{"report_id":"c1bbeab9-64a5-4a52-9549-2f2b8f8ab35a","version":6,"status":"done","tags":[],"date":"2025-10-11T04:29:05Z","url":{"schema":"http","addr":"ipasviarezzo.com/","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":0,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"final":{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"title":"JalaLive-Pertandingan global, HD gratis, siaran langsung sepak bola, dan NBA basket dapat ditonton secara gratis secara online."},"submit":{"url":{"schema":"http","addr":"ipasviarezzo.com/","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":0,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-15T04:29:05Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":3,"urlquery":0,"analyzer":3}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036300,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036301,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036302,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"}],"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null},"summary":[{"fqdn":"ii.jalalive55.co","ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-12-21","domain_rank":0,"first_seen":"2025-02-14T22:15:27.156273Z","last_seen":"2025-10-05T12:32:49.720723Z","alert_count":0,"request_count":14,"received_data":3874350,"sent_data":6240,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"www.jalabu6.net","ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2025-01-11","domain_rank":0,"first_seen":"2025-10-04T17:19:59.352346Z","last_seen":"2025-10-04T17:19:59.352346Z","alert_count":45,"request_count":15,"received_data":4101990,"sent_data":6648,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"ws.77liveimjk.cc","ip":{"addr":"43.218.177.174","port":9129,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"domain_registered":"2024-03-09","domain_rank":4166246,"first_seen":"2024-10-15T12:46:49.326691Z","last_seen":"2025-10-04T17:20:00.759353Z","alert_count":0,"request_count":1,"received_data":166,"sent_data":560,"comment":"","tags":null,"fingerprints":null},{"fqdn":"imjk.dsuhkj.com","ip":{"addr":"108.136.85.246","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"domain_registered":"2024-07-09","domain_rank":3536920,"first_seen":"2024-10-07T15:42:44Z","last_seen":"2025-10-04T17:20:00.488991Z","alert_count":0,"request_count":2,"received_data":1556,"sent_data":1146,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"ipasviarezzo.com","ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"domain_registered":"2023-11-28","domain_rank":0,"first_seen":"2025-10-11T04:29:12.119592Z","last_seen":"2025-10-11T04:29:12.119592Z","alert_count":6,"request_count":55,"received_data":281605,"sent_data":22050,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]},{"name":"jQuery:2.2.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Prism","description":"Prism is an extensible syntax highlighter.","website":"https://prismjs.com","common_platform_enumeration":"","icon":"Prism.svg","categories":["Miscellaneous"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"cdn.sportnanoapi.com","ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"domain_registered":"2018-06-26","domain_rank":1797884,"first_seen":"2019-07-05T21:54:51Z","last_seen":"2025-10-08T01:08:38.87588Z","alert_count":0,"request_count":40,"received_data":1391401,"sent_data":19236,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"jalacos.bjxsong.com","ip":{"addr":"43.159.98.28","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"domain_registered":"2024-12-30","domain_rank":0,"first_seen":"2025-09-23T08:00:30.206552Z","last_seen":"2025-10-10T12:38:38.804037Z","alert_count":0,"request_count":9,"received_data":1458465,"sent_data":4422,"comment":"","tags":null,"fingerprints":null},{"fqdn":"jalaoss.nxhongzhong.com","ip":{"addr":"43.159.95.214","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"domain_registered":"2024-05-16","domain_rank":4735326,"first_seen":"2024-07-08T09:01:31Z","last_seen":"2025-10-10T12:38:38.55178Z","alert_count":0,"request_count":1,"received_data":100830,"sent_data":503,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2025-10-05T22:12:07.052692Z","alert_count":0,"request_count":2,"received_data":850945,"sent_data":872,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"jk.vgcpas.cc","ip":{"addr":"108.137.115.204","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"domain_registered":"2024-07-09","domain_rank":4240387,"first_seen":"2024-07-15T00:29:19Z","last_seen":"2025-10-04T17:20:00.733532Z","alert_count":0,"request_count":7,"received_data":44249,"sent_data":6047,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"bflives.qdmeron.com","ip":{"addr":"43.152.140.79","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"domain_registered":"2004-07-08","domain_rank":4090447,"first_seen":"2024-12-01T14:48:21.401566Z","last_seen":"2025-10-10T12:38:38.584001Z","alert_count":0,"request_count":4,"received_data":367578,"sent_data":1940,"comment":"","tags":null,"fingerprints":null},{"fqdn":"jk.vgcpps.com","ip":{"addr":"16.78.49.61","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"domain_registered":"2024-07-09","domain_rank":3868853,"first_seen":"2024-07-15T00:29:19Z","last_seen":"2025-10-04T17:20:00.040956Z","alert_count":0,"request_count":6,"received_data":37119,"sent_data":4197,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"jalacos.nxhengxiao.com","ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"domain_registered":"2024-05-16","domain_rank":0,"first_seen":"2025-09-23T08:00:30.94798Z","last_seen":"2025-10-10T12:38:39.420531Z","alert_count":0,"request_count":21,"received_data":1579981,"sent_data":10519,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ziyuan.baidu.com","ip":{"addr":"223.109.81.160","port":443,"asn":56046,"as":"China Mobile communications corporation","country":"China","country_code":"CN"},"domain_registered":"1999-10-11","domain_rank":909396,"first_seen":"2017-12-29T00:13:18Z","last_seen":"2025-10-07T03:40:48.083011Z","alert_count":0,"request_count":1,"received_data":708,"sent_data":435,"comment":"","tags":null,"fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx:1.8.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"tj.77livetj.com","ip":{"addr":"108.137.53.211","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"domain_registered":"2024-03-16","domain_rank":2115076,"first_seen":"2024-12-07T07:15:19.613179Z","last_seen":"2025-09-23T08:00:31.734077Z","alert_count":0,"request_count":4,"received_data":1512,"sent_data":2126,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"collect-v6.51.la","ip":{"addr":"43.159.107.113","port":80,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"domain_registered":"2005-01-17","domain_rank":348646,"first_seen":"2021-03-08T16:03:54Z","last_seen":"2025-10-06T01:24:40.867061Z","alert_count":0,"request_count":1,"received_data":363,"sent_data":394,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036300,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036301,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036302,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"}]}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"555cbb276bdae58f2b8dd4ca14e3ba5a","sha1":"c4263c7619fd9e88de8284201517b523fff3942a","sha256":"f8ca6b7330cc9188cbb582a297ff854a9b2f94432a2326fd90103fc94cfc99c7","sha512":"37bcb8a8d046fa6c370e459027c758b709dc28f08558c266d5e2ef8b094df290923b306ca4336e87f0023acd89120b3ebc222ff10842222a50b1021e4caee89e","ssdeep":"","tlshash":"75c08cc4a0c62d101626642010af24e4a0344027b0481b02cc94dc482f220f48233e98","size":140,"data":"","first_seen":"2023-07-16T17:47:57Z","last_seen":"2026-04-14T10:43:52.468883Z","times_seen":78,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"77ff36f63efc67603c4afc7acd0236ef","sha1":"5bf9fbf19190f1b6707d914c15d030db3eb3883d","sha256":"580231e8339adc5b2197f437671a27a7894b2d5bf214bbf8bb521e3630eee64e","sha512":"af547d45a92847e784d30855b9b197fb9e06a8612eadc6e9218f8c00e423684ace441df66161ed96375fd479f7b5a651c560c5bf3d68d7dc7b9ae9f5a10b8c9a","ssdeep":"","tlshash":"bbc02bc4b0c33d002602681055bf34e890344027704c1b03ccd8ec483e230f48233edc","size":138,"data":"","first_seen":"2024-03-05T23:57:13Z","last_seen":"2026-04-26T13:37:58.616655Z","times_seen":562,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"dd4c6a0b4753fcecf6cf7505f07ca07c","sha1":"3fb7c2c4092a96af0c338d6f1f291deeeee8ddf8","sha256":"95c5a68a1568c10b07aec1fe977d71f8472941854272c094fad596e10cfda1db","sha512":"deb7658171072a69516917c154c4dd5d0d61e45fc9a1f69d6c5fff79f3d811baf48fc40a9d9c16a5fe530818eb22a60c0b95d608a0a639d420ea47521a3a0016","ssdeep":"","tlshash":"f6d0a7caa0997d1025a5143011af38d450141527640c6b69cee48d143d131b09333fe4","size":215,"data":"","first_seen":"2024-08-19T19:47:55.016926Z","last_seen":"2026-04-14T10:43:52.471692Z","times_seen":43,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/js/orsxg5a.script","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":false,"md5":"71538803af672dc29131186c2a27b91e","sha1":"8368a2376a2b6bc7faf329253a814acd551b7f86","sha256":"cde82ef5948a5afe291bd58107934e8466ffad91477c5717f532c9cdf9515c69","sha512":"616f5b16be3e3dfe3e7a61c8455ee3b2b6f32fcfb670d975459842fcb61815cf6ed86faf56c0f378b8ec9375f822ce7d8fad73c48d41732165a3d9cf02be2c01","ssdeep":"","tlshash":"86c02bf33608061d83050020f2b8f06ea1ba78affe01a310d4a234405080dfc0cd07cc","size":142,"data":"","first_seen":"2025-03-30T18:40:13.43182Z","last_seen":"2025-11-29T14:14:36.94516Z","times_seen":30,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"555cbb276bdae58f2b8dd4ca14e3ba5a","sha1":"c4263c7619fd9e88de8284201517b523fff3942a","sha256":"f8ca6b7330cc9188cbb582a297ff854a9b2f94432a2326fd90103fc94cfc99c7","sha512":"37bcb8a8d046fa6c370e459027c758b709dc28f08558c266d5e2ef8b094df290923b306ca4336e87f0023acd89120b3ebc222ff10842222a50b1021e4caee89e","ssdeep":"","tlshash":"75c08cc4a0c62d101626642010af24e4a0344027b0481b02cc94dc482f220f48233e98","size":140,"data":"","first_seen":"2023-07-16T17:47:57Z","last_seen":"2026-04-14T10:43:52.468883Z","times_seen":78,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eval","is_inline":false,"md5":"f0ffd3b7c2574ac324603ed00488c850","sha1":"623e76c36aa2a886542011e28412cc761d7ceb01","sha256":"c4d0cf241a1bfa1c8bf4cf24e8f89d2ab786a284a39adb2fc8df7ea14e73c154","sha512":"436f9fb4816f6975fec0d965dfc0db4c3c38c53632dd4dc99a6c1a2dd9562fbd67176d0118549ff573c97e3394bad4d601c425cf670acab249ebc8d260591fa2","ssdeep":"","tlshash":"1540000003c00000300000c0000000000003c00000000000c000000000c00000300030","size":7,"data":"","first_seen":"2023-03-07T01:03:35Z","last_seen":"2026-04-26T16:10:23.976698Z","times_seen":67605,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"4d09a05e138e993fe25601209ef230ad","sha1":"c7b5797e4ceeec4d273b1cca927a30801716debd","sha256":"db559ff3bb709e16fe18b6cf66ecb259c9c8bd86e0622c10216328d651f0fdfa","sha512":"ae790c98a723b111e60b694edffae1ee38fc8ae6a87ed4bafe708b615170771dec5fa1ef6a155f616cd85faa04e85ead3b94c67fc57d4149bbf936e0c4fcdb78","ssdeep":"","tlshash":"c8f0d345a585140cd68107dae1eeae6858999537b30c874bcda89cf02d611f35727cbc","size":628,"data":"","first_seen":"2024-08-19T19:47:55.011808Z","last_seen":"2026-04-14T10:43:52.461975Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"b845ffb14e88b6187920831f36e24bf8","sha1":"0c3724dec90835424bca41c9d0310d46448661da","sha256":"981c7f649cab4708d4850f2a3cd1a2cf329c2dd6eb33fc524b514c75bc1bbf4b","sha512":"e6b7fd4e26492fea185fc63de74c27794af3f9e192a294dee90b0ee866f759f067ae712fdd2f4a085abd9f4696586ce1fb4b9b367fd7918f33e2b2255fb79892","ssdeep":"","tlshash":"c3c08cc5a0c22e01660a65a014bf6ae4a034843771482b428d98d88a2e220b08333ea8","size":154,"data":"","first_seen":"2024-08-19T19:47:55.007961Z","last_seen":"2026-04-14T10:43:52.458052Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"896a18b207f55bd366a0be6474294e56","sha1":"c1e2c21adf07e8808a9f12569634c9c0a80722e1","sha256":"596a93758a44d1d8bad5fb74019c4d3fd5252e90919fac0c3d81fc9b4269c85d","sha512":"529cbdf51b0657e80233abb751cc704591c5118b57b3074ec0c2687c5aa39a8a84a2d25b642dce2cbeb6935f26726f4f4e1a832f00a0868454576bae1bf708b7","ssdeep":"","tlshash":"e2c08cc8a0d66e001642a86110af35e4a024402770486b028cd4d84a2e220b08233e98","size":144,"data":"","first_seen":"2024-08-19T19:47:55.008696Z","last_seen":"2026-02-25T03:25:48.358319Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5721e0a2fcb7cd4e9ae68c0168b2c7c6","sha1":"b077ddcfa2910359b6ae442b8847362a17f142c0","sha256":"3e3a787f86008565fb8f8d2aebc1fd16559ed4c48305a95fcf85f9dae594602b","sha512":"02029c5d6b1b35499368b3a1d62d590679048a702713000bcbfb130db8f43a3e4f57d75013f08601373f715efa9be716af059e1a81977c9b52afd0f7447fcb97","ssdeep":"","tlshash":"aed097c9a0ca98001a04b6cd50af6ed49134841bf00c6b0bccdcccf43aa32f44327eae","size":251,"data":"","first_seen":"2024-08-19T19:47:55.000483Z","last_seen":"2026-04-14T10:43:52.464665Z","times_seen":41,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"f0ffd3b7c2574ac324603ed00488c850","sha1":"623e76c36aa2a886542011e28412cc761d7ceb01","sha256":"c4d0cf241a1bfa1c8bf4cf24e8f89d2ab786a284a39adb2fc8df7ea14e73c154","sha512":"436f9fb4816f6975fec0d965dfc0db4c3c38c53632dd4dc99a6c1a2dd9562fbd67176d0118549ff573c97e3394bad4d601c425cf670acab249ebc8d260591fa2","ssdeep":"","tlshash":"1540000003c00000300000c0000000000003c00000000000c000000000c00000300030","size":7,"data":"","first_seen":"2023-03-07T01:03:35Z","last_seen":"2026-04-26T16:10:23.976698Z","times_seen":67605,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"51f3dd754c753635dffd47d2faa48e2b","sha1":"d08156e0aa2eed8f93e60d4d04482fc8716df2da","sha256":"960fe07510ece842b27243e1971e5f9296aff5e55665680f90d07d07e70376a8","sha512":"e763e924c8e4728ba7d028f8a7c34e4b688f5674e1a9725ce35887909c1f2915b6b7bba3f2923e72b414a424b259280b98e0a8c459d072b246f1c17bc6852b50","ssdeep":"","tlshash":"93c08c88210b1c7041eb2a010b2fb200b055220168918a20191a23444f31d039754814","size":154,"data":"","first_seen":"2025-06-01T16:50:02.094952Z","last_seen":"2025-11-13T07:53:12.054077Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/js/990.d6dbe4e7.js","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"308a8273c56746ae2530bf22b1635d46","sha1":"f9c8175adfbb5b832568e8269b259b7ad3796399","sha256":"2794e6f12ab6f99301717aa288d44d531115cf88b2aa742907fae76b7fc730b8","sha512":"df077fbbf86dfd7deb057857f6ae215c099d3a048cf1382323f70e6e5bc7030bb863e284d55530be5d72ddddad52d6898d72183933b24d139654ed530f14b5f2","ssdeep":"768:ZNLn/2zlP6FEeZudITKX8mChddEo8S9odcoYgbYA3o:ZJ/AAxudITKsmnHS9HokN","tlshash":"e7e29e3b2556bc8ebb301804214da5c43d377f67a34455fbb2b85eb9218fe71624b2b8","size":34056,"data":"","first_seen":"2025-03-30T18:40:13.405389Z","last_seen":"2025-11-30T20:35:40.776929Z","times_seen":32,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"16c66242d28e0b7e0aaba25d8a4eb96e","sha1":"d6fccf7ccd6305b040ae8b78ca0de791f2e37c99","sha256":"17909ec37fe0658d1ed05ad33adc49ef26c1bd21824d7cd16ea26d277ba017f1","sha512":"18da3628eedc7039815e88187a20fcce41a4d478a9a4d89929f06a435483023202ff422b7a0de75ab3a332a835546d29c48d21462c1b092ee852b9f47efa3728","ssdeep":"","tlshash":"9ec08cc4a0c66d001602641050bf24e89034402670482b028cd4d8892e220f09337e98","size":139,"data":"","first_seen":"2024-06-16T17:50:46Z","last_seen":"2026-04-14T10:43:52.469527Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":true,"md5":"497496faae61ec1dad9c1666750407cc","sha1":"c1182e8353af56d9f49bb0b9ffdf85a547e768b1","sha256":"925fded7a418a6e55d18c2e318a499eb6c669d3325c2f339d0bd0ba0ae9eb8b2","sha512":"4ed4374a285b02fe4ca7ca04245834fcd62cefc85e99025b125e465516dd2070b3cfe6a586f1547fb7c4ed8f900801e0e85857a5afed2384053cde179e720747","ssdeep":"","tlshash":"8ac02b8c310b9c7041f737008b3ff600b003321494d46931890d33089e30e03d744814","size":153,"data":"","first_seen":"2025-03-20T01:51:00.837082Z","last_seen":"2026-04-14T10:43:52.459155Z","times_seen":52,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036300,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036301,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036302,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d554d89879ca6969acc7827f1c6f51a2","sha1":"c82e860d97c98a883ce9ada02cc41facfff033ca","sha256":"7a91dbcab00049734c9d2ea8331f32a5c8312861f17d48c80026c53a3cb6f235","sha512":"fdd1f06b6c4d95dd6bcb2bce5f937d1d7371f953d24469a40db1c0fe9784627510e5c71e264041912c1ad7fd753efada070b697852092faa804fa85e414e6f5e","ssdeep":"","tlshash":"c5c08cc4a0d22d501612641050af24e490344026b0481b068c94e84a3e260b08237e9c","size":139,"data":"","first_seen":"2024-06-16T17:50:46Z","last_seen":"2025-12-02T08:25:01.704512Z","times_seen":40,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"941eda7618b76845f721d0db2209ecce","sha1":"04759c99888d6e7ed4a2acb2f65893523785e95d","sha256":"84034da49506e5634449a68a341953f0dbd244aaef6b2cd39169a4aac0752aa3","sha512":"786ff704da9c28ecabe26dae4b4547751a17c6283e3fe8d4721f093d538c312605dc9cafa5a3ae7ae137d66e50228cdd58efb42e124ed1dd6496f712537b647c","ssdeep":"","tlshash":"2cc08cc8a0c66e001602641010af34e490244026744c1b428c94d8682e660b09233e98","size":143,"data":"","first_seen":"2024-08-19T19:47:55.01759Z","last_seen":"2026-04-14T10:43:52.458625Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/js/477.20e287c5.js","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8aa2f8c27b0ef0e17d18ff0156d7bb79","sha1":"5eb2560d521a97111ad0885124fc9fa99330f035","sha256":"9ff80528b96635dbff5e2041f4f40dbcad2d9ff98cb8be53fb83797f65deecee","sha512":"337c952c19c37b5433da97a72c52648658f014c267031dfe3d5040299c0d6cfcabdccf788cc3c46336c12b9a740990c0cc44b370c9d92ef34846392e45d065d5","ssdeep":"384:BnnHI0kwuv6NRHRLTvyzZpCoM4uSAQLP/08riUEQ4k7RBzi7jZBkh/60:BnnHkK/vyPCoM4+g5okTi7jEy0","tlshash":"d2925c8675c3f40a63f18c9e1a541005aefa5f35fb2a4ca37d791db73946ca1e026b4c","size":19601,"data":"","first_seen":"2025-03-30T18:40:13.418034Z","last_seen":"2025-12-02T08:25:01.672634Z","times_seen":32,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"431c3259b0b8c49d5b14d54578cf6aae","sha1":"7aa823a822afa0ba1c96e6af74bd0288bd8c1062","sha256":"8e0d2ce2da91e12528fefa14ba057bbca354dbbf2b15bb35e83b0d17f0cf2fa0","sha512":"999665f61e3c6f412576256af66acaff5ab936809d5337d14571cce85ed1f83c3961d5f8708d5ebeea2e99c4fc1eec2bcf9b230420ac8d2b9e27a177069b1c2b","ssdeep":"","tlshash":"58c08cc4a0ca2e001606641014bf34e8a0244427b0481b428ee4d8592e230b08233e98","size":144,"data":"","first_seen":"2024-08-19T19:47:55.013085Z","last_seen":"2026-04-14T10:43:52.452179Z","times_seen":40,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/js/app.e2de12a1.js","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f0da453777606681ae1c0e01b928acb7","sha1":"3f824e817353b15ddfca8d62e421c79ceef26f45","sha256":"e03c5b84f75574f2bed0e8021e87dc8e0c081dbf8812e515320c8eb7974fd131","sha512":"c6a28b1940d27a98c7b21c3704b6939a0dd497898efeb053dde98bc5bd82dda79acbdc81b8d4ac40eb412787bfc26859d50d06ad5b17066f4f3f7a6416a4a02b","ssdeep":"12288:5wVABM1b3BPUKzjk0OLzcEdGaLvJyFW77SdH7:58V1dP2LzcERow77Gb","tlshash":"68553cc83e64e46113b941d51027280be339d48ec0fc92e5bb98dae574f859bb07bb79","size":1291656,"data":"","first_seen":"2025-06-29T08:10:24.356045Z","last_seen":"2025-11-30T16:03:10.565131Z","times_seen":26,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"cd8e6d710123662fb26f2bb13df5e09f","sha1":"4259db3b9344388f266488ad41878cad22bd78e5","sha256":"6545dd3ea27526a780ea5eb58e38104c20c924d577f002d8f902eb0ac8e41e73","sha512":"4493d86a8c3af1f969334fb4d10b01d11f529830084e36df15a097c1ebc2e07eae69811fae7eefc588d21ddaad851df6dc6e32f1a2d8e826c41da0c0d4a0e300","ssdeep":"","tlshash":"80d0a7d8a0e36c0052856371f49f2be45026443b6584151a5dadfc696aa70f1d37ff54","size":239,"data":"","first_seen":"2024-08-19T19:47:55.001256Z","last_seen":"2026-02-25T03:25:48.371472Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"f0ffd3b7c2574ac324603ed00488c850","sha1":"623e76c36aa2a886542011e28412cc761d7ceb01","sha256":"c4d0cf241a1bfa1c8bf4cf24e8f89d2ab786a284a39adb2fc8df7ea14e73c154","sha512":"436f9fb4816f6975fec0d965dfc0db4c3c38c53632dd4dc99a6c1a2dd9562fbd67176d0118549ff573c97e3394bad4d601c425cf670acab249ebc8d260591fa2","ssdeep":"","tlshash":"1540000003c00000300000c0000000000003c00000000000c000000000c00000300030","size":7,"data":"","first_seen":"2023-03-07T01:03:35Z","last_seen":"2026-04-26T16:10:23.976698Z","times_seen":67605,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eval","is_inline":false,"md5":"f0ffd3b7c2574ac324603ed00488c850","sha1":"623e76c36aa2a886542011e28412cc761d7ceb01","sha256":"c4d0cf241a1bfa1c8bf4cf24e8f89d2ab786a284a39adb2fc8df7ea14e73c154","sha512":"436f9fb4816f6975fec0d965dfc0db4c3c38c53632dd4dc99a6c1a2dd9562fbd67176d0118549ff573c97e3394bad4d601c425cf670acab249ebc8d260591fa2","ssdeep":"","tlshash":"1540000003c00000300000c0000000000003c00000000000c000000000c00000300030","size":7,"data":"","first_seen":"2023-03-07T01:03:35Z","last_seen":"2026-04-26T16:10:23.976698Z","times_seen":67605,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"f0ffd3b7c2574ac324603ed00488c850","sha1":"623e76c36aa2a886542011e28412cc761d7ceb01","sha256":"c4d0cf241a1bfa1c8bf4cf24e8f89d2ab786a284a39adb2fc8df7ea14e73c154","sha512":"436f9fb4816f6975fec0d965dfc0db4c3c38c53632dd4dc99a6c1a2dd9562fbd67176d0118549ff573c97e3394bad4d601c425cf670acab249ebc8d260591fa2","ssdeep":"","tlshash":"1540000003c00000300000c0000000000003c00000000000c000000000c00000300030","size":7,"data":"","first_seen":"2023-03-07T01:03:35Z","last_seen":"2026-04-26T16:10:23.976698Z","times_seen":67605,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"08e1da4b40580b78951832f67ebd4458","sha1":"42702a03103b4347358443c5a56f72cb8d5c68d5","sha256":"fc7ff506128cd5a98905056aa3bbd55ca2b22d50b54248512d690c625d5947e7","sha512":"8b496bb0a729d4067f3d9ff92256a9783516a6392300934f5f3b8256c6cb5b6125331b86f4b9235e8aeef91bfd81e08bd8f83c1d402ec8f02c5529b674503117","ssdeep":"","tlshash":"56c08cc5a0c22e101a02641010bf29e49024402674482b028d94ec482e220b09233e98","size":137,"data":"","first_seen":"2024-08-19T19:47:55.010329Z","last_seen":"2026-04-14T10:43:52.453403Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a4ce34b8ca473cfc5862f18397068c4a","sha1":"922b880b210e2346f3834bb11eb0ee7081a3400c","sha256":"ef894c12e96d28b2fb8bdc02721d6c1c52edd453bdb678f42898da8f3cdddc5f","sha512":"5b47e31007feb58ad7d8d0e156e82af999a9f8c88b45358a1d5cd2e5dda13472341cbb46274cd82a3bb6d30cbca8200d798c01f00600ba8c13a5298a4c13c9a7","ssdeep":"","tlshash":"b7c08cc5b0c63e002602651060af25e89024402a70481b038c94d8482e330f08233ed8","size":138,"data":"","first_seen":"2024-06-16T17:50:45Z","last_seen":"2026-04-14T10:43:52.455616Z","times_seen":56,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eval","is_inline":false,"md5":"f0ffd3b7c2574ac324603ed00488c850","sha1":"623e76c36aa2a886542011e28412cc761d7ceb01","sha256":"c4d0cf241a1bfa1c8bf4cf24e8f89d2ab786a284a39adb2fc8df7ea14e73c154","sha512":"436f9fb4816f6975fec0d965dfc0db4c3c38c53632dd4dc99a6c1a2dd9562fbd67176d0118549ff573c97e3394bad4d601c425cf670acab249ebc8d260591fa2","ssdeep":"","tlshash":"1540000003c00000300000c0000000000003c00000000000c000000000c00000300030","size":7,"data":"","first_seen":"2023-03-07T01:03:35Z","last_seen":"2026-04-26T16:10:23.976698Z","times_seen":67605,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"80ac59b432402f3488197c84fcbc5bc5","sha1":"c027fca82d8cc4145efc37cf01d245957346234b","sha256":"1f2782074decc903139aa204ccaf38a3f09e3d30aff36be33cd6ff604b901237","sha512":"815d0ffd1461f9289c235c06b644c55b39d5418a6cd294b747b75db5df9c37bab7e6a3c0936d2c8e791105c6b86f182fd3eeeba35b0efbe38670fb5dc64351de","ssdeep":"","tlshash":"60c080c5b0da2d102a155521116f39d4902c4036b0485f03dc98d8943ee20f28237fdc","size":170,"data":"","first_seen":"2024-08-19T19:47:55.003864Z","last_seen":"2026-04-14T10:43:52.468189Z","times_seen":41,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"4d09a05e138e993fe25601209ef230ad","sha1":"c7b5797e4ceeec4d273b1cca927a30801716debd","sha256":"db559ff3bb709e16fe18b6cf66ecb259c9c8bd86e0622c10216328d651f0fdfa","sha512":"ae790c98a723b111e60b694edffae1ee38fc8ae6a87ed4bafe708b615170771dec5fa1ef6a155f616cd85faa04e85ead3b94c67fc57d4149bbf936e0c4fcdb78","ssdeep":"","tlshash":"c8f0d345a585140cd68107dae1eeae6858999537b30c874bcda89cf02d611f35727cbc","size":628,"data":"","first_seen":"2024-08-19T19:47:55.011808Z","last_seen":"2026-04-14T10:43:52.461975Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c181d87addc09ea5ef653a313d3873ca","sha1":"849882df60c592b53242024243040cfee7bc0a18","sha256":"6f8f0ee4f1e11dc406f50634fabdf8422dee50d0c21ecbd7814775f83e69f5db","sha512":"5d80d846465be3f5576221e81ce1a19bc9960799f2dfd403ebc6b3a575b10c14c83b89c64a7359b7f89ee433eb00309070ac594cedb3f7c52b87f9c12adfa97b","ssdeep":"","tlshash":"5ac08cc4b2c3ae102642645154bf36e8a0284026b2491f12ceb4d8d83e620b88233e9c","size":154,"data":"","first_seen":"2024-08-19T19:47:55.009535Z","last_seen":"2026-02-25T03:25:48.382473Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"91013c1e0f576df08d099ba142ea140e","sha1":"93391cc3d792651d6cc201071bc95f4736abcbf7","sha256":"fcdeaaf117b87c21e7ed0843ec2146d21f774992d163bc2163a0cd6e4d1dcaee","sha512":"d605c38793a0eca97bb69bac99010e98abecf6517b5b519345bf8f4fc9e63ea6a6cd78e596ef094ad97afda335e694ab2e6cb9e2d187e5a9d07cfbfd2a227ba1","ssdeep":"","tlshash":"68d0c2d4a097280522596234f01e2be46426002f668015498da9f6a829a70b0833af89","size":277,"data":"","first_seen":"2024-08-19T19:47:55.004774Z","last_seen":"2026-04-14T10:43:52.470158Z","times_seen":40,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/js/chunk-vendors.de2adece.js","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e004d24af9a7128ac31db5ddc085d580","sha1":"355e3ed9264840b255dddff39389d6d1aec368b0","sha256":"514d5ac5aea84aa802ebb57590259ebee6abfc274bbf6b8b9ceaa526e3830e5a","sha512":"466812abfed56ce603cb894d1c451a66312db7ac9fef4b5150dc928cb00ec801fbbe123beff6b38cc21d6dfd2904672353bf3a3a636360545a52eebd626f9b54","ssdeep":"49152:2DAd08fv7xt6o94VWjIzsE2RiNnmXdj78FAmX7O2k6ToSUjhv:JBfdL","tlshash":"85754b943191b06183f705ea506b000df33a1619740a85a4f2a9ecda7e7fdda927bf7c","size":1589042,"data":"","first_seen":"2025-06-01T16:50:02.010505Z","last_seen":"2026-04-14T10:43:52.461248Z","times_seen":36,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c181d87addc09ea5ef653a313d3873ca","sha1":"849882df60c592b53242024243040cfee7bc0a18","sha256":"6f8f0ee4f1e11dc406f50634fabdf8422dee50d0c21ecbd7814775f83e69f5db","sha512":"5d80d846465be3f5576221e81ce1a19bc9960799f2dfd403ebc6b3a575b10c14c83b89c64a7359b7f89ee433eb00309070ac594cedb3f7c52b87f9c12adfa97b","ssdeep":"","tlshash":"5ac08cc4b2c3ae102642645154bf36e8a0284026b2491f12ceb4d8d83e620b88233e9c","size":154,"data":"","first_seen":"2024-08-19T19:47:55.009535Z","last_seen":"2026-02-25T03:25:48.382473Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"77ff36f63efc67603c4afc7acd0236ef","sha1":"5bf9fbf19190f1b6707d914c15d030db3eb3883d","sha256":"580231e8339adc5b2197f437671a27a7894b2d5bf214bbf8bb521e3630eee64e","sha512":"af547d45a92847e784d30855b9b197fb9e06a8612eadc6e9218f8c00e423684ace441df66161ed96375fd479f7b5a651c560c5bf3d68d7dc7b9ae9f5a10b8c9a","ssdeep":"","tlshash":"bbc02bc4b0c33d002602681055bf34e890344027704c1b03ccd8ec483e230f48233edc","size":138,"data":"","first_seen":"2024-03-05T23:57:13Z","last_seen":"2026-04-26T13:37:58.616655Z","times_seen":562,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"eventHandler","is_inline":false,"md5":"04b67e1d12ccc8c69b795cd2c09cb3e7","sha1":"bd4add5e5f6d4fe882186fb2bc4615612b5de5b6","sha256":"e1d84953f9c990c9805f9e77b2c8a1289510481402cc0bf8a0ed1326db2831e0","sha512":"5a6a065c8561e5a41e7de139d5a975e6d737dceb43f19fbcb8b8e07bd33422ffc18bc4cd83f32dacf63d78a3045d50211bcf55a1f95c3fe34b5d6a45274e3683","ssdeep":"","tlshash":"b140000000000000300000cc0000000000000000000000c0c0c0000000000000c00000","size":6,"data":"","first_seen":"2023-09-11T23:43:58Z","last_seen":"2026-04-26T13:28:27.007399Z","times_seen":445,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036300,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036301,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036302,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d88fa675be9c71066074bfe9b9e5c0dc","sha1":"6a72b04f254c4105c6af57a1853d2eab319c5e2d","sha256":"cdae99db7581aa3c12742a65db6e68afd6ccb2829d5db830ab2b3c5bee4e5d68","sha512":"126acc5b8ed95b0a6f54c9093484ba4e80b0410cf694d7ee61f87550a193d144a76be83205bf80d1ef8824fee5e4708555e1cd82191974b157b50cb3dca18255","ssdeep":"","tlshash":"1ad02b5f5c421ca45f8b117a527fd148f152100e5096c011788cd4414f20dda051978c","size":283,"data":"","first_seen":"2025-03-30T18:40:13.415896Z","last_seen":"2026-04-14T10:43:52.474394Z","times_seen":41,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"80ac59b432402f3488197c84fcbc5bc5","sha1":"c027fca82d8cc4145efc37cf01d245957346234b","sha256":"1f2782074decc903139aa204ccaf38a3f09e3d30aff36be33cd6ff604b901237","sha512":"815d0ffd1461f9289c235c06b644c55b39d5418a6cd294b747b75db5df9c37bab7e6a3c0936d2c8e791105c6b86f182fd3eeeba35b0efbe38670fb5dc64351de","ssdeep":"","tlshash":"60c080c5b0da2d102a155521116f39d4902c4036b0485f03dc98d8943ee20f28237fdc","size":170,"data":"","first_seen":"2024-08-19T19:47:55.003864Z","last_seen":"2026-04-14T10:43:52.468189Z","times_seen":41,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"b2bfddc0f932bec0963b445de6d665d1","sha1":"77c880047c8ddb8266d38bc4fb172f5c4649fe38","sha256":"a774fadc617eb55cf3cad6e0f06a36f701a1589c82b1e622c52073322ae48e1e","sha512":"732f41b0d1ba7e391cc23742aae755f82bf7d1a66df4490deaef9869aa95e69c6d69556e3028ee88b5a1e59693ee1b0d962a3b2f857c7b51adca64f6a2e6e23a","ssdeep":"","tlshash":"81c0c0c4b0c23c103986e41415efb6e060380027314c0b02cd94cce92d220f04233dfc","size":173,"data":"","first_seen":"2024-08-19T19:47:55.005541Z","last_seen":"2026-04-14T10:43:52.470977Z","times_seen":43,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/js/750.3054b4c4.js","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0c80dadddba3292cee4603be3dd74fd9","sha1":"17342ace6adf124f7448c2f96b827105d0952161","sha256":"508be73515a86474cb8e9aae18a75e684e7200e4b951d6d32e2db098033611ac","sha512":"b9e3673648e655373648f9e95913bc6077ba59f1eed18c6f7043fdbb30900f2ac6521bb3c39ee9485ee6df490e5cb727a52378ad65b24607226cb7ead5535a07","ssdeep":"384:+7QKIiNvnljMgp3TC0DcBvoQn+VHHejpjSwKQKWlADojdC4h/+URV+kmcBPoPMBZ:UI0ljMKAvoQnsHHUEWlAS91/PoPKj","tlshash":"e7b27d7b1aebe84d7e70482550343e963cbcac83aa9566f09d1c17f264de3518acc8b5","size":24880,"data":"","first_seen":"2024-08-19T19:47:54.893151Z","last_seen":"2025-12-02T08:25:01.652339Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"1eca1c79d40ed7f07907efbe92a55b83","sha1":"26a2db6697ecefd169502c16dfa82c4144a6080b","sha256":"c3f9e8118dd3347538cce0b29ca4eb5863d91cb2f8891b88ffdeba2c0d84dd8f","sha512":"6036aae27155530ce8a82675f49e557572518b169681a9b37b31569a736b2f25d88169b886477d209a6ea349a243acb51450e1fee489535e7a03fdd26ab11ffd","ssdeep":"","tlshash":"ddd0ebc06dcbac182506a214a15e25d4b02a802a61c81a828cc8cef42ec30f8536bfc8","size":282,"data":"","first_seen":"2025-03-07T06:52:36.126626Z","last_seen":"2026-02-25T03:25:48.359002Z","times_seen":11,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"1eca1c79d40ed7f07907efbe92a55b83","sha1":"26a2db6697ecefd169502c16dfa82c4144a6080b","sha256":"c3f9e8118dd3347538cce0b29ca4eb5863d91cb2f8891b88ffdeba2c0d84dd8f","sha512":"6036aae27155530ce8a82675f49e557572518b169681a9b37b31569a736b2f25d88169b886477d209a6ea349a243acb51450e1fee489535e7a03fdd26ab11ffd","ssdeep":"","tlshash":"ddd0ebc06dcbac182506a214a15e25d4b02a802a61c81a828cc8cef42ec30f8536bfc8","size":282,"data":"","first_seen":"2025-03-07T06:52:36.126626Z","last_seen":"2026-02-25T03:25:48.359002Z","times_seen":11,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"eval","is_inline":false,"md5":"2b454ce0572bf395015ddc4dd8abe873","sha1":"847f80914c49c8cf27b5c379ac93d3cd2fef112f","sha256":"96915799035e4d67ebafa8484fb6e1e0a21e801c590e8f1567c1a3637876d59f","sha512":"c08508b733ff0a9ce7e5e8b555d3a3a8396c221e7b8d3e0c10387f97095fb6cf145ee68334db7ab32ef1c3c533cee69f6e5ce5a7f9f0fc72b86e78b1e5743649","ssdeep":"","tlshash":"6a9004ff0040740c13c1d3c15c51750cc1534ddf4d4055c14441cd31150535cd1313cc","size":43,"data":"","first_seen":"2025-10-04T17:20:23.459246Z","last_seen":"2025-11-13T07:53:12.043183Z","times_seen":15,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036300,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036301,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036302,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"91013c1e0f576df08d099ba142ea140e","sha1":"93391cc3d792651d6cc201071bc95f4736abcbf7","sha256":"fcdeaaf117b87c21e7ed0843ec2146d21f774992d163bc2163a0cd6e4d1dcaee","sha512":"d605c38793a0eca97bb69bac99010e98abecf6517b5b519345bf8f4fc9e63ea6a6cd78e596ef094ad97afda335e694ab2e6cb9e2d187e5a9d07cfbfd2a227ba1","ssdeep":"","tlshash":"68d0c2d4a097280522596234f01e2be46426002f668015498da9f6a829a70b0833af89","size":277,"data":"","first_seen":"2024-08-19T19:47:55.004774Z","last_seen":"2026-04-14T10:43:52.470158Z","times_seen":40,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"34e1763f21f16e00ce74593ef40c7c6a","sha1":"8874c2c812f62b3d88f73d4d09907bf2a2c55d8f","sha256":"420c8f1ca0bc8d831e0aa3b42d5a55247e064b43e3b6a635040f6aa952184259","sha512":"4c1dee90c68ff618989201d10b458860ee61ff73b2996cbb15b85010d460f2d5720cf13fa25e4f7b3f084aff035a15310411ce7364d301b02ad9b4854534a1d8","ssdeep":"","tlshash":"aee0ab40a18528086642228d91ef5be8a898942ab288935bcce8ddf41c201f26b33d7c","size":391,"data":"","first_seen":"2024-08-19T19:47:55.015626Z","last_seen":"2026-04-14T10:43:52.472377Z","times_seen":43,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/js/chunk-vendors.de2adece.js","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e004d24af9a7128ac31db5ddc085d580","sha1":"355e3ed9264840b255dddff39389d6d1aec368b0","sha256":"514d5ac5aea84aa802ebb57590259ebee6abfc274bbf6b8b9ceaa526e3830e5a","sha512":"466812abfed56ce603cb894d1c451a66312db7ac9fef4b5150dc928cb00ec801fbbe123beff6b38cc21d6dfd2904672353bf3a3a636360545a52eebd626f9b54","ssdeep":"49152:2DAd08fv7xt6o94VWjIzsE2RiNnmXdj78FAmX7O2k6ToSUjhv:JBfdL","tlshash":"85754b943191b06183f705ea506b000df33a1619740a85a4f2a9ecda7e7fdda927bf7c","size":1589042,"data":"","first_seen":"2025-06-01T16:50:02.010505Z","last_seen":"2026-04-14T10:43:52.461248Z","times_seen":36,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"896a18b207f55bd366a0be6474294e56","sha1":"c1e2c21adf07e8808a9f12569634c9c0a80722e1","sha256":"596a93758a44d1d8bad5fb74019c4d3fd5252e90919fac0c3d81fc9b4269c85d","sha512":"529cbdf51b0657e80233abb751cc704591c5118b57b3074ec0c2687c5aa39a8a84a2d25b642dce2cbeb6935f26726f4f4e1a832f00a0868454576bae1bf708b7","ssdeep":"","tlshash":"e2c08cc8a0d66e001642a86110af35e4a024402770486b028cd4d84a2e220b08233e98","size":144,"data":"","first_seen":"2024-08-19T19:47:55.008696Z","last_seen":"2026-02-25T03:25:48.358319Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"08e1da4b40580b78951832f67ebd4458","sha1":"42702a03103b4347358443c5a56f72cb8d5c68d5","sha256":"fc7ff506128cd5a98905056aa3bbd55ca2b22d50b54248512d690c625d5947e7","sha512":"8b496bb0a729d4067f3d9ff92256a9783516a6392300934f5f3b8256c6cb5b6125331b86f4b9235e8aeef91bfd81e08bd8f83c1d402ec8f02c5529b674503117","ssdeep":"","tlshash":"56c08cc5a0c22e101a02641010bf29e49024402674482b028d94ec482e220b09233e98","size":137,"data":"","first_seen":"2024-08-19T19:47:55.010329Z","last_seen":"2026-04-14T10:43:52.453403Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"416f6db78053368e96fe5fd13d9681c9","sha1":"db0f7d93918014c63f714c3b1f6d812f2e7d11cf","sha256":"57a9bca25f648cda63e19921ce087a50fbbfd9b7c9c949b4e4ca84b069d9dd27","sha512":"7f5fa88ec5b3594a4fca3063784554ea6d395af76a21a8d62071a04dcacbd309b0a7ee83861adbfb3338ce8e9102f85584c5a982fcce668b6868a665e9478cf2","ssdeep":"","tlshash":"4de0c0821086280199069564110f3ed8900801262308fb45cc60cf302eeb0f1d27be98","size":328,"data":"","first_seen":"2024-08-19T19:47:55.014995Z","last_seen":"2026-04-14T10:43:52.45675Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"dd4c6a0b4753fcecf6cf7505f07ca07c","sha1":"3fb7c2c4092a96af0c338d6f1f291deeeee8ddf8","sha256":"95c5a68a1568c10b07aec1fe977d71f8472941854272c094fad596e10cfda1db","sha512":"deb7658171072a69516917c154c4dd5d0d61e45fc9a1f69d6c5fff79f3d811baf48fc40a9d9c16a5fe530818eb22a60c0b95d608a0a639d420ea47521a3a0016","ssdeep":"","tlshash":"f6d0a7caa0997d1025a5143011af38d450141527640c6b69cee48d143d131b09333fe4","size":215,"data":"","first_seen":"2024-08-19T19:47:55.016926Z","last_seen":"2026-04-14T10:43:52.471692Z","times_seen":43,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":true,"md5":"2e15f936697371a027e7367927e36d03","sha1":"691ce06099b4dad90b58b41229f983c72d9cca98","sha256":"e3cfb92c1247a4d8ef4af7e7268ef4140c6fea3379cdba73120ba1adbe953fc6","sha512":"371433cd9c40a4b33365abd609d93ef2cf296213ba5f1c8b154b6a3670f4218345492aced103a16a4e542f49b4d5e18ae6b8e9739876e8b4a0d811c3fb893886","ssdeep":"","tlshash":"f990028c864a864d900c8a0c419489c300739048207c4f848406c2683a406327085a89","size":54,"data":"","first_seen":"2025-03-09T10:09:52.31188Z","last_seen":"2026-04-14T10:43:52.45975Z","times_seen":36,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036300,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036301,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036302,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":true,"md5":"2e15f936697371a027e7367927e36d03","sha1":"691ce06099b4dad90b58b41229f983c72d9cca98","sha256":"e3cfb92c1247a4d8ef4af7e7268ef4140c6fea3379cdba73120ba1adbe953fc6","sha512":"371433cd9c40a4b33365abd609d93ef2cf296213ba5f1c8b154b6a3670f4218345492aced103a16a4e542f49b4d5e18ae6b8e9739876e8b4a0d811c3fb893886","ssdeep":"","tlshash":"f990028c864a864d900c8a0c419489c300739048207c4f848406c2683a406327085a89","size":54,"data":"","first_seen":"2025-03-09T10:09:52.31188Z","last_seen":"2026-04-14T10:43:52.45975Z","times_seen":36,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036300,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036301,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036302,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"68a2acb9d1ee3d2dd4ec8cf8157d584e","sha1":"3cc85a465770dd3aeecd2133158206d63244962f","sha256":"7a021244a21cd99a4d341e96cf30eef3d9fc442b159e0f00528e78d4ab02b08b","sha512":"9bb9caa52db83d27091e4ed4dda4668f8069e42ba1ae562f10ff650b301b39d83dd623d3e6cbb4362f1691aa372e7bd57c7b771347078e0eb3321d224463280d","ssdeep":"","tlshash":"a3c08cc4a0c62e001606a51068af25e4a0244026b0481b129ce4d8482e220b08233ea8","size":139,"data":"","first_seen":"2024-08-19T19:47:55.018975Z","last_seen":"2026-02-25T03:25:48.383486Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-9LRJBLTZ92","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"265b29c2e817e502a5105ec0d3cd21c3","sha1":"e73d28cb8969e628bfb9dc893cd08db786c9b16f","sha256":"2ff60e5defc55c927747218b1a981f93affe764031dfa4c5f86f829b37242f0a","sha512":"e1681236134806d94444361c4ee032ee48fa1613ad1c0e5d7ef7c05902d5789b2f5a71a570579ef89ed1c7813302c6a3661ecff97adca88a7890e3a6a3d5465c","ssdeep":"6144:jBj/yp2W4tk0uwbWZJT+Nju5204O0NsYXdXAQY:VWY9m0KZJu0O8","tlshash":"f49419de73d674225396f078503f018ba57b28a2b44cc89af189cde42e74a9a4177f7c","size":424897,"data":"","first_seen":"2025-10-11T04:29:42.704102Z","last_seen":"2025-10-11T04:29:42.704102Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":true,"md5":"497496faae61ec1dad9c1666750407cc","sha1":"c1182e8353af56d9f49bb0b9ffdf85a547e768b1","sha256":"925fded7a418a6e55d18c2e318a499eb6c669d3325c2f339d0bd0ba0ae9eb8b2","sha512":"4ed4374a285b02fe4ca7ca04245834fcd62cefc85e99025b125e465516dd2070b3cfe6a586f1547fb7c4ed8f900801e0e85857a5afed2384053cde179e720747","ssdeep":"","tlshash":"8ac02b8c310b9c7041f737008b3ff600b003321494d46931890d33089e30e03d744814","size":153,"data":"","first_seen":"2025-03-20T01:51:00.837082Z","last_seen":"2026-04-14T10:43:52.459155Z","times_seen":52,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036300,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036301,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036302,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a4ce34b8ca473cfc5862f18397068c4a","sha1":"922b880b210e2346f3834bb11eb0ee7081a3400c","sha256":"ef894c12e96d28b2fb8bdc02721d6c1c52edd453bdb678f42898da8f3cdddc5f","sha512":"5b47e31007feb58ad7d8d0e156e82af999a9f8c88b45358a1d5cd2e5dda13472341cbb46274cd82a3bb6d30cbca8200d798c01f00600ba8c13a5298a4c13c9a7","ssdeep":"","tlshash":"b7c08cc5b0c63e002602651060af25e89024402a70481b038c94d8482e330f08233ed8","size":138,"data":"","first_seen":"2024-06-16T17:50:45Z","last_seen":"2026-04-14T10:43:52.455616Z","times_seen":56,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"sdk.51.la/js-sdk-pro.min.js","fqdn":"sdk.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8a41c9449b73e8ba0224c6be1f0b7e8","sha1":"33d79319d4110bcf5c44c36f7dd4a291972ac546","sha256":"52079c09a7355f4ce3af750602ebb9aebae8238583601f8a06268eecccf13565","sha512":"472d0395a65a3ade2d215559b196a88ffcdacde3ac0f573eb8663b524f201d72c9339bcacbc198d82452a0ac367c0efd407b12795943cdd2755d95a8cf71b977","ssdeep":"768:swetbD3SkE+a/l1jaKUiQU5eqEh9GMXBOXAA/EXBeJMlbJfuPT:BetbD3SVT/3+KUc5eqEh9GMXBYEXBeJ7","tlshash":"dbf23d9577c0317cc3c783ea362b501ae1a69e910059a8bcf345f6907d34e56a37fba8","size":36114,"data":"","first_seen":"2025-03-10T03:40:31.536734Z","last_seen":"2026-04-26T16:05:08.245219Z","times_seen":87223,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":true,"md5":"98ddc9ff16f38827d489efc844f19981","sha1":"66fbd2104c4ad85b25b648ec21f40c524d068906","sha256":"ed0408047bb734ad567a9edb98ddc5d7d489e9ecd43cc3dca13d298430804838","sha512":"8d5465e6878ce01a09d87c2b263f49bedf7404100963c482473cb0f06556ade0f270a6f71bb3c0680bc51fcc8fdb1a29644f869843ddef076d82b7274df8e43a","ssdeep":"","tlshash":"f7e0c2d3020070652723dc6e403e62006a7144939c4bfc65708d0de0df9e13c42be891","size":321,"data":"","first_seen":"2024-08-20T09:17:29.500188Z","last_seen":"2026-03-17T09:56:23.80641Z","times_seen":18,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036300,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036301,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036302,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c301ee3fcc4251e40347e1753c817a47","sha1":"ed97e3dde9f41f87f41e9d0d0b80a73af15fb4bb","sha256":"b989771e9e5ce9ea70e0fb4559678443aa0c2b6e92c5f9b4405eb7204c45444c","sha512":"41f27523c8a6fd3be9a56e1df366a42be16cfd01458aab645b18b911a58c74755f555f1bd738ec38033c7c77777e5b62496bb1856772ad4a752d5702faaf0306","ssdeep":"","tlshash":"19c08cc5a0c62d101612682010af25e89024402670481b428c94dc482e220f08233ed8","size":138,"data":"","first_seen":"2024-08-19T19:47:55.006502Z","last_seen":"2026-02-25T03:25:48.384498Z","times_seen":11,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a4ce34b8ca473cfc5862f18397068c4a","sha1":"922b880b210e2346f3834bb11eb0ee7081a3400c","sha256":"ef894c12e96d28b2fb8bdc02721d6c1c52edd453bdb678f42898da8f3cdddc5f","sha512":"5b47e31007feb58ad7d8d0e156e82af999a9f8c88b45358a1d5cd2e5dda13472341cbb46274cd82a3bb6d30cbca8200d798c01f00600ba8c13a5298a4c13c9a7","ssdeep":"","tlshash":"b7c08cc5b0c63e002602651060af25e89024402a70481b038c94d8482e330f08233ed8","size":138,"data":"","first_seen":"2024-06-16T17:50:45Z","last_seen":"2026-04-14T10:43:52.455616Z","times_seen":56,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5721e0a2fcb7cd4e9ae68c0168b2c7c6","sha1":"b077ddcfa2910359b6ae442b8847362a17f142c0","sha256":"3e3a787f86008565fb8f8d2aebc1fd16559ed4c48305a95fcf85f9dae594602b","sha512":"02029c5d6b1b35499368b3a1d62d590679048a702713000bcbfb130db8f43a3e4f57d75013f08601373f715efa9be716af059e1a81977c9b52afd0f7447fcb97","ssdeep":"","tlshash":"aed097c9a0ca98001a04b6cd50af6ed49134841bf00c6b0bccdcccf43aa32f44327eae","size":251,"data":"","first_seen":"2024-08-19T19:47:55.000483Z","last_seen":"2026-04-14T10:43:52.464665Z","times_seen":41,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"b845ffb14e88b6187920831f36e24bf8","sha1":"0c3724dec90835424bca41c9d0310d46448661da","sha256":"981c7f649cab4708d4850f2a3cd1a2cf329c2dd6eb33fc524b514c75bc1bbf4b","sha512":"e6b7fd4e26492fea185fc63de74c27794af3f9e192a294dee90b0ee866f759f067ae712fdd2f4a085abd9f4696586ce1fb4b9b367fd7918f33e2b2255fb79892","ssdeep":"","tlshash":"c3c08cc5a0c22e01660a65a014bf6ae4a034843771482b428d98d88a2e220b08333ea8","size":154,"data":"","first_seen":"2024-08-19T19:47:55.007961Z","last_seen":"2026-04-14T10:43:52.458052Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-PXGC8E19BB","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0b7641a0712f7a387c3f1a2242cf44a2","sha1":"a3673b3aaaceeb5f1d5c0aa020b743c101a5495e","sha256":"d467c573cd010709057f4bb6d8cf58d60e505d50c51a24255120b183aa32c151","sha512":"c5f1d7b02ee5a469facfcd115956d30e8b9972c945fb97754f77355081bc3f7127a196b20db696c689f49c89cafd833549fa490dab0d090e8dabae19dfaa19e0","ssdeep":"6144:pBE/yp2a4tk0uwbWZJT+Nju5204O0NsYXdXAQY:nhYJm0KZJu0O8","tlshash":"6d9419de73d674225396f078503f018ba57b28a2b44cc89af189cde42e74a9a4177f7c","size":424870,"data":"","first_seen":"2025-10-11T04:29:42.632204Z","last_seen":"2025-10-11T04:29:42.632204Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/js/750.3054b4c4.js","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0c80dadddba3292cee4603be3dd74fd9","sha1":"17342ace6adf124f7448c2f96b827105d0952161","sha256":"508be73515a86474cb8e9aae18a75e684e7200e4b951d6d32e2db098033611ac","sha512":"b9e3673648e655373648f9e95913bc6077ba59f1eed18c6f7043fdbb30900f2ac6521bb3c39ee9485ee6df490e5cb727a52378ad65b24607226cb7ead5535a07","ssdeep":"384:+7QKIiNvnljMgp3TC0DcBvoQn+VHHejpjSwKQKWlADojdC4h/+URV+kmcBPoPMBZ:UI0ljMKAvoQnsHHUEWlAS91/PoPKj","tlshash":"e7b27d7b1aebe84d7e70482550343e963cbcac83aa9566f09d1c17f264de3518acc8b5","size":24880,"data":"","first_seen":"2024-08-19T19:47:54.893151Z","last_seen":"2025-12-02T08:25:01.652339Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":true,"md5":"7b03d9c7abf87a66eea65e75efd52946","sha1":"95c372c462d1159185790f7a890d9a8a7bdedaf5","sha256":"7af3c7466374cfbd4ed9ce92c8a8286e36031c15c17ff081341894fdaa711004","sha512":"403f4c4479a7ca3660d388f173d3b49923bb2e40617afe87c5b7acfaa9ef427f5022d285d183b5be0027ec5def66bd8d9e0189fb16f6981b3e017ddd309696ef","ssdeep":"96:aO3r29RARgSCarsMR8emQ2sUxsjsRAg82S8Iz/tx9MCqHRGP6EkY:aQr29RA+SWMR3msUxsjsRAg8RXz/tHoy","tlshash":"d491660071e3bc5026e3abf72f3fb0dee2ad38f719013c8d955089603ada595e951a35","size":4298,"data":"","first_seen":"2025-10-04T17:20:23.46667Z","last_seen":"2025-11-13T07:53:12.063054Z","times_seen":13,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036300,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036301,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036302,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-PXGC8E19BB","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"88243d5bdcc41fb68e42df30fec41b0c","sha1":"abcb32305f2360433dee4d2cccd573a2c7839443","sha256":"bb41b9835de91abdd7fe53d93ed93ded8071e3912eb41c740f214b364b7e606f","sha512":"b907e22dd735a54c5eb84a53e27efef32856a78036e6af50b4a50c79812de0612ef1abe006590a18167ba7083fac0f72eb39b8be001698c68310d3d8ec11a8b6","ssdeep":"6144:pBP/yp2f4tk0uwbWZJT+Nju5204O0NsYXdXAQY:nSYwm0KZJu0O8","tlshash":"1b9419de73d674225396f078503f018ba57b28a2b44cc89af189cde42e74a9a4177f7c","size":424887,"data":"","first_seen":"2025-10-11T04:29:42.542147Z","last_seen":"2025-10-11T04:29:42.542147Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"34e1763f21f16e00ce74593ef40c7c6a","sha1":"8874c2c812f62b3d88f73d4d09907bf2a2c55d8f","sha256":"420c8f1ca0bc8d831e0aa3b42d5a55247e064b43e3b6a635040f6aa952184259","sha512":"4c1dee90c68ff618989201d10b458860ee61ff73b2996cbb15b85010d460f2d5720cf13fa25e4f7b3f084aff035a15310411ce7364d301b02ad9b4854534a1d8","ssdeep":"","tlshash":"aee0ab40a18528086642228d91ef5be8a898942ab288935bcce8ddf41c201f26b33d7c","size":391,"data":"","first_seen":"2024-08-19T19:47:55.015626Z","last_seen":"2026-04-14T10:43:52.472377Z","times_seen":43,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/js/app.e2de12a1.js","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f0da453777606681ae1c0e01b928acb7","sha1":"3f824e817353b15ddfca8d62e421c79ceef26f45","sha256":"e03c5b84f75574f2bed0e8021e87dc8e0c081dbf8812e515320c8eb7974fd131","sha512":"c6a28b1940d27a98c7b21c3704b6939a0dd497898efeb053dde98bc5bd82dda79acbdc81b8d4ac40eb412787bfc26859d50d06ad5b17066f4f3f7a6416a4a02b","ssdeep":"12288:5wVABM1b3BPUKzjk0OLzcEdGaLvJyFW77SdH7:58V1dP2LzcERow77Gb","tlshash":"68553cc83e64e46113b941d51027280be339d48ec0fc92e5bb98dae574f859bb07bb79","size":1291656,"data":"","first_seen":"2025-06-29T08:10:24.356045Z","last_seen":"2025-11-30T16:03:10.565131Z","times_seen":26,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"f0ffd3b7c2574ac324603ed00488c850","sha1":"623e76c36aa2a886542011e28412cc761d7ceb01","sha256":"c4d0cf241a1bfa1c8bf4cf24e8f89d2ab786a284a39adb2fc8df7ea14e73c154","sha512":"436f9fb4816f6975fec0d965dfc0db4c3c38c53632dd4dc99a6c1a2dd9562fbd67176d0118549ff573c97e3394bad4d601c425cf670acab249ebc8d260591fa2","ssdeep":"","tlshash":"1540000003c00000300000c0000000000003c00000000000c000000000c00000300030","size":7,"data":"","first_seen":"2023-03-07T01:03:35Z","last_seen":"2026-04-26T16:10:23.976698Z","times_seen":67605,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6900701ff959494d30437499abeb8885","sha1":"7cb4c820fbf30caa6b50d6c2dc4aa7c0c4b644d8","sha256":"3be52a71ee1e4d668cceef779a9942298cef4d68e03183d10681c4aa945c83f5","sha512":"731bc35b44d92adfda91474163cba7cbfe8ebb8faeb76364becb6a0f87c8d62c68a560257759546c0c38da3d0ea220cbee60eed126f77194441f92786231135b","ssdeep":"","tlshash":"b5c08cc4a0c22d101642645420af26e4a028802a70485b128c94d8482e620b48233ea8","size":138,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-04-26T14:00:44.666354Z","times_seen":5717,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/js/990.d6dbe4e7.js","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"308a8273c56746ae2530bf22b1635d46","sha1":"f9c8175adfbb5b832568e8269b259b7ad3796399","sha256":"2794e6f12ab6f99301717aa288d44d531115cf88b2aa742907fae76b7fc730b8","sha512":"df077fbbf86dfd7deb057857f6ae215c099d3a048cf1382323f70e6e5bc7030bb863e284d55530be5d72ddddad52d6898d72183933b24d139654ed530f14b5f2","ssdeep":"768:ZNLn/2zlP6FEeZudITKX8mChddEo8S9odcoYgbYA3o:ZJ/AAxudITKsmnHS9HokN","tlshash":"e7e29e3b2556bc8ebb301804214da5c43d377f67a34455fbb2b85eb9218fe71624b2b8","size":34056,"data":"","first_seen":"2025-03-30T18:40:13.405389Z","last_seen":"2025-11-30T20:35:40.776929Z","times_seen":32,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/js/477.20e287c5.js","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8aa2f8c27b0ef0e17d18ff0156d7bb79","sha1":"5eb2560d521a97111ad0885124fc9fa99330f035","sha256":"9ff80528b96635dbff5e2041f4f40dbcad2d9ff98cb8be53fb83797f65deecee","sha512":"337c952c19c37b5433da97a72c52648658f014c267031dfe3d5040299c0d6cfcabdccf788cc3c46336c12b9a740990c0cc44b370c9d92ef34846392e45d065d5","ssdeep":"384:BnnHI0kwuv6NRHRLTvyzZpCoM4uSAQLP/08riUEQ4k7RBzi7jZBkh/60:BnnHkK/vyPCoM4+g5okTi7jEy0","tlshash":"d2925c8675c3f40a63f18c9e1a541005aefa5f35fb2a4ca37d791db73946ca1e026b4c","size":19601,"data":"","first_seen":"2025-03-30T18:40:13.418034Z","last_seen":"2025-12-02T08:25:01.672634Z","times_seen":32,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6900701ff959494d30437499abeb8885","sha1":"7cb4c820fbf30caa6b50d6c2dc4aa7c0c4b644d8","sha256":"3be52a71ee1e4d668cceef779a9942298cef4d68e03183d10681c4aa945c83f5","sha512":"731bc35b44d92adfda91474163cba7cbfe8ebb8faeb76364becb6a0f87c8d62c68a560257759546c0c38da3d0ea220cbee60eed126f77194441f92786231135b","ssdeep":"","tlshash":"b5c08cc4a0c22d101642645420af26e4a028802a70485b128c94d8482e620b48233ea8","size":138,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-04-26T14:00:44.666354Z","times_seen":5717,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"68a2acb9d1ee3d2dd4ec8cf8157d584e","sha1":"3cc85a465770dd3aeecd2133158206d63244962f","sha256":"7a021244a21cd99a4d341e96cf30eef3d9fc442b159e0f00528e78d4ab02b08b","sha512":"9bb9caa52db83d27091e4ed4dda4668f8069e42ba1ae562f10ff650b301b39d83dd623d3e6cbb4362f1691aa372e7bd57c7b771347078e0eb3321d224463280d","ssdeep":"","tlshash":"a3c08cc4a0c62e001606a51068af25e4a0244026b0481b129ce4d8482e220b08233ea8","size":139,"data":"","first_seen":"2024-08-19T19:47:55.018975Z","last_seen":"2026-02-25T03:25:48.383486Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"16c66242d28e0b7e0aaba25d8a4eb96e","sha1":"d6fccf7ccd6305b040ae8b78ca0de791f2e37c99","sha256":"17909ec37fe0658d1ed05ad33adc49ef26c1bd21824d7cd16ea26d277ba017f1","sha512":"18da3628eedc7039815e88187a20fcce41a4d478a9a4d89929f06a435483023202ff422b7a0de75ab3a332a835546d29c48d21462c1b092ee852b9f47efa3728","ssdeep":"","tlshash":"9ec08cc4a0c66d001602641050bf24e89034402670482b028cd4d8892e220f09337e98","size":139,"data":"","first_seen":"2024-06-16T17:50:46Z","last_seen":"2026-04-14T10:43:52.469527Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"416f6db78053368e96fe5fd13d9681c9","sha1":"db0f7d93918014c63f714c3b1f6d812f2e7d11cf","sha256":"57a9bca25f648cda63e19921ce087a50fbbfd9b7c9c949b4e4ca84b069d9dd27","sha512":"7f5fa88ec5b3594a4fca3063784554ea6d395af76a21a8d62071a04dcacbd309b0a7ee83861adbfb3338ce8e9102f85584c5a982fcce668b6868a665e9478cf2","ssdeep":"","tlshash":"4de0c0821086280199069564110f3ed8900801262308fb45cc60cf302eeb0f1d27be98","size":328,"data":"","first_seen":"2024-08-19T19:47:55.014995Z","last_seen":"2026-04-14T10:43:52.45675Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"cd8e6d710123662fb26f2bb13df5e09f","sha1":"4259db3b9344388f266488ad41878cad22bd78e5","sha256":"6545dd3ea27526a780ea5eb58e38104c20c924d577f002d8f902eb0ac8e41e73","sha512":"4493d86a8c3af1f969334fb4d10b01d11f529830084e36df15a097c1ebc2e07eae69811fae7eefc588d21ddaad851df6dc6e32f1a2d8e826c41da0c0d4a0e300","ssdeep":"","tlshash":"80d0a7d8a0e36c0052856371f49f2be45026443b6584151a5dadfc696aa70f1d37ff54","size":239,"data":"","first_seen":"2024-08-19T19:47:55.001256Z","last_seen":"2026-02-25T03:25:48.371472Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"d88fa675be9c71066074bfe9b9e5c0dc","sha1":"6a72b04f254c4105c6af57a1853d2eab319c5e2d","sha256":"cdae99db7581aa3c12742a65db6e68afd6ccb2829d5db830ab2b3c5bee4e5d68","sha512":"126acc5b8ed95b0a6f54c9093484ba4e80b0410cf694d7ee61f87550a193d144a76be83205bf80d1ef8824fee5e4708555e1cd82191974b157b50cb3dca18255","ssdeep":"","tlshash":"1ad02b5f5c421ca45f8b117a527fd148f152100e5096c011788cd4414f20dda051978c","size":283,"data":"","first_seen":"2025-03-30T18:40:13.415896Z","last_seen":"2026-04-14T10:43:52.474394Z","times_seen":41,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eval","is_inline":false,"md5":"f0ffd3b7c2574ac324603ed00488c850","sha1":"623e76c36aa2a886542011e28412cc761d7ceb01","sha256":"c4d0cf241a1bfa1c8bf4cf24e8f89d2ab786a284a39adb2fc8df7ea14e73c154","sha512":"436f9fb4816f6975fec0d965dfc0db4c3c38c53632dd4dc99a6c1a2dd9562fbd67176d0118549ff573c97e3394bad4d601c425cf670acab249ebc8d260591fa2","ssdeep":"","tlshash":"1540000003c00000300000c0000000000003c00000000000c000000000c00000300030","size":7,"data":"","first_seen":"2023-03-07T01:03:35Z","last_seen":"2026-04-26T16:10:23.976698Z","times_seen":67605,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c301ee3fcc4251e40347e1753c817a47","sha1":"ed97e3dde9f41f87f41e9d0d0b80a73af15fb4bb","sha256":"b989771e9e5ce9ea70e0fb4559678443aa0c2b6e92c5f9b4405eb7204c45444c","sha512":"41f27523c8a6fd3be9a56e1df366a42be16cfd01458aab645b18b911a58c74755f555f1bd738ec38033c7c77777e5b62496bb1856772ad4a752d5702faaf0306","ssdeep":"","tlshash":"19c08cc5a0c62d101612682010af25e89024402670481b428c94dc482e220f08233ed8","size":138,"data":"","first_seen":"2024-08-19T19:47:55.006502Z","last_seen":"2026-02-25T03:25:48.384498Z","times_seen":11,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a4ce34b8ca473cfc5862f18397068c4a","sha1":"922b880b210e2346f3834bb11eb0ee7081a3400c","sha256":"ef894c12e96d28b2fb8bdc02721d6c1c52edd453bdb678f42898da8f3cdddc5f","sha512":"5b47e31007feb58ad7d8d0e156e82af999a9f8c88b45358a1d5cd2e5dda13472341cbb46274cd82a3bb6d30cbca8200d798c01f00600ba8c13a5298a4c13c9a7","ssdeep":"","tlshash":"b7c08cc5b0c63e002602651060af25e89024402a70481b038c94d8482e330f08233ed8","size":138,"data":"","first_seen":"2024-06-16T17:50:45Z","last_seen":"2026-04-14T10:43:52.455616Z","times_seen":56,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d554d89879ca6969acc7827f1c6f51a2","sha1":"c82e860d97c98a883ce9ada02cc41facfff033ca","sha256":"7a91dbcab00049734c9d2ea8331f32a5c8312861f17d48c80026c53a3cb6f235","sha512":"fdd1f06b6c4d95dd6bcb2bce5f937d1d7371f953d24469a40db1c0fe9784627510e5c71e264041912c1ad7fd753efada070b697852092faa804fa85e414e6f5e","ssdeep":"","tlshash":"c5c08cc4a0d22d501612641050af24e490344026b0481b068c94e84a3e260b08237e9c","size":139,"data":"","first_seen":"2024-06-16T17:50:46Z","last_seen":"2025-12-02T08:25:01.704512Z","times_seen":40,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"b2bfddc0f932bec0963b445de6d665d1","sha1":"77c880047c8ddb8266d38bc4fb172f5c4649fe38","sha256":"a774fadc617eb55cf3cad6e0f06a36f701a1589c82b1e622c52073322ae48e1e","sha512":"732f41b0d1ba7e391cc23742aae755f82bf7d1a66df4490deaef9869aa95e69c6d69556e3028ee88b5a1e59693ee1b0d962a3b2f857c7b51adca64f6a2e6e23a","ssdeep":"","tlshash":"81c0c0c4b0c23c103986e41415efb6e060380027314c0b02cd94cce92d220f04233dfc","size":173,"data":"","first_seen":"2024-08-19T19:47:55.005541Z","last_seen":"2026-04-14T10:43:52.470977Z","times_seen":43,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/#/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"941eda7618b76845f721d0db2209ecce","sha1":"04759c99888d6e7ed4a2acb2f65893523785e95d","sha256":"84034da49506e5634449a68a341953f0dbd244aaef6b2cd39169a4aac0752aa3","sha512":"786ff704da9c28ecabe26dae4b4547751a17c6283e3fe8d4721f093d538c312605dc9cafa5a3ae7ae137d66e50228cdd58efb42e124ed1dd6496f712537b647c","ssdeep":"","tlshash":"2cc08cc8a0c66e001602641010af34e490244026744c1b428c94d8682e660b09233e98","size":143,"data":"","first_seen":"2024-08-19T19:47:55.01759Z","last_seen":"2026-04-14T10:43:52.458625Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"sdk.51.la/js-sdk-pro.min.js","fqdn":"sdk.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8a41c9449b73e8ba0224c6be1f0b7e8","sha1":"33d79319d4110bcf5c44c36f7dd4a291972ac546","sha256":"52079c09a7355f4ce3af750602ebb9aebae8238583601f8a06268eecccf13565","sha512":"472d0395a65a3ade2d215559b196a88ffcdacde3ac0f573eb8663b524f201d72c9339bcacbc198d82452a0ac367c0efd407b12795943cdd2755d95a8cf71b977","ssdeep":"768:swetbD3SkE+a/l1jaKUiQU5eqEh9GMXBOXAA/EXBeJMlbJfuPT:BetbD3SVT/3+KUc5eqEh9GMXBYEXBeJ7","tlshash":"dbf23d9577c0317cc3c783ea362b501ae1a69e910059a8bcf345f6907d34e56a37fba8","size":36114,"data":"","first_seen":"2025-03-10T03:40:31.536734Z","last_seen":"2026-04-26T16:05:08.245219Z","times_seen":87223,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/#/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"431c3259b0b8c49d5b14d54578cf6aae","sha1":"7aa823a822afa0ba1c96e6af74bd0288bd8c1062","sha256":"8e0d2ce2da91e12528fefa14ba057bbca354dbbf2b15bb35e83b0d17f0cf2fa0","sha512":"999665f61e3c6f412576256af66acaff5ab936809d5337d14571cce85ed1f83c3961d5f8708d5ebeea2e99c4fc1eec2bcf9b230420ac8d2b9e27a177069b1c2b","ssdeep":"","tlshash":"58c08cc4a0ca2e001606641014bf34e8a0244427b0481b428ee4d8592e230b08233e98","size":144,"data":"","first_seen":"2024-08-19T19:47:55.013085Z","last_seen":"2026-04-14T10:43:52.452179Z","times_seen":40,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"7fee6871b65ab2227bcebe93e5a8df24","sha1":"a4c49dc9c10389a5b1e4d4e703bfbbe8ad6b2c0c","sha256":"7c8635c78793863aaf89b94393780bba69acf03661e5bb73706014a3525f27a3","sha512":"5be097d370b15917f8565b631ef7f0eb12af94af3a984cb66cd8a9fc49c1ee080f41f0bf11a0947a17e540c3e516559173479354245b4d966b0fc5ce30e829d7","ssdeep":"","tlshash":"dfb092b36908061d825a4164f2a8b46e82aa788f7a11a625a8a13491a044af91ca53cd","size":121,"data":"","first_seen":"2025-03-30T18:40:13.435639Z","last_seen":"2025-11-29T14:14:36.988971Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/FJ5xo25yp2yuVR8k.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.418Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/FJ5xo25yp2yuVR8k.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4494,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"9e16fa376015b7f44d1f06fc4470f866","sha1":"bc65eb9cd73e95bd2e058ad1944c6c641c6e45b8","sha256":"709927473d56ca4dfc1102810c3222fdd21df8c3cf9aa9a77985f8735efa1111","sha512":"ec8b88c2959c098148020ef4962a9bc76f0137b1375b1fd9b19a6d0312d55272fc6ba8b23e10b934fa23be0cfe0c58276bf4bf2bb443d77fd0f4e1a445d914a2","ssdeep":"96:GahCE0aep7EpUey2l1o+P39CfNKxKMeEVWeAFYlqKM:GQCFae7yUX2r739CDMVVEca","tlshash":"03915a91fb5e33854b0f44775aa9302111026b69a5eb0f36fca84760c966cbdc9ce74c","first_seen":"2025-10-11T04:29:42.11912Z","last_seen":"2025-10-11T04:29:42.11912Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2115,"timings":{"blocked":1457,"dns":0,"connect":303,"send":0,"wait":355,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/H2y0qKZtFzSfLHjk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.423Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/H2y0qKZtFzSfLHjk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:32 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:32 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:32 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5615,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x118, components 3","md5":"b5ee6d71e9c1c173595263cfc9d27e63","sha1":"46e5a8d09e201a900f665f9ec4cdb0347ad86327","sha256":"dd77e164068a1469b72eea78d527e0201719bd529f968ee6585f4db8cefb4ff5","sha512":"c08dc22c5cc1364b50ca2969ee817eea6e0a03944e1de1a2118732b59a06c1ea04a11581829d74a5a978293d262461db5489502d54775d4d18b26310b69e01f0","ssdeep":"96:GahkEcn2iwf3U8xfIU/lJFZZtBAK6Dqt701RJzOSwE+NaJlWLC6Zm1:GQk32iAdxwKDvAK6Dqt7EZOewaoC6Zm1","tlshash":"16c17eaafd33a4491bd714e70c464185a2dba59fae39b3bd44a41879c811c7c160c79d","first_seen":"2025-10-11T04:29:42.128029Z","last_seen":"2025-10-11T04:29:42.128029Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3070,"timings":{"blocked":2717,"dns":0,"connect":0,"send":0,"wait":352,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/ITygozSmVRyhMT8k.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.398Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/ITygozSmVRyhMT8k.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:33 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:33 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:33 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7479,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"f0ff08f51e45dc3ae530042aacd68005","sha1":"321e0e76b4449c279f784d886ccb96484333f607","sha256":"1242ab8ac27e955dfaa60bba5c33bb3e5fc19dc99a7f1bc4c670e035d372931a","sha512":"bf79f137e665d3c191a4c06f65ae4926969ef4d56193a06ef4ce8cd92ad0cb35371a464844e429c035d1362ffb4a3c71bdae2f1c4f458021c1da7391219c45b2","ssdeep":"192:GQC5LijssIQowknOq4/JVs7BjquQ3IQ+PtAH0Z+VSOTNLsOhoWpRqOe:GrViS3Xh4/JVs7tqumOFWIOy8xPje","tlshash":"42f1bf0eb3b5b19a8b4166912fa43c120390f06deff40f3665b900857ab5db3d1a6cd4","first_seen":"2025-05-27T14:29:17.269017Z","last_seen":"2025-10-11T04:29:42.134462Z","times_seen":4,"resource_available":false,"data":null}},"time_used":4518,"timings":{"blocked":4162,"dns":0,"connect":0,"send":0,"wait":356,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/prism.css","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:32.320Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/prism.css HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":618,"timings":{"blocked":618,"dns":0,"connect":303,"send":0,"wait":0,"receive":0,"ssl":317},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/d69f7b4e5781756f141810f0716bcbe6.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.977Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/d69f7b4e5781756f141810f0716bcbe6.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 21673\r\nConnection: keep-alive\r\nAge: 1913886\r\nCache-Control: max-age=31536000\r\nLast-Modified: Fri, 19 Sep 2025 00:50:39 GMT\r\nNw-Session-Id: 2025091908503961AC0782FCC3E278D842rs5wr032b\r\nNw-Session-Trace: 2025-09-19T08:50:39.20682004+08:00 84\r\nServer-Timing: inner; dur=87\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 20e2c695f89b61785523b4b2ea314667\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Fri, 19 Sep 2025 08:50:39 GMT\r\nX-Tt-Logid: 2025091908503961AC0782FCC3E278D842\r\nX-Tt-Trace-Host: 017ced471a969e25ddc50aa61ce8aae3032ec1ef3ec7553211a10db02347613fb2f82bf17c696661db56aaae98883b6142b5fb6aa17cc94ba2804f07c93d0ed1e6244784f183537ec2ea73e6a1faff9520d7a8e5990817db86553d4052e78a75a69b4d97eae9c7f7d0934381085180641e\r\nX-Tt-Trace-Id: 2025091908503870744395acc11FC20711\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache05.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21673,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"0b5398dfde3a4e2d362e4d403b21f622","sha1":"36e6952888a00db01683a0a208ad4b830108b23c","sha256":"03e2fdd629714bbdcc8f8ff0e68ef7ecdeb22726a72b97c4b69a922688f21d69","sha512":"995de9adb2bb0e5916c71ad4ce52c14c89449e164125cb623cf58205274193639977498a11ee7c5454a0ff4f22bbd1ad18385e191328df10ace741bec9b149f7","ssdeep":"384:Vi68KXX5vYA8aP9yTGRm3BcP7rJAAhp4R4hcRp26XS63c/pXrERD9G:FFHGeP9yPkJAAhWiWR4t63YgK","tlshash":"daa2e0d126a9e8498fe24d49cf20beb04a2884758d71be663e5b62d47703b30e7dc459","first_seen":"2023-11-10T19:11:58Z","last_seen":"2026-04-26T00:17:34.286295Z","times_seen":185,"resource_available":false,"data":null}},"time_used":924,"timings":{"blocked":441,"dns":1,"connect":19,"send":0,"wait":18,"receive":1,"ssl":437},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/a4fa72e714131415526de35f1cee3920.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.020Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/a4fa72e714131415526de35f1cee3920.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 44479\r\nConnection: keep-alive\r\nAge: 568610\r\nCache-Control: max-age=31536000\r\nLast-Modified: Sat, 04 Oct 2025 14:31:54 GMT\r\nNw-Session-Id: 202510042231546B19C31F8F932E1525E7dzvk7032b\r\nNw-Session-Trace: 2025-10-04T22:31:54.709221494+08:00 45\r\nServer-Timing: inner; dur=50\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: f72b9a416d9dfd5b8f0f33bfd33ec13d\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Sat, 04 Oct 2025 22:31:54 GMT\r\nX-Tt-Logid: 202510042231546B19C31F8F932E1525E7\r\nX-Tt-Trace-Host: 01b80fff6c19855c35470ac2d36c9232d5a0228cc2d762cd5b111a64be351d9fff433a369ad75faaa255a9319dcfc99ce1c65fe0fe97cd2694b9a5410f9d2aa1666a1715a521363f078a5bcf7724df64f508c4175b9d9030ec65e16575e4abdf3d094f9c8d72ecb7d6ba732b847a1b091d\r\nX-Tt-Trace-Id: 20251004223154801ed01533be01F1A0DE\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":44479,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced","md5":"77c477ef16555b218fd827d0df1a45d1","sha1":"f0fa4a1141a0b57b7849fa204e79ab210774b338","sha256":"a3ce38f991984b84dff419a331d844693514195631a83d8a256798d718a89f17","sha512":"c782134314fe0fbb2be09baeda7a10c33e063a7190a6273de19018d644c037904d567edf53566a2c363edbe0d86a18af86c0ce3a5abeabfa42401d0add41d7c0","ssdeep":"768:3u8sgvE0JCEv4r1oHPopTMswcNgXryitWAc6TVROwDO02gvx3tgHI6cigUJeQidC:+8sGJCEQr1ovcMslmXrN66VbNttgHIn+","tlshash":"ec13f1579a8dd009cafdd5f52b640cea4be933e3592044d3218993c6db1c0e22fb5fa2","first_seen":"2025-02-02T15:18:13.05362Z","last_seen":"2026-01-20T09:02:48.008437Z","times_seen":46,"resource_available":false,"data":null}},"time_used":477,"timings":{"blocked":455,"dns":0,"connect":0,"send":0,"wait":18,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/66351ed8d3e0880ee237c92e8ff096e1.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.039Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/66351ed8d3e0880ee237c92e8ff096e1.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 41979\r\nConnection: keep-alive\r\nAge: 1477563\r\nCache-Control: max-age=31536000\r\nLast-Modified: Wed, 24 Sep 2025 02:02:41 GMT\r\nNw-Session-Id: 202509241002415CD0BA87A6EB0BD03025drc9q022b\r\nNw-Session-Trace: 2025-09-24T10:02:41.723404963+08:00 66\r\nServer-Timing: inner; dur=70\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: ebf332727ac6e211ccfb28483363cd5c\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Wed, 24 Sep 2025 10:02:41 GMT\r\nX-Tt-Logid: 202509241002415CD0BA87A6EB0BD03025\r\nX-Tt-Trace-Host: 01e1b91161e57b0ce970c2dd3ed243f71198b1005a500d788b8667755b03be33beae897961a472f3ed2d3341df9214fa8befb3e51c8cadb037c14596d56bea078f59cd88afa356feb4e28c0eab763a3a9230919d28fd2707cb144c9b4db570c317329df49746563b3b1f920af16d700f71\r\nX-Tt-Trace-Id: 20250924100241bdf833245527006297F5\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache05.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":41979,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 219 x 300, 8-bit/color RGBA, non-interlaced","md5":"882f221049f859af0c62012c30a91c08","sha1":"cd99e5536b57e80da40d28a73b59a0917a6d7f67","sha256":"ea9107360626232852121e2f3bbefd19af9508cd2f7fa6142f0fa6e2e1ff4265","sha512":"e0163ce840a755357688f3e20e1c3cfbcca8365fd3fde2b090e789f14074aaeb08ee6ba5094e2b6e430b77fdfd41e21d47a4670fe6f4a91f203dc1f280bd9f5a","ssdeep":"768:ioxpew5Lkw9DJSlzNEjj4euN5vhlt1OgDGRruYSee5+qked2zIZ:zxo8L1xJ4zNEjQN5vhtqRr1I5DkbkZ","tlshash":"3613f145433619a705243e4a47b79e92de71b9fddb20cbe7b80314f09673804767ea0b","first_seen":"2023-11-15T14:54:40Z","last_seen":"2025-11-15T06:40:31.990706Z","times_seen":14,"resource_available":false,"data":null}},"time_used":504,"timings":{"blocked":483,"dns":0,"connect":0,"send":0,"wait":18,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/ET93ozkiLJDtFxRk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.403Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/ET93ozkiLJDtFxRk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6315,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"c026d2cd2dbd18ac613d2b4fb9004bb4","sha1":"0e6b5cefaa105be2c6c9cf8656218e7564c18f9f","sha256":"f217bec3713e01c8b69dbb0defaf144a37cdf0302039892e62d95253eb902d70","sha512":"775bacaa23447835ca16f8c9fe4e6033cc441ab904710293c2c760a7cc61b8798122e311f668b2f75b994231043cc5ff7d0468aa51ff4a49570d924bff6278b0","ssdeep":"192:GQCOp9TccanjbT3NjPS3w6/ieAQtEIiRXs2:GrgxccanjvRxQKIiRX7","tlshash":"e1d1ae2e4b8b9a619b13ccb5be2570ad380f25c9b6b093365b71dedc0272c715b88984","first_seen":"2025-10-11T04:29:42.153312Z","last_seen":"2025-10-11T04:29:42.153312Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2131,"timings":{"blocked":1473,"dns":0,"connect":304,"send":0,"wait":353,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jk.vgcpps.com/app/encryptionVersion","fqdn":"jk.vgcpps.com","domain":"vgcpps.com","tld":"com"},"ip":{"addr":"16.78.49.61","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:32.392Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jk.vgcpps.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"75:81:C3:61:EB:FE:6A:46:C5:5A:9C:94:34:18:3F:55:8D:20:E4:B0","sha256":"4C:77:9B:F2:A6:23:75:72:38:59:55:81:C9:76:9A:5E:A7:2E:F1:D6:B4:4C:77:12:D7:87:AA:6D:F5:60:4A:C7"}}},"request":{"raw":"GET /app/encryptionVersion HTTP/1.1\r\nHost: jk.vgcpps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://ii.jalalive55.co/\r\nOrigin: https://ii.jalalive55.co\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:33 GMT\r\ncontent-type: text/html;charset=utf-8\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nx-cache-status: HIT\r\nx-server-ip: 172.31.28.253\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":88,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"770af99a48f96d73d47a283df29ca45b","sha1":"34ebacb568ceff97f378f99ffd6445aaa652aef5","sha256":"9d5e79de94e94ddb2f952530b52a6d4c6a1412d92ea23c32767c363a743cc1cc","sha512":"1772f570dfb5088a129034f0ca2ee1adf66837c035b53d0b41f1795e46cb172c58bc2fde4c50c25dbf328812df4fada30f92d95e3e08a9157d5535a4275e4092","ssdeep":"","tlshash":"fab01232c25c10295c444009884822cdc3010995c4083265104937014144555c33d50b","first_seen":"2025-03-20T08:28:26.351157Z","last_seen":"2026-04-14T10:43:52.443154Z","times_seen":40,"resource_available":false,"data":null}},"time_used":3220,"timings":{"blocked":1358,"dns":119,"connect":364,"send":0,"wait":501,"receive":0,"ssl":874},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jk.vgcpas.cc/app/encryptionLiveRecordList?is_home_page=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=HAHQJH%2BwBn11e35SBU9DNg%3D%3D\u0026check_id=O8yL1wiXVysZklt6r0gs%2Bj9gyyp8ualzI%2ByUCwCkQ3s%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026uid=Lkc%2B%2FM%2BLPO3qto6MYH542A%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D","fqdn":"jk.vgcpas.cc","domain":"vgcpas.cc","tld":"cc"},"ip":{"addr":"108.137.115.204","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.064Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jk.vgcpas.cc","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"7F:1F:76:C5:AA:68:BB:76:8F:19:86:C5:1B:84:A8:27:67:A6:F1:3C","sha256":"DC:63:D7:76:59:1C:24:49:8E:76:AE:01:3A:DE:E0:ED:08:2D:C3:CF:66:F4:98:3E:29:17:08:93:A0:CD:C2:2A"}}},"request":{"raw":"GET /app/encryptionLiveRecordList?is_home_page=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=HAHQJH%2BwBn11e35SBU9DNg%3D%3D\u0026check_id=O8yL1wiXVysZklt6r0gs%2Bj9gyyp8ualzI%2ByUCwCkQ3s%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026uid=Lkc%2B%2FM%2BLPO3qto6MYH542A%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D HTTP/1.1\r\nHost: jk.vgcpas.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\ncontent-type: text/html;charset=utf-8\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nx-cache-status: EXPIRED\r\nx-server-ip: 172.31.28.253\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1048,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with very long lines (1048), with no line terminators","md5":"edf168b939c35ef0585bad54f1548ade","sha1":"39dd18403824e89317ac0da1ad10f670b1f30718","sha256":"16fb2bdad0ebf22068e369984dd3f46123fa6f28f9101409d3f7a9bb12bc542a","sha512":"1d94d9757df9c4ead0d551e3df3e9d746f197395db1e7c970190b94857fe9f9b3edf6e9dbf611a1cfab9137044ed604387b6fe45918c8accdd433ac23ed1ef6e","ssdeep":"","tlshash":"e311d84c720c9991242de7f874de72ddcae769ef140092b226c479a6ea69ea8301d605","first_seen":"2025-10-11T04:29:42.156518Z","last_seen":"2025-10-11T04:29:42.156518Z","times_seen":1,"resource_available":false,"data":null}},"time_used":404,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":404,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bflives.qdmeron.com/2025-10-11/sd-2-3878154-screenshot-12-26-55-1493x840.jpg","fqdn":"bflives.qdmeron.com","domain":"qdmeron.com","tld":"com"},"ip":{"addr":"43.152.140.79","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.148Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bflives.qdmeron.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 30 Jul 2025 00:00:00 GMT","end":"Mon, 27 Oct 2025 23:59:59 GMT"},"fingerprint":{"sha1":"76:42:1F:7F:36:0C:D5:BA:3E:45:08:42:5F:15:E7:AE:9E:EB:49:D4","sha256":"EC:83:EC:71:38:6D:95:72:85:07:CE:39:F2:01:EE:C6:20:EB:13:D3:52:6A:25:8B:88:F1:C8:8D:55:20:19:A4"}}},"request":{"raw":"GET /2025-10-11/sd-2-3878154-screenshot-12-26-55-1493x840.jpg HTTP/1.1\r\nHost: bflives.qdmeron.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 11 Oct 2025 04:26:55 GMT\r\nEtag: \"117fb04687f87890d0bad4c62f1c526b\"\r\nContent-Type: image/jpeg\r\nDate: Sat, 11 Oct 2025 04:28:36 GMT\r\nServer: tencent-cos\r\nx-cos-hash-crc64ecma: 13400995350777312918\r\nx-cos-request-id: NjhlOWRjZjRfNzQ5MTI3MDlfOTYyOV9mNTRlYTY1\r\nContent-Length: 95891\r\nAccept-Ranges: bytes\r\nX-NWS-LOG-UUID: 8057279245348989305\r\nConnection: keep-alive\r\nX-Cache-Lookup: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":95891,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1493x840, components 3","md5":"117fb04687f87890d0bad4c62f1c526b","sha1":"f79af5772496439646abcbb5b721b696c6a93ef9","sha256":"91725ba494fd25d300056a6664b113ea4d04131ba26eda80966f088d379639a1","sha512":"98af523417bfc37bf4eaa88da2e8b43d9b3eeb6691b4203a0beb4f8693ba683fc350610ca563af3efabce661113e2c6321daa82bf9a5ffabc46d920d5f3ead33","ssdeep":"1536:b9gUVSutaUpTltq5x64YAj6rycPFz5kFpIGOIKCa/KGa5r0160hnhpsmsu0tKQ:BhVShUHtmo+j6pOIzhCaSz5Zun4m8KQ","tlshash":"d493023f3a1d8d6dce941375b90a1b54327408a4d8d3ed4bc7b86a2bd526ff6ca06306","first_seen":"2025-10-11T04:29:42.158326Z","last_seen":"2025-10-11T04:29:42.158326Z","times_seen":1,"resource_available":false,"data":null}},"time_used":841,"timings":{"blocked":444,"dns":0,"connect":11,"send":0,"wait":8,"receive":12,"ssl":365},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jk.vgcpas.cc/app/noticeConfig?client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=AVE%2Bur4JQlONLB%2F4IssK4w%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D","fqdn":"jk.vgcpas.cc","domain":"vgcpas.cc","tld":"cc"},"ip":{"addr":"108.137.115.204","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.930Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jk.vgcpas.cc","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"7F:1F:76:C5:AA:68:BB:76:8F:19:86:C5:1B:84:A8:27:67:A6:F1:3C","sha256":"DC:63:D7:76:59:1C:24:49:8E:76:AE:01:3A:DE:E0:ED:08:2D:C3:CF:66:F4:98:3E:29:17:08:93:A0:CD:C2:2A"}}},"request":{"raw":"GET /app/noticeConfig?client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=AVE%2Bur4JQlONLB%2F4IssK4w%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D HTTP/1.1\r\nHost: jk.vgcpas.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:42 GMT\r\ncontent-type: text/html;charset=utf-8\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nx-cache-status: HIT\r\nx-server-ip: 172.31.28.179\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":472,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with very long lines (472), with no line terminators","md5":"24c31a76a1623c71633bc3e83298bce6","sha1":"ec74374649ff5c4ad27d7eecd34b3c4cd661316f","sha256":"05cd3c30413478e5c04cc22c7115b138a1555acd1f0070b88fad9628d413eed8","sha512":"4d07caf3b7146e62f8396f8b0a683ccf7dbedd6a72d2587e24b9f77588b3f146db54c66b2d249cb43ec1d24b3da33ecf13fb4e7d699e943ad57d314c244c8e42","ssdeep":"","tlshash":"01f054a30017bf2e0bc8051f190a525927a5df2d208a857651192986c14d3d8233a51e","first_seen":"2025-06-18T12:56:11.28857Z","last_seen":"2026-02-25T03:25:48.278974Z","times_seen":20,"resource_available":false,"data":null}},"time_used":2464,"timings":{"blocked":1144,"dns":0,"connect":0,"send":0,"wait":712,"receive":0,"ssl":608},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/6dff2291fe2e822de2e8068a182c4759.jpg","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.997Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/6dff2291fe2e822de2e8068a182c4759.jpg HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/jpeg\r\nContent-Length: 4469\r\nConnection: keep-alive\r\nAge: 1568390\r\nCache-Control: max-age=31536000\r\nLast-Modified: Tue, 23 Sep 2025 00:48:54 GMT\r\nNw-Session-Id: 202509230848543C99EE093674EEDE9CBC79hh4022b\r\nNw-Session-Trace: 2025-09-23T08:48:54.43085462+08:00 49\r\nServer-Timing: inner; dur=59\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 9ef0b4d1976cd28db715541738889812\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Tue, 23 Sep 2025 08:48:54 GMT\r\nX-Tt-Logid: 202509230848543C99EE093674EEDE9CBC\r\nX-Tt-Trace-Host: 01a6ebe66eb81e701e4ae59f48829d2675bad40e9b97f9c32effc3a0b7c6180ae554121d45f56c3fdd5f3ebd06871027dbc74c393335a097e1388eb23cbe7f42864ff350b7f663a3c693a3522cb509b353e99aa6d19056bee78256920a175b5cac0a433e19bac20c9c993dee0dfe51ed08\r\nX-Tt-Trace-Id: 20250923084853bf3e6d85b94b0798F866\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache04.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4469,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 80, 8-bit colormap, non-interlaced","md5":"b08435494393414c0fac93116a83689c","sha1":"e0a4d3cd41796456023727bd4e16f8367439467d","sha256":"a44d68b1343a3852c7ab94d82e531246c9e25f3fadb74b4436bcb790ead8f5db","sha512":"a1ba33297be1ede38a226c537c4037f016a3a535f3d8b381df99f1fc9988e75caa4dcc4512976c45b549ee1262e46f09a637a02b03c2e922569d7561e578bb4f","ssdeep":"96:xsH0PT/ArTTdLOi9swGf3y+kwQl6OaKsQ+98BHY2LNxRbd9C:TbexyiL7+klHarQ+2HYmNxRbTC","tlshash":"a2917e469e710c5c92ca4fc839381a56d64e9c668c23006661c2bfd7dabb1578f4f370","first_seen":"2024-08-19T15:01:26.109847Z","last_seen":"2026-03-28T04:48:00.087738Z","times_seen":15,"resource_available":false,"data":null}},"time_used":443,"timings":{"blocked":425,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/b0cba801d31e0086325dc1bd81639be8.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.015Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/b0cba801d31e0086325dc1bd81639be8.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 39001\r\nConnection: keep-alive\r\nAge: 601706\r\nCache-Control: max-age=31536000\r\nLast-Modified: Sat, 04 Oct 2025 05:20:20 GMT\r\nNw-Session-Id: 2025100413202046525679A6CFBFDD53B6sh55v012b\r\nNw-Session-Trace: 2025-10-04T13:20:20.716038475+08:00 57\r\nServer-Timing: inner; dur=62\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: c436c9636d5ec03287c4f349753e62f0\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Sat, 04 Oct 2025 13:20:20 GMT\r\nX-Tt-Logid: 2025100413202046525679A6CFBFDD53B6\r\nX-Tt-Trace-Host: 01ee3d6188c48241afd72407ffb169e84457f42a676c3bb453713307a9c8c631a8b061e48c2ad44b9de9c783bdeea59a756b76ffcd11822b6cfbce5029470ebb88f6ecf8247c7d011afadba2c29f20b2f5c4ed84cf8c70d7adbad29bd21ce0009c3a05c493e219e4b614387c2bed6f1972\r\nX-Tt-Trace-Id: 20251004132018ddfb97ecb24b0B52FCAE\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache05.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":39001,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 306, 8-bit/color RGBA, non-interlaced","md5":"2c17c0dd4b04f6ea7bf5159a28801979","sha1":"0369ec038ab2613411491449fadfbe396d89efef","sha256":"461e9603ab396e55cac2a6802fcc62ae868dc91898e9af5b11e4c7d83cd79ace","sha512":"076b1898665176d27ad005676887f97ae936585f792dc807bb5fb09d007d0b04765c31faba4800e9e07c57592b3fd665b784c1e567a55a940843bca8ab2fddd6","ssdeep":"768:MJoHyWfTIzQgWNi0TJaOOvwNJxyw9UfaSEMtaE0f04Le:MCmzvsFTQw1AaS2sQe","tlshash":"4503023cb7b9bba21f8a7838981854352f3ae053161b995838d9236f0035d0a7f1733a","first_seen":"2025-09-07T01:04:05.895066Z","last_seen":"2025-11-08T01:05:46.046609Z","times_seen":10,"resource_available":false,"data":null}},"time_used":462,"timings":{"blocked":442,"dns":0,"connect":0,"send":0,"wait":19,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/30683c359531664a5b97f129c047fcdc.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.021Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/30683c359531664a5b97f129c047fcdc.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 80577\r\nConnection: keep-alive\r\nAge: 2511186\r\nCache-Control: max-age=31536000\r\nLast-Modified: Fri, 12 Sep 2025 02:55:39 GMT\r\nNw-Session-Id: 2025091210553869C997FA3E1B6581EC8Drphjh032b\r\nNw-Session-Trace: 2025-09-12T10:55:39.158848796+08:00 214\r\nServer-Timing: inner; dur=223\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: aa839f6820dc0f9ba98942d311e50640\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Fri, 12 Sep 2025 10:55:39 GMT\r\nX-Tt-Logid: 2025091210553869C997FA3E1B6581EC8D\r\nX-Tt-Trace-Host: 017e7a59c6b8ea160142106894316ad9b6fd30364db356d655b3139163f8edf1a88f469236d387c815cfb8f2bb6e6b4a04c17278b150659911fe80e0e1e7c95a1fe19c7147266df786712e282de6499d55995a6a7a571eb5f8f5353cac72b6d9e2b81d12dd86b3829b04894fea072edf3f\r\nX-Tt-Trace-Id: 2025091210553840de1cbba7630776A375\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache05.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":80577,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 431 x 431, 8-bit/color RGBA, non-interlaced","md5":"0977a0302da126e326f709814c91fc50","sha1":"d2d6baf69370ffff65b11ec532eff683374a9a9f","sha256":"4fbfdcfec67bfc59b4550a74d0b797866c57c89dae56722684f5bd2969766143","sha512":"e86789e385c8a58f255f6fa722fa3733179421fd12d9e4c9ad53738114dabab89279e709287656fa832e2d2f402bbbb8bda132df0c1744cbabc6e60d9b10b8ee","ssdeep":"1536:DCv53Q4+PlBKLc8D87OvDDCl/xGQmBPb/vXEQ2ZcavcLnOMy6O9Zx2IBZynH:DChp+CLfuEil/81BPjfEQgXvcLnOMy6/","tlshash":"bf7302aa104815898773cabd93bff97520af9481027868516f42defc37be791f1d8381","first_seen":"2025-03-25T00:13:21.972162Z","last_seen":"2025-12-09T05:49:06.624958Z","times_seen":44,"resource_available":false,"data":null}},"time_used":482,"timings":{"blocked":455,"dns":0,"connect":0,"send":0,"wait":18,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/af9d0a8374fb9658485eadbe1e224f4c.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.036Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/af9d0a8374fb9658485eadbe1e224f4c.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 8544\r\nConnection: keep-alive\r\nAge: 2577298\r\nCache-Control: max-age=31536000\r\nLast-Modified: Thu, 11 Sep 2025 08:33:45 GMT\r\nNw-Session-Id: 20250911163345F280F4B32C4A6CB3DCBEswfrv022b\r\nNw-Session-Trace: 2025-09-11T16:33:45.491264611+08:00 58\r\nServer-Timing: inner; dur=75\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 4b7e28635f5bae53338bddea5dda61a3\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Thu, 11 Sep 2025 16:33:45 GMT\r\nX-Tt-Logid: 20250911163345F280F4B32C4A6CB3DCBE\r\nX-Tt-Trace-Host: 012cc956394a666a4b5f19fc15fc338e479adae7b7961ff0f736030412399de6e3bb57232d56cbc883b8238fcfed7c0a9eda3dadbff1eb1a5a82793e204867aa42ea531f90ebd2057d735dbf5c5916ed7749812801fafa43b982036cece153465529416d22b32a76f6b89861b68300aa1f\r\nX-Tt-Trace-Id: 20250911163344c86bcbe2ed700F01DF2D\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8544,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"1ec64a6ce50b5fe0f11541526d885423","sha1":"a9cf3e987ab191fcec385848e763dc76947acf76","sha256":"22321298ad768b2ec64a8cd01220d0e116af02c8fe8850567d8750f94e75fe38","sha512":"c8ee93ac0b47861d3db26c2d44485b8c824e8aef0a8990fb79e828d4c4be798668c72313b9c88b4708604e724b1440a9780454c0252117fca3d19e211d9d54cc","ssdeep":"192:JIo/kyzdpalnh4N0PJp5yoFbsLQTvusqMYawrl:JIosgdpwnu0zFb8Qa/ll","tlshash":"4d02ae50a683587bc95dba23cd656c21a8efa0047802bed91137f9a84b85107478b3fb","first_seen":"2025-02-02T15:18:13.052281Z","last_seen":"2025-11-09T05:01:18.701955Z","times_seen":29,"resource_available":false,"data":null}},"time_used":500,"timings":{"blocked":481,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.bjxsong.com/2025-09-22/efa17891c27e0a2cc0843660fd3301dc.gif","fqdn":"jalacos.bjxsong.com","domain":"bjxsong.com","tld":"com"},"ip":{"addr":"43.159.98.28","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.576Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.bjxsong.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Mon, 24 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"A0:62:89:86:76:0D:3F:EA:FE:00:FD:08:E8:3C:4F:3C:A0:B0:1A:EB","sha256":"8D:99:E7:29:CD:E2:65:D5:C2:4E:9B:4C:AE:81:AF:6D:49:95:AC:D2:3B:95:64:74:90:FA:7A:7F:DB:09:5A:77"}}},"request":{"raw":"GET /2025-09-22/efa17891c27e0a2cc0843660fd3301dc.gif HTTP/1.1\r\nHost: jalacos.bjxsong.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Mon, 22 Sep 2025 11:19:37 GMT\r\netag: \"4798f7a21b765bdab884bf39d53ddcc9\"\r\ncontent-type: image/gif\r\nserver: tencent-cos\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-cos-hash-crc64ecma: 9097480320133320903\r\nx-cos-request-id: NjhkMTQwMzlfZjE4YzdjMWVfMWE2NGZfMTc3Y2Y1MDc=\r\nx-cos-storage-class: MAZ_STANDARD\r\nx-cosindex-replication-status: Complete\r\ncontent-length: 477240\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 1433290244509185779\r\neo-cache-status: HIT\r\ncache-control: max-age=43200\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":477240,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1506 x 100","md5":"4798f7a21b765bdab884bf39d53ddcc9","sha1":"9c4399938d662c79c5f4476261f6685a47b3604b","sha256":"64951cd311a47a6dcbebf0eebd9db3fb64aa62890056acd561037ef68be62e29","sha512":"98d949743e59b62ff3cd5ce36046c21ee066b1b05dba2804ecafc7a25a6bdf3e44fc4725b35a8b193382cdd881b38f7f9b4ef8ac2ed99be3d87bdbf38eda941a","ssdeep":"12288:b7pd5UHf1XsMHsc/BrBWPXtm7r501QnekVoKfX2/Rt4Ph11T:fpLkXJsqE/Um1YekVhERta1T","tlshash":"42a423adc6199e1104bdb6750cd0fbb164d8c401af11ee30ab8566411373ba6e7bfba3","first_seen":"2024-08-19T19:47:54.986195Z","last_seen":"2025-10-12T03:59:10.624973Z","times_seen":5,"resource_available":false,"data":null}},"time_used":541,"timings":{"blocked":235,"dns":0,"connect":0,"send":0,"wait":36,"receive":270,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/GTyaLFOQnTSgpTxk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.404Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/GTyaLFOQnTSgpTxk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5046,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"bcf9bdf7700fb54639f0562310762d63","sha1":"92fed011ce6a0329a8fb0b3aecd0cbffc03d9de2","sha256":"f20807e27586c6b61da2e855ef6dcd050e0bf4a7c10206a1974b8718dbfb888f","sha512":"8d54900f25311355178c0f243c0e6e557c949977b73b5a7b4b22bd3cb60198b9560e0a9a354fb53d69c56472b529f69e0de2ae2a1260690d747503f1b5bcf6e8","ssdeep":"96:GahCEfF2i4LPP8yBfA+Mc1GA4HhB9OxSN40gGKrl+jWiZHQjgO:GQC+FhIZf+VhBoxSNjgGi47mMO","tlshash":"c5a17d5b87cf0b2527a79899914a33bbd3245b82b66032b706a7a3f4d070cf8d04d195","first_seen":"2025-10-11T04:29:42.18158Z","last_seen":"2025-11-13T07:53:11.96072Z","times_seen":3,"resource_available":false,"data":null}},"time_used":2128,"timings":{"blocked":1471,"dns":0,"connect":304,"send":0,"wait":353,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/swiper.min.js","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.645Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/swiper.min.js HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":1472,"timings":{"blocked":585,"dns":887,"connect":1188,"send":0,"wait":0,"receive":0,"ssl":315},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-24/f1976ae5ff3d3983cc2c8030445e80de.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.165Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-24/f1976ae5ff3d3983cc2c8030445e80de.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 25 Sep 2025 01:00:45 GMT\r\netag: \"21f3688e3628b833903975afa6af35a2\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 67463 us\r\nx-cos-hash-crc64ecma: 7730378999056612250\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhkNDk0M2RfMTg3NmI3MDlfYTJiMl8xNzk2NzM1Yg==\r\ncontent-length: 55432\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 5069183337920897592\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":55432,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"21f3688e3628b833903975afa6af35a2","sha1":"3123eed1186df177213c66b68464a7fd44d9c1cf","sha256":"2965d913fb708c2ac08eb51a9b5000f63c47bf21bed89cff81b71285ca6c5904","sha512":"efd59347f55e83a37811f253a3e480fd59031cc370dd8b35dfe25538b338254f36c5c939f2c451377a9dafe6bd9506d78e80e33bcf910ef63f6aa200fc871a7f","ssdeep":"768:WR0WlAX43k7cKh8zm4SDEfcYvx2OVO2P4gFeMf5oppTkayfVbICD3P9itsHgzLKW:WeW+nqzlOEfD2aPtFnfOb2hPYtEOKDzm","tlshash":"9543025baaecd4b210a75ca0068bb8cc7319e1f40cce7a614935360f91db689f352d79","first_seen":"2025-10-11T04:29:42.183775Z","last_seen":"2025-10-12T03:59:10.571455Z","times_seen":2,"resource_available":false,"data":null}},"time_used":744,"timings":{"blocked":624,"dns":0,"connect":0,"send":0,"wait":113,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/js/750.3054b4c4.js","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:32.402Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET /js/750.3054b4c4.js HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:33 GMT\r\ncontent-type: application/javascript\r\nvary: accept-encoding\r\nserver: cloudflare\r\nlast-modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=3,i=?0\r\netag: W/\"6860d1d3-6130\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ufHOMPX8x2YZyZA0ooPDMXYW68xTdmjetAY12MPttT4XCy50BuWNNuJSvL%2F%2BJQLKv1ki2q3maE0%2BY0pC2Z8Izgse7p0piFL0te178GL1\"}]}\r\ncf-ray: 98cb9c7e8cd5569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":24880,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (24880), with no line terminators","md5":"0c80dadddba3292cee4603be3dd74fd9","sha1":"17342ace6adf124f7448c2f96b827105d0952161","sha256":"508be73515a86474cb8e9aae18a75e684e7200e4b951d6d32e2db098033611ac","sha512":"b9e3673648e655373648f9e95913bc6077ba59f1eed18c6f7043fdbb30900f2ac6521bb3c39ee9485ee6df490e5cb727a52378ad65b24607226cb7ead5535a07","ssdeep":"384:+7QKIiNvnljMgp3TC0DcBvoQn+VHHejpjSwKQKWlADojdC4h/+URV+kmcBPoPMBZ:UI0ljMKAvoQnsHHUEWlAS91/PoPKj","tlshash":"e7b27d7b1aebe84d7e70482550343e963cbcac83aa9566f09d1c17f264de3518acc8b5","first_seen":"2024-08-19T19:47:54.893151Z","last_seen":"2025-12-02T08:25:01.652339Z","times_seen":35,"resource_available":true,"data":null}},"time_used":659,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":658,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/2ff3c6a0bc1b8b688fb0b8fa15c34b0a.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.023Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/2ff3c6a0bc1b8b688fb0b8fa15c34b0a.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 70409\r\nConnection: keep-alive\r\nAge: 2373787\r\nCache-Control: max-age=31536000\r\nLast-Modified: Sat, 13 Sep 2025 17:05:37 GMT\r\nNw-Session-Id: 202509140105377EAC2AE9D6A0AB0119E7gtd96012b\r\nNw-Session-Trace: 2025-09-14T01:05:37.853667518+08:00 36\r\nServer-Timing: inner; dur=41\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 1520de63456c8700c3de73055bf5b1ed\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Sun, 14 Sep 2025 01:05:37 GMT\r\nX-Tt-Logid: 202509140105377EAC2AE9D6A0AB0119E7\r\nX-Tt-Trace-Host: 01136f1f72fe3da31b4b75fb5603f3d7eb8eebbe8369527661e3e1df872b908b4758ee1138042852c72873c54a02e05da4e26a5e178d165f7e72860a13c103061fcc244ef065d4d69dd59c8571abb8340906eaedf3e518d7068edeecbaf1d219a7001f80171b4e6eb648ce562063083030\r\nX-Tt-Trace-Id: 20250914010537126e24a8b53d0428B39A\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache04.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":70409,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 221, 8-bit/color RGBA, non-interlaced","md5":"2ff3c6a0bc1b8b688fb0b8fa15c34b0a","sha1":"24d7eda7cbbcdb04364e55f5ca20aeabb06ba0ba","sha256":"aa1c2e7a127f1a1e774f818286203cc614e9415a69c292db737e22e67a2ebf4b","sha512":"721950417b85d177591d76fcdd4d4ada28733957da2708712f0e60f7ab36ef8322e28671d5cab20f09338f17192e260dda7e47be40dd0165c242490de12a56c9","ssdeep":"1536:wYgl7f3/yr4ClyIjWHPod/kCHY38xyxsW80G85r0zLCtjZc:XafClyIKHAd/FY31xH5EuZc","tlshash":"97630204a142c19917a234d3a211ac3f955f4afc214daaece1d66eedeeea43d40a2527","first_seen":"2023-11-11T04:38:46Z","last_seen":"2026-01-20T09:02:48.133236Z","times_seen":55,"resource_available":false,"data":null}},"time_used":483,"timings":{"blocked":457,"dns":0,"connect":0,"send":0,"wait":19,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/img/logo.eee432d6.png","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:32.270Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET /img/logo.eee432d6.png HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:32 GMT\r\ncontent-type: image/png\r\ncontent-length: 19357\r\nserver: cloudflare\r\nlast-modified: Sun, 29 Jun 2025 05:40:35 GMT\r\netag: \"6860d1d3-4b9d\"\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vsRXvPDF6xW8GxWAJ0R4SOxWLsUYNg%2FcBS%2BrYvb4a1zMQkqqXJWuo4VpZ5T%2Fz93h%2B6ThM6uIM8%2BcAIXywlNPBV0hZlgx0ctiaO%2FFsq3x\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 98cb9c7dacd0569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":19357,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced","md5":"16a6db0d8f21d6694e74654cedbb68f4","sha1":"b7e430b48b69a5ff765a33827ecf6878af772ede","sha256":"3485afe3b7bb1ee9adff94b6c5c954beee4b5e341d40f2516a9d6be451edfa5f","sha512":"c33bdcabdbdbe8c45979541603f5f8f46d90289b3085b73fe7eae1674f1ea55facf0010b74a1147e1f8b88c10ed89e9efd1ac0146a98189deb244fd2d7c4884e","ssdeep":"384:9FN9aFryJMvR6Y+5AJcV2hf48mhVEnGjVBqrzw9M5tFgLalzD0VooJuz:Xa4evR6YUAOu48AEq0w9M5tFgmVQk","tlshash":"2892c012b7807aca41b61538ccea5924de93c651b5786d8bf219a2db3f829fe51003fd","first_seen":"2024-08-19T19:47:54.890396Z","last_seen":"2026-04-14T10:43:52.42385Z","times_seen":40,"resource_available":false,"data":null}},"time_used":622,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":614,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/GTRtGTyaLGbtE2Hk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.411Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/GTRtGTyaLGbtE2Hk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:32 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:32 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:32 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"2d4543cf0e09ddf3ad4340827ff60b7c","sha1":"d8e384bcffd14cc70354082618fe7a88342fb6b3","sha256":"09dd81d9b3ada86ac184bf07b184967e6e3eff578c179c67c15731eabfe7088c","sha512":"f44ee1530c6d4b179bced587c2707b76dea0250104d465bbe4dad34909a3c832c27a25f09a14d092a8cac6f1ea54f8706c8cbdfb101d015fc7660042594a5c05","ssdeep":"96:GahCECjmCRK7wDXAGBuf++Q/bf52m9GJ/yQ7QlC5rocxv4:GQCxjmCcw9BufJQD0mUQCaC5txA","tlshash":"d8916e972d1797024f05a02357641955e1de23613eb512fa1bb011a4d171cffd1cf74a","first_seen":"2025-10-11T04:29:42.190415Z","last_seen":"2025-10-11T04:29:42.190415Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3172,"timings":{"blocked":2823,"dns":0,"connect":0,"send":0,"wait":349,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/css/990.31cfbc22.css","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.947Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /css/990.31cfbc22.css HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:40 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-2efe\"\r\nAccept-Ranges: bytes\r\nContent-Encoding: gzip\r\nAge: 1\r\nX-Via: 1.1 PS-CDG-04VRO197:17 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf8_PS-CDG-04h2Q194_40459-31153\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12030,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (12030), with no line terminators","md5":"270109b893c4d708ab76b4548c36844b","sha1":"338bf5b1fac5d29ea496b97183f54ccc759a9b9a","sha256":"b81ba46f8d82a2bc02821179dcd6bbc8300ea0b1b03190cd4c47ea7194f8e20f","sha512":"02af53ffd485adb65faf6e76a121305e10b15afaf60570e3b4bb3bbe9294473332e57393e460f079b1fa5e8a21eddfabf7edc540b506d9db1c0973e9520bc330","ssdeep":"192:/aGnq1Bu9rTvJFco2HbgkkeNbfDHXgXjXfkXfiXf1y8XfnXfxXf3XfDdXfD0XfDa:SGnAB2rjTco2HbThhfDHXgXjXfkXfiXH","tlshash":"76422311234d608ce83fe1426cc4469f5425e2a3e2d3d2deb51f3b6e49c7de2a85178d","first_seen":"2025-03-30T18:40:13.393726Z","last_seen":"2025-11-30T20:35:40.776234Z","times_seen":30,"resource_available":false,"data":null}},"time_used":52,"timings":{"blocked":25,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"ws.77liveimjk.cc:9129/","fqdn":"ws.77liveimjk.cc","domain":"77liveimjk.cc","tld":"cc"},"ip":{"addr":"43.218.177.174","port":9129,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.138Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ws.77liveimjk.cc","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 01 Sep 2025 00:00:00 GMT","end":"Sat, 29 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"45:0A:B6:B4:A8:9A:CC:86:56:40:FC:FF:FE:25:A6:6A:56:74:A7:56","sha256":"B2:12:B8:ED:A8:06:16:36:55:60:DE:4A:92:BA:C8:7E:19:D4:78:E2:A3:12:4E:68:A7:8D:83:F6:E1:B3:6D:E1"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ws.77liveimjk.cc:9129\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://www.jalabu6.net\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: OEyfo0jApt9KQ2m9Jwn9tQ==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Sat, 11 Oct 2025 04:28:44 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: Yz4sg2UIYT3GcE9ltZ+Q7GxjKP0=\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":3603,"timings":{"blocked":-1,"dns":1167,"connect":1529,"send":0,"wait":538,"receive":0,"ssl":1545},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-28/3b6bccd704fce6d1da50a61996074d49.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.139Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-28/3b6bccd704fce6d1da50a61996074d49.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 09:44:32 GMT\r\netag: \"96e9b66c9d9e2afcc7b3c3ebcf01905b\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 67743 us\r\nx-cos-hash-crc64ecma: 11541068247320429646\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlNzg0MDBfNGFkMjE3MWRfNGEzM18xOWRlMTRlOQ==\r\ncontent-length: 54234\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 6710915193802493023\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":54234,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"96e9b66c9d9e2afcc7b3c3ebcf01905b","sha1":"8a331812a75fd10d146d33e56851c7e60918ed3c","sha256":"8c805a6b3d21b7f1eca7d74bdd731413511c8d8e596978188f2dacde14933dd0","sha512":"5fababc41a9eafce6e0319d5d41b616e4f27550dd71c08c24b9c5d6e022a1628d52c5a13f966a29de6904b4c1c0bf13f09ec5fbcb061930d5f0ee02200bd567d","ssdeep":"1536:W5bWdNJ1x8mq2jMWLVLgHfdyWBi3bcnl8kDP73Kht9R:WVWv8CVLyBobcnltDPbKz","tlshash":"4433f2da1037e163a8a5db3580b11bfbce5cc2d44ffa207f196f00b492518ac5aa765d","first_seen":"2025-09-23T08:01:03.202228Z","last_seen":"2025-10-12T03:59:10.576993Z","times_seen":3,"resource_available":false,"data":null}},"time_used":740,"timings":{"blocked":647,"dns":0,"connect":0,"send":0,"wait":38,"receive":55,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bflives.qdmeron.com/2025-10-11/sd-1-4280396-screenshot-12-23-05-1493x840.jpg","fqdn":"bflives.qdmeron.com","domain":"qdmeron.com","tld":"com"},"ip":{"addr":"43.152.140.79","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.146Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bflives.qdmeron.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 30 Jul 2025 00:00:00 GMT","end":"Mon, 27 Oct 2025 23:59:59 GMT"},"fingerprint":{"sha1":"76:42:1F:7F:36:0C:D5:BA:3E:45:08:42:5F:15:E7:AE:9E:EB:49:D4","sha256":"EC:83:EC:71:38:6D:95:72:85:07:CE:39:F2:01:EE:C6:20:EB:13:D3:52:6A:25:8B:88:F1:C8:8D:55:20:19:A4"}}},"request":{"raw":"GET /2025-10-11/sd-1-4280396-screenshot-12-23-05-1493x840.jpg HTTP/1.1\r\nHost: bflives.qdmeron.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 11 Oct 2025 04:23:05 GMT\r\nEtag: \"c7209645f0d8c4fabdbe50a70d70f190\"\r\nContent-Type: image/jpeg\r\nDate: Sat, 11 Oct 2025 04:24:40 GMT\r\nServer: tencent-cos\r\nx-cos-hash-crc64ecma: 16416681139792886175\r\nx-cos-request-id: NjhlOWRjMDdfOGMxNmE0MGFfZWE3MV8xNDMxZmQ2OA==\r\nContent-Length: 109955\r\nAccept-Ranges: bytes\r\nX-NWS-LOG-UUID: 222863867002397910\r\nConnection: keep-alive\r\nX-Cache-Lookup: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":109955,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1493x840, components 3","md5":"c7209645f0d8c4fabdbe50a70d70f190","sha1":"43ecac1917541ca41703f4f146bd47d6eefc4964","sha256":"9caac0d5a0d679542d82dcc9f70db790838a6c9dddd7d87309a494f58e2fb812","sha512":"c2f4eafb2afedae2a07a63335172fd17a02974ad2051ffc58536c44e83eb728b481da0aaacaa04efc674417907430ca6007dd1309e09e939c3b03cb8f571e352","ssdeep":"3072:JIx+bhCBFJyqpbZ632uPJ+rPS8WkqqRllv4rrxRU:+YcrYCV63BPwra8WkqCllv+U","tlshash":"edb312024c843de3fb0d4375b57e8b3fa5bc49ab3965b6e09e2388e138905ee1d91647","first_seen":"2025-10-11T04:29:42.196884Z","last_seen":"2025-10-11T04:29:42.196884Z","times_seen":1,"resource_available":false,"data":null}},"time_used":860,"timings":{"blocked":420,"dns":0,"connect":21,"send":0,"wait":21,"receive":24,"ssl":374},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.bjxsong.com/2025-10-05/0420e1342471e1fe6856c3368f94c541.jpg?imageMogr2/format/webp","fqdn":"jalacos.bjxsong.com","domain":"bjxsong.com","tld":"com"},"ip":{"addr":"43.159.98.28","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.bjxsong.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Mon, 24 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"A0:62:89:86:76:0D:3F:EA:FE:00:FD:08:E8:3C:4F:3C:A0:B0:1A:EB","sha256":"8D:99:E7:29:CD:E2:65:D5:C2:4E:9B:4C:AE:81:AF:6D:49:95:AC:D2:3B:95:64:74:90:FA:7A:7F:DB:09:5A:77"}}},"request":{"raw":"GET /2025-10-05/0420e1342471e1fe6856c3368f94c541.jpg?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.bjxsong.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sun, 05 Oct 2025 15:30:41 GMT\r\netag: \"353aa9a79a9c7523221a22e9e61f736b\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 95488 us\r\nx-cos-hash-crc64ecma: 3974602956339925212\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlMjhmMjFfZjM3NWI3MDlfMTBkZTlfMTkzZjEyNWE=\r\nx-cos-storage-class: MAZ_STANDARD\r\nx-cosindex-replication-status: Complete\r\ncontent-length: 110182\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 9665717969485116519\r\neo-cache-status: HIT\r\ncache-control: max-age=43200\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":110182,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1199x676, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"353aa9a79a9c7523221a22e9e61f736b","sha1":"813cbf714603cc1a095472f13e5bfe15ececed82","sha256":"eee63dc44f91339d75f070fa00d9f3267afc2f10dfd2520ef59f17918877fa19","sha512":"478cb19205490b0c3f14f92d9277fbee086be9ce06fd96a2ff088072a177f8f8afb477750e7fcac25f11669d855e990d604acf8752bac0e685258c8bea1ba644","ssdeep":"3072:SFsxt6764m8BieO4pGAov9wtM2+LJDj+z27H:SFTm0ieO4pE9z2+NG2T","tlshash":"f3b31213532432a37cc24d32c8b43af0bb1ea9124306825c595baf9ab53af1d5a7e5d3","first_seen":"2025-10-10T12:39:07.670076Z","last_seen":"2025-11-13T07:53:11.950393Z","times_seen":3,"resource_available":false,"data":null}},"time_used":336,"timings":{"blocked":205,"dns":0,"connect":0,"send":0,"wait":38,"receive":93,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/zblogphp.js","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.388Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/zblogphp.js HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":629,"timings":{"blocked":0,"dns":0,"connect":310,"send":0,"wait":0,"receive":0,"ssl":317},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/GJIhM29jqTygLJjk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.406Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/GJIhM29jqTygLJjk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:33 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:33 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:33 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7464,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"4fced9fef863c7339af97b14f6ec0979","sha1":"0c82b3de211b9fd301aa111d25b727731cbd2f3d","sha256":"4dc83a7977c1b53cb917bb7d7cf0624ae87a7e76953a8743b0e8e7d16fd32921","sha512":"d3416516e7ebb7e47c89678b0ed91db857e2a78bea530d7046d4f055c93cc7c9d46c995634cf9bf9d228713a028ebe22bc605ff0b83626231a297c8bdba05ba9","ssdeep":"192:GQCcm1k193RDnyzF4OibM/6T1p3jyjiX7YlssPKXHi:GrWpRDWNiYi1djr7YCsPKXC","tlshash":"82f1ae23db4bdab08fc346a78d0a7393d618a6e2829431734db0e9d0d296cf9d05184a","first_seen":"2025-10-11T04:29:42.200488Z","last_seen":"2025-10-11T04:29:42.200488Z","times_seen":1,"resource_available":false,"data":null}},"time_used":4509,"timings":{"blocked":4154,"dns":0,"connect":0,"send":0,"wait":355,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/img/indexbg2.50f4170e.png","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.811Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /img/indexbg2.50f4170e.png HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:40 GMT\r\nContent-Type: image/png\r\nContent-Length: 211319\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-33977\"\r\nAccept-Ranges: bytes\r\nAge: 1\r\nX-Via: 1.1 PS-CDG-04h2Q194:11 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf8_PS-CDG-04h2Q194_40453-38390\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":211319,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 3840 x 1344, 4-bit colormap, non-interlaced","md5":"36ea45cdfcb009b60f796f0e41140fb8","sha1":"6078d538769525e0b803fb442f2f3dff2b0e6da3","sha256":"e06e60ee712158863c6c8aab57793e0c5be44044fbb580bb0e25ee22449e28b2","sha512":"6810297e1ffd5f09a2e25545b1c7628c85fd59f852c2146c8d53417225ef9540bb1ac5ea0c8f16faeb7440e9d1ba0dfb93f9e2d1d56a0cfd9f5e5e14d714aae4","ssdeep":"3072:9TrlFovXXlEUTBP3YElmVUGxLhRyU/M8+zpR1XvEP9tknMpenBF6r0ioC2X3Gh:Vp+V7PoElmGyD4r1XsPPknM8FV7Cg3Gh","tlshash":"96241202368dcda5ec0b7e641d27c0579f2c6ad8026b1cf9735a6c6ab8d166f0accd70","first_seen":"2025-08-06T11:52:27.275365Z","last_seen":"2025-11-30T20:35:40.771801Z","times_seen":15,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":26,"receive":37,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/851663cc0ac3d6202c78c523eaf7a2f8.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.017Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/851663cc0ac3d6202c78c523eaf7a2f8.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 33544\r\nConnection: keep-alive\r\nAge: 2564494\r\nCache-Control: max-age=31536000\r\nLast-Modified: Thu, 11 Sep 2025 12:07:10 GMT\r\nNw-Session-Id: 2025091120071003B3F1E0F81E4CD7432Ahgdgf012b\r\nNw-Session-Trace: 2025-09-11T20:07:10.381202149+08:00 39\r\nServer-Timing: inner; dur=45\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: e9106c2778af0a33ddf30068e282c02e\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Thu, 11 Sep 2025 20:07:10 GMT\r\nX-Tt-Logid: 2025091120071003B3F1E0F81E4CD7432A\r\nX-Tt-Trace-Host: 019bfce40552fc85e532bf28d08b2c4adaa3d6ebee5ace5172a243a4289f1034a11e90b5c120eab9a109d09a9448e8c3d3f0ac6088e3771fc830e94d1c7c58a837204b0f092da8471e3c820d42a2f6a5100b5850a32e0d96a550e855d83aef82820befc550aa41d13da6e4f4f6c65dafd88567cc1fc9749d7cd58ca02cbef7ccb4\r\nX-Tt-Trace-Id: 2025091120070945114a9b6869179C1751\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache04.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33544,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 220 x 159, 8-bit/color RGBA, non-interlaced","md5":"08ae290f633fdd9a82c0d7be416c55ec","sha1":"9fdc64c161467db110f3439fbdc69e46d4e82ae2","sha256":"0f3ca43e3ae7a4030aba0343441f4f02dce69b0a50b778dff04d58ffd592bb35","sha512":"ba7a1a49fb271da2d87e98b73f6bf3c50378ffdb9bfee56a0882078734b3bb4d575be4f04cba24b4e21746bdbf41168b877c3ce90a56cfc219e422b87377db14","ssdeep":"768:ft5dyPm7PhAX2Yuh4MAzGeUV5BrM+n3bGJIeBiOTm15d/xoF2BnDy/G:JyCu2hKGTjg+3bWIeQem17/xoFoDy/G","tlshash":"ece2f1abcc1a74302fd307a87867da1cdf85c9766a490f74d61f8559c82360183eac7c","first_seen":"2023-10-28T07:36:04Z","last_seen":"2025-11-29T07:43:37.873394Z","times_seen":6,"resource_available":false,"data":null}},"time_used":463,"timings":{"blocked":442,"dns":0,"connect":0,"send":0,"wait":18,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/F29gpTI0nKAcVSNk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.414Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/F29gpTI0nKAcVSNk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:34 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:34 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:34 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3751,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"0e422fac1968e2689e19609e1715e7b5","sha1":"9f3f0f24ccc3a6ae03dfec46be3ee6eabf2cd566","sha256":"dc5f3d261c4411991b85448a2575bf2ada14214f20c8281f9c963ea986a3f7ec","sha512":"b503d5d75f899531fe26410aa79986a50d7e39172f65a600c5d5e85a62aa5035d9b9f2436f149b03016dc8ee6b3f0dbdb04a10fc75999c146a622b4bdfe902cb","ssdeep":"","tlshash":"cd717b6a6e089168ff8101b3558eaf97a2509e833c3462b08cbf363ac0f0cf6517097c","first_seen":"2025-10-11T04:29:42.209524Z","last_seen":"2025-10-11T04:29:42.209524Z","times_seen":1,"resource_available":false,"data":null}},"time_used":4856,"timings":{"blocked":4504,"dns":0,"connect":0,"send":0,"wait":352,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/GTS6nJ8tF2IgLzRk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.637Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/GTS6nJ8tF2IgLzRk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3984,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x112, components 3","md5":"39a6076742f30bbc5ff89925868fd331","sha1":"d30305f99962b8814cc6e07b6d86e21d724dba99","sha256":"6a9bf7553dc673b75ec778e137a0d43c29f3a4d85d4f874752a50a8ff52b88d8","sha512":"236300381d04fa1bb5c575c79ea1dbdd084d9f21f5950fb7adca491f2b719273b41cbd0b03f4ada0f8fdd264288bb17f70a0c1e78d201a1c6d5a0c8c0dcd652c","ssdeep":"","tlshash":"56818e960f91a3984b176410292018eb8937bfda3dd0bebc96dd1d9e4041dbd7a4ce22","first_seen":"2025-10-11T04:29:42.211707Z","last_seen":"2025-10-11T04:29:42.211707Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2503,"timings":{"blocked":2151,"dns":0,"connect":0,"send":0,"wait":352,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/custom.js","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.643Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/custom.js HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":1232,"timings":{"blocked":595,"dns":0,"connect":306,"send":0,"wait":0,"receive":0,"ssl":320},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/js/477.20e287c5.js","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:32.405Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET /js/477.20e287c5.js HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:33 GMT\r\ncontent-type: application/javascript\r\nvary: accept-encoding\r\nserver: cloudflare\r\nlast-modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=3,i=?0\r\netag: W/\"6860d1d3-4c91\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=StS4x1uSxRq%2FD3UgJmo6ewXdHBuW43GuWFKJWpKynVSdYgUqizMtGV58AT8OF5sVQRnW6b2xKwPULAymQTRx2ZNmZDpThaFlcRs7YHh8\"}]}\r\ncf-ray: 98cb9c7e8cd6569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":19601,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (19299), with no line terminators","md5":"8aa2f8c27b0ef0e17d18ff0156d7bb79","sha1":"5eb2560d521a97111ad0885124fc9fa99330f035","sha256":"9ff80528b96635dbff5e2041f4f40dbcad2d9ff98cb8be53fb83797f65deecee","sha512":"337c952c19c37b5433da97a72c52648658f014c267031dfe3d5040299c0d6cfcabdccf788cc3c46336c12b9a740990c0cc44b370c9d92ef34846392e45d065d5","ssdeep":"384:BnnHI0kwuv6NRHRLTvyzZpCoM4uSAQLP/08riUEQ4k7RBzi7jZBkh/60:BnnHkK/vyPCoM4+g5okTi7jEy0","tlshash":"d2925c8675c3f40a63f18c9e1a541005aefa5f35fb2a4ca37d791db73946ca1e026b4c","first_seen":"2025-03-30T18:40:13.418034Z","last_seen":"2025-12-02T08:25:01.672634Z","times_seen":32,"resource_available":true,"data":null}},"time_used":636,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":636,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/a9c344b4196017fb183285a2fabd0b3f.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.026Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/a9c344b4196017fb183285a2fabd0b3f.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 9477\r\nConnection: keep-alive\r\nAge: 2088422\r\nCache-Control: max-age=31536000\r\nLast-Modified: Wed, 17 Sep 2025 00:21:42 GMT\r\nNw-Session-Id: 202509170821413099C7EEC10DC2289C7Cwgtst032b\r\nNw-Session-Trace: 2025-09-17T08:21:42.009826126+08:00 78\r\nServer-Timing: inner; dur=82\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: a9fa4b02a6b6fa2b6911732fdd691fc2\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Wed, 17 Sep 2025 08:21:42 GMT\r\nX-Tt-Logid: 202509170821413099C7EEC10DC2289C7C\r\nX-Tt-Trace-Host: 0128198275a598614f02631376802a7253467fb6335b50d06e24833743893aa15aa473e3950f40f3c966fa312869b0884cf70f3fa2901a4fac9b58bedfba0c75fda0e0c5e4c7834c233f41d5d699d0988efb32c58f86647dcc2ca18fd2c89aeec86e175657ace76a53b4802f58c274e4eb\r\nX-Tt-Trace-Id: 20250917082141bf3e6d85b94b01D7F58B\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9477,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 136 x 117, 8-bit/color RGBA, non-interlaced","md5":"8cb7004f0e029c913ddb8c3a52aaaa1a","sha1":"4303e9f746000210f63c0a21d8719a352f83b66e","sha256":"525e7b13a3a0033b78aeae952a81df318dc0577a2772c310408e27f171030131","sha512":"c14d838106d3e7e61747bda35618375c1dcfd75f5ec2089f54ef342c6e994693650bb03e7263076a32383c5705ad211ba59e11291a6192504e713533b3194bf0","ssdeep":"192:AYG2u40oXJ21zDY9Thx8qoVOflwAzYBvXFKtqfVqx475:2jfY9Nx83VClt8V/tig","tlshash":"b412b0ceefa64d16f89e81bd9d8d437f3a1a157f72397a10cb0aaf2094245227271950","first_seen":"2023-07-08T08:51:56Z","last_seen":"2025-11-22T21:29:05.393199Z","times_seen":21,"resource_available":false,"data":null}},"time_used":485,"timings":{"blocked":467,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/c32ddb0be3a23ceca9a2ccfb599438eb.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.981Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/c32ddb0be3a23ceca9a2ccfb599438eb.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 9148\r\nConnection: keep-alive\r\nAge: 2322902\r\nCache-Control: max-age=31536000\r\nLast-Modified: Sun, 14 Sep 2025 07:13:43 GMT\r\nNw-Session-Id: 202509141513430C21F71E3D911A104285fzh2r012b\r\nNw-Session-Trace: 2025-09-14T15:13:43.79782273+08:00 60\r\nServer-Timing: inner; dur=67\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 575837426fcec06dc2ee72c22754e447\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Sun, 14 Sep 2025 15:13:43 GMT\r\nX-Tt-Logid: 202509141513430C21F71E3D911A104285\r\nX-Tt-Trace-Host: 019851702682b5e8f5b8286ceb6eb3891c49ed72f3a3527622fe12ea8e6f6e803f161567219aa10ede3ab4d2a6e121c5c252fcbcd7ce055b7672a0cc6a3731eb6eef594b1c84ddbc79b09500bc35de675aa92ac0855080836030c180475afbb5788b19607f02ca15aefad5d129740170db\r\nX-Tt-Trace-Id: 20250914151341bf3e6d85b94b005BC332\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache06.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9148,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"8fbe3243e5e5403e5b8db8e546d0a8c2","sha1":"10953577857f6fcd7caecfc078c58d2cb288d1d6","sha256":"734a1b97d89d7ca0b5002516132b4a0354f4c12961420c5898e458e7f0718064","sha512":"f122fc0e47d2dfc21c84925b046e6a5f2af6a6504b355bb6adcecb48e7177bfd23b32e39fd6389961f185dcdb82946108bbab2b69d488b5fb6329ed06c23ce9c","ssdeep":"192:KQZNsCFNur1mtIgquqTE7xT4VOngco2QmNV1Alxxv5WY2DfidDm6:vZNsCFoEtIGqTEFmOZobmP1ATRyiBm6","tlshash":"66129f91e85b36187f1a938d3672d21b2e2668494533876517cd5e2f93ec1a822823b2","first_seen":"2025-01-06T03:23:13.703992Z","last_seen":"2025-11-06T19:31:08.889258Z","times_seen":18,"resource_available":false,"data":null}},"time_used":945,"timings":{"blocked":451,"dns":0,"connect":23,"send":0,"wait":18,"receive":1,"ssl":449},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/64656d413393bbf84730b123a43cb876.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.007Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/64656d413393bbf84730b123a43cb876.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 12214\r\nConnection: keep-alive\r\nAge: 2506654\r\nCache-Control: max-age=31536000\r\nLast-Modified: Fri, 12 Sep 2025 04:11:12 GMT\r\nNw-Session-Id: 202509121211129F635288F51A0FC9EF20pvhfh012b\r\nNw-Session-Trace: 2025-09-12T12:11:12.251355417+08:00 53\r\nServer-Timing: inner; dur=55\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 3e6c2b9bd961b3a2febbdc04412768ec\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Fri, 12 Sep 2025 12:11:12 GMT\r\nX-Tt-Logid: 202509121211129F635288F51A0FC9EF20\r\nX-Tt-Trace-Host: 01b10eae1db44f4ab2a5bb749c2c3c03dd762ce60dbf238259a3f9d3bb136d9434a31c5aa20a30b1d0f7322c69e94aa4c1d0b67b3890c33ca4ff9a15a339d1b95712857ad36fda5396e88c701f4a1a33e3a7ade861769f43a1ce55b4568fb9450b1de319ab4ce0a0520ca1e65cc251ab9d\r\nX-Tt-Trace-Id: 20250912121109e2aa3ec580eb173994C4\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache04.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12214,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"6380ddd21ade048ace4d8e455ef66b4c","sha1":"99593e3a790d22028ed388cd754af9c30f663dc8","sha256":"bea2c44aabfe5b8f7557b836077745aef7e6ecb80af2112291cf16d0ffcbfae6","sha512":"969b8694c878211b1eb8f88ff082af293d3e5f63067de883279796b514c6d270d068bf40d7daf3b9d3be10e04403d926e0ced5264e85bf9b9e0209d58e13ea31","ssdeep":"192:z2Tg+a1xPgMOQkyjvmn76FsAPSCGCAVZceTaAJVhVLwfwkAJBvGf1lhSpLwYOiOV:zlxrOP76HP3GTVxecbRwfFKBadTYTI9T","tlshash":"e642bf15ff44ba3ae01a63d14471842e38fa898ef25b55c972dcb29c7ddeb309f10982","first_seen":"2024-12-31T14:52:06.937855Z","last_seen":"2025-11-08T07:40:29.084241Z","times_seen":40,"resource_available":false,"data":null}},"time_used":452,"timings":{"blocked":433,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.bjxsong.com/2025-10-05/899a085bb050cb6999f815dc784ec06f.jpg?imageMogr2/format/webp","fqdn":"jalacos.bjxsong.com","domain":"bjxsong.com","tld":"com"},"ip":{"addr":"43.159.98.28","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.606Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.bjxsong.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Mon, 24 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"A0:62:89:86:76:0D:3F:EA:FE:00:FD:08:E8:3C:4F:3C:A0:B0:1A:EB","sha256":"8D:99:E7:29:CD:E2:65:D5:C2:4E:9B:4C:AE:81:AF:6D:49:95:AC:D2:3B:95:64:74:90:FA:7A:7F:DB:09:5A:77"}}},"request":{"raw":"GET /2025-10-05/899a085bb050cb6999f815dc784ec06f.jpg?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.bjxsong.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sun, 05 Oct 2025 14:45:38 GMT\r\netag: \"af488f592180778ca2af0ebb2fb74a4c\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 87296 us\r\nx-cos-hash-crc64ecma: 17507191463574725465\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlMjg0OTJfYTVkMjE3MWRfZDM4Ml8xOTI4MDk1OQ==\r\nx-cos-storage-class: MAZ_STANDARD\r\nx-cosindex-replication-status: Complete\r\ncontent-length: 77314\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 9437607200802474648\r\neo-cache-status: HIT\r\ncache-control: max-age=43200\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":77314,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"af488f592180778ca2af0ebb2fb74a4c","sha1":"7657aeffc5177d776b85d6a2530eb423960628a4","sha256":"67e0b8c18b342a116767a28791dfcc84f1948cd4913dada6fc83143f5024dd6f","sha512":"de3bc87292818b5b2278591ef26157ce3741a4cf57549c8d389124044dc6c178fb44bed21a27a5b17102b1b7432121eabf20a81c65f14953b9713a9ea6b0fe7f","ssdeep":"1536:1MSWgMlOkd0bELOiraDs3JTExi4pdZwErlqDCdTEZP2RxphKi2+6N:1DWgMlZdFJra7xlpfvrvSkxphy","tlshash":"2473121c3d12f690cf6cd3f3e46ed3039b052d4863ac63f9e1527a4a2564a23d6565cb","first_seen":"2025-09-23T08:01:03.264972Z","last_seen":"2025-11-13T07:53:12.038995Z","times_seen":8,"resource_available":false,"data":null}},"time_used":307,"timings":{"blocked":204,"dns":0,"connect":0,"send":0,"wait":37,"receive":66,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-11T04:28:28.532Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:29 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]},{"name":"jQuery:2.2.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Prism","description":"Prism is an extensible syntax highlighter.","website":"https://prismjs.com","common_platform_enumeration":"","icon":"Prism.svg","categories":["Miscellaneous"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}],"data":{"size":99267,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (5853), with CR, LF line terminators","md5":"d122f92c82b0f13614cb8a4d91171081","sha1":"feb94a1f1ded9faa483a6b6a8013df83a2a3f214","sha256":"bdce8ec2e01335cdd89263b577b2b9c4d7b8ebc3ddb8dc5a39ec7501b36377f1","sha512":"c131ccca565da1fa78776edfd41b29db7e480aadb1cd4a9cde833d6e33979e018a948efdaf2549c66ae4eb2729e7f3d7edd351853a4e43f53ccc3f2df98da1dc","ssdeep":"1536:gQ1TeW+UgcdAMp2YAxpFnwLVyEnYZxFEm+zo7YkCm:dqzVL8oELm","tlshash":"a7a3fc771b81383f1b1e45dea5ebb701f0da416ecf818d17dbac5aa067c5ef0681029a","first_seen":"2025-10-11T04:29:42.221903Z","last_seen":"2025-10-11T04:29:42.221903Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1344,"timings":{"blocked":302,"dns":0,"connect":304,"send":0,"wait":434,"receive":304,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036300,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036301,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036302,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jk.vgcpas.cc/app/encryptionTypeHostRecommHotPlay?is_pc=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026page=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026limit=ZYjPspHBgH5lINhbNbxthw%3D%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=Y1rY5HwnR7mpykHmHMOqJA%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D","fqdn":"jk.vgcpas.cc","domain":"vgcpas.cc","tld":"cc"},"ip":{"addr":"108.137.115.204","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:41.029Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jk.vgcpas.cc","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"7F:1F:76:C5:AA:68:BB:76:8F:19:86:C5:1B:84:A8:27:67:A6:F1:3C","sha256":"DC:63:D7:76:59:1C:24:49:8E:76:AE:01:3A:DE:E0:ED:08:2D:C3:CF:66:F4:98:3E:29:17:08:93:A0:CD:C2:2A"}}},"request":{"raw":"GET /app/encryptionTypeHostRecommHotPlay?is_pc=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026page=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026limit=ZYjPspHBgH5lINhbNbxthw%3D%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=Y1rY5HwnR7mpykHmHMOqJA%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D HTTP/1.1\r\nHost: jk.vgcpas.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:42 GMT\r\ncontent-type: text/html;charset=utf-8\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nx-cache-status: HIT\r\nx-server-ip: 172.31.28.179\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15488,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with very long lines (15488), with no line terminators","md5":"b50ff1950fb56270a0b2270159c5520e","sha1":"585ece6fcb734ed1088f11d35e01bdba523b2a91","sha256":"98c02db1490fd762e34a2feb7841bf5682242d7790a61a8e8323c50703100e35","sha512":"7f0f0900e688176fa3d2998cfe456e33415a36dacd68d882fac194848f13ad3c5674019da29621c20ad14da5809348c0ebebcf9c990c3a7b249d58032624001f","ssdeep":"384:jZiEnQ1xAdVmEddpQMSI4GVTk2IMrX53eiw:Q5PEzrS1q/D5ux","tlshash":"8262c0d7e69fe91df41fc8e97091c8d03b2b999cc918470bdb6c42e192e81e92d02d19","first_seen":"2025-10-11T04:29:42.223875Z","last_seen":"2025-10-11T04:29:42.223875Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1757,"timings":{"blocked":0,"dns":60,"connect":363,"send":0,"wait":506,"receive":0,"ssl":832},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/js/990.d6dbe4e7.js","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.948Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /js/990.d6dbe4e7.js HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:40 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-8508\"\r\nAccept-Ranges: bytes\r\nContent-Encoding: gzip\r\nAge: 1\r\nX-Via: 1.1 PS-CDG-04koU196:0 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf8_PS-CDG-04h2Q194_40453-38394\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":34056,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (33998), with no line terminators","md5":"308a8273c56746ae2530bf22b1635d46","sha1":"f9c8175adfbb5b832568e8269b259b7ad3796399","sha256":"2794e6f12ab6f99301717aa288d44d531115cf88b2aa742907fae76b7fc730b8","sha512":"df077fbbf86dfd7deb057857f6ae215c099d3a048cf1382323f70e6e5bc7030bb863e284d55530be5d72ddddad52d6898d72183933b24d139654ed530f14b5f2","ssdeep":"768:ZNLn/2zlP6FEeZudITKX8mChddEo8S9odcoYgbYA3o:ZJ/AAxudITKsmnHS9HokN","tlshash":"e7e29e3b2556bc8ebb301804214da5c43d377f67a34455fbb2b85eb9218fe71624b2b8","first_seen":"2025-03-30T18:40:13.405389Z","last_seen":"2025-11-30T20:35:40.776929Z","times_seen":32,"resource_available":true,"data":null}},"time_used":56,"timings":{"blocked":25,"dns":0,"connect":0,"send":0,"wait":28,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/GJIhnJggLKEcVRRk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.422Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/GJIhnJggLKEcVRRk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:32 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:32 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:32 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4778,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"17605fca4be47057ca10857380cfb039","sha1":"15c4ff6f794c433701d323b56ee1a7a7fca5c4d4","sha256":"0aa5ba7396e3e945c4d9a44eb1425af7598844e452581a67183767df7162e05a","sha512":"bc1180074b0e3fee5fee530bdbe2a7b2fbfc5cc1d01de7506331c49aee77e8a9f23687c08a8a74a83419afb4e5774d16c7efc58ea76eef674198c7bc4d559604","ssdeep":"96:GahCEnKbe6mydOX7NFbgY2zrWAtzl2k5kSrEsMUi8b5H8/hr0Zx:GQCYyYyybghzSOBTrEdUjY+","tlshash":"9ba15e165a5747312b1564318b2a02e276cb4e1d3d5b28fd7fa04ea3ee90df0ab5c03b","first_seen":"2025-10-11T04:29:42.2306Z","last_seen":"2025-10-11T04:29:42.2306Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2870,"timings":{"blocked":2518,"dns":0,"connect":0,"send":0,"wait":352,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/b49cc3f6e7e8cf4400978ffcd64698fe.jpg","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.984Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/b49cc3f6e7e8cf4400978ffcd64698fe.jpg HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/jpeg\r\nContent-Length: 8495\r\nConnection: keep-alive\r\nAge: 397959\r\nCache-Control: max-age=31536000\r\nLast-Modified: Mon, 06 Oct 2025 13:56:06 GMT\r\nNw-Session-Id: 20251006215606341610B7AB4D4D61C461hpcmt012b\r\nNw-Session-Trace: 2025-10-06T21:56:06.152838236+08:00 40\r\nServer-Timing: inner; dur=45\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: e18346eac7c5cfbc6f2ca242175f9c46\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Mon, 06 Oct 2025 21:56:06 GMT\r\nX-Tt-Logid: 20251006215606341610B7AB4D4D61C461\r\nX-Tt-Trace-Host: 011c7c7864cb6f686f41b0bb09b5f65423766d59e21dc4e9543bffd3f4a9ed0e744fb4fee565eb2a2b46a54258f05118a066fb16226a63d7f40df1ab2110c3bf2cbfc4586d21048e49ddda7445f0584b86d2983aba5e2eab365f17ae8a315a3515f9300b67126331c571441d7c87d3c5407d3131c40caa5a3f5ce9d24f76eaecb7\r\nX-Tt-Trace-Id: 2025100621560517a85f37de0d0359F1D5\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache02.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8495,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"824d006a8a9e2cb80250acd4fa5ebf1f","sha1":"5fbf2784ec0d1853ef59a6af1f42fc60e97ed25b","sha256":"d66a3cd5e10de720d001aaafb869234801ca02af21ad4bb0d5c5d0e7b8a848d4","sha512":"e0f5fde60fab5f73345b3d943570cd74593d8ff3479e6b8416fc811e1c775cc6960bdbbc0a211975bc0ddb317161dce3f935fc85f16a7fb9fbf93c009878a612","ssdeep":"192:VWm4O/nwIcV+A8+T0nAx9QuzH+hNWfpeCSdLuFuwrkOzb:VWm4K3cdrT+ALQuENWfpJ78wrfzb","tlshash":"0c02afd3691fa68426c1e6b09d64e69d16f40df151c8b3cc613479f169baa4878cb20c","first_seen":"2025-06-01T03:03:01.153708Z","last_seen":"2026-03-28T04:48:00.066121Z","times_seen":8,"resource_available":false,"data":null}},"time_used":442,"timings":{"blocked":-1,"dns":0,"connect":22,"send":0,"wait":20,"receive":1,"ssl":394},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/img/upaddbg.7fb1f77c.png","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:32.308Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET /img/upaddbg.7fb1f77c.png HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:32 GMT\r\ncontent-type: image/png\r\ncontent-length: 81870\r\nserver: cloudflare\r\nlast-modified: Sun, 29 Jun 2025 05:40:35 GMT\r\netag: \"6860d1d3-13fce\"\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wFoPvSzmw2Lp1JsJ1GpzNtPRKEL7eRYup8j12E7%2F6riAEAa6f8%2Ft66TKhryd74Mye4YhkgbVTcfadLcTMC0XD0vQW7%2FXHc17m2Kgw5r9\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 98cb9c7decd2569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":81870,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 420 x 486, 8-bit colormap, non-interlaced","md5":"981ed77c97b8efae988bf30d72bb7333","sha1":"2420cc0fc2eef32d655720076128fefd72e9de70","sha256":"0f6b5693db5874d45379855f3ad34834901595dc8946c4462cb39c5f9acb5338","sha512":"bed8cec1e2b821ce3d4624b2c57366f89ca344293297c07186eb1b95aa1d7362b7c854e0ad92b9cda3af522e21674ee78c927fadf938a272996e612b2a91c562","ssdeep":"1536:O6MXwIrI/gTHRNHFqh3gCMg/QXyIa4e9gBsroSnMD/9975TucptZiWDYZSfScp9h:OqIHTxN3O4x7eeSMTducptPDYojmt/0","tlshash":"4283022421df8dcf4327dbe1fc0aaa914410eed4358a7dd59d41ccac2e9646ba46ceca","first_seen":"2024-08-19T19:47:54.891761Z","last_seen":"2026-04-14T10:43:52.450929Z","times_seen":41,"resource_available":false,"data":null}},"time_used":687,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":668,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jk.vgcpas.cc/app/encryptionServerConfig?uid=Lkc%2B%2FM%2BLPO3qto6MYH542A%3D%3D\u0026is_pc=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026timeNowClient=C7S0TRoYFdLiKlNFpzHZ0Q%3D%3D\u0026check_id=O8yL1wiXVysZklt6r0gs%2Bj9gyyp8ualzI%2ByUCwCkQ3s%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D","fqdn":"jk.vgcpas.cc","domain":"vgcpas.cc","tld":"cc"},"ip":{"addr":"108.137.115.204","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.057Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jk.vgcpas.cc","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"7F:1F:76:C5:AA:68:BB:76:8F:19:86:C5:1B:84:A8:27:67:A6:F1:3C","sha256":"DC:63:D7:76:59:1C:24:49:8E:76:AE:01:3A:DE:E0:ED:08:2D:C3:CF:66:F4:98:3E:29:17:08:93:A0:CD:C2:2A"}}},"request":{"raw":"GET /app/encryptionServerConfig?uid=Lkc%2B%2FM%2BLPO3qto6MYH542A%3D%3D\u0026is_pc=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026timeNowClient=C7S0TRoYFdLiKlNFpzHZ0Q%3D%3D\u0026check_id=O8yL1wiXVysZklt6r0gs%2Bj9gyyp8ualzI%2ByUCwCkQ3s%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D HTTP/1.1\r\nHost: jk.vgcpas.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\ncontent-type: text/html;charset=utf-8\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nx-cache-status: HIT\r\nx-server-ip: 172.31.25.156\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5612,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with very long lines (5612), with no line terminators","md5":"1a9f646a47f78ea5da2254b6abd93761","sha1":"bcf9b137718c28c191ad8cf2520194cecd04850b","sha256":"2c616575f868631327aecb93b7dd315cd83c3c657b314c93771455f07867a1bf","sha512":"b4d99fcc688d65b2163eedbe2c0262f8d8477d24e741d064e0eb88f9781bb4de5894be5f31a9a33eb1d377fe7f347aeea513d148f449fa564ed366b8c794e170","ssdeep":"96:O00WRyIlhoY/fsQny8rSBBGAuufDY6A+M1U1ppYXVNHMNnIT+WSqaYeqDXbqgm/5:R4ah7/jny8EBGD2FM1UJCafW3zqsEN","tlshash":"4fc19e9e07e073a63520538d443ab8ce2d0d78b9c9092227794870db6627becca381b2","first_seen":"2025-10-11T04:29:42.235546Z","last_seen":"2025-10-11T04:29:42.235546Z","times_seen":1,"resource_available":false,"data":null}},"time_used":367,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":367,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/prism.js","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.390Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/prism.js HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":630,"timings":{"blocked":0,"dns":0,"connect":309,"send":0,"wait":0,"receive":0,"ssl":317},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/css/chunk-vendors.02998d07.css","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.196Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /css/chunk-vendors.02998d07.css HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:40 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-4cfbc\"\r\nAccept-Ranges: bytes\r\nContent-Encoding: gzip\r\nAge: 1\r\nX-Via: 1.1 PS-CDG-04koU196:11 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf8_PS-CDG-04h2Q194_40453-38388\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":315324,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65528), with no line terminators","md5":"e7dc1c56cb578b5f2203ddb96a7b7f83","sha1":"836ef3167b01f13ad5af927a704dfd8600a6a3fd","sha256":"f0a83ee0a68f463cbd61202021a7cd9350b977288c75aeed1a9d9793f858f46d","sha512":"3c21ca872df5521422cd85306a9fb79f8407d636b5747f40b8afc1033dad96df37fd54fa4e2519cb20943528ac61a3023fae173b3a4e581e173110edace3a4a2","ssdeep":"6144:9bIZtiTtXB4i5HE04dWuHK04MuobXSNAubJ:HHE2J","tlshash":"a964c455e723653b182be63d79c0e9985f14df92d9228ba6fb40b40891c7da102e3d3f","first_seen":"2025-05-27T14:29:17.319048Z","last_seen":"2026-04-14T10:43:52.449744Z","times_seen":41,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":69,"dns":1,"connect":33,"send":0,"wait":34,"receive":7,"ssl":32},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/4512175b1415f69816e816160093bcc0.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.973Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/4512175b1415f69816e816160093bcc0.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 50520\r\nConnection: keep-alive\r\nAge: 2534151\r\nCache-Control: max-age=31536000\r\nLast-Modified: Thu, 11 Sep 2025 20:32:52 GMT\r\nNw-Session-Id: 20250912043252CE7F860B53CBE7C194A6gzn5b022b\r\nNw-Session-Trace: 2025-09-12T04:32:52.277773925+08:00 39\r\nServer-Timing: inner; dur=46\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 2a71dff2ad2aaae432dfd1b41919cece\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Fri, 12 Sep 2025 04:32:52 GMT\r\nX-Tt-Logid: 20250912043252CE7F860B53CBE7C194A6\r\nX-Tt-Trace-Host: 01f547d71d26e9952c23972b1922b786d6fd5f5c04817be343f3b6e30a6d186262736b95b9aefc900bb58b6447bbe39f073d48fa6d567c3e1cf7c846007b191813e300b6c331d65c5c3ab48b149e97dd3436800da49fb5fca70622034fd61bdc5594c0cef2f656219e5300035befd45412\r\nX-Tt-Trace-Id: 202509120432514dcaae236fc70A1DA460\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache04.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":50520,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"4512175b1415f69816e816160093bcc0","sha1":"48beaf8b6e6dcd0ce39c16ec13b1abb64650ad11","sha256":"cba0d62f9002df4729f2afed78d9e1688afaeac50b66726e46c8f14d90d0270f","sha512":"9784f81da4606c8bb959e03e46e54d1db14ba2ed49a9eb951cdd4bcec864e6d98a7c190bbe4516ba19877b8b9cd39964aa9464df5372be058e51e884d2ffbf80","ssdeep":"1536:1HW4N18NFfVoGoU7/Wn8OvVY6YfNaKIrTXl:1HW4NcKK/28WVYPOT1","tlshash":"9d33023acdab2e4947120e8536630169f8e6f5b0285fedd913ef6dcd3110585bb688b2","first_seen":"2024-12-09T02:35:23.436297Z","last_seen":"2026-04-07T10:29:43.739783Z","times_seen":180,"resource_available":false,"data":null}},"time_used":850,"timings":{"blocked":404,"dns":1,"connect":17,"send":0,"wait":18,"receive":5,"ssl":403},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/c8fc1bb845b85502f27270af01647337.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.031Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/c8fc1bb845b85502f27270af01647337.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 96890\r\nConnection: keep-alive\r\nAge: 1896028\r\nCache-Control: max-age=31536000\r\nLast-Modified: Fri, 19 Sep 2025 05:48:16 GMT\r\nNw-Session-Id: 20250919134816F546A5AB0992EDF22C506f4k9032b\r\nNw-Session-Trace: 2025-09-19T13:48:16.589280956+08:00 38\r\nServer-Timing: inner; dur=199\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: a21dda6875eaff3ef216bd7ba830981c\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Fri, 19 Sep 2025 13:48:16 GMT\r\nX-Tt-Logid: 20250919134816F546A5AB0992EDF22C50\r\nX-Tt-Trace-Host: 01cae4ce046c44cc333205b65010351fb1df12748a2747dfaea5b859585812c163ddabeb30fb4456bfcbf3dae632a76d837b1692f987157ef26770407781ae2012c873a483cc2fc1cca7d426c15c3e08ccb08c2e52a66639312cd08203ec319ee858930d7762582139273667f7b41d062e\r\nX-Tt-Trace-Id: 20250919134816aa45c84964a90A9B5FC4\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache04.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":96890,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 594 x 594, 8-bit/color RGBA, non-interlaced","md5":"87579ef63068cea94defb19e10c9dac2","sha1":"b50f3e1a956fb8c0f1463b2b2e34a20116565c23","sha256":"23818907115347d03601199d287bfa956af13e23b9c03834ec98fbf22403f879","sha512":"0c9245bcef080a9b1d0859e22af458c259c8dc2a9240c9e6c533b82ad8ca8e3eb995d0eb612cba37acfaebd0518e6433d5e17531a0977320e9a7320b7a4bfc7d","ssdeep":"1536:aTvdzCHWaBoyeFrgW3tpuZCV22rXIe7BOQorSLGV/P5gHryEDqA33ZY9SL4N7YEq:2g20oHuWoCLrYecOaRWHryEOAZNaUEq","tlshash":"2493129df95dcaf4e42e0835238195ce28247b43438deaed2b2c5e1ac755d18fa23762","first_seen":"2025-10-11T04:29:42.3097Z","last_seen":"2025-11-01T07:55:42.452176Z","times_seen":3,"resource_available":false,"data":null}},"time_used":502,"timings":{"blocked":475,"dns":0,"connect":0,"send":0,"wait":18,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/98db94e4176c5cae045d4b1c5d33eb25.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.035Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/98db94e4176c5cae045d4b1c5d33eb25.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 81178\r\nConnection: keep-alive\r\nAge: 1435720\r\nCache-Control: max-age=31536000\r\nLast-Modified: Wed, 24 Sep 2025 13:40:04 GMT\r\nNw-Session-Id: 20250924214004ED2EF5E67645DA018920zfgzg022b\r\nNw-Session-Trace: 2025-09-24T21:40:04.913738136+08:00 81\r\nServer-Timing: inner; dur=86\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 99196d103d5d65efd2efe27bba032f60\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Wed, 24 Sep 2025 21:40:04 GMT\r\nX-Tt-Logid: 20250924214004ED2EF5E67645DA018920\r\nX-Tt-Trace-Host: 01b10eae1db44f4ab2a5bb749c2c3c03dd9416e723e659f7dac9469ebc22700fcb30957334fac6ca68d4680c1ecd8b5987d63df9dcfd95633ed9348932ebfe1c6118099affc2ac42a20325d7a905f976a37fb8a2104f3d09e470186f2b737103933bb52f149d5f774082f019d5c3cf7949\r\nX-Tt-Trace-Id: 2025092421400415b7583458cc10DC796C\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":81178,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1182 x 1182, 8-bit/color RGBA, non-interlaced","md5":"539ea7fb087b37c3779797a49feb76fb","sha1":"10de396939a0c5da8d146f4ac2a2ec38f7100e2c","sha256":"54ffd0bbfd6cf103f9372f28e6eee44a35b6af19669691a04b205637e818a381","sha512":"68fd37af8e7d8cbd9fe0a17d07c106e28ae6f6821197792779622aa679af7098ad4ce720519380c8625a49c78b6de8790e785c5d9fc1209a718687264cff7d65","ssdeep":"1536:nN1bioYwF3IEmelbW02qadMdAvU2PVWiTfPgNwoGOYmefnagkj3Ul:N1F4EmetHcdMdBriT4wodYhfkTUl","tlshash":"6e8302bd87da0032857bc21de799ebbb72e148d840f343dc1a71a4b8bd5b75b46d0829","first_seen":"2025-02-24T02:30:01.339884Z","last_seen":"2025-11-11T05:16:53.529747Z","times_seen":5,"resource_available":false,"data":null}},"time_used":503,"timings":{"blocked":476,"dns":0,"connect":0,"send":0,"wait":20,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/I2IvVRcuoTSfnKLk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.419Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/I2IvVRcuoTSfnKLk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:33 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:33 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:33 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4567,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"336fa82daf17442756017562ed19f247","sha1":"48d9b56030dfb24e7fa4b0343ebcfeaac988bd09","sha256":"0247db265a67cd83754aa4f176cb8b611aca12ae130b4f90c5389cec016cc8e1","sha512":"0f5352e147b51139179375d3acbedc2bb10c9d623a197b66ed21c3d5a414cf6b984a6ad39e120b67fae34b8f9587e6755e4116e0814462a37ee8729127fc00be","ssdeep":"96:GahCEtOhnxn0qQB86TiJ9lzOUY7NdmUW1LFitaSuELD7DXMlc9EvvFDExH860:GQCQKxn01zyrK7Nd2itHuS7gDaX0","tlshash":"31915c8ae72054a6c7129366ad13731c74d82c867902a370bbd5929dc7b4eb8536ca1e","first_seen":"2025-10-11T04:29:42.331727Z","last_seen":"2025-10-11T04:29:42.331727Z","times_seen":1,"resource_available":false,"data":null}},"time_used":4492,"timings":{"blocked":4140,"dns":0,"connect":0,"send":0,"wait":352,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/js/app.e2de12a1.js","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /js/app.e2de12a1.js HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:40 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-13b5d6\"\r\nAccept-Ranges: bytes\r\nContent-Encoding: gzip\r\nAge: 1\r\nX-Via: 1.1 PS-CDG-04koU196:15 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf8_PS-CDG-04h2Q194_40115-46517\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1291734,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (53837), with no line terminators","md5":"5afcf585b8891ced9a5d7e80efe00bcc","sha1":"dd3322eaeab45bbc905bcc01c46a822428543f7e","sha256":"7a4891a071e450130efe981762c57ea91459fbd4d026a27f456737b5dd62065f","sha512":"f9d3f257151d7e831aad7ea7174b4a73b8f4a74fe9d3310f11af3db6d493008b2c9dba35cfbee50e7e244fe08de60708cc0c36a89dfeb5206c6963ce0375b11e","ssdeep":"6144:UaxwexoABZoRC4CEKqVWcj3BP0X1vgtzjIt4bFOLzcEHZ7M:5wVABM1b3BPUKzjk0OLzcEdM","tlshash":"3f350bc83e64e46113b941d51027280be33dd48ec0fc92e5bb98dae564f859bb07bb79","first_seen":"2025-08-06T11:52:27.423489Z","last_seen":"2025-11-30T16:03:10.466586Z","times_seen":15,"resource_available":false,"data":null}},"time_used":278,"timings":{"blocked":58,"dns":1,"connect":26,"send":0,"wait":30,"receive":124,"ssl":33},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/D29jLFOOoJIlnJZk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.638Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/D29jLFOOoJIlnJZk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4540,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"1da29fa8d3fdde56068af8e0cb6ed632","sha1":"ba30bda13850a537c2ac540c3761d436f7769571","sha256":"04150f8d8cb84a18853389b02ec63afb7db0bdb751543b73a53a20c2e8e0e244","sha512":"c57cc23816c17265931b4d8cc86232f4acf94f0f7009a7f0c6dc4d76ac9e20ef2d360214530b15e77ff22cd812ed70d9cfdab8758e5b799b4f05ea4b182796b8","ssdeep":"96:GahCERuUeJDmI+/MEPPylJ1v4Hke+FgLhdrDeI37a67Oru:GQC2kDmZMmy71v4EH0z5a67gu","tlshash":"40917d0d4de305848f768a3e269d10a6e2a71cb2254cab7c73623e76cd91cf9d00466e","first_seen":"2025-10-11T04:29:42.354117Z","last_seen":"2025-10-11T04:29:42.354117Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2302,"timings":{"blocked":1950,"dns":0,"connect":0,"send":0,"wait":352,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.bjxsong.com/2025-10-05/2f2abd2c448e782089fc0a2805666b97.png?imageMogr2/format/webp","fqdn":"jalacos.bjxsong.com","domain":"bjxsong.com","tld":"com"},"ip":{"addr":"43.159.98.28","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.bjxsong.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Mon, 24 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"A0:62:89:86:76:0D:3F:EA:FE:00:FD:08:E8:3C:4F:3C:A0:B0:1A:EB","sha256":"8D:99:E7:29:CD:E2:65:D5:C2:4E:9B:4C:AE:81:AF:6D:49:95:AC:D2:3B:95:64:74:90:FA:7A:7F:DB:09:5A:77"}}},"request":{"raw":"GET /2025-10-05/2f2abd2c448e782089fc0a2805666b97.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.bjxsong.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sun, 05 Oct 2025 10:05:20 GMT\r\netag: \"586255d76209db4464a3df2af6dbd5fd\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 157065 us\r\nx-cos-hash-crc64ecma: 18139447993539998819\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlMjQyZTBfY2RkMTE3MWRfMmZjNjhfMTkyNGMyMmU=\r\nx-cos-storage-class: MAZ_STANDARD\r\nx-cosindex-replication-status: Complete\r\ncontent-length: 145950\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 17421744470942175436\r\neo-cache-status: HIT\r\ncache-control: max-age=43200\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":145950,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x800, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"586255d76209db4464a3df2af6dbd5fd","sha1":"b103034a050636f4e8f5ea72d2119cd81ccb0073","sha256":"1274d4d4db41ad27e1b1e9d2b3545703f456e18b6e2a2096e2e47a0a8bb7587e","sha512":"24ac444242b0e3bbe8ce516f003cc1a61c3dfeb1cbc015cf248b67b4723ed384518ab423700cba309b32b1db85ad4f7192b7e958745535112522a718b3d7011f","ssdeep":"3072:lUxE6+e0qxxSrWPZBxxcIVIjL1XYUwmmaLbz1AjoG71V/yMHH+BE:lUG6+e3xxSIuBYnMP1s1RiE","tlshash":"efe31226499e30285f492b1617f13f2d4ba9914757f43f9bd1feb0f9fb6060806047a6","first_seen":"2025-10-10T12:39:07.861433Z","last_seen":"2025-10-12T03:59:10.60146Z","times_seen":3,"resource_available":false,"data":null}},"time_used":848,"timings":{"blocked":669,"dns":0,"connect":0,"send":0,"wait":39,"receive":140,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-01-04/fe7f965aa5e492d5226a23ada0bc8c98.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.156Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-01-04/fe7f965aa5e492d5226a23ada0bc8c98.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 09:41:09 GMT\r\netag: \"b5f4c6cbc9a22affb91b0876ae5a8eab\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 79662 us\r\nx-cos-hash-crc64ecma: 16793004756302189328\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlNzgzMzVfOTVjZTE3MWRfMTY1ZTFfMTlkYzZmYWQ=\r\ncontent-length: 82972\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 13353848881883343326\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":82972,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"b5f4c6cbc9a22affb91b0876ae5a8eab","sha1":"0b8d8735dfc0181814020a8dda039c5f9c386c28","sha256":"ced0cacedaf47c80b18cd87d5a93e912b067af7f96601b5e0b99bbc761fb582e","sha512":"996021ada1aa2247dc2b2e014a7b15c33d38ac7b0404833152a946b6bbedc7e24eab07048d8c631dc1b3f87f52ea16f979c7743e4abd5709ce9cbd19cb3157f8","ssdeep":"1536:0rPjmiQK82spuhZyGjLbV788byYyBgLKSmW2xjao7vq1L74FuEZjXx7FuzQBXAcv:0HsKkchI678qy5iL0MAvo44EZjfuzQB/","tlshash":"fd8312b522838d46366248fc81c67bda76f36af4836b260874dc4d92308aaf5ddd919c","first_seen":"2025-10-11T04:29:42.375158Z","last_seen":"2025-10-12T03:59:10.602332Z","times_seen":2,"resource_available":false,"data":null}},"time_used":772,"timings":{"blocked":631,"dns":0,"connect":0,"send":0,"wait":114,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/GJIhM2quoTxtHT8k.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.631Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/GJIhM2quoTxtHT8k.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5063,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"98601081a461e534bd2360abb9f27778","sha1":"5364fd4245e84c7f21dba035579aae404f738f49","sha256":"885c2a5d9ded72d201a067c0512f940fb3382ce0f555836956482f5c144dca63","sha512":"cae291fd29580df0e9c1c5489ec5e3c6fb4f0c380e40c9716c086c702465cbed3cba381e2d178cc60bca1022441fa995389486aaf38a5f1a80e32707b1da4172","ssdeep":"96:GahCElK4HNhsU532jKNVKjTBL7R2BR9z8rR0DQrrbmTfRkPyIJDLsoZT:GQCR4HQCG+rQ9L7+4R0EmTfRTkNZT","tlshash":"1ea17e7ffe17d4c08f9183bd5051798d607a058d46e8a7f85ca0a27194a1cf690c9b0c","first_seen":"2025-10-11T04:29:42.385259Z","last_seen":"2025-10-21T06:25:46.633895Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2256,"timings":{"blocked":1903,"dns":0,"connect":0,"send":0,"wait":353,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ziyuan.baidu.com/image.gif","fqdn":"ziyuan.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"223.109.81.160","port":443,"asn":56046,"as":"China Mobile communications corporation","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.646Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"baidu.com","organization":"Beijing Baidu Netcom Science Technology Co., Ltd"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 09 Jul 2025 07:01:02 GMT","end":"Mon, 10 Aug 2026 07:01:01 GMT"},"fingerprint":{"sha1":"21:BF:66:0D:67:BE:7A:7F:49:48:05:30:F4:7F:09:F2:30:36:CA:63","sha256":"0D:82:2C:9A:90:5A:EF:E9:8F:37:12:C0:E0:26:30:EE:95:33:2C:45:5F:E7:74:5D:F0:8D:BC:79:F4:B0:A1:49"}}},"request":{"raw":"GET /image.gif HTTP/1.1\r\nHost: ziyuan.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nCache-Control: no-store, no-cache, must-revalidate\r\nContent-Encoding: gzip\r\nContent-Type: text/html; charset=UTF-8\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nP3p: CP=\" OTI DSP COR IVA OUR IND COM \"\r\nPragma: no-cache\r\nServer: nginx/1.8.0\r\nSet-Cookie: PHPSESSID=r1pmu7gl1a6udfn6tuu6ahnc20; path=/\nBAIDUID=421126A0C68E83051E2FC4F51CD4FF72:FG=1; expires=Sun, 11-Oct-26 04:28:31 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1\r\nStrict-Transport-Security: max-age=2592000\r\nTracecode: 17119283502339417354101112\r\nVary: Accept-Encoding\r\nX-Protected-By: OpenRASP 1.0\r\nX-Request-Id: 801adfdd45bd1d7f02fd40b4862687b4\r\nTransfer-Encoding: chunked\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx:1.8.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":2424,"timings":{"blocked":1229,"dns":1,"connect":282,"send":0,"wait":332,"receive":1,"ssl":578},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jk.vgcpps.com/app/encryptionPixel?domain=%2FSdTy%2FMZLpoMEn3Stns43Xd4vXGiSynWuaIKktSENhY%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=F5U6VdAX8zETND8XKwIzDg%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D","fqdn":"jk.vgcpps.com","domain":"vgcpps.com","tld":"com"},"ip":{"addr":"16.78.49.61","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:32.393Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jk.vgcpps.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"75:81:C3:61:EB:FE:6A:46:C5:5A:9C:94:34:18:3F:55:8D:20:E4:B0","sha256":"4C:77:9B:F2:A6:23:75:72:38:59:55:81:C9:76:9A:5E:A7:2E:F1:D6:B4:4C:77:12:D7:87:AA:6D:F5:60:4A:C7"}}},"request":{"raw":"GET /app/encryptionPixel?domain=%2FSdTy%2FMZLpoMEn3Stns43Xd4vXGiSynWuaIKktSENhY%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=F5U6VdAX8zETND8XKwIzDg%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D HTTP/1.1\r\nHost: jk.vgcpps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://ii.jalalive55.co\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:33 GMT\r\ncontent-type: text/html;charset=utf-8\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nx-cache-status: MISS\r\nx-server-ip: 172.31.6.159\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":128,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"e4bedfa2b6a45397dcc024f2db4da342","sha1":"2a360bc7ca6d4b02637640f53d0e2b051c234894","sha256":"fdf9175abdf61d7c2c138017a50b10b281e8e0cc17fd567c5dc8041cf9efc40b","sha512":"a1b48e2bf801751a679dfede90499910d31fabd518b76d4bbd953052f6aab2f88a2dd7cf9db87fc35d638921405c93513e5b9c29f2c0e66c9725d64f90ca3c10","ssdeep":"","tlshash":"c3b02b5ca2d90835840c06e0d6df5cf446020d02584ef380003c6f81b08384f009c017","first_seen":"2025-06-01T16:50:02.051995Z","last_seen":"2025-11-30T16:03:10.404658Z","times_seen":7,"resource_available":false,"data":null}},"time_used":1859,"timings":{"blocked":-1,"dns":118,"connect":359,"send":0,"wait":537,"receive":0,"ssl":844},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/ea53743f7d56c2bdff6b594fa6d0d833.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.990Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/ea53743f7d56c2bdff6b594fa6d0d833.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 5743\r\nConnection: keep-alive\r\nAge: 2287934\r\nCache-Control: max-age=31536000\r\nLast-Modified: Sun, 14 Sep 2025 16:56:31 GMT\r\nNw-Session-Id: 20250915005631B4A691909980E689AE14sw9gl022b\r\nNw-Session-Trace: 2025-09-15T00:56:31.503522655+08:00 38\r\nServer-Timing: inner; dur=42\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: a06fda7b02c550c728ef36b040a4b10e\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Mon, 15 Sep 2025 00:56:31 GMT\r\nX-Tt-Logid: 20250915005631B4A691909980E689AE14\r\nX-Tt-Trace-Host: 01e44d33938dea7fde4eecf838582dadcaae6a387c9ca08fb61226c71c6465e8440962cda225f8eaa5f594d9803c803cd708579df5fbd029878b7d0415a7b919d3210af0bd8883175073f330694a0c152484e315823ee64e1dda0b181ffc37d016c589635058eb4d9c365a85539613e75a\r\nX-Tt-Trace-Id: 202509150056302f7facb4483e0771CB72\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache02.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5743,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 167 x 167, 8-bit colormap, non-interlaced","md5":"c4ef52d95d2e4f57fcd4423b68c6c0dc","sha1":"0b56e18ed58b3872e0f97c881e374c51297f01b0","sha256":"37e5bbfa2aad162b67df30c49e44e714382ded8589e691ae82a735f68c36174a","sha512":"90c0872487b5d85e98e3c138203eb9f17e5b9525c9927fbe0968cf03f6faac174c29a002cc7e02153041c187877c801a7a467f860ba209fc3d9b5b98f8cf4730","ssdeep":"96:OXFwWPZv76/+b+blGz9686Sizx9A2Qm128JITyPKyZ2VVffDJOEhMsDoLMaW:UFRv76/+sYZ686lzjA2nvCyZMOEa1S","tlshash":"b9c19ff4e7c645fb451dd77d9cb529c111278a383d87658a37070d6c08d39a98dc69c3","first_seen":"2025-03-30T02:59:21.047174Z","last_seen":"2026-03-28T04:48:00.101639Z","times_seen":7,"resource_available":false,"data":null}},"time_used":429,"timings":{"blocked":411,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/prism.js","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:31.747Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/prism.js HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":324,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":324},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/img/HOT.8d328a76.svg","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:32.306Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET /img/HOT.8d328a76.svg HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:32 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\nserver: cloudflare\r\nlast-modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=4,i=?0\r\netag: W/\"6860d1d3-364\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ahINc5ApoeaTHceAJCPTTcg%2FCjLYnlvoNS1PxE67mxtDeI9IXG5ovVGYSD8pc9m4wEE96IXvxwd0jZ5X8Lj%2Fd4SsF0vdBoNoJURLwNt1\"}]}\r\ncf-ray: 98cb9c7decd1569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":868,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"81b0e3a069be6f19bd14f81f768c792c","sha1":"a08e5b33a9a46244fa72c5cc835f2143645a1406","sha256":"0099d9854f0c9cd84588a5883c169ebaa75ee167bf8840d6af5329f7626df926","sha512":"b2c1a824be0ca6b38cf5706a0cd96ac6c192661571bac09eb90e74c698f2981a069dbefdd86699f6e6b94062ed6cd58c3adc795dbf4b32c202e48bbd9d13f799","ssdeep":"","tlshash":"bb1112b3a1a9a7bde04cc940fbd4e0e5e55cd087d2c28594f38895ae9f700c3169f7a8","first_seen":"2024-08-19T19:47:54.891102Z","last_seen":"2026-04-14T10:43:52.400201Z","times_seen":41,"resource_available":false,"data":null}},"time_used":214,"timings":{"blocked":4,"dns":0,"connect":0,"send":0,"wait":210,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-24/6714633893849ba47977bf6713ff77c0.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.145Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-24/6714633893849ba47977bf6713ff77c0.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 16:19:11 GMT\r\netag: \"b30bd7bc18d3dd81480993d30291fa27\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 79997 us\r\nx-cos-hash-crc64ecma: 16280605454340752547\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlN2UwN2ZfOWVkMzE3MWRfMjEyMGFfMTllMjYxNDQ=\r\ncontent-length: 99482\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 13438674769278923275\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":99482,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"b30bd7bc18d3dd81480993d30291fa27","sha1":"81eb9ef2ff058bbcd21482b74eeb20262fda43ff","sha256":"fbd5a9a922114042e44956ac33938a57d0e66dcb9d21e649c10dcdc220f04631","sha512":"fa8cf94083cefe9e54cf3b070473224aa923ae8e2edfee1c19be6dc59003f29c9c11848a31cf947aaf3d76f829ef824f448a62f704b4476692a72f1afac2b91f","ssdeep":"3072:Fj5fClC/vjJjyynZGJwrqkQld2QX3YuZe2h1:Fj5fClQvjp/fqvlQQo2h1","tlshash":"23a312242229d9a00ffca19915fd58bd03acfce505b63f5841c355c3b55ca2a9bf8b4e","first_seen":"2025-10-10T12:39:07.628185Z","last_seen":"2025-10-12T03:59:10.636254Z","times_seen":3,"resource_available":false,"data":null}},"time_used":749,"timings":{"blocked":641,"dns":0,"connect":0,"send":0,"wait":38,"receive":70,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalaoss.nxhongzhong.com/2024-06-26/0a86462febeff6fd0e7f2877433ea613.jpg?imageMogr2/format/webp","fqdn":"jalaoss.nxhongzhong.com","domain":"nxhongzhong.com","tld":"com"},"ip":{"addr":"43.159.95.214","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.150Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalaoss.nxhongzhong.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 30 Jul 2025 00:00:00 GMT","end":"Mon, 27 Oct 2025 23:59:59 GMT"},"fingerprint":{"sha1":"7D:E7:4B:5F:90:9C:60:A2:40:F8:79:21:BB:07:63:20:93:3F:79:5C","sha256":"C6:7E:51:06:68:AD:F8:50:F9:99:DB:73:4D:D2:E0:03:6B:0E:BE:B9:C1:82:3B:CC:09:97:BA:A0:40:E4:71:02"}}},"request":{"raw":"GET /2024-06-26/0a86462febeff6fd0e7f2877433ea613.jpg?imageMogr2/format/webp HTTP/1.1\r\nHost: jalaoss.nxhongzhong.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sun, 05 Oct 2025 08:06:49 GMT\r\nEtag: \"93dcdf293587da2c0f15b57b95473dc5\"\r\nContent-Type: image/webp\r\nAccess-Control-Allow-Origin: *\r\nServer: tencent-ci\r\nTiming-Allow-Origin: *\r\nVary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nX-Delay: 103309 us\r\nx-cos-hash-crc64ecma: 14198539566380466616\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlMjI3MTlfZWU4YzdjMWVfMmY1MDJfMTkzZTM2NTE=\r\nContent-Length: 100202\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nDate: Sat, 11 Oct 2025 04:28:44 GMT\r\nEO-LOG-UUID: 9433902672584868380\r\nEO-Cache-Status: HIT\r\nCache-Control: max-age=3600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":100202,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"93dcdf293587da2c0f15b57b95473dc5","sha1":"2a09d52cf22593956be6b8aca70217a74e327391","sha256":"76f8668243562aa15512d51bccde3b362d8b38855da0fb05b1b31619c28563b6","sha512":"f42d5dda23f52c0f5a33f998fb03ae57010f1309a8145f0af723e2af5cc5e3f7be789efdc5636fb51d481ba7dce516a13598a8d7c6b3fb40ef991e78a12c60ee","ssdeep":"1536:GkdP0I+f+7A3SIIUp1p/lr6TVMlibgRyIAM6fb6Tb9hCqcMWnhnFjuMTZAyVHfNr:GkOa7W1pdu5MuQyIMT6TIjumZA+f7bl","tlshash":"ada3124c661c89d8b2239f52b53d2108db65bac439bd0a053de80931770fbfded252ab","first_seen":"2025-10-11T04:29:42.452146Z","last_seen":"2025-10-11T04:29:42.452146Z","times_seen":1,"resource_available":false,"data":null}},"time_used":957,"timings":{"blocked":466,"dns":0,"connect":19,"send":0,"wait":121,"receive":37,"ssl":314},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2024-10-19/52469da43d9a870e15757e6bb5999ec0.jpg?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.160Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2024-10-19/52469da43d9a870e15757e6bb5999ec0.jpg?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Fri, 10 Oct 2025 00:14:05 GMT\r\netag: \"4e3eb23afd436cfabb1b72f76cfe1020\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 63315 us\r\nx-cos-hash-crc64ecma: 6707225742465026808\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlODRmY2RfNzYwYzc3MWVfMWYzZDRfMTllMDJmY2Y=\r\ncontent-length: 82096\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 8179746010515374811\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":82096,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4e3eb23afd436cfabb1b72f76cfe1020","sha1":"334b3232217cfda7897458f3c7f9df7856561070","sha256":"d6d49cd7dd7901a71738e39eab64e234e999e9f0d5c4f29338a5ac6b108dfec0","sha512":"72f85450ed1eff4a870a02ec242bd9154b72b8dcb425ef9df6e26ef2a3403e1f8c58c67e9351fc0ee53978c6667afb7a1ea0c7f554e6abfc50e3e978526e5506","ssdeep":"1536:x/B4lFT+zIVxJnHAXwRmfSvrwTgp9YLIr8YFNFm0aJ:x2l+zAxtEKvrwTg9ys8kfm","tlshash":"6d8302d5f7f91739ee124ef07c2e4f0682ac531c453aa127df2223626a831b15a645bb","first_seen":"2025-10-11T04:29:42.463163Z","last_seen":"2025-10-12T03:59:10.551902Z","times_seen":2,"resource_available":false,"data":null}},"time_used":770,"timings":{"blocked":629,"dns":0,"connect":0,"send":0,"wait":115,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/FzSfLJkcqzHtDzRk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.412Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/FzSfLJkcqzHtDzRk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:32 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:32 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:32 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4667,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"fd1ed247bb27a470ab2edc756e3b2016","sha1":"bf6083c07ff191685e533e88a4889f6a5e62e2c4","sha256":"9dae637ce823b202c156bb2cadf421805e6e78d06a9f78671501b769b95d3d7e","sha512":"431bba1cc53c2a6556532038ddd3a2606a23d13a05228f39dc7bb211eef58ed99be79cc3b0287ebdb99f581834d45dd9e4d7fb507d80bd52e065f6ddf851f196","ssdeep":"96:GahCEnKbe6mydOX7NFbbm7vl51Jmm5yCe13pXOKXG5LiC:GQCYyYyybb85jyCwtOwct","tlshash":"13a15c7652b39772171a4c77afdc462ad34b096a2d5634f676804b53c950cf2fe8c00a","first_seen":"2025-10-11T04:29:42.468118Z","last_seen":"2026-04-02T07:44:26.225763Z","times_seen":2,"resource_available":false,"data":null}},"time_used":3179,"timings":{"blocked":2825,"dns":0,"connect":0,"send":0,"wait":354,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/201908301567149019581957.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.640Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/201908301567149019581957.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":2419,"timings":{"blocked":1793,"dns":626,"connect":930,"send":0,"wait":0,"receive":0,"ssl":314},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jk.vgcpas.cc/app/encryptionRecommMatch?client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=fUHOIEAhyZ5XvS33bmcDaA%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D","fqdn":"jk.vgcpas.cc","domain":"vgcpas.cc","tld":"cc"},"ip":{"addr":"108.137.115.204","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:41.032Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jk.vgcpas.cc","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"7F:1F:76:C5:AA:68:BB:76:8F:19:86:C5:1B:84:A8:27:67:A6:F1:3C","sha256":"DC:63:D7:76:59:1C:24:49:8E:76:AE:01:3A:DE:E0:ED:08:2D:C3:CF:66:F4:98:3E:29:17:08:93:A0:CD:C2:2A"}}},"request":{"raw":"GET /app/encryptionRecommMatch?client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=fUHOIEAhyZ5XvS33bmcDaA%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D HTTP/1.1\r\nHost: jk.vgcpas.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:42 GMT\r\ncontent-type: text/html;charset=utf-8\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nx-cache-status: HIT\r\nx-server-ip: 172.31.6.159\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18136,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with very long lines (18136), with no line terminators","md5":"7e6418da3649a4c67863593d21f4c371","sha1":"fa835d1a7ca60e081b977a05769ddb0a9b9025ca","sha256":"e49fe46ef29d7315767bd16bb4a827d29f13c45609e18a64be6bbecca08f535c","sha512":"c023f0bb184f15c41fa4cd68676c50e0e97397425dd34dea809872b70fe3b2e60fb52b34346b38061362365cf8c8d99e6d05af36a2504f6f71fc15f391cdf1ca","ssdeep":"384:NJQD4UG7+bvJ7Yv2Psy1+Ugb5axdkC1o81dWdl9RiHTcxZgo0bZ8IZKX52y:Nqd1J0v2f+UgFedkCZ1kl9RiHTNo0b+l","tlshash":"4d82c1217f8279dc83d35044d6ab486d0fabfda4a46d65cf0c0753f6904c09a5466eef","first_seen":"2025-10-11T04:29:42.470651Z","last_seen":"2025-10-11T04:29:42.470651Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1753,"timings":{"blocked":0,"dns":56,"connect":372,"send":0,"wait":725,"receive":0,"ssl":606},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.bjxsong.com/2025-09-27/f4d921b4d6f046c2d2803c58400eb553.png","fqdn":"jalacos.bjxsong.com","domain":"bjxsong.com","tld":"com"},"ip":{"addr":"43.159.98.28","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.487Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.bjxsong.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Mon, 24 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"A0:62:89:86:76:0D:3F:EA:FE:00:FD:08:E8:3C:4F:3C:A0:B0:1A:EB","sha256":"8D:99:E7:29:CD:E2:65:D5:C2:4E:9B:4C:AE:81:AF:6D:49:95:AC:D2:3B:95:64:74:90:FA:7A:7F:DB:09:5A:77"}}},"request":{"raw":"GET /2025-09-27/f4d921b4d6f046c2d2803c58400eb553.png HTTP/1.1\r\nHost: jalacos.bjxsong.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 27 Sep 2025 11:00:58 GMT\r\netag: \"41028089214111ea2d6243bc08db1b70\"\r\ncontent-type: image/png\r\nserver: tencent-cos\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-cos-hash-crc64ecma: 10911103588810379595\r\nx-cos-request-id: NjhkN2NiNjBfMjdlYWRjMWRfMTEyNWJfNmI2Yzc1Nw==\r\nx-cos-storage-class: MAZ_STANDARD\r\nx-cosindex-replication-status: Complete\r\ncontent-length: 6355\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 10234326210789619107\r\neo-cache-status: HIT\r\ncache-control: max-age=43200\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6355,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced","md5":"41028089214111ea2d6243bc08db1b70","sha1":"07947c691b43c09244a3650920adcbb590bd4c3d","sha256":"a24fdaefafb49ac7010931d78c3a81f48b4c2a52c3abba0f50a12a977e6af454","sha512":"9129b902b0e1245ceea43c44c0a5a597d102489c76a2aceabdd98151ac9394b8a4dd7a4b6a37ca4565f2a2a836f4645c1431b9c6753aa95e92250605525bc20c","ssdeep":"96:HQaTf0O4yIuyaVs1Z/RuCvCTdawDBUKV+E/C7AwKLO9t7ufoO2QQN+yi:HFTyyIuy4sFRqv4E/HvLiCpyi","tlshash":"fdd17c78ea55c0d2f203832afd06826fe0d490a45a6aef45056b663d72d683cdf31d20","first_seen":"2025-10-11T04:29:42.472819Z","last_seen":"2025-10-12T03:59:10.573753Z","times_seen":2,"resource_available":false,"data":null}},"time_used":354,"timings":{"blocked":323,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/logo_default.png","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.395Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/logo_default.png HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":311,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":311},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/DaIhMTImoTyaLGbk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.422Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/DaIhMTImoTyaLGbk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:32 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:32 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:32 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5454,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"0683ba46d051404dae31e7c733bf2c84","sha1":"3fb503290eb24448bd357ef43d5e011f3d7ceb27","sha256":"b2defb7b93874890c6a1b21c0999654188f3a4c979c0fa83b51d7bf9920c2f41","sha512":"b816c8192d92176d4bb9b5d7b140bbff8956919dbc37c3d58deccc731fcf39d64ea5a996ac9b66df02bf4f32786040c1d42b019422f3e6c2c778198a6ebe3d37","ssdeep":"96:GahCE36nx2R58auEs8idE+o/W0PXXwHmvI5KyvIpO19oLs3R8uCiz39RxwA51P:GQCHY8aundEZbfXw75KyvIpuKsgCP","tlshash":"abb17d5e8e0df2029f234518785b1d62d5bed0de3aa441366bb618678939c768c2a3d8","first_seen":"2025-10-11T04:29:42.47665Z","last_seen":"2025-11-13T07:53:11.90645Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2820,"timings":{"blocked":2467,"dns":0,"connect":0,"send":0,"wait":353,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/idn.ico","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.735Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /idn.ico HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nContent-Type: image/vnd.microsoft.icon\r\nContent-Length: 19357\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-4b9d\"\r\nAccept-Ranges: bytes\r\nX-Via: 1.1 PS-CDG-04koU196:4 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcfa_PS-CDG-04h2Q194_40453-38397\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19357,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced","md5":"16a6db0d8f21d6694e74654cedbb68f4","sha1":"b7e430b48b69a5ff765a33827ecf6878af772ede","sha256":"3485afe3b7bb1ee9adff94b6c5c954beee4b5e341d40f2516a9d6be451edfa5f","sha512":"c33bdcabdbdbe8c45979541603f5f8f46d90289b3085b73fe7eae1674f1ea55facf0010b74a1147e1f8b88c10ed89e9efd1ac0146a98189deb244fd2d7c4884e","ssdeep":"384:9FN9aFryJMvR6Y+5AJcV2hf48mhVEnGjVBqrzw9M5tFgLalzD0VooJuz:Xa4evR6YUAOu48AEq0w9M5tFgmVQk","tlshash":"2892c012b7807aca41b61538ccea5924de93c651b5786d8bf219a2db3f829fe51003fd","first_seen":"2024-08-19T19:47:54.890396Z","last_seen":"2026-04-14T10:43:52.42385Z","times_seen":40,"resource_available":false,"data":null}},"time_used":382,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":381,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tj.77livetj.com/api/logAction","fqdn":"tj.77livetj.com","domain":"77livetj.com","tld":"com"},"ip":{"addr":"108.137.53.211","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.496Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tj.77livetj.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Mon, 15 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"20:DF:CE:A9:15:5D:53:30:3D:2C:E3:83:A8:88:14:84:F4:8B:8C:FE","sha256":"C0:9D:F5:CD:62:5E:67:F9:3D:C7:09:8A:AA:34:CF:27:50:5E:2B:95:DC:DA:2C:3B:5F:4F:4A:3D:BF:96:56:74"}}},"request":{"raw":"OPTIONS /api/logAction HTTP/1.1\r\nHost: tj.77livetj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://www.jalabu6.net/\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sat, 11 Oct 2025 04:28:44 GMT\r\nserver: nginx\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":1793,"timings":{"blocked":686,"dns":1,"connect":358,"send":0,"wait":370,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/js/477.20e287c5.js","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.946Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /js/477.20e287c5.js HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:40 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-4c91\"\r\nAccept-Ranges: bytes\r\nContent-Encoding: gzip\r\nAge: 1\r\nX-Via: 1.1 PS-CDG-04uki195:11 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf8_PS-CDG-04h2Q194_40459-31152\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19601,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (19299), with no line terminators","md5":"8aa2f8c27b0ef0e17d18ff0156d7bb79","sha1":"5eb2560d521a97111ad0885124fc9fa99330f035","sha256":"9ff80528b96635dbff5e2041f4f40dbcad2d9ff98cb8be53fb83797f65deecee","sha512":"337c952c19c37b5433da97a72c52648658f014c267031dfe3d5040299c0d6cfcabdccf788cc3c46336c12b9a740990c0cc44b370c9d92ef34846392e45d065d5","ssdeep":"384:BnnHI0kwuv6NRHRLTvyzZpCoM4uSAQLP/08riUEQ4k7RBzi7jZBkh/60:BnnHkK/vyPCoM4+g5okTi7jEy0","tlshash":"d2925c8675c3f40a63f18c9e1a541005aefa5f35fb2a4ca37d791db73946ca1e026b4c","first_seen":"2025-03-30T18:40:13.418034Z","last_seen":"2025-12-02T08:25:01.672634Z","times_seen":32,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/FxSZDHkWIxHtAmbk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.632Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/FxSZDHkWIxHtAmbk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3118,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"b0af69328d8e4e83affa197ac622bfc9","sha1":"3d612e77e9d2a29c25ffbf234039e4dfcc76024a","sha256":"9d4ef75db54d2f2fb65679beb810df18763e34cecc12b38fafcc6ecf6922236f","sha512":"4b425f131ea141c7ecd8356d689d749e0f850948e0ab3d22b03b003f3835b0ab228ad006480717616d20dd909aab7f54e1bd962c48e7c6d962b3fed5555e0c6b","ssdeep":"","tlshash":"cf514b59dda343716b0ee0ff139762c3c088a793b921163637355554a811df2c58a24c","first_seen":"2025-10-11T04:29:42.482099Z","last_seen":"2025-10-11T04:29:42.482099Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2250,"timings":{"blocked":1899,"dns":0,"connect":0,"send":0,"wait":350,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.bjxsong.com/2025-10-03/898ca0fc6c26942dd4c6009ec980dc8f.jpg?imageMogr2/format/webp","fqdn":"jalacos.bjxsong.com","domain":"bjxsong.com","tld":"com"},"ip":{"addr":"43.159.98.28","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.163Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.bjxsong.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Mon, 24 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"A0:62:89:86:76:0D:3F:EA:FE:00:FD:08:E8:3C:4F:3C:A0:B0:1A:EB","sha256":"8D:99:E7:29:CD:E2:65:D5:C2:4E:9B:4C:AE:81:AF:6D:49:95:AC:D2:3B:95:64:74:90:FA:7A:7F:DB:09:5A:77"}}},"request":{"raw":"GET /2025-10-03/898ca0fc6c26942dd4c6009ec980dc8f.jpg?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.bjxsong.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 04 Oct 2025 00:02:11 GMT\r\netag: \"5e7df9eb397d2c51ff0698bbe4f72f61\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 81416 us\r\nx-cos-hash-crc64ecma: 17217985469564864624\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlMDY0MDNfZGZiMDQ4MGJfMjc3NjZfMTk0ZWRhZTk=\r\nx-cos-storage-class: MAZ_STANDARD\r\nx-cosindex-replication-status: Complete\r\ncontent-length: 120296\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 3961695550345724590\r\neo-cache-status: HIT\r\ncache-control: max-age=43200\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":120296,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"5e7df9eb397d2c51ff0698bbe4f72f61","sha1":"edeabe7b844ca54cd0b816e124d77831c654f5ad","sha256":"f39ebaed1aa4cb7467e4dfa4d0cf8c50929b8164ebabc35b9fd1ee1ba09b9ed8","sha512":"8d3442bf624913f4dd2e22525044880be914c522f2076fc9f17d0391bb9405f009e2553f86f21c17d6edd96aa66e5f74865b6b17a835408f660ebc31248f0ba7","ssdeep":"3072:Ov7Ye1TYTYhNWXsegk72J40Fvq/aZrB1tC3v+CIxTof7NK:OrVnhAsen2J4G8aVB1c3vIx8fpK","tlshash":"d6c31214e2e5c1553fd5a203906eb1ae72670bfaed5310f790a93c917ac753e1ce82b0","first_seen":"2025-10-11T04:29:42.48565Z","last_seen":"2025-10-12T03:59:10.545062Z","times_seen":2,"resource_available":false,"data":null}},"time_used":787,"timings":{"blocked":647,"dns":0,"connect":0,"send":0,"wait":38,"receive":102,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/FzSfLJkcqzHeEKHk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.402Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/FzSfLJkcqzHeEKHk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:32 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:32 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:32 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3610,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x110, components 3","md5":"54c88eaf871acfea230812752fd939e3","sha1":"63bc6ba7f818cfb6cfeb0ef6b8c79115ccbd43dd","sha256":"016055b50c176ed371fa23c66175653b4e84a133729dfe307ed8741b00524cd4","sha512":"ee121b820390b6b3beabff9aa6bdadfc185b3ceaa86045aac4d5cdf9668a1cbdd9df1b8f608ca4233b43d50defedfdd0e0b58b7eebf0e1b6c67a89f33f4b1910","ssdeep":"","tlshash":"a2717ecc1b6b019dcf8b5473e9201f89c36acc243650a6726b7285a6c556cf0e00b436","first_seen":"2025-10-11T04:29:42.491954Z","last_seen":"2025-10-11T04:29:42.491954Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3190,"timings":{"blocked":2837,"dns":0,"connect":0,"send":0,"wait":353,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/IKOxLKEyVRcOGRRk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.409Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/IKOxLKEyVRcOGRRk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:33 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:33 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:33 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4250,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"98eb65d04026d50038a53cc8f57354e9","sha1":"44df093c842d14ed03aab77180fbe15bf5a75d53","sha256":"c29f03eee3b22847acf575a001905ea8d75ab47b4acc2380750d92d38f7c39b8","sha512":"c17e9c7d2dcad589d8773ea95f70279efbd427da39cb2e04f2e3077b07f0ed385fde70938b4d7a3b486666b41c9e87e7ce4d14f2890a0fc5820c34ea89e5c21d","ssdeep":"96:GahCEs75jdNjz9vpihuT/zKFPlO18J/4eAEyt+uAHvXi:GQCXdHjpvpihWmFPlOOJH4tLw/i","tlshash":"d7917d831d499f205751d3b7ee1d73ad307c88e03405b272b6205fd1c620cb6a9696af","first_seen":"2025-10-11T04:29:42.497138Z","last_seen":"2025-10-11T04:29:42.497138Z","times_seen":1,"resource_available":false,"data":null}},"time_used":4507,"timings":{"blocked":4151,"dns":0,"connect":0,"send":0,"wait":356,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/sticky-sidebar.js","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.644Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/sticky-sidebar.js HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":1476,"timings":{"blocked":1476,"dns":0,"connect":308,"send":0,"wait":0,"receive":0,"ssl":322},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/css/chunk-vendors.02998d07.css","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:31.103Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET /css/chunk-vendors.02998d07.css HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:31 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ofboih0yInhQHtxNw9bfsbvEpu2m1YoUin1ZzNseNrO8A1rC3SybIj2oQgKEsB8bsD7g2S916eF3WrQ3l0wOqGmyqatnS1BiGrGVG72uHg8%3D\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: W/\"6860d1d3-4cfbc\"\r\ncontent-encoding: br\r\ncf-ray: 98cb9c765f1eb28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":315324,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65528), with no line terminators","md5":"e7dc1c56cb578b5f2203ddb96a7b7f83","sha1":"836ef3167b01f13ad5af927a704dfd8600a6a3fd","sha256":"f0a83ee0a68f463cbd61202021a7cd9350b977288c75aeed1a9d9793f858f46d","sha512":"3c21ca872df5521422cd85306a9fb79f8407d636b5747f40b8afc1033dad96df37fd54fa4e2519cb20943528ac61a3023fae173b3a4e581e173110edace3a4a2","ssdeep":"6144:9bIZtiTtXB4i5HE04dWuHK04MuobXSNAubJ:HHE2J","tlshash":"a964c455e723653b182be63d79c0e9985f14df92d9228ba6fb40b40891c7da102e3d3f","first_seen":"2025-05-27T14:29:17.319048Z","last_seen":"2026-04-14T10:43:52.449744Z","times_seen":41,"resource_available":false,"data":null}},"time_used":603,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":603,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.bjxsong.com/2025-10-03/da69b2e35aa0fbcef8a649826c879451.jpg?imageMogr2/format/webp","fqdn":"jalacos.bjxsong.com","domain":"bjxsong.com","tld":"com"},"ip":{"addr":"43.159.98.28","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.141Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.bjxsong.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Mon, 24 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"A0:62:89:86:76:0D:3F:EA:FE:00:FD:08:E8:3C:4F:3C:A0:B0:1A:EB","sha256":"8D:99:E7:29:CD:E2:65:D5:C2:4E:9B:4C:AE:81:AF:6D:49:95:AC:D2:3B:95:64:74:90:FA:7A:7F:DB:09:5A:77"}}},"request":{"raw":"GET /2025-10-03/da69b2e35aa0fbcef8a649826c879451.jpg?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.bjxsong.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Fri, 03 Oct 2025 23:59:48 GMT\r\netag: \"5e7df9eb397d2c51ff0698bbe4f72f61\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 71696 us\r\nx-cos-hash-crc64ecma: 17217985469564864624\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlMDYzNzNfZjE4YzdjMWVfMWE2OGJfMTkwMjlmMjQ=\r\nx-cos-storage-class: MAZ_STANDARD\r\nx-cosindex-replication-status: Complete\r\ncontent-length: 120296\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 17643426531453262785\r\neo-cache-status: HIT\r\ncache-control: max-age=43200\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":120296,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"5e7df9eb397d2c51ff0698bbe4f72f61","sha1":"edeabe7b844ca54cd0b816e124d77831c654f5ad","sha256":"f39ebaed1aa4cb7467e4dfa4d0cf8c50929b8164ebabc35b9fd1ee1ba09b9ed8","sha512":"8d3442bf624913f4dd2e22525044880be914c522f2076fc9f17d0391bb9405f009e2553f86f21c17d6edd96aa66e5f74865b6b17a835408f660ebc31248f0ba7","ssdeep":"3072:Ov7Ye1TYTYhNWXsegk72J40Fvq/aZrB1tC3v+CIxTof7NK:OrVnhAsen2J4G8aVB1c3vIx8fpK","tlshash":"d6c31214e2e5c1553fd5a203906eb1ae72670bfaed5310f790a93c917ac753e1ce82b0","first_seen":"2025-10-11T04:29:42.48565Z","last_seen":"2025-10-12T03:59:10.545062Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1481,"timings":{"blocked":668,"dns":3,"connect":28,"send":0,"wait":38,"receive":99,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-01-10/7d48bd515f0e072093abc500839dd80c.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.155Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-01-10/7d48bd515f0e072093abc500839dd80c.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 21:48:58 GMT\r\netag: \"0fd3514df480fb5f282b8529c9eb46a4\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 87091 us\r\nx-cos-hash-crc64ecma: 13567735719943590215\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlODJkY2FfY2YxNzc3MWVfNTJmOV8xOWU1N2FlMQ==\r\ncontent-length: 112980\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 18113662769989134120\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":112980,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"0fd3514df480fb5f282b8529c9eb46a4","sha1":"c11b408b0b25d922cab04b2f39d14f8e3e90a5de","sha256":"ea10614ef6a32c0206de72ac18ba022518c2944c0de3c1f5846e0059ab43edc4","sha512":"e7cfe92c0bad5157475eba3abe541d045480ee72c10502f39518c4584b18af6326a5d537d2e36e17751d314f5f8e27c1c8b94348929cd44f2c3ce83f22618330","ssdeep":"3072:JZQiLXDUq8rZghpJ518EDRojACBQfa5hP:jdXmApJ8APyF","tlshash":"5cb3133d2615709bbdc2e2bad6cd91ebc8d4c84632d9aaf8ce34469c974579363730b0","first_seen":"2025-10-07T04:01:57.288579Z","last_seen":"2025-10-12T03:59:10.528189Z","times_seen":3,"resource_available":false,"data":null}},"time_used":777,"timings":{"blocked":632,"dns":0,"connect":0,"send":0,"wait":115,"receive":30,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/style.css","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.384Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/style.css HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":850,"timings":{"blocked":849,"dns":1,"connect":309,"send":0,"wait":0,"receive":0,"ssl":321},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/img/logo.eee432d6.png","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.827Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /img/logo.eee432d6.png HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:40 GMT\r\nContent-Type: image/png\r\nContent-Length: 19357\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-4b9d\"\r\nAccept-Ranges: bytes\r\nAge: 1\r\nX-Via: 1.1 PS-CDG-04h2Q194:3 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf8_PS-CDG-04h2Q194_40115-46521\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19357,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced","md5":"16a6db0d8f21d6694e74654cedbb68f4","sha1":"b7e430b48b69a5ff765a33827ecf6878af772ede","sha256":"3485afe3b7bb1ee9adff94b6c5c954beee4b5e341d40f2516a9d6be451edfa5f","sha512":"c33bdcabdbdbe8c45979541603f5f8f46d90289b3085b73fe7eae1674f1ea55facf0010b74a1147e1f8b88c10ed89e9efd1ac0146a98189deb244fd2d7c4884e","ssdeep":"384:9FN9aFryJMvR6Y+5AJcV2hf48mhVEnGjVBqrzw9M5tFgLalzD0VooJuz:Xa4evR6YUAOu48AEq0w9M5tFgmVQk","tlshash":"2892c012b7807aca41b61538ccea5924de93c651b5786d8bf219a2db3f829fe51003fd","first_seen":"2024-08-19T19:47:54.890396Z","last_seen":"2026-04-14T10:43:52.42385Z","times_seen":40,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/6c587a70c78a298fc1ef874985de79e9.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.024Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/6c587a70c78a298fc1ef874985de79e9.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 29782\r\nConnection: keep-alive\r\nAge: 2081432\r\nCache-Control: max-age=31536000\r\nLast-Modified: Wed, 17 Sep 2025 02:18:13 GMT\r\nNw-Session-Id: 20250917101813E41DB67C26D305A123B6q44t7032b\r\nNw-Session-Trace: 2025-09-17T10:18:13.098171186+08:00 78\r\nServer-Timing: inner; dur=83\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: ea90fedb61fdb359060326e3d84cb0ee\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Wed, 17 Sep 2025 10:18:13 GMT\r\nX-Tt-Logid: 20250917101813E41DB67C26D305A123B6\r\nX-Tt-Trace-Host: 01cfca1be77363f440f569224a4808ef7f3b264e742f8093c35bfb8636271b0fbf9a232ee77850248104b163766d9870df34bd6a134e699e4a40b997a411e2d36dcb396e41f54a7e16a8f43e52d404d88246a248aef84171da77a56ddff048e182c3161dd6a8d80cd6928f265df268d60e\r\nX-Tt-Trace-Id: 202509171018124afa6ef6a12117B03472\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache06.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29782,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"e9d05884005510ac6643a22d244aea57","sha1":"1fe33b8ba0465304c2ffb07f8cb8c469c8f9371d","sha256":"bc79eea867d86330fbac310a3d1c0d11a3b0590118684e77518147ff461a227d","sha512":"0d4e7e6b80d1d29c036d770db25aa8f81039239c9a9a2de314d0da70b4894748d4184796db00a966fd1d8f063ae01d98c7c85816e84418a0adb9233b309ef4c0","ssdeep":"768:eyRagXl87uhxvrANvBlLDWsTMmppp3Egwtt:HlxDIBZDWfOhwtt","tlshash":"08d2e1ae82f01ceff8ed0d314d5b5d8f8e31aa353869e4d7686be51409379493140b93","first_seen":"2023-10-28T07:36:04Z","last_seen":"2026-04-19T09:02:04.502194Z","times_seen":20,"resource_available":false,"data":null}},"time_used":485,"timings":{"blocked":465,"dns":0,"connect":0,"send":0,"wait":18,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-28/a51dc7e04e074885f6045ec5c3ff2d0f.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-28/a51dc7e04e074885f6045ec5c3ff2d0f.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 09:45:23 GMT\r\netag: \"96e9b66c9d9e2afcc7b3c3ebcf01905b\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 65971 us\r\nx-cos-hash-crc64ecma: 11541068247320429646\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlNzg0MzNfZjE4YzdjMWVfMWE2NmZfMTllNDkyMzQ=\r\ncontent-length: 54234\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 6105759188178676906\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":54234,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"96e9b66c9d9e2afcc7b3c3ebcf01905b","sha1":"8a331812a75fd10d146d33e56851c7e60918ed3c","sha256":"8c805a6b3d21b7f1eca7d74bdd731413511c8d8e596978188f2dacde14933dd0","sha512":"5fababc41a9eafce6e0319d5d41b616e4f27550dd71c08c24b9c5d6e022a1628d52c5a13f966a29de6904b4c1c0bf13f09ec5fbcb061930d5f0ee02200bd567d","ssdeep":"1536:W5bWdNJ1x8mq2jMWLVLgHfdyWBi3bcnl8kDP73Kht9R:WVWv8CVLyBobcnltDPbKz","tlshash":"4433f2da1037e163a8a5db3580b11bfbce5cc2d44ffa207f196f00b492518ac5aa765d","first_seen":"2025-09-23T08:01:03.202228Z","last_seen":"2025-10-12T03:59:10.576993Z","times_seen":3,"resource_available":false,"data":null}},"time_used":753,"timings":{"blocked":627,"dns":0,"connect":0,"send":0,"wait":115,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/eba4bbba15054de591179e0001ab718b.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.038Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/eba4bbba15054de591179e0001ab718b.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 9041\r\nConnection: keep-alive\r\nAge: 2550378\r\nCache-Control: max-age=31536000\r\nLast-Modified: Thu, 11 Sep 2025 16:02:26 GMT\r\nNw-Session-Id: 2025091200022650DD777C64091C6A80AF47f97022b\r\nNw-Session-Trace: 2025-09-12T00:02:26.698558281+08:00 36\r\nServer-Timing: inner; dur=38\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 11d3cf66f243222df1933f6ba2431803\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Fri, 12 Sep 2025 00:02:26 GMT\r\nX-Tt-Logid: 2025091200022650DD777C64091C6A80AF\r\nX-Tt-Trace-Host: 01194007ac108d0011947bf1406f30ce01380db00de0b05c478ae5a41153ce59c11fd5aaf7ba64975aaf3a5f3195098357443bdffee9e7986593327bc0051ab63a61f10e892cf6acc292024417771e36aefcd8693e35fdb95c073a907b2dbd549e37b7e6ad0bdfccedaf5b9ca6be5018dc\r\nX-Tt-Trace-Id: 2025091200022575c8d8e058af02D630F5\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache02.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9041,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"526a5a71935f14fbe217d4d732935178","sha1":"27e69a0fc482bdf27df25349193ebd87e458eb47","sha256":"1de113762c8b637a9ccfc8d60fbf25af2b972bdaa128c70c41a3e56868f0981b","sha512":"79b369f6ea3795e09944fce8c71445df9f10539ea440688e172fa3c0aab96b4f289c6d008f78335a5d7ec304534a16d0786ee4f1faded46c148b4d33991fb820","ssdeep":"192:dFL3b9WU7pOjD/gN4en73agw7rNf0jwuZz7U:TL3bE6OfLc3agw7rNsEmz7U","tlshash":"c912b00bc3e1f8d0670dca8c01f554782616b7970a80c754396c0f6e9556d8f14f29fb","first_seen":"2023-10-14T17:46:45Z","last_seen":"2025-12-11T12:01:52.213806Z","times_seen":55,"resource_available":false,"data":null}},"time_used":500,"timings":{"blocked":482,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2024-06-30/235d6e2d5d7c0c378b521b5346794df5.jpg","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.457Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2024-06-30/235d6e2d5d7c0c378b521b5346794df5.jpg HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 29 Jun 2024 21:21:31 GMT\r\netag: \"2ab5d077037ca3ba72f3964046128b00\"\r\ncontent-type: image/jpeg\r\naccess-control-allow-methods: GET,POST,HEAD\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: ETag,Content-Length,x-cos-request-id\r\nserver: tencent-cos\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-cos-hash-crc64ecma: 267810182767198519\r\nx-cos-request-id: NjhjMDBhZGZfYTExNTc5MWVfM2YyNV8xNTMxNDUyNA==\r\ncontent-length: 70966\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 18232857964060926282\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":70966,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1280x720, components 3","md5":"2ab5d077037ca3ba72f3964046128b00","sha1":"483cb085f4320d2f6a169121a3e2abd212335619","sha256":"faa4b9b5ab4c47d9b574e996c01ebe7bad8e1df34aed3b07cac27aef5e70ba20","sha512":"c869734255a401d6dc4ff45a589a29dceb49a03869147d754502044112eb303a8827289d6ce1a366a95d90a91a7c2b88052d1bda040fad439609eeacf280ee78","ssdeep":"768:hYyev5iDZ8nVcmublWIgyJ1bFgjY8DhVXbOMuaZlznFZ+2AyL25ATbIrDW:hyxeZ6Vc1blJzKv1lqpYlblZksaW","tlshash":"3563be02cd96d533f41d2a31ae44396d1b5385b82bb36d32bcb9abff526d2470c0b946","first_seen":"2025-03-07T06:52:36.077945Z","last_seen":"2025-10-12T03:59:10.565902Z","times_seen":5,"resource_available":false,"data":null}},"time_used":467,"timings":{"blocked":332,"dns":0,"connect":0,"send":0,"wait":114,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-11T04:28:26.989Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":909,"timings":{"blocked":909,"dns":0,"connect":306,"send":0,"wait":0,"receive":0,"ssl":313},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036300,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036301,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-11T04:28:31Z","timestamp":1760156911,"ip_dst":{"addr":"172.18.0.14","port":48006,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"severity":"low","alert":"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3","source":"{\"timestamp\":\"2025-10-11T04:28:31.177663+0000\",\"flow_id\":1425791114810693,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"154.223.3.160\",\"src_port\":80,\"dest_ip\":\"172.18.0.14\",\"dest_port\":48006,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2036302,\"rev\":3,\"signature\":\"ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2022_04_21\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"reviewed_at\":[\"2024_10_14\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_04_27\"]}},\"http\":{\"hostname\":\"ipasviarezzo.com\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":25608},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":99267,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":21,\"pkts_toclient\":21,\"bytes_toserver\":2169,\"bytes_toclient\":27259,\"start\":\"2025-10-11T04:28:28.529733+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/ITygozSmVSHgZwZk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.419Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/ITygozSmVSHgZwZk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:33 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:33 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:33 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6782,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"2601ab7406e236374e92e341685c9ae2","sha1":"11ac3dcd42369f37cf500a82f6dafc8e5bc95f5b","sha256":"ee9dce297aebc472c192ed0b1305ca44f8c41a38e40d21dbbb785b35cf6960f2","sha512":"0b509fc30847d78a4c1b921e5975fbc31510c6d1428f565b6dea65420a5e7f7ae2d1b2286834569e595058be34bdfa089323f5643d55374175f01bccf0ca6a93","ssdeep":"96:GahCE/bsWUFwndnaioCman9rmLCWt7tzUlMMLFdkiOaemaidDxeXjAso95V1yJ9g:GQCeIxCmanRTWnUPBv95fe1qDRaKgU","tlshash":"a5e19da1700ad8c7df5794f43b4a38ba3d756c3eb6d621331b005129ce23dbd84582ab","first_seen":"2025-10-11T04:29:42.514557Z","last_seen":"2025-10-11T04:29:42.514557Z","times_seen":1,"resource_available":false,"data":null}},"time_used":4495,"timings":{"blocked":4141,"dns":0,"connect":0,"send":0,"wait":354,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/F2IbMJWuqTShVRbk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.636Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/F2IbMJWuqTShVRbk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:32 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:32 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:32 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6403,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"7494a1ce020b4542a944a662afe96cc8","sha1":"3aec6eb1a7fb911e844b14c2f9f16f86cb3e8cf2","sha256":"51e53cf130ca3759d247a7a67ca5deb8caafd33d072132098266ed04cde392e1","sha512":"1a59259b28057be788580065136d9247bd5dd0edf4c573eef8a7c755fa4a30c0d4aac46d48e2bedb02b4bb67fbdf63f3f153ad949f7d20838082858a02d02476","ssdeep":"192:GQCapIIQFMY9kKACCyUwWHHCPGdzayhcgZo+SiWn:GrA8kACBwkC+d2WTZJSiWn","tlshash":"e8d19e3dab4d40209f53546e33967b3a921148d42cb4d7b61ab7320e8191dfb2f19a6c","first_seen":"2025-10-11T04:29:42.518807Z","last_seen":"2025-10-11T04:29:42.518807Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2597,"timings":{"blocked":2246,"dns":0,"connect":0,"send":0,"wait":351,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"imjk.dsuhkj.com/api/flashapi.php","fqdn":"imjk.dsuhkj.com","domain":"dsuhkj.com","tld":"com"},"ip":{"addr":"108.136.85.246","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:41.024Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"imjk.dsuhkj.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"1F:F3:7B:06:6A:3D:39:9F:C4:81:AF:8C:F0:BF:83:DE:A6:CF:45:ED","sha256":"3A:21:B4:59:39:AF:66:54:F2:27:53:9A:FF:8A:3A:0D:E0:E6:94:EA:ED:F2:0E:0A:1D:E6:4D:60:99:4E:27:4B"}}},"request":{"raw":"POST /api/flashapi.php HTTP/1.1\r\nHost: imjk.dsuhkj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jalabu6.net/\r\nContent-Type: multipart/form-data; boundary=---------------------------27186596361348064044922918276\r\nContent-Length: 320\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:41 GMT\r\ncontent-type: application/json\r\nserver: nginx\r\ntrace-id: c641801165556d18d9ee0f0b6a77919d\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":915,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"9a1c17e18df24174e73785e68ae679d7","sha1":"2b9ad28ce8ba1a6d2ec72efc315176ac60493b95","sha256":"4749f2b870af7881d0d3c3d0ee4fe6daf7db83c5a11a9fbc3b626e3a8b5453a2","sha512":"8694b1674d5b92a37e62079bfe0283112d925cbfe4cc152fcea462ee93486488cc0eb1df14206722e4bf9c835d804f93944622c2d9154cd69518d4fc3134dd5a","ssdeep":"","tlshash":"4911efbd4ed88cba676136c8478af0ae54cf2038dfd40e9ac7d4ad8de5983701742180","first_seen":"2025-10-11T04:29:42.52464Z","last_seen":"2025-10-11T04:29:42.52464Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1838,"timings":{"blocked":735,"dns":1,"connect":357,"send":0,"wait":367,"receive":0,"ssl":375},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/1fc010aba7ac510b5364e5f76ca4f060.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.975Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/1fc010aba7ac510b5364e5f76ca4f060.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 38468\r\nConnection: keep-alive\r\nAge: 210609\r\nCache-Control: max-age=31536000\r\nLast-Modified: Wed, 08 Oct 2025 17:58:34 GMT\r\nNw-Session-Id: 2025100901583443DFEFBFE32EEA135FEF9h68l012b\r\nNw-Session-Trace: 2025-10-09T01:58:34.804819152+08:00 65\r\nServer-Timing: inner; dur=67\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 259ac4b37b857927b7bbfd87ba199870\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Thu, 09 Oct 2025 01:58:34 GMT\r\nX-Tt-Logid: 2025100901583443DFEFBFE32EEA135FEF\r\nX-Tt-Trace-Host: 012b28f2995bcb79455b8885ebfb0725e61cc7a873a3a8b7772bdbf46d44d8c1dc1a55f62a7745774baba3e6a013a5865f265f499937345750280c250a56d96ba4af33c043239bddd8e92e7784ba81b86c80aa2a0da29a2ba960a81a0cc96851bd968758a0f5b88443276010f7a13322e3\r\nX-Tt-Trace-Id: 20251009015834bd40d442dcf61079ED62\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":38468,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"1fc010aba7ac510b5364e5f76ca4f060","sha1":"33b57e5f4732d106a33e2047782c2dbbf8604bcc","sha256":"7c53c6d6537382c53b62b9f940b0ee89f6f48262cd051b181964fa4d32b1106d","sha512":"9df321760c6795adf66edcf965cc3824f2ed265002a492b521c0839e05b39366873b831cf4428a6cb865f752ed68cd5a2c2ccc769e9d26f33bbc7371d61bb27a","ssdeep":"768:F8zXQzXx1T9+QqEt0SfePnQcHAolU/K3+k5sUXUXKPGi4GxK:F8zAzXjTlt0SfenQnol4SJBFnU","tlshash":"560301fb374dc9873a49023aa11df915ff9a0e060e818289b1b0ddbe6b9212d360f1d5","first_seen":"2023-07-06T07:05:30Z","last_seen":"2025-12-17T15:22:54.742633Z","times_seen":179,"resource_available":false,"data":null}},"time_used":872,"timings":{"blocked":415,"dns":1,"connect":19,"send":0,"wait":18,"receive":3,"ssl":413},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-24/2f0ef074f30a93d2a151fc0186645eab.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.143Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-24/2f0ef074f30a93d2a151fc0186645eab.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 23:05:01 GMT\r\netag: \"21f3688e3628b833903975afa6af35a2\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 67676 us\r\nx-cos-hash-crc64ecma: 7730378999056612250\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlODNmOWRfMzZiMjRkMGJfNDQ3N18xOWRmNzQzZA==\r\ncontent-length: 55432\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 1313283026939548888\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":55432,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"21f3688e3628b833903975afa6af35a2","sha1":"3123eed1186df177213c66b68464a7fd44d9c1cf","sha256":"2965d913fb708c2ac08eb51a9b5000f63c47bf21bed89cff81b71285ca6c5904","sha512":"efd59347f55e83a37811f253a3e480fd59031cc370dd8b35dfe25538b338254f36c5c939f2c451377a9dafe6bd9506d78e80e33bcf910ef63f6aa200fc871a7f","ssdeep":"768:WR0WlAX43k7cKh8zm4SDEfcYvx2OVO2P4gFeMf5oppTkayfVbICD3P9itsHgzLKW:WeW+nqzlOEfD2aPtFnfOb2hPYtEOKDzm","tlshash":"9543025baaecd4b210a75ca0068bb8cc7319e1f40cce7a614935360f91db689f352d79","first_seen":"2025-10-11T04:29:42.183775Z","last_seen":"2025-10-12T03:59:10.571455Z","times_seen":2,"resource_available":false,"data":null}},"time_used":680,"timings":{"blocked":643,"dns":0,"connect":0,"send":0,"wait":32,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jk.vgcpas.cc/app/encryptionPixel?domain=HnPyMogWt4ag5DF7mGgVcQ%3D%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=L9gNyDChO12QWRqTYsTNHg%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D","fqdn":"jk.vgcpas.cc","domain":"vgcpas.cc","tld":"cc"},"ip":{"addr":"108.137.115.204","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.925Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jk.vgcpas.cc","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"7F:1F:76:C5:AA:68:BB:76:8F:19:86:C5:1B:84:A8:27:67:A6:F1:3C","sha256":"DC:63:D7:76:59:1C:24:49:8E:76:AE:01:3A:DE:E0:ED:08:2D:C3:CF:66:F4:98:3E:29:17:08:93:A0:CD:C2:2A"}}},"request":{"raw":"GET /app/encryptionPixel?domain=HnPyMogWt4ag5DF7mGgVcQ%3D%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=L9gNyDChO12QWRqTYsTNHg%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D HTTP/1.1\r\nHost: jk.vgcpas.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:42 GMT\r\ncontent-type: text/html;charset=utf-8\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nx-cache-status: MISS\r\nx-server-ip: 172.31.11.179\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":64,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"5352702ac042c4c4e9f70c93ecb6d4e9","sha1":"9047a1e6e76ead45b4598b584ede54e94ed2b9a4","sha256":"1fcfde2c679cc356406369e63883c18da139cf0e7c24b445c6038848dc4eccf4","sha512":"bd2de577c429f652ea39635c15e3e7137a4c660ebfc104cdeaad2d8905bb42a5099d1025088a0c6a3ecf284885f06a398ca0a23fa66ae387c6a0526d774d009f","ssdeep":"","tlshash":"95a022200220882c8e0822a800c830c833000a0c808c23e800883a8a8000c8b003cc0b","first_seen":"2025-03-07T06:52:36.044935Z","last_seen":"2026-02-25T03:25:48.300611Z","times_seen":13,"resource_available":false,"data":null}},"time_used":3003,"timings":{"blocked":1148,"dns":158,"connect":358,"send":0,"wait":713,"receive":0,"ssl":623},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/js/750.3054b4c4.js","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.943Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /js/750.3054b4c4.js HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:40 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-6130\"\r\nAccept-Ranges: bytes\r\nContent-Encoding: gzip\r\nAge: 1\r\nX-Via: 1.1 PS-CDG-04VRO197:11 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf8_PS-CDG-04h2Q194_40453-38393\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24880,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (24880), with no line terminators","md5":"0c80dadddba3292cee4603be3dd74fd9","sha1":"17342ace6adf124f7448c2f96b827105d0952161","sha256":"508be73515a86474cb8e9aae18a75e684e7200e4b951d6d32e2db098033611ac","sha512":"b9e3673648e655373648f9e95913bc6077ba59f1eed18c6f7043fdbb30900f2ac6521bb3c39ee9485ee6df490e5cb727a52378ad65b24607226cb7ead5535a07","ssdeep":"384:+7QKIiNvnljMgp3TC0DcBvoQn+VHHejpjSwKQKWlADojdC4h/+URV+kmcBPoPMBZ:UI0ljMKAvoQnsHHUEWlAS91/PoPKj","tlshash":"e7b27d7b1aebe84d7e70482550343e963cbcac83aa9566f09d1c17f264de3518acc8b5","first_seen":"2024-08-19T19:47:54.893151Z","last_seen":"2025-12-02T08:25:01.652339Z","times_seen":35,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/b25d37216425034b6695ec3c3119d07d.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.013Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/b25d37216425034b6695ec3c3119d07d.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 31979\r\nConnection: keep-alive\r\nAge: 2320168\r\nCache-Control: max-age=31536000\r\nLast-Modified: Sun, 14 Sep 2025 07:59:16 GMT\r\nNw-Session-Id: 202509141559164A01CCE5402A97100ED1vzz95012b\r\nNw-Session-Trace: 2025-09-14T15:59:16.865972553+08:00 89\r\nServer-Timing: inner; dur=97\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 0e73b40526d10d37b6f85ea3262eb3f4\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Sun, 14 Sep 2025 15:59:16 GMT\r\nX-Tt-Logid: 202509141559164A01CCE5402A97100ED1\r\nX-Tt-Trace-Host: 0145be3d757d7f5d1525a2aeea25414fec99912dedc3375475e1439bd0d248e8a5a80d09cb3c74a10107f6afa62cb7921ba6d0251fabc27bce22e817d10d13edf5eac46e7fe08c3376aa7aa8e1543b7d77e789640723aa35411dc90fc67d6cd3a13022c7cbd4b096be83d32a0b4b16d2b2\r\nX-Tt-Trace-Id: 202509141559169d48869ff3f01F63BB93\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":31979,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 174 x 174, 8-bit/color RGBA, non-interlaced","md5":"8caf7451074b34f386ec4b6a64923a94","sha1":"d6af03924fcecb3247c28cf82a0de3cec7956949","sha256":"4a287bb739bfdd3e7b6426a741e3d89c5834733936c28a5d7f6d040a3b9c7f20","sha512":"8378114fe3bd1e60279b5ecf2025f4ba244bfd4099ec4fc0e3b3594de907a85512a67d63130713de06655825ee4bd53faa42e1e4803c08902ea7ce93b479e53d","ssdeep":"768:4pOgFGlqNtjKmq5lQNSbIjNmCsDUiJYnpZBObLZpMT2+ucl:4pOgIlqvju+RmXDU2Y2+D","tlshash":"07e2e1ff49a08ca80a82f422de3bad73d9fdacfc9594d855c8951bc0362677a0f94117","first_seen":"2023-07-08T08:51:56Z","last_seen":"2026-02-28T08:01:51.763107Z","times_seen":39,"resource_available":false,"data":null}},"time_used":461,"timings":{"blocked":440,"dns":0,"connect":0,"send":0,"wait":18,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/4eceaeddae174577aa2aed681907c7f7.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.019Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/4eceaeddae174577aa2aed681907c7f7.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 11216\r\nConnection: keep-alive\r\nAge: 234675\r\nCache-Control: max-age=31536000\r\nLast-Modified: Wed, 08 Oct 2025 11:17:28 GMT\r\nNw-Session-Id: 20251008191728EFE133A3CA6DF0BBB1DFlp2v5012b\r\nNw-Session-Trace: 2025-10-08T19:17:28.255378098+08:00 18\r\nServer-Timing: inner; dur=21\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 3a7d5cec272ba0c4464527dd0ce8a010\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Wed, 08 Oct 2025 19:17:28 GMT\r\nX-Tt-Logid: 20251008191728EFE133A3CA6DF0BBB1DF\r\nX-Tt-Trace-Host: 01f9774d82b4028685a460ea2ec2699537bc5a573e190791f6375c46201b9adc94389abee548ac59e238b6d9fb69f79a6c38ba68b2d145f9ae345ef409fe85417f7663617274be5f69035ba8508b44bb86328eb86a07e6ffedef291d66623fbbdbaa57f5a52c539289897791b42c02d702\r\nX-Tt-Trace-Id: 20251008191727801ed01533be03C8B9A8\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11216,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"08229bb62039fe12f704283baf95cd4e","sha1":"af7962b5a90fc43ecf55e6c6cf7e065a567c4fb2","sha256":"8b28872fe57f7c79f27985cfa6956a8fc4325ae9c2691f1a68ab1d6e024127e0","sha512":"ac4adcf9651a29548463e23632e2c2df6d701be4b62dd50c402da6088e2d7a3b7852b52b2b61a3bded7807ab91da900c68326445a676a68f3916d462d00f0f75","ssdeep":"192:wNbgbTHvlkn2onNfBYCSABfrRxtVDhP8AOfWY6FKj3Bm2OWUtSBdyFihPPP/:Wwtk2ondSABfrRxtVhP8ffMojI2jyFiZ","tlshash":"8e32bfcfba99a96a4fe7422caf3b8c07c91c8be6439956c0e9d3913946505cf038058d","first_seen":"2023-11-11T04:38:46Z","last_seen":"2025-12-10T12:39:23.950975Z","times_seen":36,"resource_available":false,"data":null}},"time_used":473,"timings":{"blocked":455,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-24/ced01b1d61c9df8efb8523c228fbd8e1.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.142Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-24/ced01b1d61c9df8efb8523c228fbd8e1.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 09:16:34 GMT\r\netag: \"3b6f7e17ca93abb80e594409ffb60394\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 67575 us\r\nx-cos-hash-crc64ecma: 6592773785837981716\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlNzdkNzJfODU3NWI3MDlfZjU5Ml8xOWQxMWIyZA==\r\ncontent-length: 57502\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 2277967313773571924\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":57502,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"3b6f7e17ca93abb80e594409ffb60394","sha1":"6bfa383bf912b09592b203c01411c8f6f2cdfd38","sha256":"c1d5a15ad31b0d55ea34bc91b00e7e0345fc31180054c6150ad50fe8d3fbc8d4","sha512":"38cb2655e9f6ad6c2eaa5face5bb670bfde798e567c7feb58ce1201033340ddeeb5db2a2914a8d0a152bb1ec00bebfd10b285e61bac9ef56fc17a83d0095d59d","ssdeep":"1536:Nr/bD7zhZyeIp03F4l/jSxr4clF9Bfff9l:VTCNB1jg79Bfff9l","tlshash":"ef43027c34b55d4a8782bfe5877fc3433bd6a9fc836b991049ee4e18a484f0631a5b24","first_seen":"2025-10-11T04:29:42.538123Z","last_seen":"2025-10-12T03:59:10.532303Z","times_seen":2,"resource_available":false,"data":null}},"time_used":739,"timings":{"blocked":643,"dns":0,"connect":0,"send":0,"wait":38,"receive":58,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-PXGC8E19BB","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:34.021Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:40:36 GMT","end":"Mon, 15 Dec 2025 08:40:35 GMT"},"fingerprint":{"sha1":"40:7E:33:E9:D5:23:31:43:6B:CB:8C:02:99:3E:C0:A1:96:B1:B2:DE","sha256":"BE:00:72:E8:21:36:BF:F1:E7:F3:E5:B6:86:FE:98:10:97:9F:3C:C4:3F:0A:F8:4D:E4:62:64:B7:70:FA:56:25"}}},"request":{"raw":"GET /gtag/js?id=G-PXGC8E19BB HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 11 Oct 2025 04:28:34 GMT\r\nexpires: Sat, 11 Oct 2025 04:28:34 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 141359\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":424887,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"88243d5bdcc41fb68e42df30fec41b0c","sha1":"abcb32305f2360433dee4d2cccd573a2c7839443","sha256":"bb41b9835de91abdd7fe53d93ed93ded8071e3912eb41c740f214b364b7e606f","sha512":"b907e22dd735a54c5eb84a53e27efef32856a78036e6af50b4a50c79812de0612ef1abe006590a18167ba7083fac0f72eb39b8be001698c68310d3d8ec11a8b6","ssdeep":"6144:pBP/yp2f4tk0uwbWZJT+Nju5204O0NsYXdXAQY:nSYwm0KZJu0O8","tlshash":"1b9419de73d674225396f078503f018ba57b28a2b44cc89af189cde42e74a9a4177f7c","first_seen":"2025-10-11T04:29:42.542147Z","last_seen":"2025-10-11T04:29:42.542147Z","times_seen":1,"resource_available":true,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bflives.qdmeron.com/2025-10-11/sd-2-3878569-screenshot-12-28-04-1493x840.jpg","fqdn":"bflives.qdmeron.com","domain":"qdmeron.com","tld":"com"},"ip":{"addr":"43.152.140.79","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.149Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bflives.qdmeron.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 30 Jul 2025 00:00:00 GMT","end":"Mon, 27 Oct 2025 23:59:59 GMT"},"fingerprint":{"sha1":"76:42:1F:7F:36:0C:D5:BA:3E:45:08:42:5F:15:E7:AE:9E:EB:49:D4","sha256":"EC:83:EC:71:38:6D:95:72:85:07:CE:39:F2:01:EE:C6:20:EB:13:D3:52:6A:25:8B:88:F1:C8:8D:55:20:19:A4"}}},"request":{"raw":"GET /2025-10-11/sd-2-3878569-screenshot-12-28-04-1493x840.jpg HTTP/1.1\r\nHost: bflives.qdmeron.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 11 Oct 2025 04:28:04 GMT\r\nEtag: \"f16c1512f65467c0bb29294a2a7f469a\"\r\nContent-Type: image/jpeg\r\nDate: Sat, 11 Oct 2025 04:28:36 GMT\r\nServer: tencent-cos\r\nx-cos-hash-crc64ecma: 652881580544726956\r\nx-cos-request-id: NjhlOWRjZjRfYzk4ZTI3MDlfN2RlOV9iNzdkZDcx\r\nContent-Length: 81972\r\nAccept-Ranges: bytes\r\nX-NWS-LOG-UUID: 4095576237834293022\r\nConnection: keep-alive\r\nX-Cache-Lookup: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":81972,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1493x840, components 3","md5":"f16c1512f65467c0bb29294a2a7f469a","sha1":"7b8e51f5052e2ec3e02fd2cdac7e07f08a91be99","sha256":"f904d915fec7a8fa5bc28bb0c91ec33efca8a1f2754cfbed7b02e42838ec4bca","sha512":"0efdea842a77a1a7eba34b407932b5f880e3ab5ad05a719f16a3e4fe2f405d4396ef356e47427a99ac2a973da61ff79a0a616b12684eb7fff82ad6d83c3c40b2","ssdeep":"1536:lL7uzLZUbsYGX7zCreH2vyCVYjeib1FuBWKzf+Nhp5jezUKQRg:aleaXqreQV0b1AIKzf+vnjEcg","tlshash":"c1831246b8882357fb96b43d469e5b3491ccb3bcca4174b308c8a8de8de1f19c20b647","first_seen":"2025-10-11T04:29:42.546668Z","last_seen":"2025-10-11T04:29:42.546668Z","times_seen":1,"resource_available":false,"data":null}},"time_used":788,"timings":{"blocked":455,"dns":4,"connect":20,"send":0,"wait":23,"receive":23,"ssl":260},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/img/indexbg.af3dcc4a.png","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:32.396Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET /img/indexbg.af3dcc4a.png HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:33 GMT\r\ncontent-type: image/png\r\ncontent-length: 444432\r\nserver: cloudflare\r\nlast-modified: Sun, 29 Jun 2025 05:40:35 GMT\r\netag: \"6860d1d3-6c810\"\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jRmV3AeCf9yrL1OgBRdQ%2Bin9p5kPvJXIBdly9C1a3%2BqAM1x5oU0AaLc3lMIQ0689UOwogplXXreVpPMQ96h2rwFKrXzaM%2FOiOrVCQ3xh\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 98cb9c7e7cd4569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":444432,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 3840 x 1360, 8-bit colormap, non-interlaced","md5":"2e5bbdbaa767673bb343aad66c7b2c81","sha1":"d373136e8d73dfa50cd264cea7fcacd467c28f77","sha256":"7c558b9a5c102342f54b136d010ff63a4c770bd818acc02cf2fd95696997d297","sha512":"02e893b388c85529edd929d9ac843b15d4e4f0503924182852a6ef8d66983a6f937fd8f385ab942d169d2c5995a445b0e01d89a806b406a3192cf8d7ebfa795e","ssdeep":"6144:NxBNWxyow+cLFFNUqGdC9heQZOck8+BA56iBIzfh7NZOaCeBnaVHa17SexyUhwoO:Wyp++FUqiCWBAfezfdO0iHGzpzkhcE","tlshash":"1b9423a21ba2d4f4d10de247a7cf6a27fe2218e58b2555c910e5f18df97c2cf425a323","first_seen":"2024-08-19T19:47:54.892479Z","last_seen":"2026-04-14T10:43:52.44767Z","times_seen":39,"resource_available":false,"data":null}},"time_used":666,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":634,"receive":32,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-01-10/20f46deb73080c0421c8369985788ac2.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.133Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-01-10/20f46deb73080c0421c8369985788ac2.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Fri, 10 Oct 2025 00:14:06 GMT\r\netag: \"0fd3514df480fb5f282b8529c9eb46a4\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 102799 us\r\nx-cos-hash-crc64ecma: 13567735719943590215\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlODRmY2VfZmUxNTc5MWVfM2Y0ZDVfMTljMTgwYWI=\r\ncontent-length: 112980\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 11927469253181579367\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":112980,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"0fd3514df480fb5f282b8529c9eb46a4","sha1":"c11b408b0b25d922cab04b2f39d14f8e3e90a5de","sha256":"ea10614ef6a32c0206de72ac18ba022518c2944c0de3c1f5846e0059ab43edc4","sha512":"e7cfe92c0bad5157475eba3abe541d045480ee72c10502f39518c4584b18af6326a5d537d2e36e17751d314f5f8e27c1c8b94348929cd44f2c3ce83f22618330","ssdeep":"3072:JZQiLXDUq8rZghpJ518EDRojACBQfa5hP:jdXmApJ8APyF","tlshash":"5cb3133d2615709bbdc2e2bad6cd91ebc8d4c84632d9aaf8ce34469c974579363730b0","first_seen":"2025-10-07T04:01:57.288579Z","last_seen":"2025-10-12T03:59:10.528189Z","times_seen":3,"resource_available":false,"data":null}},"time_used":765,"timings":{"blocked":653,"dns":0,"connect":0,"send":0,"wait":38,"receive":74,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.bjxsong.com/2025-10-05/e53bc3b0bf35d05e18ed2080284b2691.png?imageMogr2/format/webp","fqdn":"jalacos.bjxsong.com","domain":"bjxsong.com","tld":"com"},"ip":{"addr":"43.159.98.28","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.162Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.bjxsong.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Mon, 24 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"A0:62:89:86:76:0D:3F:EA:FE:00:FD:08:E8:3C:4F:3C:A0:B0:1A:EB","sha256":"8D:99:E7:29:CD:E2:65:D5:C2:4E:9B:4C:AE:81:AF:6D:49:95:AC:D2:3B:95:64:74:90:FA:7A:7F:DB:09:5A:77"}}},"request":{"raw":"GET /2025-10-05/e53bc3b0bf35d05e18ed2080284b2691.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.bjxsong.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sun, 05 Oct 2025 10:05:19 GMT\r\netag: \"586255d76209db4464a3df2af6dbd5fd\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 184229 us\r\nx-cos-hash-crc64ecma: 18139447993539998819\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlMjQyZGZfZDJlZjc4MGJfMjUzNzlfMTk0ZDgzZTg=\r\nx-cos-storage-class: MAZ_STANDARD\r\nx-cosindex-replication-status: Complete\r\ncontent-length: 145950\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:44 GMT\r\neo-log-uuid: 11817728913121104451\r\neo-cache-status: HIT\r\ncache-control: max-age=43200\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":145950,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x800, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"586255d76209db4464a3df2af6dbd5fd","sha1":"b103034a050636f4e8f5ea72d2119cd81ccb0073","sha256":"1274d4d4db41ad27e1b1e9d2b3545703f456e18b6e2a2096e2e47a0a8bb7587e","sha512":"24ac444242b0e3bbe8ce516f003cc1a61c3dfeb1cbc015cf248b67b4723ed384518ab423700cba309b32b1db85ad4f7192b7e958745535112522a718b3d7011f","ssdeep":"3072:lUxE6+e0qxxSrWPZBxxcIVIjL1XYUwmmaLbz1AjoG71V/yMHH+BE:lUG6+e3xxSIuBYnMP1s1RiE","tlshash":"efe31226499e30285f492b1617f13f2d4ba9914757f43f9bd1feb0f9fb6060806047a6","first_seen":"2025-10-10T12:39:07.861433Z","last_seen":"2025-10-12T03:59:10.60146Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1809,"timings":{"blocked":795,"dns":3,"connect":28,"send":0,"wait":160,"receive":30,"ssl":788},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/img/indexbg2.50f4170e.png","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:32.251Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET /img/indexbg2.50f4170e.png HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jk.vgcpps.com/app/encryptionTypeHostRecommHotPlay?is_pc=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026page=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026limit=ZYjPspHBgH5lINhbNbxthw%3D%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=UvvAobaQDfImJtynO8x3wg%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D","fqdn":"jk.vgcpps.com","domain":"vgcpps.com","tld":"com"},"ip":{"addr":"16.78.49.61","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:33.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jk.vgcpps.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"75:81:C3:61:EB:FE:6A:46:C5:5A:9C:94:34:18:3F:55:8D:20:E4:B0","sha256":"4C:77:9B:F2:A6:23:75:72:38:59:55:81:C9:76:9A:5E:A7:2E:F1:D6:B4:4C:77:12:D7:87:AA:6D:F5:60:4A:C7"}}},"request":{"raw":"GET /app/encryptionTypeHostRecommHotPlay?is_pc=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026page=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026limit=ZYjPspHBgH5lINhbNbxthw%3D%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=UvvAobaQDfImJtynO8x3wg%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D HTTP/1.1\r\nHost: jk.vgcpps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://ii.jalalive55.co\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:33 GMT\r\ncontent-type: text/html;charset=utf-8\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nx-cache-status: EXPIRED\r\nx-server-ip: 172.31.25.156\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15488,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with very long lines (15488), with no line terminators","md5":"4db8020f1e661782f2ce906b1049da14","sha1":"aac736b835d013d84e16b96a3e2a1b57f08f711b","sha256":"47f3ea0a9742c7fd79f3c4782590f3a750dd2287bbf7e5252be175531123397e","sha512":"2dbac115a4f45de326741d4ed6ef32a74f0fdf16bb1b9cb99d70e23036efca58e115d177deee64c9aaed4ab857181dbc5e7beb8288b088c6e5c402f92cf450df","ssdeep":"384:B5HIL5fNER2vQYpZNHIHhQy2IMHXXGkD3eGw:folQYrNAWHG8ul","tlshash":"0b62d1d465df39be310f805230daa4d0337396948b2837577a5123badfe90fa2c4989d","first_seen":"2025-10-11T04:29:42.559659Z","last_seen":"2025-10-11T04:29:42.559659Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1496,"timings":{"blocked":418,"dns":0,"connect":0,"send":0,"wait":694,"receive":0,"ssl":384},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"imjk.dsuhkj.com/api/flashapi.php","fqdn":"imjk.dsuhkj.com","domain":"dsuhkj.com","tld":"com"},"ip":{"addr":"108.136.85.246","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:41.022Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"imjk.dsuhkj.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"1F:F3:7B:06:6A:3D:39:9F:C4:81:AF:8C:F0:BF:83:DE:A6:CF:45:ED","sha256":"3A:21:B4:59:39:AF:66:54:F2:27:53:9A:FF:8A:3A:0D:E0:E6:94:EA:ED:F2:0E:0A:1D:E6:4D:60:99:4E:27:4B"}}},"request":{"raw":"POST /api/flashapi.php HTTP/1.1\r\nHost: imjk.dsuhkj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jalabu6.net/\r\nContent-Type: multipart/form-data; boundary=---------------------------24308015925473523903955213268\r\nContent-Length: 318\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:41 GMT\r\ncontent-type: application/json\r\nserver: nginx\r\ntrace-id: 1bb49e1165556d1813c1b56598bb509c\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":71,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"6a9a3944eef91d2cc624e11fba3bc84c","sha1":"31893f15c8aa46fe0ab9e6904db1cea22a35553e","sha256":"815e9d98c940b51cd4cb34efcb7169a36d405ae1849141175a651779c23aeb25","sha512":"3c3de1fc3d2a20cafa66382dcbfd59a7f980a60941d4873aec05562a1255df6f57cb96b431ea0bdc176495f577bf9abbce69b4482a7bbd165da0e5d030aad48e","ssdeep":"","tlshash":"40a0222c08c028ba8388200b003b8c03000cc03233080c8882e0030f3acb2330300202","first_seen":"2025-05-23T04:16:47.083697Z","last_seen":"2026-04-14T10:43:52.440976Z","times_seen":41,"resource_available":false,"data":null}},"time_used":1827,"timings":{"blocked":735,"dns":2,"connect":354,"send":0,"wait":356,"receive":0,"ssl":376},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/js/app.e2de12a1.js","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:31.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET /js/app.e2de12a1.js HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:31 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ClJ1rn1UlEC0epfSYxnI2sgi776pY%2FXxg6fV307IGMMSI5a2qRhwtmjfz4f%2Fp0RFs1QTtfhO%2B4k7E9N8JN5Y1LK6t4lNMjXxRpX2z23zUa0%3D\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: W/\"6860d1d3-13b5d6\"\r\ncontent-encoding: br\r\ncf-ray: 98cb9c765f1bb28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1291734,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (23238), with NEL line terminators","md5":"3763bccdc3aefc5af4e5ecdab5b0a507","sha1":"bc849219c90035e562df7957a62a3511aded1bc8","sha256":"b23c6a2a9625d497978b30b7c384a8b286c14750cc1a7d08169fdd9f1ad3be80","sha512":"80bbf14502ed07cdc74049c9611690b67e458e71e01812220c4d6a4d563cc162cb6199d76b2f1887d9e8a05ba2a46b9dc7d784fff24d1f38811dff33e3ea97bb","ssdeep":"6144:xXTWh5NjexoABZoRC4CEKqVWcj3BP0X1vgtzjIt4bFOLzcEH0:xXTcNjVABM1b3BPUKzjk0OLzcEU","tlshash":"cf3509c83e64e56113b941d51027280be33dd48ec0fc92a5bb98dae574f859bb07bb39","first_seen":"2025-10-11T04:29:42.566106Z","last_seen":"2025-10-11T04:29:42.566106Z","times_seen":1,"resource_available":false,"data":null}},"time_used":667,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":667,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/201908301567148735220154.png","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.396Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/201908301567148735220154.png HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":4165,"timings":{"blocked":2598,"dns":1567,"connect":1871,"send":0,"wait":0,"receive":0,"ssl":316},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jk.vgcpps.com/app/encryptionRecommMatch?client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=rZ9P%2BX%2B6gwbmg4iWCvd5aA%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D","fqdn":"jk.vgcpps.com","domain":"vgcpps.com","tld":"com"},"ip":{"addr":"16.78.49.61","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:33.089Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jk.vgcpps.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"75:81:C3:61:EB:FE:6A:46:C5:5A:9C:94:34:18:3F:55:8D:20:E4:B0","sha256":"4C:77:9B:F2:A6:23:75:72:38:59:55:81:C9:76:9A:5E:A7:2E:F1:D6:B4:4C:77:12:D7:87:AA:6D:F5:60:4A:C7"}}},"request":{"raw":"GET /app/encryptionRecommMatch?client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=rZ9P%2BX%2B6gwbmg4iWCvd5aA%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D HTTP/1.1\r\nHost: jk.vgcpps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://ii.jalalive55.co\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:33 GMT\r\ncontent-type: text/html;charset=utf-8\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nx-cache-status: EXPIRED\r\nx-server-ip: 172.31.11.179\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18136,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with very long lines (18136), with no line terminators","md5":"7e6418da3649a4c67863593d21f4c371","sha1":"fa835d1a7ca60e081b977a05769ddb0a9b9025ca","sha256":"e49fe46ef29d7315767bd16bb4a827d29f13c45609e18a64be6bbecca08f535c","sha512":"c023f0bb184f15c41fa4cd68676c50e0e97397425dd34dea809872b70fe3b2e60fb52b34346b38061362365cf8c8d99e6d05af36a2504f6f71fc15f391cdf1ca","ssdeep":"384:NJQD4UG7+bvJ7Yv2Psy1+Ugb5axdkC1o81dWdl9RiHTcxZgo0bZ8IZKX52y:Nqd1J0v2f+UgFedkCZ1kl9RiHTNo0b+l","tlshash":"4d82c1217f8279dc83d35044d6ab486d0fabfda4a46d65cf0c0753f6904c09a5466eef","first_seen":"2025-10-11T04:29:42.470651Z","last_seen":"2025-10-11T04:29:42.470651Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1544,"timings":{"blocked":417,"dns":0,"connect":0,"send":0,"wait":744,"receive":0,"ssl":383},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/a41b7bd9bf7e51d0b0c1155e8c7f9a8a.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.027Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/a41b7bd9bf7e51d0b0c1155e8c7f9a8a.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 15877\r\nConnection: keep-alive\r\nAge: 579647\r\nCache-Control: max-age=31536000\r\nLast-Modified: Sat, 04 Oct 2025 11:27:59 GMT\r\nNw-Session-Id: 202510041927590D4EC240736FCBE9A40A85kvw022b\r\nNw-Session-Trace: 2025-10-04T19:27:59.316610808+08:00 23\r\nServer-Timing: inner; dur=34\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 94b6a5e30c2fbdc28fbbee730a2df238\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Sat, 04 Oct 2025 19:27:59 GMT\r\nX-Tt-Logid: 202510041927590D4EC240736FCBE9A40A\r\nX-Tt-Trace-Host: 01b5297f8313864cdc1b4853a828972e8c8672e4e2d9401e758bd0b6ecf3f48596e862c533033620fb47263c23156e9fb1b808d273efb8d564b8aa9845f4914bd3a4c09c1ae915fec291baf34723018f4a6c20460302dbbb0d2de9dd32b8242bd497b3bf45bd91b36cc3a369911ced1ce7\r\nX-Tt-Trace-Id: 202510041927571505050a93a1205BA872\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15877,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"c27385c63ae6894668dca5984f580b1a","sha1":"7ff51c1718b4d5444f5cdfe407cb6842a7eda2b7","sha256":"85a0362494dd4ffb7b1853833d3125f0f6163d7709ece39dcb3885b1b1c676a6","sha512":"063cab9545b12ad9db72a30d2aee8026e4f7c5659176e55f55c394e0671cb54db37c67faa556163530956d76f60d861eb9e3512bc1961c977bb8b745c6231f88","ssdeep":"384:OhmMYOip9l4L6ZhPfp8Ta15n1HgbT1D1zuKpCMUC:OUM5IDZhJ845no9JuKk/C","tlshash":"7262d025b3d18de27bf1cee6c07a2371049b12d0fbd4758ec492bac9d8b220e9969412","first_seen":"2025-03-30T02:59:21.109946Z","last_seen":"2025-11-29T07:43:37.923335Z","times_seen":4,"resource_available":false,"data":null}},"time_used":490,"timings":{"blocked":471,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-24/d3ade478c7b9e54de92bd5fd686480a1.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.158Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-24/d3ade478c7b9e54de92bd5fd686480a1.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 09:16:35 GMT\r\netag: \"435d9406ba7b434f61c657d057664ed0\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 67957 us\r\nx-cos-hash-crc64ecma: 17368253166110700796\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlNzdkNzNfODZlZjc4MGJfOTdiNF8xOWM3YjQ4OA==\r\ncontent-length: 69582\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 13015800896741006881\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":69582,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"435d9406ba7b434f61c657d057664ed0","sha1":"6840174332d65a2e7b48144fe7b5939387cec105","sha256":"a45cbb227bc69791d372a3d7d5d450d97974f22c4cb22a6b952587b0f9b25e3f","sha512":"1c1940e7efd81c11c85b8b3851fb10cfe044443a9c42ecced7b6faadb97dcc8a7cea690968a7dd463cf090d8fe0371661e59391d5c5268af19a7f1bc1411d7b5","ssdeep":"1536:iMvoFsJI9KYjKQizI2UdF6kYK4/CsWP/kfzmDg8g4rPxnoP0PCHnA:ijxfjKQAI20FSK4oP/4zQgKrPPPknA","tlshash":"1663f1e5a7e4031077728cbd3ed51376c115619a295ebb8936b2a64467822fff240f32","first_seen":"2025-10-11T04:29:42.570652Z","last_seen":"2025-10-12T03:59:10.606708Z","times_seen":2,"resource_available":false,"data":null}},"time_used":768,"timings":{"blocked":630,"dns":0,"connect":0,"send":0,"wait":116,"receive":22,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/FJ5xo25yp2yuVRVk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.410Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/FJ5xo25yp2yuVRVk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:32 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:32 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:32 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3182,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x100, components 3","md5":"c134c3a4aef8289249aed1b5ff1b937c","sha1":"70a4ca87456759676b7265079f6c083355257f6a","sha256":"f0bead920beedcba8377db4fb8b7e0fba96ac1849fe29c432801901a71bbd053","sha512":"3da92ce1a2add23b9d376eac91ffa1b60312e0f7acb1cd498913c57d7af0fb8da4eeb1531ef65a7bccdb9037a1fb2e0440af787aa5d23081cd9d10056d4cd4cf","ssdeep":"","tlshash":"79618363e5c548c46b2c89ec304e01ef5905af62da80cdff5640d798e632ef33256e84","first_seen":"2025-10-11T04:29:42.573747Z","last_seen":"2025-10-11T04:29:42.573747Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2827,"timings":{"blocked":2477,"dns":0,"connect":0,"send":0,"wait":350,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/css/app.103b2def.css","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:31.105Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET /css/app.103b2def.css HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:31 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KVTSoJrDn6ddu3zMUW9SYPPKtVFyl7FgOVDJfbgLyInlefja2uTLIOxWzq6VCx0N8gfIig23ercWEQLXC8dg1oa9trLgcA6HmtzA8uJSkAQ%3D\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: W/\"6860d1d3-79fc\"\r\ncontent-encoding: br\r\ncf-ray: 98cb9c766f25b28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31228,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (31228), with no line terminators","md5":"509b9e2add824d4aa670e216c6165ef2","sha1":"fa1966e3000a7bb8b68d97a9b85118853e803828","sha256":"c32fc62ac40a047f983aed329ae869590010e37304dd0a10eb271457625fefbf","sha512":"a41191601dcd2c1207d50a6e7820ab18936d14adc11f814edb09374faf5d12a3e9cbaba06cdac9722767ca77fb696f732f7c3ebe570b63a8eea5c5198bece4ea","ssdeep":"768:Rz9Xq4YnA29wV6ARadozj1q9ENpOhlP1/DLN4q3vhTezdro80Ld6HTJ:zXYA29wV6A0Oj1qCNpaLd6HTJ","tlshash":"cee28672320d20196933d07aa4d05fce391cb6b3a3938799ac6676398ec3ddb357664c","first_seen":"2025-06-29T08:10:24.387255Z","last_seen":"2025-11-30T20:35:40.783132Z","times_seen":27,"resource_available":false,"data":null}},"time_used":656,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":656,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"collect-v6.51.la/v6/collect?dt=4","fqdn":"collect-v6.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":80,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:33.648Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /v6/collect?dt=4 HTTP/1.1\r\nHost: collect-v6.51.la\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Length: 325\r\nOrigin: http://ipasviarezzo.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 212 Unknown Status\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: http://ipasviarezzo.com\r\nAccess-Control-Allow-Credentials: true\r\nServer: TencentEdgeOne\r\nContent-Length: 0\r\nConnection: keep-alive\r\nDate: Sat, 11 Oct 2025 04:28:33 GMT\r\nEO-LOG-UUID: 6713382251430642029\r\nEO-Cache-Status: MISS\r\n\r\n","headers":null,"cookies":null,"status_code":"212","status_text":"Unknown Status","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":463,"timings":{"blocked":93,"dns":73,"connect":19,"send":0,"wait":278,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/0add24fc964de3ea25e83417aa301f81.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.003Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/0add24fc964de3ea25e83417aa301f81.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 9190\r\nConnection: keep-alive\r\nAge: 2526726\r\nCache-Control: max-age=31536000\r\nLast-Modified: Thu, 11 Sep 2025 22:36:38 GMT\r\nNw-Session-Id: 2025091206363897C326FCBB224CE0491Ab5j25032b\r\nNw-Session-Trace: 2025-09-12T06:36:38.985503228+08:00 57\r\nServer-Timing: inner; dur=59\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 84dd261b36602a17eaa95545b9b3d89f\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Fri, 12 Sep 2025 06:36:38 GMT\r\nX-Tt-Logid: 2025091206363897C326FCBB224CE0491A\r\nX-Tt-Trace-Host: 01a869632949fd29de3258a7b148cb8e065afebcd4400964a1adf154eae2cbca65f4c48295be3f36b85b716252a127dcaaac906470b933d0167caf3559b19ce85d892ecd756602cfc5d0e7ae1fedfb1e003f922bb15b9b1e4f0228b0b9b7593b64ed87935ebbe29e020dcb1cfeaeb98e4e\r\nX-Tt-Trace-Id: 20250912063638ab0f8e4fc6370020815F\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache02.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9190,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"a15d7043e24d9dace2b924aeb1603591","sha1":"0cc86241e792fe7bdcb2dea48755d0b1a342a806","sha256":"38bd599d427493a842aa24274295045e9b3f153a4ab974d7ec361a8f587edda8","sha512":"e54bdb39ff5c75b3a374f4788c8ed6088579478fe253da2433a91520b4b607eba16d856fa9e53bc40705eee18801aaf4b288e73c5d7c773422fbe09e5af447af","ssdeep":"192:KzXwPF5C+g5HKlC3zM8QbIkhaxA4WtFXGaVXd2IPoiQsfRZ:3nfgN33zM8QnhWA4WtFWaVXdvPo7sD","tlshash":"3412b0f597c9412aa248489c89484f6cf3313d89b9590bc4f2862cfba8e7db0587482d","first_seen":"2025-03-18T07:34:27.608068Z","last_seen":"2026-03-28T14:19:38.465947Z","times_seen":144,"resource_available":false,"data":null}},"time_used":454,"timings":{"blocked":436,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/css/990.31cfbc22.css","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:32.407Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET /css/990.31cfbc22.css HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:33 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\nserver: cloudflare\r\nlast-modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=2,i=?0\r\netag: W/\"6860d1d3-2efe\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bbwme9KT6S4ma5oa%2BHP1T1T61PN%2F5v0s%2FYpuGg%2BzLKMAI21n%2F5Tsf7Du5JFh%2Fc6uGDyzxX%2BGu6%2BKJsI48TfziQmGbSLwn0ToBW8afU9o\"}]}\r\ncf-ray: 98cb9c7e8cd7569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12030,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (12030), with no line terminators","md5":"270109b893c4d708ab76b4548c36844b","sha1":"338bf5b1fac5d29ea496b97183f54ccc759a9b9a","sha256":"b81ba46f8d82a2bc02821179dcd6bbc8300ea0b1b03190cd4c47ea7194f8e20f","sha512":"02af53ffd485adb65faf6e76a121305e10b15afaf60570e3b4bb3bbe9294473332e57393e460f079b1fa5e8a21eddfabf7edc540b506d9db1c0973e9520bc330","ssdeep":"192:/aGnq1Bu9rTvJFco2HbgkkeNbfDHXgXjXfkXfiXf1y8XfnXfxXf3XfDdXfD0XfDa:SGnAB2rjTco2HbThhfDHXgXjXfkXfiXH","tlshash":"76422311234d608ce83fe1426cc4469f5425e2a3e2d3d2deb51f3b6e49c7de2a85178d","first_seen":"2025-03-30T18:40:13.393726Z","last_seen":"2025-11-30T20:35:40.776234Z","times_seen":30,"resource_available":false,"data":null}},"time_used":639,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":638,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-24/d60d73cd19f16d8eb70e9858def01d51.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.164Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-24/d60d73cd19f16d8eb70e9858def01d51.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 09:16:35 GMT\r\netag: \"3b6f7e17ca93abb80e594409ffb60394\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 68370 us\r\nx-cos-hash-crc64ecma: 6592773785837981716\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlNzdkNzNfMTg3NmI3MDlfYTJkNV8xOWI3ODEyOQ==\r\ncontent-length: 57502\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 14803606029413720986\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":57502,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"3b6f7e17ca93abb80e594409ffb60394","sha1":"6bfa383bf912b09592b203c01411c8f6f2cdfd38","sha256":"c1d5a15ad31b0d55ea34bc91b00e7e0345fc31180054c6150ad50fe8d3fbc8d4","sha512":"38cb2655e9f6ad6c2eaa5face5bb670bfde798e567c7feb58ce1201033340ddeeb5db2a2914a8d0a152bb1ec00bebfd10b285e61bac9ef56fc17a83d0095d59d","ssdeep":"1536:Nr/bD7zhZyeIp03F4l/jSxr4clF9Bfff9l:VTCNB1jg79Bfff9l","tlshash":"ef43027c34b55d4a8782bfe5877fc3433bd6a9fc836b991049ee4e18a484f0631a5b24","first_seen":"2025-10-11T04:29:42.538123Z","last_seen":"2025-10-12T03:59:10.532303Z","times_seen":2,"resource_available":false,"data":null}},"time_used":752,"timings":{"blocked":625,"dns":0,"connect":0,"send":0,"wait":113,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/H3E1qUEaLKW0VRfk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.407Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/H3E1qUEaLKW0VRfk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2918,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x106, components 3","md5":"71b349f22e0b7301d4209eda84fc2901","sha1":"b328a484d9eafe90ab4283923b374ededb9356ac","sha256":"3e4cdd1a2595ca69551f4c599622c6cf33e084147b67fe6d601f6fb9ee413262","sha512":"c5a652678f737eb999d65b4201d4900feb2f3be0edc7fdbc92284f7870acadf8a4ca8c7d1b232d006416feccd685a0d70c4da3b5cd23d0236dd4db0795db3c3d","ssdeep":"","tlshash":"0b514b2b906a13c08fa7cd71968730e7d4ee9c43b7d1723c42649beceda0d70560d898","first_seen":"2025-10-11T04:29:42.584288Z","last_seen":"2025-10-11T04:29:42.584288Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2482,"timings":{"blocked":2128,"dns":0,"connect":0,"send":0,"wait":353,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/FzSfLJkcqzHtDKVk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.408Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/FzSfLJkcqzHtDKVk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3882,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x104, components 3","md5":"e1d88bdf458dc78871030cbdf12e826f","sha1":"8925d417ad0f3607db13063a2a729999bb2e984b","sha256":"e09adfda44b6b5058689e2efd68176ae5a3b4d046b59ad113b03d690216b6403","sha512":"290fe93e96ea123c6ec0a5dec191ae75ed49ab9d06e6e70cf80573c014a15ecb42969166f83d981d82f1c1e5c119541d904b2685752ff8af9452605371b6e156","ssdeep":"","tlshash":"62818e6c7f16e6548b157a7291592fe655ee0cc26d1fa33203602052cb30cb142b8c0e","first_seen":"2025-10-11T04:29:42.586047Z","last_seen":"2025-10-11T04:29:42.586047Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2479,"timings":{"blocked":2128,"dns":0,"connect":0,"send":0,"wait":350,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tj.77livetj.com/api/logAction","fqdn":"tj.77livetj.com","domain":"77livetj.com","tld":"com"},"ip":{"addr":"108.137.53.211","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:44.555Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tj.77livetj.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Mon, 15 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"20:DF:CE:A9:15:5D:53:30:3D:2C:E3:83:A8:88:14:84:F4:8B:8C:FE","sha256":"C0:9D:F5:CD:62:5E:67:F9:3D:C7:09:8A:AA:34:CF:27:50:5E:2B:95:DC:DA:2C:3B:5F:4F:4A:3D:BF:96:56:74"}}},"request":{"raw":"POST /api/logAction HTTP/1.1\r\nHost: tj.77livetj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 194\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:44 GMT\r\ncontent-type: application/json\r\nserver: nginx\r\ntrace-id: 5ba44ab865556d18cfa3e75d64bde3eb\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":38,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"a5b687c4bac5b5dabb226376827e10f3","sha1":"fb1977917609cec438b30020194fe26282651639","sha256":"ee3a5119d008c85725c2f64e936faa9426387aac7093ace7183d6088b40041d4","sha512":"eb4011815404acda6a785fe3f07895c6e5d5db1907e74b528926b7c49c31127cf5cdb35a55237a8205fcd6205f985dc54565406e5e2b26841ba7930da32cfc0f","ssdeep":"","tlshash":"aa800022280e0cc30c03b8c88c8c0b00a0e822a08280c300ce8ca23cca0e0aab082830","first_seen":"2025-04-14T23:31:01.346022Z","last_seen":"2026-02-25T03:25:48.120993Z","times_seen":16,"resource_available":false,"data":null}},"time_used":359,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":359,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/b2fd66eaeaeee055d189e285785ba3f6.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/b2fd66eaeaeee055d189e285785ba3f6.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 35844\r\nConnection: keep-alive\r\nAge: 696070\r\nCache-Control: max-age=31536000\r\nLast-Modified: Fri, 03 Oct 2025 03:07:35 GMT\r\nNw-Session-Id: 20251003110735AD2E58DA544AF2D77E3Fh7q54012b\r\nNw-Session-Trace: 2025-10-03T11:07:35.252376318+08:00 88\r\nServer-Timing: inner; dur=94\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 58b49bde70f8a22e5064318384ad641d\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Fri, 03 Oct 2025 11:07:35 GMT\r\nX-Tt-Logid: 20251003110735AD2E58DA544AF2D77E3F\r\nX-Tt-Trace-Host: 019b95ec5b28b0f322c88f99d250ecb4c4dc1967ff6446815969ab3dc37c52bb266b4be84264767cf7d3dbfdd981cfd2e4286c3f7007ef678fd275a4424f3336422c1f5c487e19c29817dc85760ec031f88ad1a1d91122d15e48c9b48118b45ccc5163eb49262320c124248f0c9e39e59bf570d582bce29f8910052739d563b37a\r\nX-Tt-Trace-Id: 20251003110734847e33fa6f8909C06C83\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":35844,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced","md5":"cc663a7acb045af0dea6522c095baeb8","sha1":"8762ea46eeedacc02dc14132d078eed3b17268bf","sha256":"0e7a4e83adf1487a4fb660a6e5c91c2510c993101f57bd9d9a15d16bebe9b2f9","sha512":"5d4b941857bf912c6488445fc48a8ce9d6909b678779f52a3a88c7e87243e8c1711f0a8bc94ffa085d4eeeb7b336498202a1872e0e40fea58e16f1222bb57563","ssdeep":"768:xLRmhGv6oMpJVIDbitHRICVh2BaQkHW2KM7RfUeo4LhDjTOND7cA3:C3JVIDsRIIHWXBQhvaNMA","tlshash":"7ff2e1e53f93b8f80af3994e366b171634d9d792f5d8300c625e6cc14831ba78893e90","first_seen":"2025-06-29T08:10:24.412146Z","last_seen":"2026-04-19T09:02:04.596086Z","times_seen":31,"resource_available":false,"data":null}},"time_used":462,"timings":{"blocked":441,"dns":0,"connect":0,"send":0,"wait":18,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.708Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:31 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 05:02:34 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FxFvDuj%2FjkYbMR3jxYY5OhBAvLl2kZaYe%2FP0FKTYqlWw5ETCP0voPpmdwu8sHJsaz0r1ArBmfJSQnwG1j11%2B5F5cK79%2FSnNToX%2BivxZgTtw%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 98cb9c717afbb28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1220,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (668)","md5":"b15226a1bd068224daf06f4e2be15a8e","sha1":"cddaed1a35bbd16dcbbe92720313aa681377e948","sha256":"64cf9183b55a90e1e92996b93bde54665c3e3d03c227d8ca2752f31314d4c4d0","sha512":"f6179b63a9e7bf00aae91222b46bbfc1d803639dfb3bf9c158ee36ecf657bcd9a0c8f95a4c84d5262b97eff695d0f12a5b9184479cd2d6d630f10d32ef664c95","ssdeep":"","tlshash":"9d2111a7dc104c4c3b720b76d9a6b90c96d7541aa151dc80f9dd50af0fe0fc1884be48","first_seen":"2025-09-23T08:01:03.05286Z","last_seen":"2025-11-30T16:03:10.465996Z","times_seen":19,"resource_available":false,"data":null}},"time_used":1299,"timings":{"blocked":0,"dns":54,"connect":1,"send":0,"wait":695,"receive":0,"ssl":549},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/js/990.d6dbe4e7.js","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:32.408Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET /js/990.d6dbe4e7.js HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:33 GMT\r\ncontent-type: application/javascript\r\nvary: accept-encoding\r\nserver: cloudflare\r\nlast-modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=3,i=?0\r\netag: W/\"6860d1d3-8508\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=q9U%2B4iNvpMXQ3CY4pfD16h2cmkAaJ5YMMwDvx%2BABaEDPxP5Az9XxDg%2BezXQbUe2OG9NUey9iij6on1fvRFZHT0XOQfeKQv%2Bm4iVpYiHy\"}]}\r\ncf-ray: 98cb9c7e8cd8569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":34056,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (33998), with no line terminators","md5":"308a8273c56746ae2530bf22b1635d46","sha1":"f9c8175adfbb5b832568e8269b259b7ad3796399","sha256":"2794e6f12ab6f99301717aa288d44d531115cf88b2aa742907fae76b7fc730b8","sha512":"df077fbbf86dfd7deb057857f6ae215c099d3a048cf1382323f70e6e5bc7030bb863e284d55530be5d72ddddad52d6898d72183933b24d139654ed530f14b5f2","ssdeep":"768:ZNLn/2zlP6FEeZudITKX8mChddEo8S9odcoYgbYA3o:ZJ/AAxudITKsmnHS9HokN","tlshash":"e7e29e3b2556bc8ebb301804214da5c43d377f67a34455fbb2b85eb9218fe71624b2b8","first_seen":"2025-03-30T18:40:13.405389Z","last_seen":"2025-11-30T20:35:40.776929Z","times_seen":32,"resource_available":true,"data":null}},"time_used":638,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":635,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/js/chunk-vendors.de2adece.js","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.189Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /js/chunk-vendors.de2adece.js HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:40 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-183f32\"\r\nAccept-Ranges: bytes\r\nContent-Encoding: gzip\r\nAge: 1\r\nX-Via: 1.1 PS-CDG-04koU196:10 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf8_PS-CDG-04h2Q194_40453-38387\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1589042,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators","md5":"fd5f7e570e9052cf88a7e1fb17179beb","sha1":"15b9f9e1154273ee446a16c02ec95c69df8d2249","sha256":"a2b3a82ecbea76710f37c012806926cf73691d0025e55fda13984e4085c92fb5","sha512":"adbebc0191064329a3745a93a411622b80fe6af1f3844935300f190c1936f6887106b446d51e51e8df0ce5e2eeac16337f1c7b23e92418e1388f215005d84364","ssdeep":"24576:2DAd08fv7xt6oHo+iRS4VWs2IzsE2RiNnmX6EjM:2DAd08fv7xt6o94VWjIzsE2RiNnmXdjM","tlshash":"95254bc83191b0a543f755e6107b000ef33a6659640988b4f2a8f8da7c7bd99927bf7c","first_seen":"2025-08-06T11:52:27.282111Z","last_seen":"2026-04-14T10:43:52.437227Z","times_seen":29,"resource_available":false,"data":null}},"time_used":166,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":131,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/68928fa918d769d415018362bdcd6bb7.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.992Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/68928fa918d769d415018362bdcd6bb7.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 24556\r\nConnection: keep-alive\r\nAge: 2287933\r\nCache-Control: max-age=31536000\r\nLast-Modified: Sun, 14 Sep 2025 16:56:30 GMT\r\nNw-Session-Id: 2025091500563035DADC4C92EF07FCE053zb296012b\r\nNw-Session-Trace: 2025-09-15T00:56:30.267800873+08:00 68\r\nServer-Timing: inner; dur=78\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 73668f3bedf516b2569c81bd29c7a918\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Mon, 15 Sep 2025 00:56:30 GMT\r\nX-Tt-Logid: 2025091500563035DADC4C92EF07FCE053\r\nX-Tt-Trace-Host: 01e44d33938dea7fde4eecf838582dadcaaa42843c240c2bae4c07c6fc58c831bdd9661d87a71161e5dc90e03574cb63f504bb3d92fedb7908fb89baf86d981c99467787d7a3eb04b77a527b6c089d16a725b1531885af7da54a38b7e072c65cff0aa5071364374c49c67cd3a847b741870deb4c3481587bed094614d538f5c125\r\nX-Tt-Trace-Id: 202509150056292f7facb4483e0373140F\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24556,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 139 x 146, 8-bit/color RGBA, non-interlaced","md5":"be5498b515c9f03377c23be8b964413d","sha1":"95c0cb26918f38f59dd944d4733922e67a926f95","sha256":"66ab6ddeb38b7f619629fe06f148e145a52acc2e985ecd1ebcadba75636a3224","sha512":"6478a808287644ee8425431b6ef93163da8e64efdeb8dace473b77969e56a2bf620063ce2ecf728311822419433af9d024b13d95f2b91059fedf8fd3350753f0","ssdeep":"384:C3XtkdjCguvQlC5olnEa0CdLUsWDMpNiMQ846QJ3n96jYy6pjaavK/tX1:2wpuSEwLU9qiMxXaIJIuaS/Z1","tlshash":"0ab2d1316a6729132de9ea6d07385d7ee0cc4a231eed012520157d1e1976f1d23a5cbc","first_seen":"2025-03-30T02:59:21.11599Z","last_seen":"2025-10-19T03:37:03.747637Z","times_seen":5,"resource_available":false,"data":null}},"time_used":439,"timings":{"blocked":420,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/6dc3eb40ea6dc46078c680ca9d456356.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.994Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/6dc3eb40ea6dc46078c680ca9d456356.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 28358\r\nConnection: keep-alive\r\nAge: 1931778\r\nCache-Control: max-age=31536000\r\nLast-Modified: Thu, 18 Sep 2025 19:52:25 GMT\r\nNw-Session-Id: 20250919035225FC50E10EFFE30AB603819hh7n022b\r\nNw-Session-Trace: 2025-09-19T03:52:25.60490303+08:00 214\r\nServer-Timing: inner; dur=221\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: b7d7e0ea6af18f14d893eb1bf3fb7df2\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Fri, 19 Sep 2025 03:52:25 GMT\r\nX-Tt-Logid: 20250919035225FC50E10EFFE30AB60381\r\nX-Tt-Trace-Host: 015a08505439bfea1ebf761c88f7e05bbacf3dbdd8100c4ff774c08052b8494ca558e195331459614586c4435a6243fdc15489d3f56e4420bc1a12efd3b355e46bf57cb90032637be8a30c03a6b0b3ec41f5a216951384c98c115a6fb784cbe19c99842305413a81d6c507bdc0a3603975\r\nX-Tt-Trace-Id: 20250919035225510a5ea1455020D39FC0\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache02.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":28358,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"e0ec42adaed02ce18e57814024b2524b","sha1":"be93f27e62d0a06feb509fc1fbdec387b3171bca","sha256":"f837a451873197c5e902a5624861062d1f7534a2c733ba403859063b3af1b4f2","sha512":"f0e97f4082e07e8a8d07b8cbd515981bd79f40aea790598b414d33fd5ba40c6f1acdaead4715f73edb6e6b8473c5ab4a32e3fb818c3062392076a6d764359e9a","ssdeep":"768:cqCi8IV+FRvqYR9pik3OL2Dtve3cHM0c2FgZu:WivV+F3Rrik3OC5M0c2Fgg","tlshash":"a2d2f1f4d7ea60dbcd9f2c8a0dbdd9cff122390aed689660e31d6a7c901a4505ac57c0","first_seen":"2025-03-30T02:59:21.129183Z","last_seen":"2025-12-07T04:35:28.549223Z","times_seen":13,"resource_available":false,"data":null}},"time_used":445,"timings":{"blocked":426,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.bjxsong.com/2025-10-09/e826d9199ef12d6c855f64d83fa1422a.jpg","fqdn":"jalacos.bjxsong.com","domain":"bjxsong.com","tld":"com"},"ip":{"addr":"43.159.98.28","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.459Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.bjxsong.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Mon, 24 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"A0:62:89:86:76:0D:3F:EA:FE:00:FD:08:E8:3C:4F:3C:A0:B0:1A:EB","sha256":"8D:99:E7:29:CD:E2:65:D5:C2:4E:9B:4C:AE:81:AF:6D:49:95:AC:D2:3B:95:64:74:90:FA:7A:7F:DB:09:5A:77"}}},"request":{"raw":"GET /2025-10-09/e826d9199ef12d6c855f64d83fa1422a.jpg HTTP/1.1\r\nHost: jalacos.bjxsong.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 10:06:33 GMT\r\netag: \"c517667fc0790426e971892261ecde49\"\r\ncontent-type: image/jpeg\r\nserver: tencent-cos\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-cos-hash-crc64ecma: 641125033268038298\r\nx-cos-request-id: NjhlNzkxYWZfZmUxNTc5MWVfM2Y0Y2JfMTlkOGM1MDM=\r\nx-cos-storage-class: MAZ_STANDARD\r\nx-cosindex-replication-status: Complete\r\ncontent-length: 248890\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 14733164144737419488\r\neo-cache-status: HIT\r\ncache-control: max-age=43200\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":248890,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x900, components 3","md5":"c517667fc0790426e971892261ecde49","sha1":"e0cd3154fd7af5ed4bdb8df902ac5092dbfb2aed","sha256":"6fabc27dd68466103b265a4f7edfd2a8bbd5502c62d3e0f9f64bb6bdf5e1ea0a","sha512":"6d24f285910c5035fe5815becead6ec1fe1bcc3c06a873aa75b1261a80e3f6be733f62ddf8b8b17ab2b21da75a4e77fb11582c95e3123d14ca1e0e63d1bd5c3c","ssdeep":"3072:y2ZVSnKHFwYnYPAFdsBnrkpDRY0PsrzTJYWRUbveXmU+WSIJ4MuFLfP1VvMPuEc4:rVSn5OY4FqBrmUqDfU+WiNbMm5a1","tlshash":"653412ef7b68902fd671823387a38bd0f2402d75a7ddd15ea8517170a6a1a4f3311ee2","first_seen":"2025-10-11T04:29:42.595601Z","last_seen":"2025-10-12T03:59:10.614702Z","times_seen":2,"resource_available":false,"data":null}},"time_used":627,"timings":{"blocked":352,"dns":0,"connect":0,"send":0,"wait":234,"receive":41,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jk.vgcpps.com/app/noticeConfig?client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=XIBK%2FNWDY7OVcZtP4rtlEA%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D","fqdn":"jk.vgcpps.com","domain":"vgcpps.com","tld":"com"},"ip":{"addr":"16.78.49.61","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:32.395Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jk.vgcpps.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"75:81:C3:61:EB:FE:6A:46:C5:5A:9C:94:34:18:3F:55:8D:20:E4:B0","sha256":"4C:77:9B:F2:A6:23:75:72:38:59:55:81:C9:76:9A:5E:A7:2E:F1:D6:B4:4C:77:12:D7:87:AA:6D:F5:60:4A:C7"}}},"request":{"raw":"GET /app/noticeConfig?client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=XIBK%2FNWDY7OVcZtP4rtlEA%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D HTTP/1.1\r\nHost: jk.vgcpps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://ii.jalalive55.co\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:33 GMT\r\ncontent-type: text/html;charset=utf-8\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nx-cache-status: HIT\r\nx-server-ip: 172.31.28.253\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":472,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with very long lines (472), with no line terminators","md5":"24c31a76a1623c71633bc3e83298bce6","sha1":"ec74374649ff5c4ad27d7eecd34b3c4cd661316f","sha256":"05cd3c30413478e5c04cc22c7115b138a1555acd1f0070b88fad9628d413eed8","sha512":"4d07caf3b7146e62f8396f8b0a683ccf7dbedd6a72d2587e24b9f77588b3f146db54c66b2d249cb43ec1d24b3da33ecf13fb4e7d699e943ad57d314c244c8e42","ssdeep":"","tlshash":"01f054a30017bf2e0bc8051f190a525927a5df2d208a857651192986c14d3d8233a51e","first_seen":"2025-06-18T12:56:11.28857Z","last_seen":"2026-02-25T03:25:48.278974Z","times_seen":20,"resource_available":false,"data":null}},"time_used":1452,"timings":{"blocked":-1,"dns":117,"connect":356,"send":0,"wait":358,"receive":0,"ssl":620},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jk.vgcpps.com/app/encryptionVersion","fqdn":"jk.vgcpps.com","domain":"vgcpps.com","tld":"com"},"ip":{"addr":"108.137.168.234","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.919Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jk.vgcpps.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"75:81:C3:61:EB:FE:6A:46:C5:5A:9C:94:34:18:3F:55:8D:20:E4:B0","sha256":"4C:77:9B:F2:A6:23:75:72:38:59:55:81:C9:76:9A:5E:A7:2E:F1:D6:B4:4C:77:12:D7:87:AA:6D:F5:60:4A:C7"}}},"request":{"raw":"GET /app/encryptionVersion HTTP/1.1\r\nHost: jk.vgcpps.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jalabu6.net/\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:41 GMT\r\ncontent-type: text/html;charset=utf-8\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nx-cache-status: HIT\r\nx-server-ip: 172.31.6.159\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":88,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"770af99a48f96d73d47a283df29ca45b","sha1":"34ebacb568ceff97f378f99ffd6445aaa652aef5","sha256":"9d5e79de94e94ddb2f952530b52a6d4c6a1412d92ea23c32767c363a743cc1cc","sha512":"1772f570dfb5088a129034f0ca2ee1adf66837c035b53d0b41f1795e46cb172c58bc2fde4c50c25dbf328812df4fada30f92d95e3e08a9157d5535a4275e4092","ssdeep":"","tlshash":"fab01232c25c10295c444009884822cdc3010995c4083265104937014144555c33d50b","first_seen":"2025-03-20T08:28:26.351157Z","last_seen":"2026-04-14T10:43:52.443154Z","times_seen":40,"resource_available":false,"data":null}},"time_used":1817,"timings":{"blocked":732,"dns":1,"connect":352,"send":0,"wait":353,"receive":0,"ssl":376},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/22f0cc669b7a84a3b61e27dbb57cb139.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.000Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/22f0cc669b7a84a3b61e27dbb57cb139.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 11733\r\nConnection: keep-alive\r\nAge: 905411\r\nCache-Control: max-age=31536000\r\nLast-Modified: Tue, 30 Sep 2025 16:58:34 GMT\r\nNw-Session-Id: 20251001005834BF5CBB05366F455DE602cmgwh032b\r\nNw-Session-Trace: 2025-10-01T00:58:34.777719234+08:00 53\r\nServer-Timing: inner; dur=63\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 5f1a106495835faba72fdb3a35c60e40\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Wed, 01 Oct 2025 00:58:34 GMT\r\nX-Tt-Logid: 20251001005834BF5CBB05366F455DE602\r\nX-Tt-Trace-Host: 019cfe5831d12e031831dccfc1b2c8bf2f95137b478f868c40a35bcd40c8721fa7853772b64e83e76dad1eef57b0393b5992a8b3a81736ddc305e9d91d57b914c0c654f67e2be4ecb3c30973038267ece1b9aed44da689b6f434af1090c27bb9c0c090a37bad099d81f2f61618d87963b8\r\nX-Tt-Trace-Id: 202510010058338312f2dd364a0BEA834D\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11733,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 150, 8-bit colormap, non-interlaced","md5":"41860cb62c39149667a226a7915d18a4","sha1":"96a784e53e875410c6b7c91383308f44d66979d9","sha256":"eb4f0169414ad32f620723f390f5d0ec6d1471b5a65478c931b28fc952467a49","sha512":"b1ef8691b557a4c2883682125aaba0684c3f0cce30a186dbaa7e92ea50e7d64cb81762dd8b184475a7396c1feb001f9c6b555fd83307781966315601800a4f4c","ssdeep":"192:LN6Vjw4VngV8S5PVUMvGRW/nVtJP5465LQX1oau5k1QAhWtwMioLz0iARtRyJgmu:xUw+gV8SJ2MvrnVza65LQX+A1QSWNiow","tlshash":"2d32c0ca5e4a7888f6f5cb159cc7ec2ca870f512a3386944bf0101f577f8a1a08972b7","first_seen":"2025-07-05T08:48:57.472531Z","last_seen":"2025-11-09T07:13:43.533173Z","times_seen":13,"resource_available":false,"data":null}},"time_used":453,"timings":{"blocked":432,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-24/d0c5b7e1ccb8035be3cc63a40cf8116f.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.166Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-24/d0c5b7e1ccb8035be3cc63a40cf8116f.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Fri, 10 Oct 2025 00:14:06 GMT\r\netag: \"b30bd7bc18d3dd81480993d30291fa27\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 78814 us\r\nx-cos-hash-crc64ecma: 16280605454340752547\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlODRmY2VfYmRlZjc4MGJfMjBmNDlfMTlhZmY1MTk=\r\ncontent-length: 99482\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 10469254311328480440\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":99482,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"b30bd7bc18d3dd81480993d30291fa27","sha1":"81eb9ef2ff058bbcd21482b74eeb20262fda43ff","sha256":"fbd5a9a922114042e44956ac33938a57d0e66dcb9d21e649c10dcdc220f04631","sha512":"fa8cf94083cefe9e54cf3b070473224aa923ae8e2edfee1c19be6dc59003f29c9c11848a31cf947aaf3d76f829ef824f448a62f704b4476692a72f1afac2b91f","ssdeep":"3072:Fj5fClC/vjJjyynZGJwrqkQld2QX3YuZe2h1:Fj5fClQvjp/fqvlQQo2h1","tlshash":"23a312242229d9a00ffca19915fd58bd03acfce505b63f5841c355c3b55ca2a9bf8b4e","first_seen":"2025-10-10T12:39:07.628185Z","last_seen":"2025-10-12T03:59:10.636254Z","times_seen":3,"resource_available":false,"data":null}},"time_used":769,"timings":{"blocked":623,"dns":0,"connect":0,"send":0,"wait":144,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/91ea32153454a8bd9f1eb3484f3a58d2.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.043Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/91ea32153454a8bd9f1eb3484f3a58d2.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 78213\r\nConnection: keep-alive\r\nAge: 237825\r\nCache-Control: max-age=31536000\r\nContent-Md5: mDKSNcUrXOBjIr+chse+pw==\r\nLast-Modified: Wed, 08 Oct 2025 10:24:59 GMT\r\nNw-Session-Id: 20251008182459B4A691909980E6EE05D0zct5t022b\r\nNw-Session-Trace: 2025-10-08T18:24:59.808593329+08:00 85\r\nServer-Timing: inner; dur=89\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 51637509e7a51832939b0c51df506c89\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Wed, 08 Oct 2025 18:24:59 GMT\r\nX-Tt-Logid: 20251008182459B4A691909980E6EE05D0\r\nX-Tt-Trace-Host: 01cae4ce046c44cc333205b65010351fb100b2daf90b1bc8c9be0e165c1001658aa25cf75bfc2337e8be7ba48b559a90065132fad8486dc1bafc6f93fe1ed67ea69712ba52cf3826445888306e83050f020127b22b89475302b17e830620d714050bc28b40a93ef43eb02e096221a0a148\r\nX-Tt-Trace-Id: 20251008182459d1adf64ff6961205808D\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":78213,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 195 x 258, 8-bit/color RGBA, non-interlaced","md5":"98329235c52b5ce06322bf9c86c7bea7","sha1":"8c57616865250e28c1b6c41e139188754ffb73f9","sha256":"8e3d7a10f00a0dc58df5f3a7a6bdf8b8765e783a38d5e49bdfdd89faea974bb6","sha512":"24692dc2b5336ece1799edeef7fcf2da01a749541374b02b4150a971b1ad54523c7287b6e37dc73b5d19db65ff61043cc80bcd6913082620ed5024fd869bb0b6","ssdeep":"1536:mjPsP4Rok+d5ZEa8i/wM1Fd/gZwtJ5OZ9vte6i4DK4hZ4d:m7okmGar/wM1FtgZ0OZ/epWh2d","tlshash":"5b730254118d4332b1b21d4e43bce21ebeee166bdef7e4a460624def8d5a16b0de8940","first_seen":"2025-10-11T04:29:42.600213Z","last_seen":"2025-11-11T15:06:50.523672Z","times_seen":7,"resource_available":false,"data":null}},"time_used":518,"timings":{"blocked":493,"dns":0,"connect":0,"send":0,"wait":19,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-24/8688bada60f4b310c95821a5ec9604c7.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.151Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-24/8688bada60f4b310c95821a5ec9604c7.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 08:51:11 GMT\r\netag: \"c4df20fef9f52518f703cf0ccf6c328f\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 65451 us\r\nx-cos-hash-crc64ecma: 18404194796269928110\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlNzc3N2ZfOWRkMzE3MWRfMWY5MThfMTljYzQzOTE=\r\ncontent-length: 67754\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 3443729500062000019\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":67754,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"c4df20fef9f52518f703cf0ccf6c328f","sha1":"fa5a0abcf11272949e4287ab34169262175969f9","sha256":"50b98ec2fdff1ef3e7a60f25ea01bb8e9052d19d32afe6b735eec7c0b64e8470","sha512":"0d4551996711c0c3cc954c04f5c746593405cc7f340908b7e186b7ff3a183710536bb44014c359d4604c1e6c037d98d4ae242c85d619382b7fc2e039e03caa76","ssdeep":"1536:SNMACnyrGlCi8XlnnBsmCLwEGZrua0LnpK2cyz:SOJnyP2Lwtrh0Lnpfz","tlshash":"8a63123e92364485c07df495f261428599ebcdd7b93c2aca2e67c583b53e146f8620f3","first_seen":"2025-10-10T12:39:08.073423Z","last_seen":"2025-10-12T03:59:10.548599Z","times_seen":3,"resource_available":false,"data":null}},"time_used":775,"timings":{"blocked":635,"dns":0,"connect":0,"send":0,"wait":118,"receive":22,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-11T04:28:39.231Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:40 GMT\r\nContent-Type: text/html\r\nContent-Length: 1220\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Mon, 22 Sep 2025 05:02:34 GMT\r\nETag: \"68d0d86a-4c4\"\r\nAccept-Ranges: bytes\r\nX-Via: 1.1 PS-CDG-04h2Q194:0 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf7_PS-CDG-04h2Q194_40453-38386\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1220,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (668)","md5":"b15226a1bd068224daf06f4e2be15a8e","sha1":"cddaed1a35bbd16dcbbe92720313aa681377e948","sha256":"64cf9183b55a90e1e92996b93bde54665c3e3d03c227d8ca2752f31314d4c4d0","sha512":"f6179b63a9e7bf00aae91222b46bbfc1d803639dfb3bf9c158ee36ecf657bcd9a0c8f95a4c84d5262b97eff695d0f12a5b9184479cd2d6d630f10d32ef664c95","ssdeep":"","tlshash":"9d2111a7dc104c4c3b720b76d9a6b90c96d7541aa151dc80f9dd50af0fe0fc1884be48","first_seen":"2025-09-23T08:01:03.05286Z","last_seen":"2025-11-30T16:03:10.465996Z","times_seen":19,"resource_available":false,"data":null}},"time_used":1265,"timings":{"blocked":448,"dns":388,"connect":26,"send":0,"wait":369,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/32088f38a78d51cee7a9363cf621e68c.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.982Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/32088f38a78d51cee7a9363cf621e68c.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 14382\r\nConnection: keep-alive\r\nAge: 250336\r\nCache-Control: max-age=31536000\r\nLast-Modified: Wed, 08 Oct 2025 06:56:27 GMT\r\nNw-Session-Id: 202510081456270E18E7B9E5F3C2D59F2Cmqjmc012b\r\nNw-Session-Trace: 2025-10-08T14:56:27.997467624+08:00 36\r\nServer-Timing: inner; dur=41\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 7398aad5042c49c9d88b6f4aaf006f2e\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Wed, 08 Oct 2025 14:56:27 GMT\r\nX-Tt-Logid: 202510081456270E18E7B9E5F3C2D59F2C\r\nX-Tt-Trace-Host: 017ec6544a25241b7e3246d1342af728b69fd069b17bb165ac4da9d6d29e8ef7058a770e05008f8da3eabf940fc4f8db74aa3c0d623023313a62438ccf24e207cc3f0b81eae596bd93a23693c37dcb3338c1329549a6c2ac1b150437f158f82fbdd66be0c24025f65244e6b7fe864dc76a\r\nX-Tt-Trace-Id: 2025100814562747679c09b63405B930D2\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14382,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"e1beecf4ffbe40d6d626f71ef2605e48","sha1":"ef8e07c02d1a2196b8aeb6b406b6ec58ce8868c2","sha256":"63d3a9c53f46b404bcc0cd8030ee94113faae64832a88bde5f5a0f0af0293d22","sha512":"83d9ffbbff64f431747638c9127068646d7c6f5761f8987661e67257b75244673bf1153406bb7efa866d14216bf94b815bf3d7ce4934844aa00942daf9224f6d","ssdeep":"384:lY2gd4gP3CJ6nZzzctmkPhSaEjP1dglEmWd/XtSLNSYhj:l5cLP3c6nBokBY0oLEI","tlshash":"6452d0c85ac8e31d7bc3fc3c52cb6d4243a764f1524838d906553afbd82d4996a23aed","first_seen":"2023-11-11T04:38:46Z","last_seen":"2025-11-08T05:26:01.555914Z","times_seen":11,"resource_available":false,"data":null}},"time_used":947,"timings":{"blocked":451,"dns":1,"connect":23,"send":0,"wait":18,"receive":1,"ssl":447},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-01-04/1b209ff34af66b7409826f55e59c7dfb.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.134Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-01-04/1b209ff34af66b7409826f55e59c7dfb.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 09:41:10 GMT\r\netag: \"b5f4c6cbc9a22affb91b0876ae5a8eab\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 95313 us\r\nx-cos-hash-crc64ecma: 16793004756302189328\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlNzgzMzZfMzU3NmI3MDlfMTJiNzRfMTljYTM1YjE=\r\ncontent-length: 82972\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 8427374687248552268\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":82972,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"b5f4c6cbc9a22affb91b0876ae5a8eab","sha1":"0b8d8735dfc0181814020a8dda039c5f9c386c28","sha256":"ced0cacedaf47c80b18cd87d5a93e912b067af7f96601b5e0b99bbc761fb582e","sha512":"996021ada1aa2247dc2b2e014a7b15c33d38ac7b0404833152a946b6bbedc7e24eab07048d8c631dc1b3f87f52ea16f979c7743e4abd5709ce9cbd19cb3157f8","ssdeep":"1536:0rPjmiQK82spuhZyGjLbV788byYyBgLKSmW2xjao7vq1L74FuEZjXx7FuzQBXAcv:0HsKkchI678qy5iL0MAvo44EZjfuzQB/","tlshash":"fd8312b522838d46366248fc81c67bda76f36af4836b260874dc4d92308aaf5ddd919c","first_seen":"2025-10-11T04:29:42.375158Z","last_seen":"2025-10-12T03:59:10.602332Z","times_seen":2,"resource_available":false,"data":null}},"time_used":757,"timings":{"blocked":652,"dns":0,"connect":0,"send":0,"wait":38,"receive":67,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bflives.qdmeron.com/2025-10-11/sd-1-4321126-screenshot-12-25-56-1493x840.jpg","fqdn":"bflives.qdmeron.com","domain":"qdmeron.com","tld":"com"},"ip":{"addr":"43.152.140.79","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.147Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bflives.qdmeron.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 30 Jul 2025 00:00:00 GMT","end":"Mon, 27 Oct 2025 23:59:59 GMT"},"fingerprint":{"sha1":"76:42:1F:7F:36:0C:D5:BA:3E:45:08:42:5F:15:E7:AE:9E:EB:49:D4","sha256":"EC:83:EC:71:38:6D:95:72:85:07:CE:39:F2:01:EE:C6:20:EB:13:D3:52:6A:25:8B:88:F1:C8:8D:55:20:19:A4"}}},"request":{"raw":"GET /2025-10-11/sd-1-4321126-screenshot-12-25-56-1493x840.jpg HTTP/1.1\r\nHost: bflives.qdmeron.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 11 Oct 2025 04:25:57 GMT\r\nEtag: \"9dd750d222ca35dc62796d64cd05c55c\"\r\nContent-Type: image/jpeg\r\nDate: Sat, 11 Oct 2025 04:28:36 GMT\r\nServer: tencent-cos\r\nx-cos-hash-crc64ecma: 4630430405508116663\r\nx-cos-request-id: NjhlOWRjZjRfOGY1MjBkMDlfYmM5Yl8xNmEzMTZkYQ==\r\nContent-Length: 78043\r\nAccept-Ranges: bytes\r\nX-NWS-LOG-UUID: 3576786146044105042\r\nConnection: keep-alive\r\nX-Cache-Lookup: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":78043,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1493x840, components 3","md5":"9dd750d222ca35dc62796d64cd05c55c","sha1":"af5d7dcc3d8d060a9b7ea523c3ed00e015598922","sha256":"346d528c8cd26c2ece73f34c7fff2a6d1ca12e05d9bdd0c80ced2ca77aa46e13","sha512":"fd01477ce9467b28d58ce260e82bcdf4abe30ac0f099a7d182cee4391a359eb69cc38c470989aa84b0ccca8411171136ce3664663a45bd385010ea6eb5e4fcc1","ssdeep":"1536:DK8hnB76b/FL3JGa6m/m5GtZqZLAIZ3B1R+DD8h/cGo9Fpn6mOI0Ngju:D3hnd6b9L3h6AUHBDQLpnPXuYu","tlshash":"6373023194c7e61ac0f77232cb0b1be0ca372587e85656bd5b213918effd7582a43059","first_seen":"2025-10-11T04:29:42.607478Z","last_seen":"2025-10-11T04:29:42.607478Z","times_seen":1,"resource_available":false,"data":null}},"time_used":874,"timings":{"blocked":431,"dns":0,"connect":21,"send":0,"wait":21,"receive":22,"ssl":379},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/img/HOT.8d328a76.svg","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.860Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /img/HOT.8d328a76.svg HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:41 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 868\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-364\"\r\nAccept-Ranges: bytes\r\nX-Via: 1.1 PS-CDG-04koU196:7 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf8_PS-CDG-04h2Q194_40115-46522\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":868,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"81b0e3a069be6f19bd14f81f768c792c","sha1":"a08e5b33a9a46244fa72c5cc835f2143645a1406","sha256":"0099d9854f0c9cd84588a5883c169ebaa75ee167bf8840d6af5329f7626df926","sha512":"b2c1a824be0ca6b38cf5706a0cd96ac6c192661571bac09eb90e74c698f2981a069dbefdd86699f6e6b94062ed6cd58c3adc795dbf4b32c202e48bbd9d13f799","ssdeep":"","tlshash":"bb1112b3a1a9a7bde04cc940fbd4e0e5e55cd087d2c28594f38895ae9f700c3169f7a8","first_seen":"2024-08-19T19:47:54.891102Z","last_seen":"2026-04-14T10:43:52.400201Z","times_seen":41,"resource_available":false,"data":null}},"time_used":394,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":393,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/FzSfLHkcqzH6VSNk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.633Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/FzSfLHkcqzH6VSNk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3160,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"fc5149ea72ec425ffc1c01e786ccbeaa","sha1":"34d3a63866a46b98d61e83392e40dd27affa6799","sha256":"4f602eed51ea18dbd56d8030a2bb6707189fe93a9d3c377b7802b1e25fa697d5","sha512":"fdc0e4067690ad4ade174f876dd66ff2d43995c1e66dfdf927192cdbb7ec56d66b12ad71969154e07f267bdb42dce21b43cfafabf8a131f95273c87830de9a74","ssdeep":"","tlshash":"af514cab295a9380cf074bf7424f70ba9086da51685e6f70296300c167b5cb8c165759","first_seen":"2025-10-11T04:29:42.608883Z","last_seen":"2026-01-25T17:16:20.509551Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2154,"timings":{"blocked":1799,"dns":0,"connect":0,"send":0,"wait":355,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/jquery-2.2.4.min.js","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.386Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/jquery-2.2.4.min.js HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":850,"timings":{"blocked":849,"dns":1,"connect":308,"send":0,"wait":0,"receive":0,"ssl":322},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/css/app.103b2def.css","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.197Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /css/app.103b2def.css HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:40 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-79fc\"\r\nAccept-Ranges: bytes\r\nContent-Encoding: gzip\r\nAge: 1\r\nX-Via: 1.1 PS-CDG-04koU196:1 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf8_PS-CDG-04h2Q194_40459-31151\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":31228,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (31228), with no line terminators","md5":"509b9e2add824d4aa670e216c6165ef2","sha1":"fa1966e3000a7bb8b68d97a9b85118853e803828","sha256":"c32fc62ac40a047f983aed329ae869590010e37304dd0a10eb271457625fefbf","sha512":"a41191601dcd2c1207d50a6e7820ab18936d14adc11f814edb09374faf5d12a3e9cbaba06cdac9722767ca77fb696f732f7c3ebe570b63a8eea5c5198bece4ea","ssdeep":"768:Rz9Xq4YnA29wV6ARadozj1q9ENpOhlP1/DLN4q3vhTezdro80Ld6HTJ:zXYA29wV6A0Oj1qCNpaLd6HTJ","tlshash":"cee28672320d20196933d07aa4d05fce391cb6b3a3938799ac6676398ec3ddb357664c","first_seen":"2025-06-29T08:10:24.387255Z","last_seen":"2025-11-30T20:35:40.783132Z","times_seen":27,"resource_available":false,"data":null}},"time_used":163,"timings":{"blocked":63,"dns":0,"connect":33,"send":0,"wait":28,"receive":1,"ssl":33},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/f1728750086ff9f311de3e30a810aede.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.016Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/f1728750086ff9f311de3e30a810aede.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 143368\r\nConnection: keep-alive\r\nAge: 1343773\r\nCache-Control: max-age=31536000\r\nLast-Modified: Thu, 25 Sep 2025 15:12:32 GMT\r\nNw-Session-Id: 20250925231232AEED48E9932ED51A0BA866vzs022b\r\nNw-Session-Trace: 2025-09-25T23:12:32.655467043+08:00 43\r\nServer-Timing: inner; dur=48\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: fe18e7e87d5b7c587d9b3adedb1613ac\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Thu, 25 Sep 2025 23:12:32 GMT\r\nX-Tt-Logid: 20250925231232AEED48E9932ED51A0BA8\r\nX-Tt-Trace-Host: 016a8ee4654d117d2cba9b5c6531e9fcd50aa7b534e4d885b66280a088ddfc7d78676a9ae8553d1d57cf730adb2c95cb2b211c8383a5e0263e33191bf7cca8b593b1fb61eb33eb7ddb92fb03c0a304c2166c86e84ceda681920533835af70437cbe5854ac25ba25adddfced4f097aec723\r\nX-Tt-Trace-Id: 20250925231231e1fdeb5d0521102D5230\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache02.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":143368,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 386 x 453, 8-bit/color RGBA, non-interlaced","md5":"b935c669f78a12993383f153c2f587b7","sha1":"2e9dbc113fabeec01c9b6e138dededa11b25c12e","sha256":"91bf791c7c3523285faf0119f30b6e484d278dabbf660262972a38644e610ff4","sha512":"c10021a745048fccbf2aae715f79ea662951777bd5523f056013908f659a66cc9d0b9f91ebd3d3db8c83a671f59c53231b521dd5d834beee8e91854f97ebc4f3","ssdeep":"1536:b6b1tAM+Y/88ONLO8YSv5giTKq+K34vhnNDth2OQftnnyzj9yUtHa2ysX1W+fc5x:uRtAGk83dMIWftyPNt62hlW+fOHAiwGR","tlshash":"38e312ddf1089b22b0adc25d9d90ce86b9a49411ce323a4e22da75f3f8f195ee354370","first_seen":"2023-08-17T12:39:31Z","last_seen":"2025-11-08T01:05:45.971433Z","times_seen":8,"resource_available":false,"data":null}},"time_used":485,"timings":{"blocked":442,"dns":0,"connect":0,"send":0,"wait":19,"receive":24,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tj.77livetj.com/api/logAction","fqdn":"tj.77livetj.com","domain":"77livetj.com","tld":"com"},"ip":{"addr":"108.137.53.211","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.518Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tj.77livetj.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Mon, 15 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"20:DF:CE:A9:15:5D:53:30:3D:2C:E3:83:A8:88:14:84:F4:8B:8C:FE","sha256":"C0:9D:F5:CD:62:5E:67:F9:3D:C7:09:8A:AA:34:CF:27:50:5E:2B:95:DC:DA:2C:3B:5F:4F:4A:3D:BF:96:56:74"}}},"request":{"raw":"OPTIONS /api/logAction HTTP/1.1\r\nHost: tj.77livetj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://www.jalabu6.net/\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sat, 11 Oct 2025 04:28:44 GMT\r\nserver: nginx\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":1034,"timings":{"blocked":664,"dns":0,"connect":0,"send":0,"wait":370,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tj.77livetj.com/api/logAction","fqdn":"tj.77livetj.com","domain":"77livetj.com","tld":"com"},"ip":{"addr":"108.137.53.211","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:44.557Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tj.77livetj.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Wed, 17 Sep 2025 00:00:00 GMT","end":"Mon, 15 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"20:DF:CE:A9:15:5D:53:30:3D:2C:E3:83:A8:88:14:84:F4:8B:8C:FE","sha256":"C0:9D:F5:CD:62:5E:67:F9:3D:C7:09:8A:AA:34:CF:27:50:5E:2B:95:DC:DA:2C:3B:5F:4F:4A:3D:BF:96:56:74"}}},"request":{"raw":"POST /api/logAction HTTP/1.1\r\nHost: tj.77livetj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 193\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:44 GMT\r\ncontent-type: application/json\r\nserver: nginx\r\ntrace-id: 01be42b865556d18cbe8f569d226818e\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":38,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"a5b687c4bac5b5dabb226376827e10f3","sha1":"fb1977917609cec438b30020194fe26282651639","sha256":"ee3a5119d008c85725c2f64e936faa9426387aac7093ace7183d6088b40041d4","sha512":"eb4011815404acda6a785fe3f07895c6e5d5db1907e74b528926b7c49c31127cf5cdb35a55237a8205fcd6205f985dc54565406e5e2b26841ba7930da32cfc0f","ssdeep":"","tlshash":"aa800022280e0cc30c03b8c88c8c0b00a0e822a08280c300ce8ca23cca0e0aab082830","first_seen":"2025-04-14T23:31:01.346022Z","last_seen":"2026-02-25T03:25:48.120993Z","times_seen":16,"resource_available":false,"data":null}},"time_used":359,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":359,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/prism.css","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.391Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/prism.css HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":847,"timings":{"blocked":847,"dns":0,"connect":307,"send":0,"wait":0,"receive":0,"ssl":322},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/FzSfLJkcqzHtHTHk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.401Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/FzSfLJkcqzHtHTHk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5301,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x112, components 3","md5":"e7c87fc2460cd8e624ae8d7428989bfd","sha1":"51cf0d648eb75417ffb2696cba0359dcee275efc","sha256":"6756ecf3c71d14aa4bbcb808f392bd5b55400a31200a69df3a5336d8963799fc","sha512":"97dd5a890f654c7d54fd30b9f92fc6355c09f142b5f72228b3f2b07cc1a5f55b20abb60b23b586e9266f49d5c107efb103b66bbe5a2e6d3329b8fe372517b610","ssdeep":"96:Gah6ESmEL2J1E7e4F35ynBC6Wgs3vAbYGXuV1OIwoCPcOoG:GQ62LPdnMSa+uVIIwocB","tlshash":"42b19e39b50764b69f0b473888c06580a54fd9ddf12841ba9ad4c2c2aff6ef509b4368","first_seen":"2025-10-11T04:29:42.610666Z","last_seen":"2026-01-30T19:33:17.2445Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1825,"timings":{"blocked":1474,"dns":0,"connect":0,"send":0,"wait":351,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/GzyeoJS0nFOBo24k.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.405Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/GzyeoJS0nFOBo24k.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4255,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"46404b16298e3ad30a8c73ab72f715d9","sha1":"443fef79acf54b46eb5c676bea0d1369af691875","sha256":"3111fbba26c14bc8834581e9b507f6025094a796c545b2f5b3d7757ef2298d00","sha512":"df897161e009f14503e74da4021016baa1891d1be2562852a57d7c977c894514f3182fc064aa8a9725e6fb7e65873e919146a186022af0bc7be59c582be2c5c6","ssdeep":"96:GahCEVaYUXQIbdYERURJgP1ZtNWAYqxTg:GQCKGpUr2T3Tg","tlshash":"59917d625e6b22889bb74328b126309df7cd5544d95cf1305ba265f6de23cf6c40fd40","first_seen":"2025-10-11T04:29:42.612294Z","last_seen":"2025-10-11T04:29:42.612294Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2181,"timings":{"blocked":1821,"dns":0,"connect":0,"send":0,"wait":360,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jk.vgcpas.cc/app/encryptionTouristsFree?phone_code=rX4rL5xv9fWMWhaKScDEFFzEDDBk0%2B3UqnLMZ2VLhh13eL1xoksp1rmiCpLUhDYW\u0026url=0Fa%2Fr8EnMChjEiK%2B7xGnd2jmGxWylMVhIvOqFyYYB58%3D\u0026uid=Lkc%2B%2FM%2BLPO3qto6MYH542A%3D%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=2OaTxwALvTBcAwbUTsu7Dw%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D","fqdn":"jk.vgcpas.cc","domain":"vgcpas.cc","tld":"cc"},"ip":{"addr":"108.137.115.204","port":443,"asn":16509,"as":"AMAZON-02","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.136Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jk.vgcpas.cc","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"7F:1F:76:C5:AA:68:BB:76:8F:19:86:C5:1B:84:A8:27:67:A6:F1:3C","sha256":"DC:63:D7:76:59:1C:24:49:8E:76:AE:01:3A:DE:E0:ED:08:2D:C3:CF:66:F4:98:3E:29:17:08:93:A0:CD:C2:2A"}}},"request":{"raw":"GET /app/encryptionTouristsFree?phone_code=rX4rL5xv9fWMWhaKScDEFFzEDDBk0%2B3UqnLMZ2VLhh13eL1xoksp1rmiCpLUhDYW\u0026url=0Fa%2Fr8EnMChjEiK%2B7xGnd2jmGxWylMVhIvOqFyYYB58%3D\u0026uid=Lkc%2B%2FM%2BLPO3qto6MYH542A%3D%3D\u0026client_channel=jXycEzqnqI%2F%2BKZgqXoCXow%3D%3D\u0026api_version=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026client=Omt9WtVa9oxP%2BQqy9QLmIg%3D%3D\u0026timeNowClient=2OaTxwALvTBcAwbUTsu7Dw%3D%3D\u0026check_type=XBrwKa8OcE2c%2FeDTuviUsA%3D%3D\u0026customer_id=yFLko2%2FvaXn4LjiX2bQSqA%3D%3D\u0026lang=8f0kDTpzDo%2BKhw9ZLKlvjw%3D%3D HTTP/1.1\r\nHost: jk.vgcpas.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jalabu6.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:42 GMT\r\ncontent-type: text/html;charset=utf-8\r\nserver: nginx\r\nvary: Accept-Encoding\r\ntrace-id: 184b252865556d1813d5084644a4b010\r\nstrict-transport-security: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: OPTION, POST, GET\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\nx-cache-status: MISS\r\nx-server-ip: 172.31.28.253\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":216,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"450e98c51fa150d854725169cda192b7","sha1":"851fdac0b9149f2117fb517c70c7f2a2abf2444b","sha256":"9a01eef8dacc4b0664505af165fbbf0adf1cc04a84f85e641ab533b959dcf229","sha512":"61e54d6886eeef9b8ae5851e43fa582b7feba6478eccb9aa163880ff6d51c60e03dc17f09ba3285c3d773a7abbfb8376aed5f4af9906a4fe19d08b7c597e71e2","ssdeep":"","tlshash":"b3d0231883168abd9c4412a289157b675240c11b8fc692802a6c16800e1d91d101e053","first_seen":"2025-10-11T04:29:42.613846Z","last_seen":"2025-10-11T04:29:42.613846Z","times_seen":1,"resource_available":false,"data":null}},"time_used":650,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":650,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/d304b1c20b797f3a435ed2375ece319a.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.018Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/d304b1c20b797f3a435ed2375ece319a.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 4267\r\nConnection: keep-alive\r\nAge: 443680\r\nCache-Control: max-age=31536000\r\nLast-Modified: Mon, 06 Oct 2025 01:14:04 GMT\r\nNw-Session-Id: 2025100609140454F7CD969AD897CC905Cgf826012b\r\nNw-Session-Trace: 2025-10-06T09:14:04.649105195+08:00 29\r\nServer-Timing: inner; dur=32\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 6f89e98796bee8dcf6f1334a06b8ee36\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Mon, 06 Oct 2025 09:14:04 GMT\r\nX-Tt-Logid: 2025100609140454F7CD969AD897CC905C\r\nX-Tt-Trace-Host: 01fff9269d073f3a65ba17d84b3e68e5ed54c5223cdbbbcd2261228492fa1727099d0814300391f941d6c0c1ba71a508d32f5d370b5f901115c3888b3066d6c08f0bdb4be7a243eccbc20f2e88caee4caa5907bc729636b7c6b125f221a368229f1704a1ac13ba19e3eaba755d4b1f55400529456200effee3497889b35116ee55\r\nX-Tt-Trace-Id: 2025100609140470744395acc107F9C59A\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache06.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4267,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"e5419fc0322fda63e6137c69d1c2d9c8","sha1":"ce52f8ed1a9da74fd6122cbf81c484ce9d200792","sha256":"ef2acbb11250546c78364e0a6b9b3b70d92c75f8ef70b755f4131bb5becc42bd","sha512":"2601d32fa34e65de56d68df3fa40dc68805159ef9229faba85a886247c740dab3285ef6dccbd08a3fd76de15b0f296bdceb94b7fb064162409c3b7074b178319","ssdeep":"96:StLrPhhLGlllYPt9tyd+3S++rXCVfoiWCC0JGA82E:SdrPPWlPxfXC3cYE","tlshash":"a2918ddf0f05c42c740f4c2ac499aed48d2f738106ec068e8930b97595de398d3e1240","first_seen":"2023-10-28T07:36:03Z","last_seen":"2025-11-29T07:43:37.909627Z","times_seen":11,"resource_available":false,"data":null}},"time_used":470,"timings":{"blocked":452,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/js/orsxg5a.script","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.381Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/orsxg5a.script HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:29 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":142,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with no line terminators","md5":"71538803af672dc29131186c2a27b91e","sha1":"8368a2376a2b6bc7faf329253a814acd551b7f86","sha256":"cde82ef5948a5afe291bd58107934e8466ffad91477c5717f532c9cdf9515c69","sha512":"616f5b16be3e3dfe3e7a61c8455ee3b2b6f32fcfb670d975459842fcb61815cf6ed86faf56c0f378b8ec9375f822ce7d8fad73c48d41732165a3d9cf02be2c01","ssdeep":"","tlshash":"86c02bf33608061d83050020f2b8f06ea1ba78affe01a310d4a234405080dfc0cd07cc","first_seen":"2025-03-30T18:40:13.43182Z","last_seen":"2025-11-29T14:14:36.94516Z","times_seen":30,"resource_available":true,"data":null}},"time_used":338,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":338,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/GTyaLFOSqKWipTRk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.416Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/GTyaLFOSqKWipTRk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5033,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"9d70bf44591fcb63354adf41b3b4d69f","sha1":"53b622cf1a930b5e8cbbcf184fbea214ad24dadf","sha256":"464d00651eff5af13304225368bdbe2b1f5788b820c373b90e6f858fe2c00678","sha512":"b3980d6d3b3b543cbf62765b1e30faf5ef5ffdb57caf7c5d7a6fc2b0f9fd671bd26837b6afe5ea3f3ca1eba5072b2ae2828799da0e76d1c96d07cf7ce8848ddf","ssdeep":"96:GahCEJlKUmtbKhlXJyIkU6AahctJ3xz6jU2EWw5PHuUa2tjb:GQCJXIZlaooJqvuSb","tlshash":"eca16de84c4285126b15d2b4297a29c1b4abb32bde51bd3f4ea8ba31c472c74a51c398","first_seen":"2025-10-11T04:29:42.620292Z","last_seen":"2025-11-13T07:53:11.880779Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2114,"timings":{"blocked":1459,"dns":0,"connect":303,"send":0,"wait":351,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/img/upaddbg.7fb1f77c.png","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.862Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /img/upaddbg.7fb1f77c.png HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:40 GMT\r\nContent-Type: image/png\r\nContent-Length: 81870\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-13fce\"\r\nAccept-Ranges: bytes\r\nAge: 1\r\nX-Via: 1.1 PS-CDG-04uki195:9 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf8_PS-CDG-04h2Q194_40453-38391\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":81870,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 420 x 486, 8-bit colormap, non-interlaced","md5":"981ed77c97b8efae988bf30d72bb7333","sha1":"2420cc0fc2eef32d655720076128fefd72e9de70","sha256":"0f6b5693db5874d45379855f3ad34834901595dc8946c4462cb39c5f9acb5338","sha512":"bed8cec1e2b821ce3d4624b2c57366f89ca344293297c07186eb1b95aa1d7362b7c854e0ad92b9cda3af522e21674ee78c927fadf938a272996e612b2a91c562","ssdeep":"1536:O6MXwIrI/gTHRNHFqh3gCMg/QXyIa4e9gBsroSnMD/9975TucptZiWDYZSfScp9h:OqIHTxN3O4x7eeSMTducptPDYojmt/0","tlshash":"4283022421df8dcf4327dbe1fc0aaa914410eed4358a7dd59d41ccac2e9646ba46ceca","first_seen":"2024-08-19T19:47:54.891761Z","last_seen":"2026-04-14T10:43:52.450929Z","times_seen":41,"resource_available":false,"data":null}},"time_used":58,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":30,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jalabu6.net/img/indexbg.af3dcc4a.png","fqdn":"www.jalabu6.net","domain":"jalabu6.net","tld":"net"},"ip":{"addr":"174.35.102.98","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:40.931Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jalabu6.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Sep 2025 13:14:09 GMT","end":"Sat, 20 Dec 2025 13:14:08 GMT"},"fingerprint":{"sha1":"28:9D:B4:8D:35:9C:7E:B3:86:67:97:39:4B:C5:EC:1E:B8:6D:1F:F1","sha256":"F3:7C:E6:74:F8:36:D4:EA:E5:E8:54:E9:12:C6:74:28:25:B2:C7:99:4B:6B:AE:09:69:C2:68:19:66:3B:A0:F7"}}},"request":{"raw":"GET /img/indexbg.af3dcc4a.png HTTP/1.1\r\nHost: www.jalabu6.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Oct 2025 04:28:40 GMT\r\nContent-Type: image/png\r\nContent-Length: 444432\r\nConnection: keep-alive\r\nServer: nginx/1.26.3\r\nLast-Modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nETag: \"6860d1d3-6c810\"\r\nAccept-Ranges: bytes\r\nAge: 1\r\nX-Via: 1.1 PS-CDG-04koU196:14 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 68e9dcf8_PS-CDG-04h2Q194_40453-38392\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.26.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":444432,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 3840 x 1360, 8-bit colormap, non-interlaced","md5":"2e5bbdbaa767673bb343aad66c7b2c81","sha1":"d373136e8d73dfa50cd264cea7fcacd467c28f77","sha256":"7c558b9a5c102342f54b136d010ff63a4c770bd818acc02cf2fd95696997d297","sha512":"02e893b388c85529edd929d9ac843b15d4e4f0503924182852a6ef8d66983a6f937fd8f385ab942d169d2c5995a445b0e01d89a806b406a3192cf8d7ebfa795e","ssdeep":"6144:NxBNWxyow+cLFFNUqGdC9heQZOck8+BA56iBIzfh7NZOaCeBnaVHa17SexyUhwoO:Wyp++FUqiCWBAfezfdO0iHGzpzkhcE","tlshash":"1b9423a21ba2d4f4d10de247a7cf6a27fe2218e58b2555c910e5f18df97c2cf425a323","first_seen":"2024-08-19T19:47:54.892479Z","last_seen":"2026-04-14T10:43:52.44767Z","times_seen":39,"resource_available":false,"data":null}},"time_used":158,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":131,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-11","alert":"Sinkholed","trigger":"www.jalabu6.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/D2SlLFOAqJEunPNk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.411Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/D2SlLFOAqJEunPNk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:32 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:32 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:32 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3257,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"c844755728e5dc40518452975be2e02d","sha1":"efe88d0abbf44e82a3d5a1c3c8d9c50531c402c0","sha256":"0eceacf6c2436b96ca0c054ed3c2316485303b20f07dcf7fd2c0e232e44aaf61","sha512":"3c7efe7ac85c6c30bee97963a6fc9a2719cab8e1eec11fe8e36c59d7bebc04ba771790b7289ebd8e9063e7653c1bc1a012a9b796e71cb8ac602d1777201a887f","ssdeep":"","tlshash":"25613b2f2716821497663a3ae59f61eda04600833d406f761a514375e39cdf0912ca5a","first_seen":"2025-03-09T10:09:52.303455Z","last_seen":"2026-04-14T10:43:52.397092Z","times_seen":4,"resource_available":false,"data":null}},"time_used":2828,"timings":{"blocked":2477,"dns":0,"connect":0,"send":0,"wait":351,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/F2IgMJ5uozquovNk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.425Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/F2IgMJ5uozquovNk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:32 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:32 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:32 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8212,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"dfab2733e3e39791184d0c30148266da","sha1":"285b6e564d1254099150316b8a6ad896aad312a3","sha256":"26de4b447aacce732c495b3635acbdaac3ea8a9ef975696ba270ad600c11cd20","sha512":"8550cc1d46b24a0d6bb7a654a397a9e40d8f9416d1ebcd058d5dd7440220fce66c17653c3d97f681f03043dfc228a95dd47eb88102ebb66f3884215678234962","ssdeep":"192:GQCy6wDE2oJx3EuY0htvJFV1ZLLjHo4jNQog6rutJs2yXj:Gry6g5uYkthvnj/jhusBj","tlshash":"9302ae4b982827c6433b697e8b1a13d296c08d8f2e48b47c363d19f1eac9d701fd7058","first_seen":"2025-10-11T04:29:42.622929Z","last_seen":"2025-10-11T04:29:42.622929Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3172,"timings":{"blocked":2817,"dns":0,"connect":0,"send":0,"wait":355,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-24/689a06c221eb3a2a88500b966f10e4ae.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.131Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-24/689a06c221eb3a2a88500b966f10e4ae.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 09:41:10 GMT\r\netag: \"c4df20fef9f52518f703cf0ccf6c328f\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 66221 us\r\nx-cos-hash-crc64ecma: 18404194796269928110\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlNzgzMzZfZjM3NWI3MDlfMTBkYmZfMTliNTE0NWQ=\r\ncontent-length: 67754\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 10766469391930694958\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":67754,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"c4df20fef9f52518f703cf0ccf6c328f","sha1":"fa5a0abcf11272949e4287ab34169262175969f9","sha256":"50b98ec2fdff1ef3e7a60f25ea01bb8e9052d19d32afe6b735eec7c0b64e8470","sha512":"0d4551996711c0c3cc954c04f5c746593405cc7f340908b7e186b7ff3a183710536bb44014c359d4604c1e6c037d98d4ae242c85d619382b7fc2e039e03caa76","ssdeep":"1536:SNMACnyrGlCi8XlnnBsmCLwEGZrua0LnpK2cyz:SOJnyP2Lwtrh0Lnpfz","tlshash":"8a63123e92364485c07df495f261428599ebcdd7b93c2aca2e67c583b53e146f8620f3","first_seen":"2025-10-10T12:39:08.073423Z","last_seen":"2025-10-12T03:59:10.548599Z","times_seen":3,"resource_available":false,"data":null}},"time_used":769,"timings":{"blocked":655,"dns":0,"connect":0,"send":0,"wait":112,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2024-10-19/5addfc4bebceb37172d8bd5f0cc09c6e.jpg?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.138Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2024-10-19/5addfc4bebceb37172d8bd5f0cc09c6e.jpg?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Fri, 10 Oct 2025 00:14:06 GMT\r\netag: \"4e3eb23afd436cfabb1b72f76cfe1020\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 80819 us\r\nx-cos-hash-crc64ecma: 6707225742465026808\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlODRmY2VfZjE4YzdjMWVfMWE2ODVfMTlmMjhhY2I=\r\ncontent-length: 82096\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 4328773158756601104\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":82096,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4e3eb23afd436cfabb1b72f76cfe1020","sha1":"334b3232217cfda7897458f3c7f9df7856561070","sha256":"d6d49cd7dd7901a71738e39eab64e234e999e9f0d5c4f29338a5ac6b108dfec0","sha512":"72f85450ed1eff4a870a02ec242bd9154b72b8dcb425ef9df6e26ef2a3403e1f8c58c67e9351fc0ee53978c6667afb7a1ea0c7f554e6abfc50e3e978526e5506","ssdeep":"1536:x/B4lFT+zIVxJnHAXwRmfSvrwTgp9YLIr8YFNFm0aJ:x2l+zAxtEKvrwTg9ys8kfm","tlshash":"6d8302d5f7f91739ee124ef07c2e4f0682ac531c453aa127df2223626a831b15a645bb","first_seen":"2025-10-11T04:29:42.463163Z","last_seen":"2025-10-12T03:59:10.551902Z","times_seen":2,"resource_available":false,"data":null}},"time_used":752,"timings":{"blocked":648,"dns":0,"connect":0,"send":0,"wait":38,"receive":66,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/font-awesome.min.css","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.383Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/font-awesome.min.css HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":848,"timings":{"blocked":847,"dns":1,"connect":308,"send":0,"wait":0,"receive":0,"ssl":316},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/HUWyoJyypvOZMJRk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.400Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/HUWyoJyypvOZMJRk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:31 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:31 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:31 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3095,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x86, components 3","md5":"29d8a011e57dad4b44f827bf2cbe12a9","sha1":"c34db6d794e31cc67dc1ec8836bb8a1ec367f87d","sha256":"ce38bce336e3f7497d3e073b261a3bcf45f5808de6a1b4b82df08cbe7496c309","sha512":"f71eea341b5ae58cb839c7804c1a6a99c832b53d1025061d2c3ef0ec629688efa80597ff99878fd1fd171b4ece7e02d0e34ba139a7c527d1037897b02334e350","ssdeep":"","tlshash":"44513a6dc2e643b0ef031e53541a0297b96c8ae6558953f227d1871a82f0ff4c7dcac5","first_seen":"2025-10-11T04:29:42.624384Z","last_seen":"2025-11-13T07:53:11.954915Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1825,"timings":{"blocked":1474,"dns":0,"connect":0,"send":0,"wait":351,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/8e93da8386dc5b378446762993400ca7.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.001Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/8e93da8386dc5b378446762993400ca7.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 6773\r\nConnection: keep-alive\r\nAge: 1125290\r\nCache-Control: max-age=31536000\r\nLast-Modified: Sun, 28 Sep 2025 03:53:53 GMT\r\nNw-Session-Id: 202509281153539331BA6872A2A75424FCwdfmn022b\r\nNw-Session-Trace: 2025-09-28T11:53:53.458156202+08:00 100\r\nServer-Timing: inner; dur=105\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: c8e1180ac8f741604b6ca4a435734d58\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Sun, 28 Sep 2025 11:53:53 GMT\r\nX-Tt-Logid: 202509281153539331BA6872A2A75424FC\r\nX-Tt-Trace-Host: 01ff349a974eb7de8c7c344504f48dfe78539743081e2aba76db1423c51de9748d1ac37219bd409bfbadd31126f026d40a2a11f1c47a9df447037f42f1b7cccc74c0aa6975866445eaf67cdabb5a1bf00fb90b9b7ead4ed31712a574673d2ffb4e0473e88f4279ad470055fd0d3f3c6cfa\r\nX-Tt-Trace-Id: 20250928115352ee4e70790f2a1F815F70\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache05.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6773,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 93 x 83, 8-bit/color RGBA, non-interlaced","md5":"56598231f02b265b2f780b24512d1aac","sha1":"62cddcd4a65414246c263c4923b9efada0caa605","sha256":"57795fdfdb4e0b8311aa5c67e6eb5a6a7779a265eaedef6daec30c0f5ba4d2ca","sha512":"2a4f3067e88c0b759c74b1b9da2b0b02cfd9ac4fbe5b64ebbcabf6f374a0222b6a124ca2268b9aa10b5f33a22ebc055c1608e6ef4c19bd3f8bc3fa1f96f3d7ec","ssdeep":"192:O+JiJru2t7Ptr3HNwUnzS83AuJhha6BWUbPktRJ5g8RRsOw:OpJVhPR9waOSha6BWUYtNg8O","tlshash":"7ae19fcfa149ebc1bbe1395ed205d107d9508683ecc9ec5d15f919bcabc5353e4a0b48","first_seen":"2025-03-16T06:48:52.216538Z","last_seen":"2026-03-23T09:50:07.065186Z","times_seen":140,"resource_available":false,"data":null}},"time_used":454,"timings":{"blocked":437,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/H2IlnJHtDGbtFaHk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.397Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/H2IlnJHtDGbtFaHk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:34 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:34 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:34 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6329,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"2b456c02ef503c2fe8474a77ab34cf77","sha1":"ac973ab50b65cb1a6d202e6faf6e5d3838d59829","sha256":"6a246e54604eff0f0fc8b69bde71dbe93b7deefe3efdbfedd975e202223c6fcc","sha512":"66aa6e0848974b4c3aa357166715231c834f5c5c164012dbc095df906ca83dbf0da0890a8aa9a2d436118186510f6d51441a122d7fdc9777764827c946743671","ssdeep":"192:GQCaIMZqhE4e4hmpkXbyaJ9wHhxObcBvq74Yes+Q:GraIxE4e4hdb3wBdBMzJ+Q","tlshash":"48d18f453f43cc30071e038a55dd19d5a009fe7a2b9175f49ae46784ce70fb2c7ac559","first_seen":"2025-10-11T04:29:42.628415Z","last_seen":"2025-10-11T04:29:42.628415Z","times_seen":1,"resource_available":false,"data":null}},"time_used":4870,"timings":{"blocked":4516,"dns":0,"connect":0,"send":0,"wait":354,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/e94f441698752284a7b2f6c37ea3aee6.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.010Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/e94f441698752284a7b2f6c37ea3aee6.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 19803\r\nConnection: keep-alive\r\nAge: 2480618\r\nCache-Control: max-age=31536000\r\nLast-Modified: Fri, 12 Sep 2025 11:25:06 GMT\r\nNw-Session-Id: 20250912192506939A216D3E8F8DD77AE8bshsh032b\r\nNw-Session-Trace: 2025-09-12T19:25:06.765094846+08:00 70\r\nServer-Timing: inner; dur=75\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: f84b47694b15f87f1a454b9d9907ffa2\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Fri, 12 Sep 2025 19:25:06 GMT\r\nX-Tt-Logid: 20250912192506939A216D3E8F8DD77AE8\r\nX-Tt-Trace-Host: 013a5eb34184362b420f98bcf64141d2da289f03c4e86428cac55c2536937f1bad911698c3329b4a0fdcdac51060749b4e6197fc74f24860cd4cb8e403d3229462d847317deb8a3ab3be5d93c1c4a2cdf5f87735469f253b7545cc69783712cefcf4391d837a89026993866f6e1d505791\r\nX-Tt-Trace-Id: 20250912192505b92f0089bd670D7FAF1C\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache06.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19803,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"a9050de123ff1e0d2372fee897d73255","sha1":"54b3a47603c54507918ec004e7d11dbf494c7813","sha256":"613592bcd24bc6379bf29181e620e1feabd5a3b90987e5cb3033203f845ae7cb","sha512":"696903e0650f6e17964b508c3d71b9bdf6ffaab1333e011e70362151bc71d9331575655967d45d5e33ecc0a627462fd0692a17557a0771bf5eb1a34040c77814","ssdeep":"384:hJkKDcxjfoqRZg8QtUVekx581Jq4vFLSB397qqFPzLn0Rwp:7clfoukuekxSXq4wBJqqFPzU6","tlshash":"4992d1a9b23d414880ddad59cbcc8b5475e23c2c014d09d74e8e9d9bb0c3a6e89dee5e","first_seen":"2025-03-16T06:48:52.296849Z","last_seen":"2025-12-08T02:34:58.630694Z","times_seen":54,"resource_available":false,"data":null}},"time_used":460,"timings":{"blocked":441,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/07f17214e064c702eace757c689a54a6.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.032Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/07f17214e064c702eace757c689a54a6.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 88749\r\nConnection: keep-alive\r\nAge: 1887679\r\nCache-Control: max-age=31536000\r\nLast-Modified: Fri, 19 Sep 2025 08:07:25 GMT\r\nNw-Session-Id: 20250919160725C5BDC9A69C01F157E89566jng012b\r\nNw-Session-Trace: 2025-09-19T16:07:25.074551638+08:00 48\r\nServer-Timing: inner; dur=51\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 994b03c8cd5d93901f4d807013eb42ad\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Fri, 19 Sep 2025 16:07:25 GMT\r\nX-Tt-Logid: 20250919160725C5BDC9A69C01F157E895\r\nX-Tt-Trace-Host: 01cae4ce046c44cc333205b65010351fb1f0590e835dd639e2e3b28e302325d610ea778a9f23deac3b48b9f9ea2dead7551dac0e7742e6010e15ef392ce0b035e8416d49b74fe081d0152fb95b914f7844ffae1ddf2be263c892ccd20cdfea600e9092f187d0ec118e31d32685d111175be2beb30dcd1b411b7538517bc27abde5\r\nX-Tt-Trace-Id: 2025091916072400cd9dfdbc31039BADA3\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache06.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":88749,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 667 x 667, 8-bit/color RGBA, non-interlaced","md5":"32a651f5d7c024bf99e4131f2125e6d9","sha1":"50fa2201343222cff06f753f56c1dea0770cea1d","sha256":"59c0c21cf570c4de9bc13b070aeb10be224d9d9979de5ef6a6225dfb287292cc","sha512":"4ebb4d6fe3218f2b5049066a5662ee8ab79f7a8791d291ff5e8224eecdf81588e5d70ac180d66693a5f5d2e9bd9e639a764b474ca9635a2c8709e331a2a1ee7f","ssdeep":"1536:WQoh/Hc0zfF3yXAFbKk4Ezg8cSXQre8gtGa+IyLpBjEQZ5PK6fddd7HU6f7:A/Hc0jF3yXAxFaedcX3LpBws5yIdd1Hn","tlshash":"69831241aa6c7e34cdef54b90c38eff74a78829da78340b95cc995d64369344328cce8","first_seen":"2025-10-11T04:29:42.63061Z","last_seen":"2025-11-01T07:55:42.419555Z","times_seen":2,"resource_available":false,"data":null}},"time_used":514,"timings":{"blocked":477,"dns":0,"connect":0,"send":0,"wait":18,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-PXGC8E19BB","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.392Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:40:36 GMT","end":"Mon, 15 Dec 2025 08:40:35 GMT"},"fingerprint":{"sha1":"40:7E:33:E9:D5:23:31:43:6B:CB:8C:02:99:3E:C0:A1:96:B1:B2:DE","sha256":"BE:00:72:E8:21:36:BF:F1:E7:F3:E5:B6:86:FE:98:10:97:9F:3C:C4:3F:0A:F8:4D:E4:62:64:B7:70:FA:56:25"}}},"request":{"raw":"GET /gtag/js?id=G-PXGC8E19BB HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 11 Oct 2025 04:28:29 GMT\r\nexpires: Sat, 11 Oct 2025 04:28:29 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 141280\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":424870,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"0b7641a0712f7a387c3f1a2242cf44a2","sha1":"a3673b3aaaceeb5f1d5c0aa020b743c101a5495e","sha256":"d467c573cd010709057f4bb6d8cf58d60e505d50c51a24255120b183aa32c151","sha512":"c5f1d7b02ee5a469facfcd115956d30e8b9972c945fb97754f77355081bc3f7127a196b20db696c689f49c89cafd833549fa490dab0d090e8dabae19dfaa19e0","ssdeep":"6144:pBE/yp2a4tk0uwbWZJT+Nju5204O0NsYXdXAQY:nhYJm0KZJu0O8","tlshash":"6d9419de73d674225396f078503f018ba57b28a2b44cc89af189cde42e74a9a4177f7c","first_seen":"2025-10-11T04:29:42.632204Z","last_seen":"2025-10-11T04:29:42.632204Z","times_seen":1,"resource_available":true,"data":null}},"time_used":148,"timings":{"blocked":-1,"dns":0,"connect":8,"send":0,"wait":27,"receive":24,"ssl":89},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/5afe612c32412250878ab65ae82e4c3b.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.029Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/5afe612c32412250878ab65ae82e4c3b.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 8523\r\nConnection: keep-alive\r\nAge: 1920504\r\nCache-Control: max-age=31536000\r\nLast-Modified: Thu, 18 Sep 2025 23:00:22 GMT\r\nNw-Session-Id: 20250919070021292AC277C3625363F489fxb9p022b\r\nNw-Session-Trace: 2025-09-19T07:00:22.014712526+08:00 64\r\nServer-Timing: inner; dur=67\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 15473ff06823932f1c3e91d9d0dfa7ff\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Fri, 19 Sep 2025 07:00:22 GMT\r\nX-Tt-Logid: 20250919070021292AC277C3625363F489\r\nX-Tt-Trace-Host: 015faf990e2a84d3e1430784791514c71857298429a11253db9cdaaaa8da3da6d27b0a41d5a8914efca39699e8b657205ed889e640b4318f8584c298edfa23563b028d1c990d9507deff7ea74b47cf4e5227d8d01ac73011220711559023a477c00b0cd0ddbe497ac918d884a67585756e\r\nX-Tt-Trace-Id: 20250919070020bbbd54302abe1CF42BB7\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache02.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8523,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"b459cc6897236cb700c7c71446321190","sha1":"c0098bdaf0cf64c6e328ecd575eecf2dab27b342","sha256":"6667343a0438280507b5880aa767466ebaddaab202e57ca5984977312ea84221","sha512":"9e286b98e537053c821d58b94ab4d8193079f66271466ffb4ea749f1d02ce9d23af507e195e9e7cb9bfa26281073f896ee855edd1f08e8e05d15588d10960bb0","ssdeep":"192:ahjsuirygJLa7L8ac4erc5jMCeDi2qcrZxB6YsMiPSVQ:aa/ryYa7L+AICCqcrbB6YsMVK","tlshash":"8202bf9c9ae15137c3e64d638bf9c7a586bb0bb01f8a802153b733d46a4f69b4016112","first_seen":"2025-03-16T06:48:52.336617Z","last_seen":"2025-11-28T02:14:08.852203Z","times_seen":13,"resource_available":false,"data":null}},"time_used":491,"timings":{"blocked":473,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/4c7fdf0c53a63ca2354f07cf11affe4d.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.040Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/4c7fdf0c53a63ca2354f07cf11affe4d.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 35636\r\nConnection: keep-alive\r\nAge: 919306\r\nCache-Control: max-age=31536000\r\nLast-Modified: Tue, 30 Sep 2025 13:06:59 GMT\r\nNw-Session-Id: 2025093021065997C326FCBB224C96ADF2ftpsz022b\r\nNw-Session-Trace: 2025-09-30T21:06:59.775166036+08:00 56\r\nServer-Timing: inner; dur=63\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 2abe68e0ebaed5cdf4ccdd217f8a34bf\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Tue, 30 Sep 2025 21:06:59 GMT\r\nX-Tt-Logid: 2025093021065997C326FCBB224C96ADF2\r\nX-Tt-Trace-Host: 01f186b2b09c672cc46465dd9c8dd09d13664369be16e02680367ae5c8c13b45385888d5407baabec9e6dbcacd619bd2204effcaec791d0510d9f45acfca8ad50ec6787595ac8f6580a0e7ef893547372ce39d6ec66c05b1cde4744741989e6e4b977990b229058d9c3abc3c52d256e802\r\nX-Tt-Trace-Id: 20250930210658052bfea646b100068F63\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache04.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":35636,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"7422f3dc6fe63dfa490782c519674c5f","sha1":"f729b35a1643d094ec091ed9ab7c551d13ac0b4a","sha256":"639196898c7b044550eb6e84b5c00612556787ff23f9fbf1c13de483431dcf8e","sha512":"74c1f49ca1ecaf99db59540db14e71e346b52ede31444c1d9d62bfca8d03a03799de714d8ec187e0117cbfdb1f600411cc5891dc94df7379994c34b894830a90","ssdeep":"768:82giew8RH5pM3y6e6wloh6igS/v9R55OkHQBHjfKvL5KcFI3ZO:82bOHL6e1Oh6T09R5DHADfIL5KcCJO","tlshash":"4cf2f1f75535fee2d19a849242014f3f50daf4da1ea675069bc97d4eaa92c0080d4c36","first_seen":"2025-02-24T02:30:01.403334Z","last_seen":"2025-11-26T08:50:28.507216Z","times_seen":10,"resource_available":false,"data":null}},"time_used":514,"timings":{"blocked":493,"dns":0,"connect":0,"send":0,"wait":18,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-24/77d390e78817db229476caaea7fe6a97.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-24/77d390e78817db229476caaea7fe6a97.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 23:10:21 GMT\r\netag: \"deff1e381ea828b1acadbdd528f1991e\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 86510 us\r\nx-cos-hash-crc64ecma: 17738960852790013050\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlODQwZGRfY2RkMTE3MWRfMmZjNDRfMTllYzNjYjM=\r\ncontent-length: 65936\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 17963790282843730384\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":65936,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"deff1e381ea828b1acadbdd528f1991e","sha1":"f3623cdec002b77f39d50dc33bcc37b5b84de6e7","sha256":"9943cfb5a3748a387610de4186fc6b8eca184fc677a70a2dcefff5ac2bb736f5","sha512":"8a05733d33b59eb2c4bf36870e8f7f5d930e43c610ca15781e7776e8ad87a7110f4f46d66e56659cc5d3b46dd56b8b086d69226803546a86e4a872a7f64ba3f0","ssdeep":"1536:xLoyfx6QmLO+acf9/EN8yURYub2Ug70WcPykAp191tVruRDXuf:xLb6QmLZ9/EN0YuKL0WcPqp195uJe","tlshash":"1453023ca0f8bb6584ade6acd5c4204404be48d1fea9170771ccda61335866afc19feb","first_seen":"2025-10-11T04:29:42.637789Z","last_seen":"2025-10-12T03:59:10.540071Z","times_seen":2,"resource_available":false,"data":null}},"time_used":787,"timings":{"blocked":651,"dns":0,"connect":0,"send":0,"wait":115,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/zblogphp.js","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:30.879Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/zblogphp.js HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":864,"timings":{"blocked":238,"dns":1,"connect":306,"send":0,"wait":0,"receive":0,"ssl":319},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-24/6c68ce5848128e1d316fce8321377bc8.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.157Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-24/6c68ce5848128e1d316fce8321377bc8.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 23:31:23 GMT\r\netag: \"deff1e381ea828b1acadbdd528f1991e\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 70958 us\r\nx-cos-hash-crc64ecma: 17738960852790013050\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlODQ1Y2JfOWVkMzE3MWRfMjEyMzJfMWEwNTk4NjM=\r\ncontent-length: 65936\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 5443016905548958299\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":65936,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"deff1e381ea828b1acadbdd528f1991e","sha1":"f3623cdec002b77f39d50dc33bcc37b5b84de6e7","sha256":"9943cfb5a3748a387610de4186fc6b8eca184fc677a70a2dcefff5ac2bb736f5","sha512":"8a05733d33b59eb2c4bf36870e8f7f5d930e43c610ca15781e7776e8ad87a7110f4f46d66e56659cc5d3b46dd56b8b086d69226803546a86e4a872a7f64ba3f0","ssdeep":"1536:xLoyfx6QmLO+acf9/EN8yURYub2Ug70WcPykAp191tVruRDXuf:xLb6QmLZ9/EN0YuKL0WcPqp195uJe","tlshash":"1453023ca0f8bb6584ade6acd5c4204404be48d1fea9170771ccda61335866afc19feb","first_seen":"2025-10-11T04:29:42.637789Z","last_seen":"2025-10-12T03:59:10.540071Z","times_seen":2,"resource_available":false,"data":null}},"time_used":766,"timings":{"blocked":631,"dns":0,"connect":0,"send":0,"wait":115,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/GzyeoJS0nFOYMKZk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.405Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/GzyeoJS0nFOYMKZk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:34 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:34 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:34 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4567,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x112, components 3","md5":"0ca812511db2681829f0f89d50a72d12","sha1":"4821f9db0b777c2304a6cba9e1235c071b548afd","sha256":"847542f75ddfcc7454d3a808a616c80a3007ba9bd727b8cca8384f6430992725","sha512":"d7981b457c9a7838d3e33671e3ed3e54ff1b7f8f1e60c9f303db692fe1e25877f4a8de7a765dd93386bfb9111c57f5324d25c64f4047b62bd2cba7942eb606f5","ssdeep":"96:Gah6E2oWu8w85O54I7jiVPAYh0/ner85e+izjgQbwpzoIjSgg4jN:GQ6Xxu8vIKPDhUpJQkpz8+N","tlshash":"32917d1c730a4138bb5305e6134336569255b6c63d9cb7f0a6951be0cf66dfb0a818ca","first_seen":"2025-10-11T04:29:42.63928Z","last_seen":"2026-01-25T17:16:20.478091Z","times_seen":3,"resource_available":false,"data":null}},"time_used":4867,"timings":{"blocked":4513,"dns":0,"connect":0,"send":0,"wait":353,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipasviarezzo.com/template/news/ipasss%20amp/img/201908301567149004844733.png","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.642Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /template/news/ipasss%20amp/img/201908301567149004844733.png HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":2414,"timings":{"blocked":1791,"dns":623,"connect":926,"send":0,"wait":0,"receive":0,"ssl":313},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ii.jalalive55.co/js/chunk-vendors.de2adece.js","fqdn":"ii.jalalive55.co","domain":"jalalive55.co","tld":"co"},"ip":{"addr":"104.21.16.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ii.jalalive55.co/","date":"2025-10-11T04:28:31.098Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalalive55.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 19:06:55 GMT","end":"Wed, 12 Nov 2025 20:04:05 GMT"},"fingerprint":{"sha1":"67:E3:B8:74:54:09:8E:46:EF:F2:F4:1D:FD:B2:A0:21:9D:4B:6B:D3","sha256":"A7:4A:BC:A8:6E:FF:80:D4:12:62:1E:5B:94:84:75:E0:92:62:A4:11:F2:AF:4D:98:FF:87:FC:79:6E:29:69:1E"}}},"request":{"raw":"GET /js/chunk-vendors.de2adece.js HTTP/1.1\r\nHost: ii.jalalive55.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ii.jalalive55.co/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 11 Oct 2025 04:28:31 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Sun, 29 Jun 2025 05:40:35 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=q77Vq3Rv9AJ3o6b9WNbIMuc3thVXi7bjOFsJJkrMaE7c5eStt3DkPOK44eUMzo8YY%2B346I07EfOPUwtfkrNAia3OSqFMaB50T1JI0gdfJXI%3D\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: W/\"6860d1d3-183f32\"\r\ncontent-encoding: br\r\ncf-ray: 98cb9c765f16b28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1589042,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators","md5":"fd5f7e570e9052cf88a7e1fb17179beb","sha1":"15b9f9e1154273ee446a16c02ec95c69df8d2249","sha256":"a2b3a82ecbea76710f37c012806926cf73691d0025e55fda13984e4085c92fb5","sha512":"adbebc0191064329a3745a93a411622b80fe6af1f3844935300f190c1936f6887106b446d51e51e8df0ce5e2eeac16337f1c7b23e92418e1388f215005d84364","ssdeep":"24576:2DAd08fv7xt6oHo+iRS4VWs2IzsE2RiNnmX6EjM:2DAd08fv7xt6o94VWjIzsE2RiNnmXdjM","tlshash":"95254bc83191b0a543f755e6107b000ef33a6659640988b4f2a8f8da7c7bd99927bf7c","first_seen":"2025-08-06T11:52:27.282111Z","last_seen":"2026-04-14T10:43:52.437227Z","times_seen":29,"resource_available":false,"data":null}},"time_used":673,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":673,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/015df51660b2918c97305936453e454c.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.030Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/015df51660b2918c97305936453e454c.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 18162\r\nConnection: keep-alive\r\nAge: 2248594\r\nCache-Control: max-age=31536000\r\nLast-Modified: Mon, 15 Sep 2025 03:52:10 GMT\r\nNw-Session-Id: 2025091511521001A701B03E30C316BECDh9g2d022b\r\nNw-Session-Trace: 2025-09-15T11:52:10.261101273+08:00 31\r\nServer-Timing: inner; dur=34\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 52809f4714bce45093913cfa940cf153\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Mon, 15 Sep 2025 11:52:10 GMT\r\nX-Tt-Logid: 2025091511521001A701B03E30C316BECD\r\nX-Tt-Trace-Host: 01cae4ce046c44cc333205b65010351fb1f42474ff7f269afca43ff9b06bc46345a32da0b17263fd6291e9ae028db88719bd3275a27f87202815370b6b20354ed58991983b126d6e34792e978320b5ee6a634a954b03fb6043711269b595bf2e7f6f22edc73af8cd84d6e31c6976b96da5\r\nX-Tt-Trace-Id: 20250915115210aa45c84964a9089C2B8D\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache05.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18162,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 157 x 157, 8-bit/color RGBA, non-interlaced","md5":"4f9fdb32f81251e8e67db6b229865517","sha1":"e7d7d61d048821c87ed6d40a31fdc80bffff01d3","sha256":"d3824919b0e0ac92ce94c6e02c01da4f91bb94558a429feb8141fe69f06c351f","sha512":"fe511f0e6314c2044480c139c7bdffb7e6c01748058a0e6a0d0d0aca28bac2401d20923e6052d0a8297f7aa503fad6669f3a0bc63db9d10db2a3b3c59a19780e","ssdeep":"384:1fDT5W1h08Awhcm+L+H8Z0XojM49Ux/BhoHk2Hker6Qnu+EqFB7t1ozlX:tDdWz0/mD49qBhkk2HkeOKuaLR1oRX","tlshash":"4c82e1915c9721ed85eb4f01a93c52f2930ec024af71b3b86844f251d693acec1bdb6a","first_seen":"2025-10-11T04:29:42.64065Z","last_seen":"2025-11-24T10:16:30.994642Z","times_seen":10,"resource_available":false,"data":null}},"time_used":492,"timings":{"blocked":473,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/basketball/team/03ba0a66e973b9189fc1324a197cbaa2.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.043Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /basketball/team/03ba0a66e973b9189fc1324a197cbaa2.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 20316\r\nConnection: keep-alive\r\nAge: 1191148\r\nCache-Control: max-age=31536000\r\nLast-Modified: Sat, 27 Sep 2025 09:36:15 GMT\r\nNw-Session-Id: 2025092717361536544FC1C764D526AFA3nzztd012b\r\nNw-Session-Trace: 2025-09-27T17:36:15.74370349+08:00 36\r\nServer-Timing: inner; dur=37\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: 8d4a31cad20c439e63908da8a16ee7f7\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Sat, 27 Sep 2025 17:36:15 GMT\r\nX-Tt-Logid: 2025092717361536544FC1C764D526AFA3\r\nX-Tt-Trace-Host: 011753cf21896d601fd8dd17f414835a9ccebe93387e38092cf81c0ec721fec917ee71bb2637669c91c1ca6130685377648d5447fb33fe5cb65a25fabd48a794cf89e2dc62f513c66aa259decf05941ea20ef57c277ce89e0e196304d059db44b46335a59609600a62db1eead236e22f80\r\nX-Tt-Trace-Id: 20250927173615e706a7828c8f051E121F\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache09.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20316,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 520 x 186, 8-bit/color RGBA, non-interlaced","md5":"c426041f1d0fca529b47236cab47cabf","sha1":"b6feee5b13790e54d7d223db363cab734ee6d2aa","sha256":"122d3ac76142bff3fb2326c78717082a38d1ad26a59147f4b201be85ed5f5097","sha512":"8424f5b8a672758df73519b992a1fd9c9a5c03409b2dc13d4f0603e9652c445b02cc3b7aca8515fc5fbe5768808bf5363e93a340eb3124ac9b8d1c7ad1fe0127","ssdeep":"384:aoX+6Pt5lo08U28WZha9uR7XHO9YsMuDKnOt7FJjw3644oH1Nuy2WF:X+615S0Tnya9uG9MtOtjwhVo1Q","tlshash":"2e92d1ec1395eecae94ccf3b370ac33680b01352d16d4aa615b136adbd49ac387ab451","first_seen":"2025-05-23T04:16:47.048307Z","last_seen":"2026-04-10T04:19:02.597061Z","times_seen":4,"resource_available":false,"data":null}},"time_used":513,"timings":{"blocked":494,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jalacos.nxhengxiao.com/2025-08-24/578cb068ccfaa48c4293ccedb6fa2fbb.png?imageMogr2/format/webp","fqdn":"jalacos.nxhengxiao.com","domain":"nxhengxiao.com","tld":"com"},"ip":{"addr":"43.159.98.5","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:43.137Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jalacos.nxhengxiao.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Tue, 09 Sep 2025 00:00:00 GMT","end":"Sun, 07 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"C9:BF:8F:DA:66:0E:02:EB:92:1A:74:4B:BB:DE:46:D5:4A:D0:C5:53","sha256":"39:69:FF:CA:7E:94:7F:ED:CF:8A:D3:A6:C2:F2:45:79:9A:48:BC:CD:77:D2:9C:D3:94:5E:A7:FE:AD:DD:18:68"}}},"request":{"raw":"GET /2025-08-24/578cb068ccfaa48c4293ccedb6fa2fbb.png?imageMogr2/format/webp HTTP/1.1\r\nHost: jalacos.nxhengxiao.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 09 Oct 2025 09:15:31 GMT\r\netag: \"435d9406ba7b434f61c657d057664ed0\"\r\ncontent-type: image/webp\r\naccess-control-allow-origin: *\r\nserver: tencent-ci\r\ntiming-allow-origin: *\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nx-delay: 69136 us\r\nx-cos-hash-crc64ecma: 17368253166110700796\r\nx-cos-process-src: 2\r\nx-cos-request-id: NjhlNzdkMzNfNjUxNTc5MWVfMjViY2RfMTlmM2ZkMjI=\r\ncontent-length: 69582\r\naccept-ranges: bytes\r\ndate: Sat, 11 Oct 2025 04:28:43 GMT\r\neo-log-uuid: 8990723407008623968\r\neo-cache-status: HIT\r\ncache-control: max-age=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":69582,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"435d9406ba7b434f61c657d057664ed0","sha1":"6840174332d65a2e7b48144fe7b5939387cec105","sha256":"a45cbb227bc69791d372a3d7d5d450d97974f22c4cb22a6b952587b0f9b25e3f","sha512":"1c1940e7efd81c11c85b8b3851fb10cfe044443a9c42ecced7b6faadb97dcc8a7cea690968a7dd463cf090d8fe0371661e59391d5c5268af19a7f1bc1411d7b5","ssdeep":"1536:iMvoFsJI9KYjKQizI2UdF6kYK4/CsWP/kfzmDg8g4rPxnoP0PCHnA:ijxfjKQAI20FSK4oP/4zQgKrPPPknA","tlshash":"1663f1e5a7e4031077728cbd3ed51376c115619a295ebb8936b2a64467822fff240f32","first_seen":"2025-10-11T04:29:42.570652Z","last_seen":"2025-10-12T03:59:10.606708Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1440,"timings":{"blocked":648,"dns":1,"connect":26,"send":0,"wait":39,"receive":60,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sportnanoapi.com/football/team/15603c323750e4655fd2b0aaec710564.png","fqdn":"cdn.sportnanoapi.com","domain":"sportnanoapi.com","tld":"com"},"ip":{"addr":"23.251.63.10","port":443,"asn":62468,"as":"HKCLOUDX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jalabu6.net/","date":"2025-10-11T04:28:42.988Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sportnanoapi.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 15:00:18 GMT","end":"Mon, 15 Dec 2025 15:00:17 GMT"},"fingerprint":{"sha1":"13:9C:F6:07:4F:07:FD:CD:F9:4E:E3:E8:13:CB:EA:18:F2:7F:DE:D8","sha256":"1D:0E:DB:FE:0C:D7:E8:B0:66:5F:7B:76:71:BD:03:2C:BD:90:94:42:14:79:75:6D:10:4C:88:78:73:85:6B:97"}}},"request":{"raw":"GET /football/team/15603c323750e4655fd2b0aaec710564.png HTTP/1.1\r\nHost: cdn.sportnanoapi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jalabu6.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Byte-nginx\r\nContent-Type: image/png\r\nContent-Length: 44853\r\nConnection: keep-alive\r\nAge: 2542176\r\nCache-Control: max-age=31536000\r\nLast-Modified: Thu, 11 Sep 2025 18:19:08 GMT\r\nNw-Session-Id: 2025091202190821817807ED4835DCD76F7czdh022b\r\nNw-Session-Trace: 2025-09-12T02:19:08.24432765+08:00 83\r\nServer-Timing: inner; dur=92\r\nX-Bdcdn-Cache-Status: TCP_HIT\r\nX-Powered-By: ImageX\r\nX-Request-Id: b66dad093017fcc365d9c6961c6d2547\r\nX-Request-Ip: 91.90.42.154\r\nX-Response-Cache: edge_hit\r\nX-Response-Cinfo: 91.90.42.154\r\nX-Response-Date: Fri, 12 Sep 2025 02:19:08 GMT\r\nX-Tt-Logid: 2025091202190821817807ED4835DCD76F\r\nX-Tt-Trace-Host: 019c4ecbd14bc09bb885a2dd8cbbc68a4f3f15f326f475b51149c27ea8c2fc79dd31d5edec4fe1da67fb6621ffde7a55ade4a8a38b16de49b8f3ef9441ed932853493bb88c6a15e4c195b23556b9dfb4e82cc9fb5f605e88edd4fd5b26cad68e78e362d15e1b8bd22b6c63987317bbccd9\r\nX-Tt-Trace-Id: 2025091202190775c8d8e058af16DC3554\r\nX-Tt-Trace-Tag: id=5\r\nDate: Sat, 11 Oct 2025 04:28:43 GMT\r\nvia: cache04.oversea-NL-AMS3\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: HEAD,GET\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":44853,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced","md5":"6efc1c315f424346150dd62cc8209c1d","sha1":"f43c645b07ae72be4b3ba6afe51f133edc2c6304","sha256":"f932d44385fcfd1d7404f9f277d9b08177e71aabbb601f5a7644be1698d5f872","sha512":"c114f4be786945a18e8d4ca92c9e74260037c78cb2ef27c0dd388cb690449c4d68ea13989145c3e6fd4ccd06090d0e0976e113210cb76821bff120c47d52507f","ssdeep":"768:ceek3kggD26r30iycAVchZ3IWjs/jGcHk4+4hSXdXtJvXMaIN49AdipD:hek5a0i/8iZ3IWVcRfg0PWAd2D","tlshash":"b013f193e07d41ad2ac651d676820c4af53542f4ecbdf70a084f87286a6caec7922df0","first_seen":"2025-10-11T04:29:42.644468Z","last_seen":"2025-10-11T04:29:42.644468Z","times_seen":1,"resource_available":false,"data":null}},"time_used":434,"timings":{"blocked":412,"dns":0,"connect":0,"send":0,"wait":18,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/GJIhrJIfLJ1cVRDk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.399Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/GJIhrJIfLJ1cVRDk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:33 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:33 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:33 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4897,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"4bb46b88f05e6c7b46a904367ac01d31","sha1":"0d79a67b38287715009be187138d2cd9504384c7","sha256":"05b18c0556b9b31e46c998fa80101bccfb1ca7f8221e8a2b378cdbebf130bd2f","sha512":"2fd627180217a7b35152af968ac5097d49b50e8aec55bf6bacf0cbda1175ed07e3b37f886b2028ecdaf4381c67217be6c9b4d49cf694147a223cba5ad93971cf","ssdeep":"96:GahCEbO0ukGaYomnIe/y9m4iuZ8c86CnwWfqxgZcD:GQC+PuXPIe/y9m4itDmycD","tlshash":"5da16d07f60bc6b12b31a9fa0a051ea779c18e92fbc4727a23b442a1945ed76c40533e","first_seen":"2025-10-11T04:29:42.646147Z","last_seen":"2025-11-29T14:14:36.936927Z","times_seen":7,"resource_available":false,"data":null}},"time_used":4516,"timings":{"blocked":4161,"dns":0,"connect":0,"send":0,"wait":355,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/GTyaLFNkVRyhMT8k.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.408Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/GTyaLFNkVRyhMT8k.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:34 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:34 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:34 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T16:08:29.690696Z","times_seen":14235158,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/IJ5xqJttDKOfnJfk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.413Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/IJ5xqJttDKOfnJfk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:34 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:34 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:34 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1978,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x120, components 3","md5":"6a06baf80a2b350ec7176736de16efae","sha1":"5b62c6fd54eb7e05e478048658fe8eb7f3f3362a","sha256":"8d8d49da606c569274ddffc34e9d464003b76eea7d5901fb713aa33d7e13c1a5","sha512":"19bc13d0ecc2db4e90898fe9db35cdc02cad11e7b51a92237e0bc102fa21dbf18a51ad8ab09b6bd6e56e8fdce7627efa5412b734a4b0f782ff4a42fdef71a0fc","ssdeep":"","tlshash":"65412e9bde1211139b32877da1131f7e918d7d013699a7f32a728d90f970cb18e0fa48","first_seen":"2025-10-11T04:29:42.647324Z","last_seen":"2025-10-11T04:29:42.647324Z","times_seen":1,"resource_available":false,"data":null}},"time_used":4854,"timings":{"blocked":4505,"dns":0,"connect":0,"send":0,"wait":349,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ipasviarezzo.com/autopic/DKOun2SbVRcuoTRk.jpg","fqdn":"ipasviarezzo.com","domain":"ipasviarezzo.com","tld":"com"},"ip":{"addr":"154.223.3.160","port":80,"asn":138995,"as":"Antbox Networks Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ipasviarezzo.com/","date":"2025-10-11T04:28:29.426Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /autopic/DKOun2SbVRcuoTRk.jpg HTTP/1.1\r\nHost: ipasviarezzo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ipasviarezzo.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Oct 2025 04:28:32 GMT\r\nContent-Type: image/jpg\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: Server\r\nCache-Control: max-age=3600\r\nLast-Modified: Sat, 11 Oct 2025 04:28:32 +0000\r\nExpires: Sat, 11 Oct 2025 05:28:32 +0000\r\nEtag: \"c20ad4d76fe97759aa27a0c99bff6710\"\r\nPragma: public\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5844,"size_decoded":0,"mime_type":"image/jpg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality\", baseline, precision 8, 200x100, components 3","md5":"99f9a1717106361d184b2a8dcbe48d22","sha1":"d32a5fb86fd6419b0fc319112ce5d51c6d23bd9c","sha256":"6bff2ddce4dcaccf86d1908f436879b09cb2edd527a1f702489139310fae84f8","sha512":"738fa7872d86c82b013364121c415dca966cfdc76487c26abb1d17e0a31cb53d6704156a044147926c08bda01b301ab461c869a3dd05c6b37ba5d4fc116cae8c","ssdeep":"96:GaheEn9U2+/kGFa2RYeB4bFdl1XXCTtTaMSbJxjVT4m:GQeNTpvYeKbFd3+apb/l","tlshash":"28c19e8bbb1bd3377f65a4f068c5469bd1dd086e2a317b7426110b378c29cb5c40979b","first_seen":"2025-10-11T04:29:42.649461Z","last_seen":"2025-10-11T04:29:42.649461Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3219,"timings":{"blocked":2867,"dns":0,"connect":0,"send":0,"wait":351,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}