{"report_id":"dd3199a8-6b35-4654-a0fd-47ef5567f360","version":6,"status":"done","tags":[],"date":"2024-05-20T10:17:43Z","url":{"schema":"http","addr":"pook37xna.cc/invite/i=66136","fqdn":"pook37xna.cc","domain":"pook37xna.cc","tld":"cc"},"ip":{"addr":"104.21.2.246","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"pook37xna.cc/enter/register","fqdn":"pook37xna.cc","domain":"pook37xna.cc","tld":"cc"},"title":"t33n leak 5-17 age"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T16:18:20Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"pook37xna.cc","ip":{"addr":"104.21.2.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":9,"request_count":9,"received_data":384104,"sent_data":4414,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.discordapp.com","ip":{"addr":"162.159.133.233","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2015-02-26","domain_rank":2474,"first_seen":"2015-08-24 15:06:21","last_seen":"2024-05-19 19:13:18","alert_count":0,"request_count":2,"received_data":2912,"sent_data":1264,"comment":"","tags":null,"fingerprints":null},{"fqdn":"pon3kk7xf.cc","ip":{"addr":"104.21.10.135","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":1176,"sent_data":1142,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ocsp.sectigochina.com","ip":{"addr":"104.18.38.66","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-10-20","domain_rank":0,"first_seen":"2022-02-25 07:42:56","last_seen":"2024-05-16 05:54:01","alert_count":0,"request_count":1,"received_data":964,"sent_data":333,"comment":"","tags":null,"fingerprints":null},{"fqdn":"b.yzcdn.cn","ip":{"addr":"154.85.69.57","port":443,"asn":139057,"as":"LEGEND DYNASTY PTE. LTD.","country":"Singapore","country_code":"SG"},"domain_registered":"2014-12-08","domain_rank":425969,"first_seen":"2015-07-08 11:30:49","last_seen":"2023-10-23 14:59:32","alert_count":0,"request_count":1,"received_data":9752,"sent_data":426,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"pook37xna.cc/js/chunk-vendors.ea790e22.js","fqdn":"pook37xna.cc","domain":"pook37xna.cc","tld":"cc"},"ip":{"addr":"104.21.2.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"4fee178f809d1b2a829099a8bb91c56c","sha1":"178b6322fdc40c08fcbda0c096c668855ad49b51","sha256":"c3580c9951b9554639c1404a246b3f27f818a99240c728f04cb964cd9e50b73d","sha512":"965985bffe1e9a2254888c7eadb7e896a0e78581ac728ca8c0d38fb673ceb302205573a9bff914acd7c1cb7bc6da32ed4cb5409dbf6e3eecc98fb359c28e8cdc","ssdeep":"6144:SCUOs30tR08Fg3iLLbQdqyWwEZwYLGX4yZI9Go/IudP0Pz+CNdQKKbqmM9wszi1I:SmsEtR08F7eRE2+UFPS3KKMhsgAPFDy9","tlshash":"c8151a89b281b075439770a4806f110ab2376d5ca40ad198f67df4e9af7ca8d6137f3e","size":949174,"data":"","first_seen":"2023-03-07T01:35:40Z","last_seen":"2024-08-21T09:33:17.508651Z","times_seen":1004,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pook37xna.cc/js/app.8c5ee9ce.js","fqdn":"pook37xna.cc","domain":"pook37xna.cc","tld":"cc"},"ip":{"addr":"104.21.2.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"dcdf15973346fe021e32a42a577d5a78","sha1":"2e73e47810842cc85d452530d06e467506996d0f","sha256":"a0d97b5b0fe4d7dbcdd7dd3d74aea9cae66d0bffb2de16f8235ac74d520d0a74","sha512":"86e7363da0487836ccdb315861b5863af8b6625f2c161c743ed0df15fee456a8f09fce4d906abd67c97095b9f6ca9decfe31a20cad5cc3f5f41f9f7069168ff5","ssdeep":"1536:+TQ1GVNy7pZfmEwwZdTjTUhMTLEmT5KTRTu9/fkn:+ToVFZfwwZdTjTfTLEmT5KTRTuZ+","tlshash":"17f3fab7ee45e51c0e15450739b911c1b3733f59da2780c6f3b4ea982ae18b4362a78f","size":171142,"data":"","first_seen":"2024-08-19T22:26:27.311514Z","last_seen":"2024-08-19T22:26:27.311514Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"pook37xna.cc/js/chunk-vendors.ea790e22.js","fqdn":"pook37xna.cc","domain":"pook37xna.cc","tld":"cc"},"ip":{"addr":"104.21.2.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pook37xna.cc/invite/i=66136","date":"2024-05-20T10:17:17.921Z","timestamp":1716200237921,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pook37xna.cc","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 May 2024 07:31:28 GMT","end":"Sun, 11 Aug 2024 07:31:27 GMT"},"fingerprint":{"sha1":"04:BB:3C:DB:B0:4E:E7:66:E8:A8:26:99:FA:52:84:20:73:CA:F7:7B","sha256":"D4:E4:08:C1:52:B1:19:7E:55:89:C2:01:A8:4A:A9:C6:96:64:E3:28:69:16:96:BD:04:4B:A8:F3:09:BF:D2:72"}}},"request":{"raw":"GET /js/chunk-vendors.ea790e22.js HTTP/1.1\r\nHost: pook37xna.cc\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pook37xna.cc/invite/i=66136\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 May 2024 10:17:18 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nlast-modified: Sun, 19 May 2024 16:48:04 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=89xnNLqwpD8uIDQsR%2BbH%2FkYJsv1KVLGlWUtSV1lkAxieyKV3nuA%2F0Cqy0OwkSqi0e0fwvwMo4mgbO6BN%2FsBF2mK03AnXGaKOK2tLDdtMAfAogg07k0K%2Bml9D21UqgjI%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 886b937efd3e56a8-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":267692,"size_decoded":949174,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (51759)","md5":"4fee178f809d1b2a829099a8bb91c56c","sha1":"178b6322fdc40c08fcbda0c096c668855ad49b51","sha256":"c3580c9951b9554639c1404a246b3f27f818a99240c728f04cb964cd9e50b73d","sha512":"965985bffe1e9a2254888c7eadb7e896a0e78581ac728ca8c0d38fb673ceb302205573a9bff914acd7c1cb7bc6da32ed4cb5409dbf6e3eecc98fb359c28e8cdc","ssdeep":"6144:SCUOs30tR08Fg3iLLbQdqyWwEZwYLGX4yZI9Go/IudP0Pz+CNdQKKbqmM9wszi1I:SmsEtR08F7eRE2+UFPS3KKMhsgAPFDy9","tlshash":"c8151a89b281b075439770a4806f110ab2376d5ca40ad198f67df4e9af7ca8d6137f3e","first_seen":"2023-03-07T01:35:40Z","last_seen":"2024-08-21T09:33:17.508651Z","times_seen":1004,"resource_available":true,"data":null}},"time_used":413,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":371,"receive":42,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.discordapp.com/attachments/1241699363655254119/1241699469880463360/dfgbrn51.mp4?ex=664b263f\u0026is=6649d4bf\u0026hm=5c502e1b801d927de5910ac856b594066f632e86791e659b4d879b2d6c17489f\u0026","fqdn":"cdn.discordapp.com","domain":"discordapp.com","tld":"com"},"ip":{"addr":"162.159.133.233","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-05-20T10:17:19.030297125Z","timestamp":1716200239030,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET /attachments/1241699363655254119/1241699469880463360/dfgbrn51.mp4?ex=664b263f\u0026is=6649d4bf\u0026hm=5c502e1b801d927de5910ac856b594066f632e86791e659b4d879b2d6c17489f\u0026 HTTP/1.1\r\nHost: cdn.discordapp.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pook37xna.cc/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Mon, 20 May 2024 10:17:18 GMT\r\ncontent-type: application/xml; charset=UTF-8\r\ncontent-length: 234\r\ncf-ray: 886b93847fac1c0a-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: attachment\r\nexpires: Tue, 20 May 2025 10:17:18 GMT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-guploader-uploadid: ABPtcPpqFzBYPesVEyCTlsSt5QB8Kab9VSqD8PZ8uQBhnfE2j3VLBzXgCyjv22VGNMsPq812B_5U-9BrpQ\r\nx-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=%2BwKI8lKvTZtRWgMIxax6rkM4WElUW8RA3q2HZAlX%2BzTBTWxCM7j2e0JbBFNYaWlVXWUPwJs6PhUlyON5Jfcux2bcTXEwOJuWRuqvT0yXPnjzELexayMwPdz5akVkcfN3S2zWUA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nset-cookie: __cf_bm=hXvhCk6DdOW2mxzSqQ.82clcg5HjFtF2TYdeEOEb4Fg-1716200238-1.0.1.1-E1PrP97hpFkrDEzBYWRu4WWRkiQt5fmnKlSKqDJUw67CiQiUtuYsqlqJYT82BnRhv7KOCZg.Y9_3LImy5d3sBA; path=/; expires=Mon, 20-May-24 10:47:18 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None\n_cfuvid=GikCC4FLX6qb6PYKSqGHN0FhvlFAF8abe7Sok7CPayY-1716200238852-0.0.1.1-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=None\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":234,"size_decoded":234,"mime_type":"text/xml; charset=utf-8","magic":"XML 1.0 document, ASCII text, with no line terminators","md5":"22a2720b032ede1c198ffaf53b8bea42","sha1":"f262a6b0dbe50a2c0f154aeef4ca53f25e4e0f9b","sha256":"511581378c2ce015ad853824ca80f741a954c25fc1b55d520548b0d961771b3e","sha512":"709ed37801aeb6ff9d8696551a6131721d5b9336df7b299343fa35e79d5cbe2489ec8bd1311dad512450c1850b1f9ed4e63a5b55d44a3d75e2ebaaed437b7dad","ssdeep":"","tlshash":"ccd023915371640f579d5826a11ef75fd720e0571254332c15a0c9f397cc5577c4b746","first_seen":"2024-08-19T22:26:27.309232Z","last_seen":"2024-08-19T22:26:27.309232Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pon3kk7xf.cc/socket.io/?EIO=3\u0026transport=websocket","fqdn":"pon3kk7xf.cc","domain":"pon3kk7xf.cc","tld":"cc"},"ip":{"addr":"104.21.10.135","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-05-20T10:17:19.030655701Z","timestamp":1716200239030,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET /socket.io/?EIO=3\u0026transport=websocket HTTP/1.1\r\nHost: pon3kk7xf.cc\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://pook37xna.cc\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: 2pKPc4nQm8uTJQR8sOqlSg==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Mon, 20 May 2024 10:17:18 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: upG0amj2tUZFl5zKtP8Gox/RZkc=\r\nCF-Cache-Status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=186uwnaaCY3CFiqXPRFQuRPSp03uUddjcawc1aPzexv2PnKSOdkDh4efaLHb0s5awOGmeib1xUlyGAhBC1JLaKYX3DVB8dWMVffELYmHHz4zf2SasrVYniu3kdNP%2B0A%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 886b93849e55b52d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-19T11:11:20.568059Z","times_seen":15435352,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pook37xna.cc/getlog","fqdn":"pook37xna.cc","domain":"pook37xna.cc","tld":"cc"},"ip":{"addr":"104.21.2.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pook37xna.cc/invite/i=66136","date":"2024-05-20T10:17:18.727Z","timestamp":1716200238727,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pook37xna.cc","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 May 2024 07:31:28 GMT","end":"Sun, 11 Aug 2024 07:31:27 GMT"},"fingerprint":{"sha1":"04:BB:3C:DB:B0:4E:E7:66:E8:A8:26:99:FA:52:84:20:73:CA:F7:7B","sha256":"D4:E4:08:C1:52:B1:19:7E:55:89:C2:01:A8:4A:A9:C6:96:64:E3:28:69:16:96:BD:04:4B:A8:F3:09:BF:D2:72"}}},"request":{"raw":"GET /getlog HTTP/1.1\r\nHost: pook37xna.cc\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pook37xna.cc/enter/register\r\nCookie: inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=false\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 May 2024 10:17:18 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=QlW1e8O5yvi4sqlPhO71m1S9tcIXN1HL8NACM5KXZIPfPqlhLRHP3bZIJY%2B5BaquHUiPMsVo9yIJHUKlg7%2BUYQMe4uzr9iWppIg%2FWkhyVRRNaWyksPLQI8ZS3e0Zotw%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 886b93841b8456a8-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5219,"size_decoded":12120,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"6389d13262ab384141cc8f4cfecf4233","sha1":"0440f82905c2d590d48711ceb44a6d31dacb69a5","sha256":"acc440475bdadcaef7084c5ec22948a3fe0a017a2461113f6aab34026c196371","sha512":"7643984dd39a0aea8904fbfd8b0f5b1bdb0825dc264aba82f5ba0e110aa600b478b1f6363511061fda808aa8874d9b1379751d414b595e3149187fbc892d29a1","ssdeep":"192:XHObLUIgR+lr04QAUIDqKceBewR9q8fTbdARAQ8NWDS35y44b0d0a/OInImvIdn2:Qr7GY1IIh2Sgg","tlshash":"4042d7b85bf4746e12316894adf47e4b1ccf50b6c9d04aa5efcb8e1e20650e11b8b763","first_seen":"2024-08-19T22:26:27.310476Z","last_seen":"2024-08-19T22:26:27.310476Z","times_seen":1,"resource_available":false,"data":null}},"time_used":154,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":153,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pook37xna.cc/js/app.8c5ee9ce.js","fqdn":"pook37xna.cc","domain":"pook37xna.cc","tld":"cc"},"ip":{"addr":"104.21.2.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pook37xna.cc/invite/i=66136","date":"2024-05-20T10:17:17.924Z","timestamp":1716200237924,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pook37xna.cc","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 May 2024 07:31:28 GMT","end":"Sun, 11 Aug 2024 07:31:27 GMT"},"fingerprint":{"sha1":"04:BB:3C:DB:B0:4E:E7:66:E8:A8:26:99:FA:52:84:20:73:CA:F7:7B","sha256":"D4:E4:08:C1:52:B1:19:7E:55:89:C2:01:A8:4A:A9:C6:96:64:E3:28:69:16:96:BD:04:4B:A8:F3:09:BF:D2:72"}}},"request":{"raw":"GET /js/app.8c5ee9ce.js HTTP/1.1\r\nHost: pook37xna.cc\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pook37xna.cc/invite/i=66136\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 May 2024 10:17:18 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nlast-modified: Sun, 19 May 2024 16:47:43 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=EuZsyux040rsROi16Bk%2FCkOYtfgou%2FXdV2u0wZv%2FONfRPDBDmi92GF3gBqFJuzsolDTSCLRZDYV7N8ZUKATtLyVK98SQex784lAcjerWD%2FB72v%2BybPJS4v918ZSyRtA%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 886b937f0d4256a8-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":33208,"size_decoded":171142,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"dcdf15973346fe021e32a42a577d5a78","sha1":"2e73e47810842cc85d452530d06e467506996d0f","sha256":"a0d97b5b0fe4d7dbcdd7dd3d74aea9cae66d0bffb2de16f8235ac74d520d0a74","sha512":"86e7363da0487836ccdb315861b5863af8b6625f2c161c743ed0df15fee456a8f09fce4d906abd67c97095b9f6ca9decfe31a20cad5cc3f5f41f9f7069168ff5","ssdeep":"1536:+TQ1GVNy7pZfmEwwZdTjTUhMTLEmT5KTRTu9/fkn:+ToVFZfwwZdTjTfTLEmT5KTRTuZ+","tlshash":"17f3fab7ee45e51c0e15450739b911c1b3733f59da2780c6f3b4ea982ae18b4362a78f","first_seen":"2024-08-19T22:26:27.311514Z","last_seen":"2024-08-19T22:26:27.311514Z","times_seen":1,"resource_available":true,"data":null}},"time_used":302,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":302,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pook37xna.cc/css/chunk-vendors.c57533e1.css","fqdn":"pook37xna.cc","domain":"pook37xna.cc","tld":"cc"},"ip":{"addr":"104.21.2.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://pook37xna.cc/invite/i=66136","date":"2024-05-20T10:17:17.927Z","timestamp":1716200237927,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pook37xna.cc","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 May 2024 07:31:28 GMT","end":"Sun, 11 Aug 2024 07:31:27 GMT"},"fingerprint":{"sha1":"04:BB:3C:DB:B0:4E:E7:66:E8:A8:26:99:FA:52:84:20:73:CA:F7:7B","sha256":"D4:E4:08:C1:52:B1:19:7E:55:89:C2:01:A8:4A:A9:C6:96:64:E3:28:69:16:96:BD:04:4B:A8:F3:09:BF:D2:72"}}},"request":{"raw":"GET /css/chunk-vendors.c57533e1.css HTTP/1.1\r\nHost: pook37xna.cc\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pook37xna.cc/invite/i=66136\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 May 2024 10:17:18 GMT\r\ncontent-type: text/css; charset=utf-8\r\nlast-modified: Sun, 19 May 2024 16:47:17 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=R321oUIwnFwkhSIaj3dX%2BVlnHlWDWVBGo%2BGu0N6evyehYCyTAAS%2B44kmt2K0csLqp6x7AWe%2BsfPKgDK5p%2FEva0xUpOxBpXa1Q3BxFLC%2FNj%2FEjLI8jRFXsj%2FakMbZQr8%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 886b937f0d4556a8-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":51156,"size_decoded":156544,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"ebfffebc1f62c3be51082e6595a0a005","sha1":"e278fbd6fd48150b3f366b50ed388983d934978c","sha256":"f5ce9e73e1f7cea326eedd4f39d9b2d703ba4ccb31a6078cdc1fb16481298a32","sha512":"ec1ffe3ba3da9f1db52f5bee312f94d09389d7f518234ca14712e2a7533f640264307382d3b2816e5c258b77581f6a4fc856895095067b83f5c4cd3c9d57219d","ssdeep":"1536:PeN5J+jOkiHcZiNEBVcZH5NHMja4drYEXfh1tRdsVAlWE:PgeVc5HMjajUfjXvlWE","tlshash":"ece3e92b8ac0235cb217ce615fc4a7d8c228c571e5920ef9f21376298fcbb86159675b","first_seen":"2023-04-05T23:34:09Z","last_seen":"2024-08-21T09:33:17.50638Z","times_seen":1144,"resource_available":false,"data":null}},"time_used":167,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":161,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pook37xna.cc/css/app.63fa1278.css","fqdn":"pook37xna.cc","domain":"pook37xna.cc","tld":"cc"},"ip":{"addr":"104.21.2.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://pook37xna.cc/invite/i=66136","date":"2024-05-20T10:17:17.929Z","timestamp":1716200237929,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pook37xna.cc","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 May 2024 07:31:28 GMT","end":"Sun, 11 Aug 2024 07:31:27 GMT"},"fingerprint":{"sha1":"04:BB:3C:DB:B0:4E:E7:66:E8:A8:26:99:FA:52:84:20:73:CA:F7:7B","sha256":"D4:E4:08:C1:52:B1:19:7E:55:89:C2:01:A8:4A:A9:C6:96:64:E3:28:69:16:96:BD:04:4B:A8:F3:09:BF:D2:72"}}},"request":{"raw":"GET /css/app.63fa1278.css HTTP/1.1\r\nHost: pook37xna.cc\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pook37xna.cc/invite/i=66136\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 May 2024 10:17:18 GMT\r\ncontent-type: text/css; charset=utf-8\r\nlast-modified: Sun, 19 May 2024 16:47:16 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=iRckcQQre0NvhmYNu3gQRJWqbFsAXpwumGOxTDW6iWG3AB9jtpfJnDknod64ASy%2BDLTXODsR80Q4BEeSUXdhmIBTitJv8Vjo6ZKuSgPQB4o3idmwV5SoB9UI65sLKxI%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 886b937f0d4656a8-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":11876,"size_decoded":14103,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (14103), with no line terminators","md5":"fc5f8ef8695221bc3fc349b5f261a5a9","sha1":"a0e017ad75bd04171ba5c404dfa2c905f2935207","sha256":"f1adec98d9318f3fa0477afc2b5c8b84842df555a0e536d8a61b2679a44ae4b8","sha512":"6b3173c9b7dfd40109dcb021dfd3d988ec7ca23baf67fdff4d55aaf9abeacd8820ac4eaa6df4607c04048fb9e2a767f4328afd40e6eb5505a04db8c54adeafe1","ssdeep":"384:KFBdf1k0T0N05SYJ/z38uadiWyoSGq+PIKV8w3oIlzX0z0Zlzv:KXp1k0T0N0AYJ/z38uadiWyoSGq+PIKn","tlshash":"f652983aba8d7414e577c8a53ca1ab8da320bf43f1434aa06417a7714ccb167363eb84","first_seen":"2024-08-19T22:26:27.31322Z","last_seen":"2024-08-19T22:26:27.31322Z","times_seen":1,"resource_available":false,"data":null}},"time_used":158,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":157,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.sectigochina.com/","fqdn":"ocsp.sectigochina.com","domain":"sectigochina.com","tld":"com"},"ip":{"addr":"104.18.38.66","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-05-20T10:17:20.600002401Z","timestamp":1716200240600,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: ocsp.sectigochina.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 May 2024 10:17:20 GMT\r\nContent-Type: application/ocsp-response\r\nContent-Length: 472\r\nConnection: keep-alive\r\nLast-Modified: Sun, 19 May 2024 01:39:07 GMT\r\nExpires: Sun, 26 May 2024 01:39:06 GMT\r\nEtag: \"5eb60a3c5b21b231719ba6a03d38bbd1afed53e3\"\r\nCache-Control: max-age=487469,s-maxage=1800,public,no-transform,must-revalidate\r\nX-CCACDN-Proxy-ID: mcdpinlb1\r\nX-Frame-Options: SAMEORIGIN\r\nCF-Cache-Status: DYNAMIC\r\nServer: cloudflare\r\nCF-RAY: 886b938f4eccb500-OSL\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":472,"mime_type":"application/octet-stream","magic":"data","md5":"b32e33ff79eb75f6ad1cb61491b3e089","sha1":"5eb60a3c5b21b231719ba6a03d38bbd1afed53e3","sha256":"ea8be6c156802e50083ea680ed4fe5622db789e16b3e357376b7609dcb24438b","sha512":"f412d33b05fe6d2b709459d2dabdcf0f4d31c668cfb4a91d0518daa6c71fa677c8ef9838b55c37b173c312fe48fbdce16c3d898b23a046a11048357daf9fcb4f","ssdeep":"","tlshash":"02f0dc400cb24041480eb8215abc28bdbc4bc6ea18951a8b3e1851f84e8a7696e0df02","first_seen":"2024-05-20T11:29:33Z","last_seen":"2024-08-19T22:26:41.023567Z","times_seen":4,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"b.yzcdn.cn/vant/icon-demo-1126.png","fqdn":"b.yzcdn.cn","domain":"yzcdn.cn","tld":"cn"},"ip":{"addr":"154.85.69.57","port":443,"asn":139057,"as":"LEGEND DYNASTY PTE. LTD.","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pook37xna.cc/invite/i=66136","date":"2024-05-20T10:17:18.662Z","timestamp":1716200238662,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.yzcdn.cn","organization":""},"issuer":{"commonName":"sslTrus (RSA) DV CA","organization":"sslTrus"},"validity":{"start":"Thu, 09 Nov 2023 00:00:00 GMT","end":"Mon, 09 Dec 2024 23:59:59 GMT"},"fingerprint":{"sha1":"6A:A8:BA:7C:D4:B4:86:0B:74:EB:E6:19:C8:69:2E:8B:13:6C:1E:1B","sha256":"8F:82:6E:D5:B3:3D:E4:86:5D:DF:2C:53:25:66:11:24:E4:90:98:24:8E:7F:82:F6:93:07:A1:AD:ED:96:2D:C4"}}},"request":{"raw":"GET /vant/icon-demo-1126.png HTTP/1.1\r\nHost: b.yzcdn.cn\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pook37xna.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 20 May 2024 10:17:20 GMT\r\ncontent-type: image/png\r\ncontent-length: 8886\r\nserver: openresty\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=2592000\r\ncontent-disposition: inline; filename=\"icon-demo-1126.png\"; filename*=utf-8''icon-demo-1126.png\r\ncontent-md5: +HxG80alVIIkzL4La9dd9Q==\r\ncontent-transfer-encoding: binary\r\netag: \"Fo6Li9S6PmtshVfZSnJgYf3WJJL9\"\r\nlast-modified: Mon, 26 Nov 2018 11:08:05 GMT\r\nx-reqid: YyIAAAASg9geDiAX\r\nx-svr: IO\r\nx-qiniu-zone: 0\r\nx-log: X-Log\r\nx-ser: BC5_dx-lt-yd-zhejiang-huzhou-3-cache-7, BC165_lt-obgp-fujian-xiamen-33-cache-1, BC132_IT-Lombardia-Milan-1-cache-1, BC46_DE-Frankfurt-Frankfurt-11-cache-4\r\nx-cache: HIT from BC46_DE-Frankfurt-Frankfurt-11-cache-4(baishan)\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8886,"size_decoded":8886,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"f87c46f346a5548224ccbe0b6bd75df5","sha1":"8e8b8bd4ba3e6b6c8557d94a726061fdd62492fd","sha256":"b6304eb9b754d38d3ad74d0acce42c156536840351368ed3e4895a6b50cd9370","sha512":"4852e453726de2f2c4481aaa661df24d111ce49e8f57e1fd8d23bd7db93ff78561a31d894ff6148ddbdd7ef9d99dafe0d7371b567aa7112a770e18ed17ab41dc","ssdeep":"192:T1ejBaEeCInIUI6F3BGA7sHrx6c+IYJY3mgE039sK/oeNo/vc7ga/:T1eFF+I+3A0U7E+9sKpkvcd/","tlshash":"5402aec508505081342287a9d818707d2a9aa626da7e0787ea6c3650ceb09f6f85bff0","first_seen":"2023-04-30T23:44:28Z","last_seen":"2026-03-19T20:01:49.172817Z","times_seen":1192,"resource_available":false,"data":null}},"time_used":3902,"timings":{"blocked":1938,"dns":1523,"connect":23,"send":0,"wait":24,"receive":1,"ssl":388},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.discordapp.com/attachments/1241699363655254119/1241699469880463360/dfgbrn51.mp4?ex=664b263f\u0026is=6649d4bf\u0026hm=5c502e1b801d927de5910ac856b594066f632e86791e659b4d879b2d6c17489f\u0026","fqdn":"cdn.discordapp.com","domain":"discordapp.com","tld":"com"},"ip":{"addr":"162.159.133.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://pook37xna.cc/invite/i=66136","date":"2024-05-20T10:17:18.777Z","timestamp":1716200238777,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"discordapp.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 20 Oct 2023 00:00:00 GMT","end":"Sat, 19 Oct 2024 23:59:59 GMT"},"fingerprint":{"sha1":"97:8B:EE:AD:1E:BF:A1:69:E7:94:29:F7:55:7A:29:64:19:C7:81:39","sha256":"AE:AD:8A:65:51:06:63:11:23:96:B7:DA:16:50:23:0B:76:2A:B6:E5:33:E1:33:DA:84:FA:9D:D0:8B:E6:56:63"}}},"request":{"raw":"GET /attachments/1241699363655254119/1241699469880463360/dfgbrn51.mp4?ex=664b263f\u0026is=6649d4bf\u0026hm=5c502e1b801d927de5910ac856b594066f632e86791e659b4d879b2d6c17489f\u0026 HTTP/1.1\r\nHost: cdn.discordapp.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pook37xna.cc/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Mon, 20 May 2024 10:17:18 GMT\r\ncontent-type: application/xml; charset=UTF-8\r\ncontent-length: 234\r\ncf-ray: 886b93847fac1c0a-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: attachment\r\nexpires: Tue, 20 May 2025 10:17:18 GMT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-guploader-uploadid: ABPtcPpqFzBYPesVEyCTlsSt5QB8Kab9VSqD8PZ8uQBhnfE2j3VLBzXgCyjv22VGNMsPq812B_5U-9BrpQ\r\nx-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=%2BwKI8lKvTZtRWgMIxax6rkM4WElUW8RA3q2HZAlX%2BzTBTWxCM7j2e0JbBFNYaWlVXWUPwJs6PhUlyON5Jfcux2bcTXEwOJuWRuqvT0yXPnjzELexayMwPdz5akVkcfN3S2zWUA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nset-cookie: __cf_bm=hXvhCk6DdOW2mxzSqQ.82clcg5HjFtF2TYdeEOEb4Fg-1716200238-1.0.1.1-E1PrP97hpFkrDEzBYWRu4WWRkiQt5fmnKlSKqDJUw67CiQiUtuYsqlqJYT82BnRhv7KOCZg.Y9_3LImy5d3sBA; path=/; expires=Mon, 20-May-24 10:47:18 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None\n_cfuvid=GikCC4FLX6qb6PYKSqGHN0FhvlFAF8abe7Sok7CPayY-1716200238852-0.0.1.1-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=None\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"application/xml; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-19T11:11:20.568059Z","times_seen":15435352,"resource_available":true,"data":null}},"time_used":94,"timings":{"blocked":20,"dns":0,"connect":1,"send":0,"wait":55,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pook37xna.cc/invite/i=66136","fqdn":"pook37xna.cc","domain":"pook37xna.cc","tld":"cc"},"ip":{"addr":"104.21.2.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-05-20T10:17:17.512Z","timestamp":1716200237512,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pook37xna.cc","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 May 2024 07:31:28 GMT","end":"Sun, 11 Aug 2024 07:31:27 GMT"},"fingerprint":{"sha1":"04:BB:3C:DB:B0:4E:E7:66:E8:A8:26:99:FA:52:84:20:73:CA:F7:7B","sha256":"D4:E4:08:C1:52:B1:19:7E:55:89:C2:01:A8:4A:A9:C6:96:64:E3:28:69:16:96:BD:04:4B:A8:F3:09:BF:D2:72"}}},"request":{"raw":"GET /invite/i=66136 HTTP/1.1\r\nHost: pook37xna.cc\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 20 May 2024 10:17:17 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=huWxbnNzesRuLpkUAK105HuGTHNpr99qYrZw2NrzJBA6v4dvALnmGT%2FhU1uhXP8pAlQVLRp0lM47VuwMI7jNNvD6KpYJaBL6qGxFdfpbliHNkBdxg6T1N0K3twTlg3s%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 886b937c9f56b4fd-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2702,"size_decoded":2702,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (2868), with no line terminators","md5":"00310ebb00134fb0a90a7b156c5dec36","sha1":"6e0fe396fe3a6c74d30c0e7fa0ba526f3b135342","sha256":"fc505c0e6e5178660511d6c5dd8d6df4245e5ece4ca802518f752b19f4e29ed1","sha512":"97491cc5a828748402f97bf7eb1fc6fee3a28a916119af603f94cfdc77e6846d521b75f70735d894e463527663bbaab988cdaab20b7562079eebf8cc7b8870ad","ssdeep":"","tlshash":"39514e6b8938e04f2700e93ba822707d887afc5e8c50cc9535c9a1ee58f4fe28463771","first_seen":"2024-08-19T22:26:27.31511Z","last_seen":"2024-08-19T22:26:27.31511Z","times_seen":1,"resource_available":false,"data":null}},"time_used":194,"timings":{"blocked":18,"dns":1,"connect":1,"send":0,"wait":153,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pook37xna.cc/invite","fqdn":"pook37xna.cc","domain":"pook37xna.cc","tld":"cc"},"ip":{"addr":"104.21.2.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pook37xna.cc/invite/i=66136","date":"2024-05-20T10:17:18.571Z","timestamp":1716200238571,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pook37xna.cc","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 May 2024 07:31:28 GMT","end":"Sun, 11 Aug 2024 07:31:27 GMT"},"fingerprint":{"sha1":"04:BB:3C:DB:B0:4E:E7:66:E8:A8:26:99:FA:52:84:20:73:CA:F7:7B","sha256":"D4:E4:08:C1:52:B1:19:7E:55:89:C2:01:A8:4A:A9:C6:96:64:E3:28:69:16:96:BD:04:4B:A8:F3:09:BF:D2:72"}}},"request":{"raw":"POST /invite HTTP/1.1\r\nHost: pook37xna.cc\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 20\r\nOrigin: https://pook37xna.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pook37xna.cc/invite/i=66136\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 May 2024 10:17:18 GMT\r\ncontent-length: 0\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=SeZtdpcoJalieb96%2FWx8AKDI1eI%2BMbDwnF8YLYPtMZBAh1Nso2IxNGkQ7FnzmEtUZxKZrk5QBBbCrBLqn%2F3xjyC9PU0zo7jwfoaBK0iE5%2FX3xDkgpkV3HEsNLN8cUUQ%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 886b93831a3756a8-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-19T11:11:20.568059Z","times_seen":15435352,"resource_available":true,"data":null}},"time_used":251,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":243,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"pon3kk7xf.cc/socket.io/?EIO=3\u0026transport=websocket","fqdn":"pon3kk7xf.cc","domain":"pon3kk7xf.cc","tld":"cc"},"ip":{"addr":"104.21.10.135","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://pook37xna.cc/invite/i=66136","date":"2024-05-20T10:17:18.767Z","timestamp":1716200238767,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pon3kk7xf.cc","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Sun, 19 May 2024 09:17:13 GMT","end":"Sat, 17 Aug 2024 09:17:12 GMT"},"fingerprint":{"sha1":"AB:A6:B7:BA:7A:52:81:55:37:A2:0C:20:07:29:51:31:96:7E:DE:A3","sha256":"6E:9F:6E:4E:37:F0:33:2F:63:F7:86:FB:CD:EB:47:31:97:7A:0B:32:5C:8D:7D:CB:4A:B5:A2:02:61:60:A0:FF"}}},"request":{"raw":"GET /socket.io/?EIO=3\u0026transport=websocket HTTP/1.1\r\nHost: pon3kk7xf.cc\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://pook37xna.cc\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: 2pKPc4nQm8uTJQR8sOqlSg==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Mon, 20 May 2024 10:17:18 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: upG0amj2tUZFl5zKtP8Gox/RZkc=\r\nCF-Cache-Status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=186uwnaaCY3CFiqXPRFQuRPSp03uUddjcawc1aPzexv2PnKSOdkDh4efaLHb0s5awOGmeib1xUlyGAhBC1JLaKYX3DVB8dWMVffELYmHHz4zf2SasrVYniu3kdNP%2B0A%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 886b93849e55b52d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-19T11:11:20.568059Z","times_seen":15435352,"resource_available":true,"data":null}},"time_used":213,"timings":{"blocked":-1,"dns":26,"connect":26,"send":0,"wait":146,"receive":0,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pook37xna.cc/img/icons/apple-touch-icon-152x152.png","fqdn":"pook37xna.cc","domain":"pook37xna.cc","tld":"cc"},"ip":{"addr":"104.21.2.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pook37xna.cc/invite/i=66136","date":"2024-05-20T10:17:19.014Z","timestamp":1716200239014,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pook37xna.cc","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 May 2024 07:31:28 GMT","end":"Sun, 11 Aug 2024 07:31:27 GMT"},"fingerprint":{"sha1":"04:BB:3C:DB:B0:4E:E7:66:E8:A8:26:99:FA:52:84:20:73:CA:F7:7B","sha256":"D4:E4:08:C1:52:B1:19:7E:55:89:C2:01:A8:4A:A9:C6:96:64:E3:28:69:16:96:BD:04:4B:A8:F3:09:BF:D2:72"}}},"request":{"raw":"GET /img/icons/apple-touch-icon-152x152.png HTTP/1.1\r\nHost: pook37xna.cc\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pook37xna.cc/invite/i=66136\r\nCookie: inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=false\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 May 2024 10:17:19 GMT\r\ncontent-type: image/png\r\ncontent-length: 4046\r\nlast-modified: Sun, 19 May 2024 16:47:23 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=amplGhdf37ewrwzazzvuykARR54SQETXjkPjEF4IuMUyctSqCt%2FXUFVxwpKIDCe9N%2FVSPHneoccxK0ye9EpB9CuZQ%2FVLYu2MNfysO%2FIQv7gO6LjOQWHO%2FE9RMD3euWA%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 886b9385dda556a8-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4046,"size_decoded":4046,"mime_type":"image/png","magic":"PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced","md5":"1a034e64d80905128113e5272a5ab95e","sha1":"92328e60f63d690f33cd4961b9934a539dc29b82","sha256":"4d9685d610c4411caadd8d36ce94d3303cf5b05c8e04d67fc232c16a4469a135","sha512":"663dccaa2273e1b381f202d9a47c850565289c7e663c511c3936e5609de51fcb61e1d088660ea9befce2609dbcd3ad6f815d043a87631b31fc596d0b14dfce86","ssdeep":"","tlshash":"e1816eddfa9cc6df85131d9b016f6185f83da0565efc3d06a4bb8d0a6822a601b017d5","first_seen":"2023-04-13T00:26:43Z","last_seen":"2026-05-19T08:30:36.11045Z","times_seen":1602,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":159,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pook37xna.cc/img/icons/favicon.svg","fqdn":"pook37xna.cc","domain":"pook37xna.cc","tld":"cc"},"ip":{"addr":"104.21.2.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pook37xna.cc/invite/i=66136","date":"2024-05-20T10:17:19.017Z","timestamp":1716200239017,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pook37xna.cc","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 May 2024 07:31:28 GMT","end":"Sun, 11 Aug 2024 07:31:27 GMT"},"fingerprint":{"sha1":"04:BB:3C:DB:B0:4E:E7:66:E8:A8:26:99:FA:52:84:20:73:CA:F7:7B","sha256":"D4:E4:08:C1:52:B1:19:7E:55:89:C2:01:A8:4A:A9:C6:96:64:E3:28:69:16:96:BD:04:4B:A8:F3:09:BF:D2:72"}}},"request":{"raw":"GET /img/icons/favicon.svg HTTP/1.1\r\nHost: pook37xna.cc\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pook37xna.cc/invite/i=66136\r\nCookie: inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=false\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 May 2024 10:17:19 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: max-age=14400\r\ncf-cache-status: EXPIRED\r\nlast-modified: Mon, 20 May 2024 02:36:33 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Ug%2F6IMukJ0Xz%2FyKpFsxWQ8GH7SK7Klf7mLTKqM4d0Loe4ZgLHmAlVzrXb6tGNrXzMw65R%2FrvHtN13EbBeB%2FIxOlJGoU%2Btj%2FS68OerBlreLZlzM4DeE17wcHWdawYIkU%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 886b9385dda656a8-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2702,"size_decoded":2702,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (2868), with no line terminators","md5":"00310ebb00134fb0a90a7b156c5dec36","sha1":"6e0fe396fe3a6c74d30c0e7fa0ba526f3b135342","sha256":"fc505c0e6e5178660511d6c5dd8d6df4245e5ece4ca802518f752b19f4e29ed1","sha512":"97491cc5a828748402f97bf7eb1fc6fee3a28a916119af603f94cfdc77e6846d521b75f70735d894e463527663bbaab988cdaab20b7562079eebf8cc7b8870ad","ssdeep":"","tlshash":"39514e6b8938e04f2700e93ba822707d887afc5e8c50cc9535c9a1ee58f4fe28463771","first_seen":"2024-08-19T22:26:27.31511Z","last_seen":"2024-08-19T22:26:27.31511Z","times_seen":1,"resource_available":false,"data":null}},"time_used":160,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":160,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-05-20","alert":"Sinkholed","trigger":"pook37xna.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}