","times_seen":1,"resource_available":false,"data":null}},"time_used":9924,"timings":{"blocked":5363,"dns":0,"connect":0,"send":0,"wait":297,"receive":4264,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/yyds.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.789Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /yyds.js HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:14 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Mon, 18 Nov 2024 05:51:00 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"673ad5c4-5b8\"\r\nExpires: Fri, 29 May 2026 03:47:14 GMT\r\nCache-Control: max-age=43200\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1464,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (387)","md5":"2ebcf831f70a9e076c60779382e50d6e","sha1":"f987573f4a659408bd577f8dfaaec201b9c93f8a","sha256":"a1f7703e10151084eee03b1edcee20d3f7a7a917dba665165ca32f6a8b07f952","sha512":"b513253fbee08bc7f89f03110e4fcb9202ed14bb06d7b903f0ae2dc1dbf143fc0807058c922cd95bdd57ec8a5cbcbab2e6060552936d146d92ba43d8aba57ab5","ssdeep":"","tlshash":"0331e0de68b102bc52a210a85eff359cf1a9462bc854e741f86ed0411fb4a7707abed4","first_seen":"2024-12-08T03:18:54.031532Z","last_seen":"2026-05-28T17:28:10.600399Z","times_seen":874,"resource_available":true,"data":null}},"time_used":1094,"timings":{"blocked":825,"dns":0,"connect":0,"send":0,"wait":269,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/favicon.ico","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:20.582Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007; Hm_lvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; Hm_lpvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; HMACCOUNT=2AC3E0B4F57E6E97\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:20 GMT\r\nContent-Type: image/ico\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/ico","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-28T17:37:38.968108Z","times_seen":15830666,"resource_available":true,"data":null}},"time_used":433,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":433,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/fonts/fontawesome-webfont.ttf?v=4.7.0","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:29.018Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/css/font-awesome.min.css\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007; Hm_lvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; Hm_lpvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; HMACCOUNT=2AC3E0B4F57E6E97\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:29 GMT\r\nContent-Type: application/font-ttf\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":165548,"size_decoded":0,"mime_type":"application/font-ttf","magic":"TrueType Font data, 13 tables, 1st \"FFTM\", 24 names, Macintosh","md5":"b06871f281fee6b241d60582ae9369b9","sha1":"13b1eab65a983c7a73bc7997c479d66943f7c6cb","sha256":"aa58f33f239a0fb02f5c7a6c45c043d7a9ac9a093335806694ecd6d4edc0d6a8","sha512":"9ffb91e68c975172848b4bba25284678cc2c6eb4fb2d42000aa871c36656c4cebc28bf83c94df9afdfbf2407c01fe6b554c660b9b5c11af27c35acadfe6136ac","ssdeep":"3072:3bhEnD+IzsU9z9QJ6/P3Xe2iEiEPGFCMW1JVJG6wVTDsk6BmG6S1yKshojskO+b2:3enD+IzsU9z9QJ6/PO2FiEP2C/DVJG6I","tlshash":"5df38d3ea7face7ef05653bc8c1731920ab65e00f72ad587f78df866742a040456468e","first_seen":"2023-04-05T07:45:03Z","last_seen":"2026-05-28T16:37:43.026951Z","times_seen":4936,"resource_available":false,"data":null}},"time_used":1859,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1064,"receive":795,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/idangerous.swiper.min.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.770Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/idangerous.swiper.min.js HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:15 GMT\r\nContent-Type: application/x-javascript;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":46253,"size_decoded":0,"mime_type":"application/x-javascript; charset=utf-8","magic":"data","md5":"7fa0becc9488d16db550a581133c6bf3","sha1":"777d7d386e720e9857a9f1118e66ad07e59a0be4","sha256":"9be49fba196185e105dccfefba26834e5dba146d5f6aee21cfc7486b3bd6e46b","sha512":"f81e3d5b2031845041a7b2fa4f2ac7fb66eba56888c893a9d8fd629b176652397f8e4501d28836da957608bb790e821c80cce667ce2a35f8423c8ea6ff5d4a4f","ssdeep":"768:GboOBwtxaCM9mwh9MTJlbaWNMZ8vyHMOzFGV8oJ0S:yoOBwt4uTOZ8vyHMOfS","tlshash":"e0230980e22131a742b7226f91afcb0232b589766505d09db5e944d81b74c9b13bbffd","first_seen":"2026-05-28T15:47:45.012836Z","last_seen":"2026-05-28T15:47:45.012836Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1437,"timings":{"blocked":1129,"dns":0,"connect":0,"send":0,"wait":307,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/images/tp1.jpg","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.774Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/tp1.jpg HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:16 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":376751,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1000x655, components 3","md5":"3d497a9aeddfbad46c9aa1abebd4e04b","sha1":"bb718a3adedc35d88b398071928842eeeedd0a69","sha256":"08bc3c64042e50dd035436cf539082668cb1ee0809386948f1eaea3c13927754","sha512":"dfbc2df9e9f275bd26730853a30f61e4fae98eeae2857ef485fc2bea38c42993d33294140c4d9bc766fbcb04dc719bed1cd30fd0330d27ed305b63e9bebc5836","ssdeep":"6144:ozOqYHHraqQXBrgFKo2egjIqCVit8iKeG7gGqopDZ20xbB62A:9ZLabXt9egjbPxfGvO09k2A","tlshash":"b48423a409397e65b9dc343d25c78ca07a768a6b8a86fd90f06f1164ff393e24c41793","first_seen":"2026-05-28T15:47:45.014827Z","last_seen":"2026-05-28T15:47:45.014827Z","times_seen":1,"resource_available":false,"data":null}},"time_used":8191,"timings":{"blocked":2391,"dns":0,"connect":0,"send":0,"wait":310,"receive":5490,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/images/ew.jpg","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.782Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/ew.jpg HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:19 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15151,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 73x72, components 3","md5":"eeeb528128a8c1c5bf038d1f66c0b66a","sha1":"1a00294404d26591b339f05099ea7a1de589e42e","sha256":"15818b869cac602aabfd05d64f70a8acffd676b37834448f2a47a17ce31a9ca3","sha512":"47547e0894fe98d828718a1540d962841193f5902d95252088ece19307752400853f62a970838f6201f4be8a08d1d7ca6d720e097f238eca6f82c0a79d35e1f5","ssdeep":"96:fHbZkIOVXCFAklkG2eda3K8pzstknf4BxWW4t6:fHFky//wppzpCot6","tlshash":"b262f895af62ba12d13b107803dd05f59e2a13034684bf12729d5cd62f257e31cc2782","first_seen":"2026-05-28T15:47:45.01799Z","last_seen":"2026-05-28T15:47:45.01799Z","times_seen":1,"resource_available":false,"data":null}},"time_used":6138,"timings":{"blocked":5843,"dns":0,"connect":0,"send":0,"wait":294,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/images/002.jpg","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:16.216Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/002.jpg HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007; Hm_lvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; Hm_lpvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; HMACCOUNT=2AC3E0B4F57E6E97\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:17 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23638,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x436, components 3","md5":"0863600cb2d1c68a9f536f1ad1a150f1","sha1":"29e8f2665f345a3ec1f55adf9273072a736bb640","sha256":"68c6eb88f4c8d86e574f147a26fe0ec63cea79275bf2a5220b3472c56133da93","sha512":"47c254d0f6f46a1847dc7ce25d3587555876fc91637f940b94cf211d4720daebd6625df928319bd96ac64e86f5ef10f8b82f4b3e13d2a8a66f31aff0f112823a","ssdeep":"24:wpK1ne9fWu/u2lmVTV4SV6lIcrA7glZDv/SARMIQI2FcrQISZlTkISmiaN5MAAm6:P0+lCl/Ug/vLbDuZkIONAAqC","tlshash":"14b2fe12bcb271c1e049ba720ce661558d220703a8d08d0575df8863ef047f71d9b5eb","first_seen":"2026-05-28T15:47:45.020661Z","last_seen":"2026-05-28T15:47:45.020661Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1812,"timings":{"blocked":1511,"dns":0,"connect":0,"send":0,"wait":299,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:28.440Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.munaiyu.com/css/font-awesome.min.css\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007; Hm_lvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; Hm_lpvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; HMACCOUNT=2AC3E0B4F57E6E97\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:28 GMT\r\nContent-Type: application/font-woff2;q=1.0;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":32725,"size_decoded":0,"mime_type":"application/font-woff2; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-28T17:37:38.968108Z","times_seen":15830666,"resource_available":true,"data":null}},"time_used":572,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":305,"receive":267,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/css/font-awesome.min.css","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.766Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /css/font-awesome.min.css HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:14 GMT\r\nContent-Type: text/css;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":30995,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"data","md5":"2b9501d2b8279eefc150a09cd6b4c8b9","sha1":"303fe9cb051c24c698731060bf8246dbaa6ad5bf","sha256":"3592654c66f7d23ab5cd2ee1418141df4c0c9f6afaad8e586cd5d044815909f5","sha512":"e6bfc3b20796ae0efd0d969a5c173a81f626ef2a4b2d81757a02be734fadb89b6b2f5ac718388dc3d025562d598f87d8e0ccd155f6a97805fb9f83ce994b67a5","ssdeep":"384:Wgu5yWeTUKW+KlkJ5de2UYDyVfwYUas2l8yQ/8dwmaU82:WLlr+Klk3Yi+fwYUf2l8yQ/e9vn","tlshash":"78d241e8e54c01d66731c48bff81b36862b6fb3dd5854ca9f01f290c29d22a552c5fba","first_seen":"2026-05-28T15:47:45.022169Z","last_seen":"2026-05-28T15:47:45.022169Z","times_seen":1,"resource_available":false,"data":null}},"time_used":820,"timings":{"blocked":250,"dns":1,"connect":268,"send":0,"wait":301,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/UploadFiles/202552111640844.jpg","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.781Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /UploadFiles/202552111640844.jpg HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:19 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":405695,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1012, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1067], baseline, precision 8, 1067x1012, components 3","md5":"d03992ca863200aef4d48f0e8f172d07","sha1":"6224bc37851173cd60a54ba84443eb8ed6f1f6dc","sha256":"ddcc71be34126640858253626afb94b40573dcd8b3a47928559edf0ad7614d01","sha512":"340ed9deb6ac9c1c96ad1fa3ec6d306178bbfd6a32a562b7a9f850a84e147b08c4bd4b3fcfcfd5b9d410f016e7c6baead6711cdd63b9200bb4a5b5c7fc1f8122","ssdeep":"12288:4FWgY3SQTreCfyImGCm4IamzE5hH2Rp6IRWb7:Hgg7TibNuamw5xc4kWb7","tlshash":"528404a19d71bb52ee16192817a47beb014d3d1f4ae5030cbdaece4b3657c9e309f842","first_seen":"2026-05-28T15:47:45.023285Z","last_seen":"2026-05-28T15:47:45.023285Z","times_seen":1,"resource_available":false,"data":null}},"time_used":6109,"timings":{"blocked":5750,"dns":0,"connect":0,"send":0,"wait":306,"receive":53,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hm.baidu.com/hm.js?2daba12cace89580940e21fa2fe4eb2f","fqdn":"hm.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"14.215.182.140","port":443,"asn":4134,"as":"Chinanet","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:14.905Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"baidu.com","organization":"Beijing Baidu Netcom Science Technology Co., Ltd"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 09 Jul 2025 07:01:02 GMT","end":"Mon, 10 Aug 2026 07:01:01 GMT"},"fingerprint":{"sha1":"21:BF:66:0D:67:BE:7A:7F:49:48:05:30:F4:7F:09:F2:30:36:CA:63","sha256":"0D:82:2C:9A:90:5A:EF:E9:8F:37:12:C0:E0:26:30:EE:95:33:2C:45:5F:E7:74:5D:F0:8D:BC:79:F4:B0:A1:49"}}},"request":{"raw":"GET /hm.js?2daba12cace89580940e21fa2fe4eb2f HTTP/1.1\r\nHost: hm.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nCache-Control: max-age=0, must-revalidate\r\nContent-Encoding: gzip\r\nContent-Length: 11285\r\nContent-Type: application/javascript\r\nDate: Thu, 28 May 2026 15:47:15 GMT\r\nEtag: b99494994f443d1960865576eb84d9be\r\nP3p: CP=\"CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR\"\r\nServer: apache\r\nSet-Cookie: HMACCOUNT=2AC3E0B4F57E6E97; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT\r\nStrict-Transport-Security: max-age=172800\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":29891,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (615)","md5":"c5473a15aca60947a2399d9434e3d960","sha1":"a2a754c4bebbf67773a074d419d261e1c01e3dd8","sha256":"65170ae03e783f595a3dd0fb6bbd43ca6a734233c503438c11b15631956aefee","sha512":"6669eabfadb2c7b2ecadcd524e00aea9b8e2b01ff4c949195c93241c05801a6caa8b1d95fb79eda80b378f9457f8bc26c6dd4244fa33897256a8d0fc1397ebbc","ssdeep":"384:xWJSoLMJJTRl6s1JXFVCFI/TayvuodsZPIGm8XaR1JRwvutq1tGdc7M04gRw6:xW4VJfHgMdvussZPIx82Rwvutcto07v","tlshash":"59d2c9a9b282713293a324a5153f324ef07b5a54bd4968a4f11894c07d38fbb027bfdd","first_seen":"2026-05-28T15:47:45.024236Z","last_seen":"2026-05-28T15:47:45.024236Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1681,"timings":{"blocked":696,"dns":1,"connect":228,"send":0,"wait":289,"receive":1,"ssl":463},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/images/yl_13.png","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:16.221Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/yl_13.png HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/css/style.css\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007; Hm_lvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; Hm_lpvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; HMACCOUNT=2AC3E0B4F57E6E97\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:18 GMT\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5468,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 254 x 232, 8-bit/color RGBA, non-interlaced","md5":"138750eac5031a9d063df14b0da684b1","sha1":"53d8d5862d7a24f168568c86b4479a7e292183cc","sha256":"32fdbd8b09dda5dd4e2fd44303b3c3402bb3dd78da06168ff56deee158c0c5ab","sha512":"99fb568d6c3af40ad5ef5bb53b29b18da0db5bea4a044925c70f2cdec081cb7043d4732969d045c27336d1702cd734763ece38f465979426a8eb4805934dc7d6","ssdeep":"96:1Q883QYJiLizeT7C0HP3bgZSzHrdx6vEkljKuJ5lHW12H867SOOwutP:1H8gYJvzeT7RGgdYljK6fc3OOjd","tlshash":"6bb16d85f74e99c6e65ca0255eea142ee01206c0ced03bb3b6adec3385045b3d6ca0f5","first_seen":"2026-05-28T15:47:45.025147Z","last_seen":"2026-05-28T15:47:45.025147Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2692,"timings":{"blocked":2398,"dns":0,"connect":0,"send":0,"wait":294,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/css/media.css","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.764Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /css/media.css HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:13 GMT\r\nContent-Type: text/css;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5698,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"data","md5":"bbc0768542d3e78ed8baa0b270513a1f","sha1":"304e8e3e47202d23d2bbf214b5b607e3ae53d64b","sha256":"e70c719eb9581ca41af57b1683a99c3c409dd801e384d1f2fc13f7660479be56","sha512":"2f9270eb2cd68dd0207c0e1fa573a7a4c6edeeecf3cb238312a66b8d7b9ff72e0147f14c22bd2335ea9800bd28e4e9cd72277b81147ed56fa6aa93cf5f7b64e4","ssdeep":"96:uuEPuPKrBVdVJtMWABF3eDHXK5k0JxLAVMkaumbepaMLvZR6aOw6clgGgQnmqDFE:4JVdVoeDabWMka1b+Nvz7Z/Vz50","tlshash":"f1c1cd9217123249942f73b7eee3da999f0fb433b34651f9a9c07404c08e6575266bdc","first_seen":"2026-05-28T15:47:45.026207Z","last_seen":"2026-05-28T15:47:45.026207Z","times_seen":1,"resource_available":false,"data":null}},"time_used":312,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":312,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/images/logo.png","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.773Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/logo.png HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:19 GMT\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":56099,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 281 x 67, 8-bit/color RGBA, non-interlaced","md5":"8438c83bcfc7ba56e05a353903add218","sha1":"d7031dfaca76b7a6949a686a5defc3fb56d10827","sha256":"d0c19644763c480245771ff49c7f2fd7d046276c7b5f033351cefae46373ac45","sha512":"1ce1b3029ecbd2817a42cb6fac50b722a4fcff494186541dc8ab897130d9ff606e0f113c297548c006c6ef662edf80e125afe5e5cb46026cdfaf70e9695bc9bd","ssdeep":"768:NzJHDBwfbjjCyqeXPE7NXDseicNxBdPV8/D2wrSbzdg+AJm7UL1ZSL:NFHSbE+KzDxLy/D78dg+AcUWL","tlshash":"3d43e1926c98f0c5d4ed88b6ed8459dc87832647d2a84d25377f8c4fdf52b320de229a","first_seen":"2026-05-28T15:47:45.027847Z","last_seen":"2026-05-28T15:47:45.027847Z","times_seen":1,"resource_available":false,"data":null}},"time_used":5438,"timings":{"blocked":5141,"dns":0,"connect":0,"send":0,"wait":293,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/UploadFiles/202581172219136.jpg","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.775Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /UploadFiles/202581172219136.jpg HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:16 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":579844,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=2216, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1024], progressive, precision 8, 1024x1968, components 3","md5":"8d922ded2fb523ebec8c3f8af5b4bea5","sha1":"f0a902cca25c6376184d1e334c72d1de2259da1c","sha256":"1749b6335541b63e5a0fa2e9a3b53f698c7af36f81b68bb97ec052f6981b9083","sha512":"e4d251c53790cdc41278b749185b65ee7c74005b6b42ed06f599551094040a004b88d12bb7c56292a6fa36c3d76939b463b023fddbb18b8a3ba65a9c917f7bd5","ssdeep":"12288:fweMHzmv3/zjFrGRZz32x3bvWIfNR7WPXnxk:fwe5jZyGx3beIFRwXnq","tlshash":"d7c4d1857c94a841a85db668e5fc9440dbf72ec11d70442eafeacd9a0f12edc4de08db","first_seen":"2026-05-28T15:47:45.031451Z","last_seen":"2026-05-28T15:47:45.031451Z","times_seen":1,"resource_available":false,"data":null}},"time_used":4035,"timings":{"blocked":2390,"dns":0,"connect":0,"send":0,"wait":294,"receive":1351,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/fafafa.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.790Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /fafafa.js HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:14 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Wed, 27 May 2026 03:49:39 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"6a1669d3-62e\"\r\nExpires: Fri, 29 May 2026 03:47:14 GMT\r\nCache-Control: max-age=43200\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1582,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"a7672e44d11687362be2baa105f2764f","sha1":"e0f4d1899394fbe5a83f984e506d31feae7f48d6","sha256":"abe3aba578e37e107fac35142d95423857302c922b8fbaf8c8e8dfcf4faa4d9b","sha512":"f9dbc9c83203738a0655160cd516d1ba8fdc7a896ed14e86bfd05e3e8cb21a7acf3f538359c1b1bf4b21b2e0079e5caf9eb920e1831f3602715f7e1cc4d35bdc","ssdeep":"","tlshash":"d531ffeb4863a418e332502d753a974c75b44057ab35d901ac9cada9af94f44a0efbcc","first_seen":"2026-05-27T07:05:16.865853Z","last_seen":"2026-05-28T17:41:40.070127Z","times_seen":227,"resource_available":true,"data":null}},"time_used":1109,"timings":{"blocked":837,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"34.96.237.103:33315/register","fqdn":"34.96.237.103","domain":"34.96.237.103","tld":""},"ip":{"addr":"34.96.237.103","port":33315,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:14.915Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"34.150.45.23","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 06 Jan 2026 00:00:00 GMT","end":"Wed, 06 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DE:14:07:60:A7:06:05:B3:7C:3A:4A:6E:0B:0B:DC:BD:EA:D4:CA:22","sha256":"54:45:16:64:81:89:38:B7:AB:4A:E0:A6:48:BD:6A:87:3D:88:5A:19:B8:A6:B4:F3:B9:79:3E:92:F3:52:65:87"}}},"request":{"raw":"GET /register HTTP/1.1\r\nHost: 34.96.237.103:33315\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\nserver: openresty\r\ndate: Thu, 28 May 2026 15:47:15 GMT\r\ncontent-type: text/html\r\ncontent-length: 150\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":150,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8b181bb6767bc5795dcf17341a387e5b","sha1":"b5e2a9fb1f8a4aad3c7127c769af4c780b47bef4","sha256":"32cbc376cd769a26d108ae31678f975b863b7066e110c59d9a212c7281bd8c81","sha512":"2550b61ffa1ef8dd2613704798e3a717321c8e3569849dcbfb3049f441b8bccf9287b7139f3cef3371c1bb0476da31523e5e83b6a81af3ebc4d91142e06c76c6","ssdeep":"","tlshash":"07c08c2a341e2c0c97a321b616c36a60d192c3308a5a28104700025330c30168ac3329","first_seen":"2023-04-05T08:34:05Z","last_seen":"2026-05-28T17:07:56.035063Z","times_seen":9137,"resource_available":true,"data":null}},"time_used":1515,"timings":{"blocked":650,"dns":0,"connect":215,"send":0,"wait":213,"receive":1,"ssl":433},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"34.96.237.103:33315/register","fqdn":"34.96.237.103","domain":"34.96.237.103","tld":""},"ip":{"addr":"34.96.237.103","port":33315,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:15.820Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /register HTTP/1.1\r\nHost: 34.96.237.103:33315\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.munaiyu.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 400 Bad Request\r\nServer: openresty\r\nDate: Thu, 28 May 2026 15:47:16 GMT\r\nContent-Type: text/html\r\nContent-Length: 252\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"400","status_text":"Bad Request","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":252,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"f3679d348979f9c27afbd0d9adb1d190","sha1":"5475ed0e9de3674d9c23c357e9434fa74d30b597","sha256":"a3bec831b7186bbb0dc427b3d9ff396fc17f245d125d48745cf688d198e2dfd1","sha512":"d378e8620cf3e7f68b2cf137f3832fb07872659d4d65b8890044a23563ff9bf03ee9cd8a9dab88a67ee805fc4351d1e1bd846fae540677c4877d6d4e1fbcf9fa","ssdeep":"","tlshash":"d1d05eaa28c23d0a816363395ac7b550e1b39331a7ac5aa50481cbc734cb04e4bc2fd5","first_seen":"2023-05-15T15:30:13Z","last_seen":"2026-05-28T17:28:10.607377Z","times_seen":492,"resource_available":true,"data":null}},"time_used":671,"timings":{"blocked":223,"dns":0,"connect":223,"send":0,"wait":223,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hm.baidu.com/hm.gif?hca=2AC3E0B4F57E6E97\u0026cc=1\u0026ck=1\u0026cl=24-bit\u0026ds=1280x1024\u0026vl=1024\u0026et=0\u0026ja=0\u0026ln=en-us\u0026lo=0\u0026rnd=1278758421\u0026si=2daba12cace89580940e21fa2fe4eb2f\u0026v=1.3.2\u0026lv=1\u0026sn=52636\u0026r=0\u0026ww=1280\u0026u=http%3A%2F%2Fwww.munaiyu.com%2F\u0026tt=%E9%97%A8%E5%BE%92%E5%B9%B3%E5%8F%B0%20-%E3%80%88%E9%97%A8%E5%BE%92%E5%A8%B1%E4%B9%90%E5%8D%87%E7%BA%A7%2C%E7%B2%BE%E5%BD%A9%E6%97%A0%E9%99%90%E3%80%89","fqdn":"hm.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"14.215.182.140","port":443,"asn":4134,"as":"Chinanet","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:15.966Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"baidu.com","organization":"Beijing Baidu Netcom Science Technology Co., Ltd"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 09 Jul 2025 07:01:02 GMT","end":"Mon, 10 Aug 2026 07:01:01 GMT"},"fingerprint":{"sha1":"21:BF:66:0D:67:BE:7A:7F:49:48:05:30:F4:7F:09:F2:30:36:CA:63","sha256":"0D:82:2C:9A:90:5A:EF:E9:8F:37:12:C0:E0:26:30:EE:95:33:2C:45:5F:E7:74:5D:F0:8D:BC:79:F4:B0:A1:49"}}},"request":{"raw":"GET /hm.gif?hca=2AC3E0B4F57E6E97\u0026cc=1\u0026ck=1\u0026cl=24-bit\u0026ds=1280x1024\u0026vl=1024\u0026et=0\u0026ja=0\u0026ln=en-us\u0026lo=0\u0026rnd=1278758421\u0026si=2daba12cace89580940e21fa2fe4eb2f\u0026v=1.3.2\u0026lv=1\u0026sn=52636\u0026r=0\u0026ww=1280\u0026u=http%3A%2F%2Fwww.munaiyu.com%2F\u0026tt=%E9%97%A8%E5%BE%92%E5%B9%B3%E5%8F%B0%20-%E3%80%88%E9%97%A8%E5%BE%92%E5%A8%B1%E4%B9%90%E5%8D%87%E7%BA%A7%2C%E7%B2%BE%E5%BD%A9%E6%97%A0%E9%99%90%E3%80%89 HTTP/1.1\r\nHost: hm.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nCache-Control: private, max-age=0, no-cache\r\nContent-Length: 43\r\nContent-Type: image/gif\r\nDate: Thu, 28 May 2026 15:47:16 GMT\r\nP3p: CP=\"CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR\"\r\nPragma: no-cache\r\nServer: apache\r\nSet-Cookie: HMACCOUNT=C84A37BF8280AF20; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT\r\nStrict-Transport-Security: max-age=172800\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"ad4b0f606e0f8465bc4c4c170b37e1a3","sha1":"50b30fd5f87c85fe5cba2635cb83316ca71250d7","sha256":"cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda","sha512":"ebfe0c0df4bcc167d5cb6ebdd379f9083df62bef63a23818e1c6adf0f64b65467ea58b7cd4d03cf0a1b1a2b07fb7b969bf35f25f1f8538cc65cf3eebdf8a0910","ssdeep":"","tlshash":"15900003fbc08002c2b2e0300b3b0380238ce2200aa8030b80aeb0acecaa3a20c03020","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-05-28T17:38:45.998542Z","times_seen":361261,"resource_available":true,"data":null}},"time_used":489,"timings":{"blocked":200,"dns":0,"connect":0,"send":0,"wait":289,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/css/animate.min.css","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.767Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /css/animate.min.css HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:14 GMT\r\nContent-Type: text/css;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":61409,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"data","md5":"6772ccc9106589d667e7d0f4cd214be1","sha1":"e68b96403455ab2c2a2bf8baefeca22c40d144e2","sha256":"fd9013dab5316a20e239b6686c89ac0d65363532d0414d647c9297b88b8450f7","sha512":"aa7a3d197c67f339f660b45c6597ab59ce0626acb59b3a8adaa90b59570799fe142c1eb66da411745ba486c6513736a5787dd38dd996e95f7480bedf178687df","ssdeep":"768:lkZlIuqI46CIBqI4IuwG1RASkMDs3Uyp5CrWeu0GT6sPask:lkZ6IuwG1RASkMDs3Uyp5CrWeu0GTs","tlshash":"dd5347ae5891228991664b66c3dc4e684b3dc77314625cdf3385684b8f87f9f33ea207","first_seen":"2026-05-28T15:47:45.038666Z","last_seen":"2026-05-28T15:47:45.038666Z","times_seen":1,"resource_available":false,"data":null}},"time_used":832,"timings":{"blocked":252,"dns":0,"connect":271,"send":0,"wait":309,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/css/idangerous.swiper.css","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.768Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /css/idangerous.swiper.css HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:14 GMT\r\nContent-Type: text/css;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":3037,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"data","md5":"f736a635bc54bba577ef4f132cf18260","sha1":"d74d65c724f33332640b8b52a1d0a6f6ebe53b5b","sha256":"19b3ccdfe4dfdbd1b4198d9aa7674ab42334297bc273133252663da071851b67","sha512":"94eb8c2cb6d8d74a3dc19d7db650621c9ba0c58ba8418a10c8d9368197762d9bd109e74016e3ce0054fb7619ea1959ae4066be3b02351fe19a4d67d7e853d780","ssdeep":"","tlshash":"7a51c3b46210381191338f294bc6b520c73d95629a23ccdf774e5e49cea23adb647b66","first_seen":"2026-05-28T15:47:45.042695Z","last_seen":"2026-05-28T15:47:45.042695Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1408,"timings":{"blocked":284,"dns":0,"connect":0,"send":0,"wait":1124,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/UploadFiles/2022421111444499.jpg","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.778Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /UploadFiles/2022421111444499.jpg HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:16 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":179703,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=800, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=800], baseline, precision 8, 778x752, components 3","md5":"61e9dbd508a42616325bdfb910fcaba1","sha1":"2b13069dc3e95233dc6bac8fc0d945238d28fdf6","sha256":"712b8fb057ba604d27e566d086d55f425731277f16bbbec89453412d868c2460","sha512":"36e0ddcc9b8ab4de8671aad1f932094a5417b21db78d753dadc151bf4adf708c8dc51979953df0d2cafb630bcc4f95449acedfac269cdc4cca017d176e78fe6c","ssdeep":"3072:k242DHsQ3BoQQpaPMuwqqKtQu5OG275ZNf8c04wcANgsBs/e:k242LsQ3Hoc6q5Q2ORFZNkX4XGB7","tlshash":"1c04c1628db0bb15ed21191453952bae504e2d6f4be9420cbc6ece8b7353cde74ef842","first_seen":"2026-05-28T15:47:45.044024Z","last_seen":"2026-05-28T15:47:45.044024Z","times_seen":1,"resource_available":false,"data":null}},"time_used":5848,"timings":{"blocked":2388,"dns":0,"connect":0,"send":0,"wait":290,"receive":3170,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/UploadFiles/20248209426211.jpg","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.780Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /UploadFiles/20248209426211.jpg HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:19 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":244188,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1012, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1067], baseline, precision 8, 1067x1012, components 3","md5":"a8e4fd6b1db988f9d2a5f15231138470","sha1":"de7ea1c138159ffb619f50f1f09d972b1eb9fa79","sha256":"8757844d607dcce0829d59fb6a30c90d289f35be0ff059396c1aff1593e96e1e","sha512":"c4a5c8bed976e435a1bf4701bb5d409f658c7868a996ac1609676309dfefea2cea870f361a0375421b334517d1618368fde2b54a60b41be8a850f2e6bd5fd777","ssdeep":"6144:LgfhWk5Y5Qdg2nugK3XQy0VjPzRy2+HU3UyDgrg:UpWk5YudnugK3grV3R2SUiIg","tlshash":"6834f6568971bb15ed52482457e02bef051c2d2f1af9130cadadce8b3293dee34af941","first_seen":"2026-05-28T15:47:45.04567Z","last_seen":"2026-05-28T15:47:45.04567Z","times_seen":1,"resource_available":false,"data":null}},"time_used":5751,"timings":{"blocked":5430,"dns":0,"connect":0,"send":0,"wait":294,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/images/zs51.png","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:16.214Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/zs51.png HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007; Hm_lvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; Hm_lpvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; HMACCOUNT=2AC3E0B4F57E6E97\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:16 GMT\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":56659,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 380 x 220, 8-bit/color RGBA, non-interlaced","md5":"3534bcedffb02421783a8dfd00029a3e","sha1":"ba006a8003e679011eac2a277b46ec33193a7fe1","sha256":"271b170f33527d408e8697c6bdc8e8f34593633ed7e02a5815ee9334b3e42132","sha512":"5b15ea5fe9662d099b09d22840cd95264322aab6a89b95aff297cbd9b93e9bb591d2e302c5052fd363e9e995104b1d295b05a3d2951b9eec4c0d5032ffc01a6f","ssdeep":"768:X1Rtv7Y/A7gRT4bUjLgd0yvicNxBdw6j3M8/D24wrhrg+GhcbEU:Vv7YOgBPEDPxLwUB/D8hs+GKbX","tlshash":"4d43e142ad82f542f7d9cb756cd2a294c56307839b494c147bee890edf13f620f93a42","first_seen":"2026-05-28T15:47:45.047035Z","last_seen":"2026-05-28T15:47:45.047035Z","times_seen":1,"resource_available":false,"data":null}},"time_used":571,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":299,"receive":272,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"push.zhanzhang.baidu.com/push.js","fqdn":"push.zhanzhang.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"14.215.182.161","port":80,"asn":4134,"as":"Chinanet","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:16.290Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /push.js HTTP/1.1\r\nHost: push.zhanzhang.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Encoding: gzip\r\nContent-Length: 232\r\nContent-Type: text/javascript\r\nServer: bfe\r\nDate: Thu, 28 May 2026 15:47:16 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":281,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with no line terminators","md5":"1bb5a3267c9865ad4abe8d937734b62b","sha1":"b5478dd2edb3e64242eced1db2dbd945ef81f592","sha256":"674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2","sha512":"33318ed944a49a8fa334983408d68853b1fbe4f80b19adef6235f23d7708b616cd4f8dd28c8b8ebfbb5776aab8088229f3060cd789af34fe1db5038a98bd0d39","ssdeep":"","tlshash":"91d02be874a0c41c0ce710b17fab328cfab20b2755244d40c05b90013614b1f824bfe9","first_seen":"2023-03-07T01:02:09Z","last_seen":"2026-05-28T16:58:04.9929Z","times_seen":23842,"resource_available":true,"data":null}},"time_used":649,"timings":{"blocked":216,"dns":1,"connect":215,"send":0,"wait":217,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/css/style.css","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.758Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /css/style.css HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:13 GMT\r\nContent-Type: text/css;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18527,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"data","md5":"48d783f3663281273a57fe4e9607c8f6","sha1":"bb650e833b90b67b4d156e09c26dbe7fefb15e98","sha256":"471f5fb15b677f4f3a22aea5e56e914ac01b664988a4d022f6c98afe01be196b","sha512":"9f42d9736d22de8bfe4d3defee66fa20c1d8fc2b8cc36b352154d9e6cace8a2f925a65ad940c5a7d6c5206f78ed069cb883847b986eb1ac2d8465d7deff228b7","ssdeep":"384:C8C6MXo32SNFTZ6cuCtCzDN5IgmIu+KFGjlQ5SNf+:C8C6MXo32KJZ6cuYaDN5IgDu+KFGjlQ1","tlshash":"7b82102667262245b16bb3f9fe63db5e172e9013e30212fcbed53450c18d49716b3b8a","first_seen":"2026-05-28T15:47:45.049744Z","last_seen":"2026-05-28T15:47:45.049744Z","times_seen":1,"resource_available":false,"data":null}},"time_used":307,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":307,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/css/reset.css","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.766Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /css/reset.css HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:14 GMT\r\nContent-Type: text/css;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4639,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"data","md5":"1786673cad24fd67a4b6851ccef94128","sha1":"619cff3e2819ccf74906e3951db0ad8563496079","sha256":"9336b52bbcad4f963e6212211b1c04584ce1d56c2b4bc479e19f5604d73d5596","sha512":"53e7bc2318dead2e0894f4b7a74094e88b46fee3ae83b4979d0432413f2eb9926800f8ea121023432eb78da32481a9f5840959418524d2a2557a0449662f6c24","ssdeep":"96:yQeU3ycJXjk+FsZahWCX5AwdTt9r8TmzvTMpqf1Q7iV5rQtXl6ygdNRrcsy6lCHk:yHU1JXg+FZASSQKc9QtXl6y6Rrcsy6lt","tlshash":"e1a1635e21b01058a3775f34f3f69f697f1b42368d0184bdb295792bc5c243ba2623b6","first_seen":"2026-05-28T15:47:45.05088Z","last_seen":"2026-05-28T15:47:45.05088Z","times_seen":1,"resource_available":false,"data":null}},"time_used":804,"timings":{"blocked":245,"dns":0,"connect":263,"send":0,"wait":296,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/UploadFiles/2025723171018136.jpg","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.777Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /UploadFiles/2025723171018136.jpg HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:16 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":54807,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, baseline, precision 8, 591x647, components 3","md5":"81b9128f9d58bbdd0bed9f3ff6cbdbc3","sha1":"1a5f27e5ce298118e293d432d4630ab18180491d","sha256":"21715349e3433fe29cd3d2821227187148d868e6650cec436d8af9345a14addf","sha512":"99f3a1ed577dea057ed38820aaf20a4fcde2380b635f319fd07fe4b13c352c17280bd645ebe076e36fd4d3ddee912fff8e50fc2ad486d679283335b805b5cb2e","ssdeep":"1536:ZEsepv8LN90dzFH6uSPC1v41lXBv6UPNWQ7tjT:qUg0KB4jXJ6UVzpT","tlshash":"9b3302c4093bc28483fe32c2b83743db6745bd683599a4372db51a4f6b6fd780245e54","first_seen":"2026-05-28T15:47:45.05204Z","last_seen":"2026-05-28T15:47:45.05204Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3231,"timings":{"blocked":2388,"dns":0,"connect":0,"send":0,"wait":299,"receive":544,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/web.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.786Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/web.js HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:14 GMT\r\nContent-Type: application/x-javascript;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":1051,"size_decoded":0,"mime_type":"application/x-javascript; charset=utf-8","magic":"data","md5":"9a5da315243ac35046275251db10ac7b","sha1":"5f36c2a180b27bda57fa8bf528a3f8e98b3cfecc","sha256":"c79622e24aaf239bae0658cc749900cb79a086a4adf050f991e328f55eff76ee","sha512":"64582f2852cddcb0d2ef6bec55a3d259ca5af93bf5d74cb9e998a3b7aa5ba80c498ab3e49e3d2cd86f9cd6594048c49343bd6a8510932e61abfbc51a1738fdc7","ssdeep":"","tlshash":"7311358d74312275453c4b38167f645dbf6628223a42aa64b0c888d4ff343fa9b22add","first_seen":"2026-05-28T15:47:45.053169Z","last_seen":"2026-05-28T15:47:45.053169Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1408,"timings":{"blocked":520,"dns":0,"connect":0,"send":0,"wait":887,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/js/bideo.js","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:13.787Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/bideo.js HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:14 GMT\r\nContent-Type: application/x-javascript;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nSet-Cookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6163,"size_decoded":0,"mime_type":"application/x-javascript; charset=utf-8","magic":"data","md5":"fd797bbc89b06a7950e2896e2e8fd6f8","sha1":"2ecc2725640647b9d15254ab19f4c276b09efd7d","sha256":"d83896c35a8719bedef2c32a563879ca4d171825baac133dc97d346047afb1fd","sha512":"96063c65a5185eb8eacd390cb86c08a5e77e8eb41deedba3cc02dad9fae2bea0615ddf24e5e3c169781c4a3fbbe66190e40d881f6385bcce3811961b3b36702c","ssdeep":"96:zf1qt2W7feBZeAmdTtUzDj2zThwRYwomGq1rMnguorozoUoPC7C1I/Bvb1vYwCqw:vWbeB6TtsDizT1woQrMgil/JbLHw","tlshash":"a5d1631a6ba55375981764aabfcf7149ab2dc0279339ca50bc3f83908f904704166efd","first_seen":"2026-05-28T15:47:45.058176Z","last_seen":"2026-05-28T15:47:45.058176Z","times_seen":1,"resource_available":true,"data":null}},"time_used":826,"timings":{"blocked":530,"dns":0,"connect":0,"send":0,"wait":296,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.munaiyu.com/images/zs31.png","fqdn":"www.munaiyu.com","domain":"munaiyu.com","tld":"com"},"ip":{"addr":"154.203.106.93","port":80,"asn":142062,"as":"qlhost","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.munaiyu.com/","date":"2026-05-28T15:47:16.207Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/zs31.png HTTP/1.1\r\nHost: www.munaiyu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.munaiyu.com/\r\nCookie: PHPSESSID=8guvf92v52e3tdpp20qn1u9j13; server_name_session=e49514067fe78acc3313471e9e11c007; Hm_lvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; Hm_lpvt_2daba12cace89580940e21fa2fe4eb2f=1779983236; HMACCOUNT=2AC3E0B4F57E6E97\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 28 May 2026 15:47:16 GMT\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000\r\nAlt-Svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48459,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 380 x 220, 8-bit/color RGBA, non-interlaced","md5":"e2ab73f489ca12d41fb5a2293f340dad","sha1":"d53eef34c786fd2d5b51f0d63ddad3c00f4581f9","sha256":"f32dc72c1dfc58bc3da6e8934c09459ed5a952c9b82ee5d6feb9d0b2d19ae18f","sha512":"a74c004c463c5d510535ad30009acb4955724894ff4abb715d456575142889d866e898dc1cb91b0577a00dc82eaf57c375ec12892e91ef63b57a578d00afe383","ssdeep":"768:8DquyMsTTCQTxm2sTTPQicNxBdP08/D2KrsdZ:8DquHs/CQTxm2s/PQxLP5/DDsdZ","tlshash":"3e238c0164a8e04cf0dda4747d8949e8f5720957a6719e807cfed68eef07ba14f3129b","first_seen":"2026-05-28T15:47:45.064577Z","last_seen":"2026-05-28T15:47:45.064577Z","times_seen":1,"resource_available":false,"data":null}},"time_used":583,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":304,"receive":279,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-28","alert":"Sinkholed","trigger":"www.munaiyu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}