GET jjqqyy.com/images/back01.png
200 OK 637 kB URL GET jjqqyy.com/images/back01.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 636 x 1004, 8-bit/color RGBA, non-interlaced
Size 637 kB (636911 bytes)
Hash 8c596929c0c9058ea9180d1330fd9619
7ef35d702bc18d2c23bd1c45ead516ba1cdca92e
c11e6a859a24aa5f61bdf2b515e2b7852d5335d1b83c5ca8094b5750179828b8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/back01.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 636911
last-modified: Fri, 07 Jun 2024 06:30:50 GMT
etag: "6662a91a-9b7ef"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/images/BanI01.png
200 OK 2.6 kB URL GET jjqqyy.com/images/BanI01.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 62 x 62, 8-bit/color RGBA, non-interlaced
Hash 41271952c30c5670737dd3850f8725f3
94f43a0bf12306d9c58ea8d4e5a1696178c5e5ee
e2f08ab51c36fe64e580fce6bfeb82788e3bc56ea6d9d478991702a773d160ed
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/BanI01.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 2623
last-modified: Fri, 07 Jun 2024 06:25:08 GMT
etag: "6662a7c4-a3f"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/images/logo.png
200 OK 5.1 kB URL GET jjqqyy.com/images/logo.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 234 x 74, 8-bit/color RGBA, non-interlaced
Hash 498ad9df8a6406c2119adfaea3407803
d848aa3452dda294e54198b654cb3a522638a8c6
7f48537fb75adbc7b15b0cdd7782cf64e9039dbf83c5629d0a263e303f5e6b8f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/logo.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 5118
last-modified: Fri, 07 Jun 2024 03:30:52 GMT
etag: "66627eec-13fe"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/images/logo01.png
200 OK 5.1 kB URL GET jjqqyy.com/images/logo01.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 286 x 92, 8-bit/color RGBA, non-interlaced
Hash ef8cc7254578047aeaaf9d8ed0d98721
6848d771fdf1ca3737f0d81b9f391987f9d8ddbe
f33cfc66f677fb8ed8e88e94466ae7b85bae38aade076be7ce0c0865b3de4c5f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/logo01.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 5075
last-modified: Fri, 07 Jun 2024 03:30:54 GMT
etag: "66627eee-13d3"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/images/Img02.jpg
200 OK 406 kB URL GET jjqqyy.com/images/Img02.jpg
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1667x771, components 3
Size 406 kB (405459 bytes)
Hash f76c0ede4387ad42cccc6acb6a129fa8
a99059fb8b5846612fd7810ce712ddfab83dfc46
c49e3f9c61569905237af28ee71b54a632df4d86a193e609e00c15352517f636
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Img02.jpg HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/jpeg
content-length: 405459
last-modified: Fri, 07 Jun 2024 06:25:10 GMT
etag: "6662a7c6-62fd3"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/images/banner01.jpg
200 OK 510 kB URL GET jjqqyy.com/images/banner01.jpg
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1110, components 3
Size 510 kB (509951 bytes)
Hash f6d3662d6e05f4f110914e2357ad708a
9eea89f994d229e3aa77dd35c9234cdad8cad748
0b7a8b88a97a7ff2ccd09c11969d080149ad6ba9ac008fedb00347a6f5656021
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/banner01.jpg HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/jpeg
content-length: 509951
last-modified: Fri, 07 Jun 2024 06:31:16 GMT
etag: "6662a934-7c7ff"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/images/ftlog.png
200 OK 7.4 kB URL GET jjqqyy.com/images/ftlog.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 287 x 205, 8-bit/color RGBA, non-interlaced
Hash 113bbebb558ef43b9bc22bef7058291d
8b644afa4c20ea6131cdef14abcd94e880885e41
41fcdf025aa651a8a0547754b472c583eca4daf2b8d34d017f0bed9d38762f47
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/ftlog.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 7394
last-modified: Fri, 07 Jun 2024 03:30:54 GMT
etag: "66627eee-1ce2"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/js/jquery-1.8.3.min.js
200 OK 94 kB URL GET jjqqyy.com/js/jquery-1.8.3.min.js
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type JavaScript source, ASCII text, with very long lines (65482), with CRLF line terminators
Hash e1288116312e4728f98923c79b034b67
8b6babff47b8a9793f37036fd1b1a3ad41d38423
ba6eda7945ab8d7e57b34cc5a3dd292fa2e4c60a5ced79236ecf1a9e0f0c2d32
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/jquery-1.8.3.min.js HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: application/javascript
last-modified: Fri, 07 Jun 2024 06:25:08 GMT
vary: Accept-Encoding
etag: W/"6662a7c4-16dc5"
expires: Tue, 22 Jul 2025 21:27:47 GMT
cache-control: max-age=43200
content-encoding: gzip
X-Firefox-Spdy: h2
GET jjqqyy.com/images/BanI04.png
200 OK 2.2 kB URL GET jjqqyy.com/images/BanI04.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 62 x 62, 8-bit/color RGBA, non-interlaced
Hash deeeba1778fef61cedbb54531762346b
11830ef9b5fefc726236c4461277494ceac81685
6c221b9b935c59874cbcd5719429688fcdc91a717b0f9fc3add5a064572d3f52
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/BanI04.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 2165
last-modified: Fri, 07 Jun 2024 06:25:08 GMT
etag: "6662a7c4-875"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/images/IndFul.jpg
200 OK 326 kB URL GET jjqqyy.com/images/IndFul.jpg
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 820x820, components 3
Size 326 kB (326019 bytes)
Hash baf681c1a08a709f123809b468528cd6
42d9fbe258dc97fc6e8899585b7f2096bb890e2b
3346f90625d1f8e76cdfe1ae9a349c22c5f1c4a207a29d2f82ab5d4a611df82c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/IndFul.jpg HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/jpeg
content-length: 326019
last-modified: Fri, 07 Jun 2024 06:25:10 GMT
etag: "6662a7c6-4f983"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/images/Img01.jpg
200 OK 356 kB URL GET jjqqyy.com/images/Img01.jpg
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1667x771, components 3
Size 356 kB (356482 bytes)
Hash ad5d91bcae9dac5aba0a160c0c217b92
90b3b315a3ab8e923a22498d401d7c0c4166cde7
1e4d17b643cab64a18950c8ed0480ea4b23c49ddbf6e322040decb2d49a51b21
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Img01.jpg HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/jpeg
content-length: 356482
last-modified: Fri, 07 Jun 2024 06:25:10 GMT
etag: "6662a7c6-57082"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/css/style.css
200 OK 16 kB IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type Unicode text, UTF-8 text, with CRLF, NEL line terminators
Hash a98870c9c2bb54dfb836c25ebb83e901
a1e7daf1f05bd4778992a80de0e86aedc55bc246
d9a01a6d73b70817170fb784c53cf0b8408b77c076bce77177362a0653982d0e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /css/style.css HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: text/css
last-modified: Fri, 07 Jun 2024 06:25:08 GMT
vary: Accept-Encoding
etag: W/"6662a7c4-409c"
expires: Tue, 22 Jul 2025 21:27:47 GMT
cache-control: max-age=43200
content-encoding: gzip
X-Firefox-Spdy: h2
GET jjqqyy.com/images/IndFivI01.png
200 OK 3.5 kB URL GET jjqqyy.com/images/IndFivI01.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 87 x 81, 8-bit/color RGBA, non-interlaced
Hash eb44a816ada7bd3c7d463efe629b4d6c
00f18b1580c0f75f2276fd7cbb1b1ad6a982aa90
dfd8478c7b41f5ecdf688c1f870cf25877823868a94b891d0cbd582d38c3d296
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/IndFivI01.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 3548
last-modified: Fri, 07 Jun 2024 06:25:10 GMT
etag: "6662a7c6-ddc"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
200 OK 8.6 kB IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (595)
Hash 48c3bdab65dd30c1d8f87135eb20874b
4b2a1b09afb4367b30545505492a17638f080905
6d77a39cecef4f09456215c7981b783c6ea94a705b0cf79a9dbdc7c3f34670df
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:46 GMT
content-type: text/html
last-modified: Mon, 09 Jun 2025 08:46:20 GMT
vary: Accept-Encoding
etag: W/"68469f5c-2180"
content-encoding: gzip
X-Firefox-Spdy: h2
GET jjqqyy.com/images/IndFivI03.png
200 OK 2.1 kB URL GET jjqqyy.com/images/IndFivI03.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 66 x 81, 8-bit/color RGBA, non-interlaced
Hash d2b4007751d83e06fbf407f344009a4e
0e1ce21d240b378078427d0d812d5906aa0853a8
de43eb4de8f99056db2ceb85dd4fc5131558054ef8d13b18ff48a00cb54f5329
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/IndFivI03.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 2099
last-modified: Fri, 07 Jun 2024 06:25:10 GMT
etag: "6662a7c6-833"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/images/IndFivI02.png
200 OK 3.7 kB URL GET jjqqyy.com/images/IndFivI02.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 81 x 81, 8-bit/color RGBA, non-interlaced
Hash 85b7337fba2156bab4e4ecb516c0d364
5efb5c44a01d57c097c86678f2ef985efbcbe069
d7144c3be34f58687411a82417914f1cd1c27f40da800f630264b7b736c3780f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/IndFivI02.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 3732
last-modified: Fri, 07 Jun 2024 06:25:10 GMT
etag: "6662a7c6-e94"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET hm.baidu.com/hm.js?6943b489db7c05ef82cea35b91cb9174
200 OK 30 kB URL GET hm.baidu.com/hm.js?6943b489db7c05ef82cea35b91cb9174
IP
ASN #9808 China Mobile Communications Group Co., Ltd.
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint21:BF:66:0D:67:BE:7A:7F:49:48:05:30:F4:7F:09:F2:30:36:CA:63
ValidityWed, 09 Jul 2025 07:01:02 GMT - Mon, 10 Aug 2026 07:01:01 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 3a28a6586a2c072b20d8641bb35d6936
caa4e826f9b7fbd7d639960408dc29a2e633ac6b
a0380c604a514e55ad030db60ab2c2530df376b1b6e1ef7064e14d51f53afa44
GET /hm.js?6943b489db7c05ef82cea35b91cb9174 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11291
Content-Type: application/javascript
Date: Tue, 22 Jul 2025 09:27:51 GMT
Etag: f47ad97dda36fd83fbadae8635614b4c
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=39D22BCB7EA072F7; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
GET hm.baidu.com/hm.gif?hca=39D22BCB7EA072F7&cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1999939959&si=6943b489db7c05ef82cea35b91cb9174&v=1.3.2&lv=1&sn=49686&r=0&ww=1280&u=https%3A%2F%2Fjjqqyy.com%2F&tt=%E6%97%8B%E9%A3%8E%E5%8A%A0%E9%80%9F%E5%99%A8%E5%AE%98%E7%BD%91_%E6%8F%90%E4%BE%9B%E6%97%8B%E9%A3%8E%E5%8A%A0%E9%80%9F%E6%9C%80%E6%96%B0%E7%89%88%2F%E7%A0%B4%E8%A7%A3%E7%89%88%2F%E5%85%8D%E8%B4%B9%E7%89%88
200 OK 43 B URL GET hm.baidu.com/hm.gif?hca=39D22BCB7EA072F7&cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1999939959&si=6943b489db7c05ef82cea35b91cb9174&v=1.3.2&lv=1&sn=49686&r=0&ww=1280&u=https%3A%2F%2Fjjqqyy.com%2F&tt=%E6%97%8B%E9%A3%8E%E5%8A%A0%E9%80%9F%E5%99%A8%E5%AE%98%E7%BD%91_%E6%8F%90%E4%BE%9B%E6%97%8B%E9%A3%8E%E5%8A%A0%E9%80%9F%E6%9C%80%E6%96%B0%E7%89%88%2F%E7%A0%B4%E8%A7%A3%E7%89%88%2F%E5%85%8D%E8%B4%B9%E7%89%88
IP
ASN #9808 China Mobile Communications Group Co., Ltd.
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint21:BF:66:0D:67:BE:7A:7F:49:48:05:30:F4:7F:09:F2:30:36:CA:63
ValidityWed, 09 Jul 2025 07:01:02 GMT - Mon, 10 Aug 2026 07:01:01 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?hca=39D22BCB7EA072F7&cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1999939959&si=6943b489db7c05ef82cea35b91cb9174&v=1.3.2&lv=1&sn=49686&r=0&ww=1280&u=https%3A%2F%2Fjjqqyy.com%2F&tt=%E6%97%8B%E9%A3%8E%E5%8A%A0%E9%80%9F%E5%99%A8%E5%AE%98%E7%BD%91_%E6%8F%90%E4%BE%9B%E6%97%8B%E9%A3%8E%E5%8A%A0%E9%80%9F%E6%9C%80%E6%96%B0%E7%89%88%2F%E7%A0%B4%E8%A7%A3%E7%89%88%2F%E5%85%8D%E8%B4%B9%E7%89%88 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 22 Jul 2025 09:27:51 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=4F821678E6830BD1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
GET jjqqyy.com/images/IndFivI06.png
200 OK 2.1 kB URL GET jjqqyy.com/images/IndFivI06.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 72 x 81, 8-bit/color RGBA, non-interlaced
Hash 6ba7893b7827f03734420b07f6445dcb
8d3ab63960f113a71308805a3e255b645738c6ff
52dd25d960bf033d340aa6210bbf575186aec25d447fd755b3bd2c1217eb8a12
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/IndFivI06.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 2136
last-modified: Fri, 07 Jun 2024 06:25:10 GMT
etag: "6662a7c6-858"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/favicon.ico
404 Not Found 3.0 kB IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (382), with CRLF line terminators
Hash 850d36be0a56178c6c9b15f90b0cdade
764553dce2639dfbeb6f6121a8e7638b86c38224
7270fc93ca880ac789e242ae7a787fc14fbeabe2802b6a89c687af92a52cf854
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Tue, 22 Jul 2025 09:27:50 GMT
content-type: text/html
vary: Accept-Encoding
etag: W/"6846ac68-b97"
content-encoding: gzip
X-Firefox-Spdy: h2
GET jjqqyy.com/css/index-1.css
200 OK 3.1 kB URL GET jjqqyy.com/css/index-1.css
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
Hash bee9714592ed6d7314e3803934b9e7b2
6c75729561effa2d77f26fa38f803dff54ad1437
ae3126f5937c02ae96e6de1bda7c9fa2e134bf46d0c8a1a789979ccd59221157
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /css/index-1.css HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: text/css
last-modified: Fri, 07 Jun 2024 06:25:08 GMT
vary: Accept-Encoding
etag: W/"6662a7c4-c4b"
expires: Tue, 22 Jul 2025 21:27:47 GMT
cache-control: max-age=43200
content-encoding: gzip
X-Firefox-Spdy: h2
GET jjqqyy.com/images/BanI02.png
200 OK 2.6 kB URL GET jjqqyy.com/images/BanI02.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 62 x 61, 8-bit/color RGBA, non-interlaced
Hash 2a3cace318ead52d52079577543dda09
897dacb7b0a124cfd8a78f4a2b64087ce092dd64
ee1434be5cb9528c0e612b5ee920c941bb83c96c683c5fbc3e878053b041587e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/BanI02.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 2594
last-modified: Fri, 07 Jun 2024 06:25:08 GMT
etag: "6662a7c4-a22"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/images/BanI03.png
200 OK 3.0 kB URL GET jjqqyy.com/images/BanI03.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 62 x 62, 8-bit/color RGBA, non-interlaced
Hash 3860497228018b82c8a294881724a4d1
8278a4a7830061dd89fc8a9a9d7bc2237814099c
fce813eb84f6e2f5ac12e37c2e5fa6263553582873f7a6ca30407fec8e886f5d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/BanI03.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 3042
last-modified: Fri, 07 Jun 2024 06:25:08 GMT
etag: "6662a7c4-be2"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/images/IndFivI04.png
200 OK 2.8 kB URL GET jjqqyy.com/images/IndFivI04.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 75 x 81, 8-bit/color RGBA, non-interlaced
Hash fe7e6f2d9b86a1060126474bdf92860f
fb6dbe2457dc47656048c4f821001abf852d3a83
efdde4736110a1547cf0deb3ad947d395159c3abc53bd54efaca045950bead8c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/IndFivI04.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 2784
last-modified: Fri, 07 Jun 2024 06:25:10 GMT
etag: "6662a7c6-ae0"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jjqqyy.com/images/IndFivI05.png
200 OK 1.6 kB URL GET jjqqyy.com/images/IndFivI05.png
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Certificate IssuerLet's Encrypt
Subjectjjqqyy.com
Fingerprint8A:98:72:2B:9D:90:40:01:2B:E8:C2:7F:D1:E8:F4:DD:85:A7:60:58
ValidityMon, 09 Jun 2025 08:34:42 GMT - Sun, 07 Sep 2025 08:34:41 GMT
File type PNG image data, 73 x 81, 8-bit/color RGBA, non-interlaced
Hash 43f46250f2845da83ed6b4ff677d3956
21ffd36dfdc2b68f32640dd8ef6e00026de07022
04c31e05aaea4dbef4a6c64fbfd00bb4b09c3461da234839496e3af390fd636b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/IndFivI05.png HTTP/1.1
Host: jjqqyy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jjqqyy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Jul 2025 09:27:47 GMT
content-type: image/png
content-length: 1599
last-modified: Fri, 07 Jun 2024 06:25:10 GMT
etag: "6662a7c6-63f"
expires: Thu, 21 Aug 2025 09:27:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
154.31.183.132
111.45.3.198
0.0.0.0