Report - bjxhxjcx.com/qkl/7251.html

Report Overview

Visitedpublic

2025-04-19 12:00:20

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
bjxhxjcx.com	unknown	2017-08-11	2025-04-19	2025-04-19	14 kB	786 kB	104.21.96.1
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-04-16	2.1 kB	100 kB	142.250.74.35
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-04-16	465 B	20 kB	104.17.24.14
oudngmslhifnsf.gdmgcyy.com	unknown	2020-05-10	2024-02-01	2025-04-16	405 B	1.1 kB	156.224.2.38
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-04-16	454 B	19 kB	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2025-04-18	medium	bjxhxjcx.com/qkl/7251.html	Crypto/Wallet

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (21)

	URL	From	Size	First Seen	Last Seen
	bjxhxjcx.com/static/js/owl-carousel-thumb.min.js	ScriptElement	3.6 kB	2023-03-08	2025-06-26
URL bjxhxjcx.com/static/js/owl-carousel-thumb.min.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-08 Last Seen 2025-06-26 Times Seen 23 Size 3.6 kB (3645 bytes) MD5 a4ce825d7443f94b264979f96626b467 SHA1 8d7981e2f0b97152f90bd6465114523267676dc3 SHA256 3c440dc3cae731812a91363cd1ff95d7145119a8c7870c88f2c0b0e6b80b7a5c Format Code Loading...

	bjxhxjcx.com/static/js/vendor/jquery-2.2.4.min.js	ScriptElement	86 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/vendor/jquery-2.2.4.min.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 3541 Size 86 kB (85577 bytes) MD5 b354cc9d56a1da6b0c77604d1b153850 SHA1 a3d8479f4d4e39b131bc9a53bbf53d1fbaa23732 SHA256 fdce77a6d0053f32d231518a84a71bcab5c86045ed52369da00b89d4284aef46 Format Code Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js	ScriptElement	19 kB	2023-03-07	2025-08-10
URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP / ASN 104.17.24.14 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 85907 Size 19 kB (19188 bytes) MD5 70d3fda195602fe8b75e0097eed74dde SHA1 c3b977aa4b8dfb69d651e07015031d385ded964b SHA256 a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 Format Code Loading...

	bjxhxjcx.com/static/js/mail-script.js	ScriptElement	1.2 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/mail-script.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 319 Size 1.2 kB (1230 bytes) MD5 df98b7098690619c0c9e6b42b5a77b48 SHA1 d3fe896ed8d259df077220f71fba197ff033d27e SHA256 01f639fd4c4119503e72e2bf2eb9c8a5984f7c83c7683c82dd0350ee9f63b3fd Format Code Loading...

	bjxhxjcx.com/static/js/owl.carousel.min.js	ScriptElement	40 kB	2023-03-07	2025-08-05
URL bjxhxjcx.com/static/js/owl.carousel.min.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-05 Times Seen 481 Size 40 kB (40402 bytes) MD5 db4c9c39a3af9343842156df81f25d08 SHA1 36af2c0bc454462355584a535897ca5ec6371f3a SHA256 e04e2b4e27ae9881b1e161954cc00ba16c8c3a0ce73a179824756353efd6c481 Format Code Loading...

	bjxhxjcx.com/static/js/jquery.magnific-popup.min.js	ScriptElement	20 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/jquery.magnific-popup.min.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 17525 Size 20 kB (20216 bytes) MD5 ba6cf724c8bb1cf5b084e79ff230626e SHA1 f455c5f153f872e52265f87a644ff89fe14a6fb6 SHA256 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4 Format Code Loading...

	bjxhxjcx.com/qkl/7251.html	Eval	611 B	2024-06-09	2025-04-29
URL bjxhxjcx.com/qkl/7251.html IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by Eval Embedded false Resource Info First Seen 2024-06-09 Last Seen 2025-04-29 Times Seen 275 Size 611 B (611 bytes) MD5 9512450c43a616469513e6f0a3cf0957 SHA1 130557e34c1d4ca4a794977a5855debce59b0156 SHA256 43fcad7926cd2cef9732d939c76b72f328b561359a542a3d53f67956a67c666c Format Code Loading...

	bjxhxjcx.com/static/js/hexagons.min.js	ScriptElement	3.4 kB	2025-01-09	2025-06-26
URL bjxhxjcx.com/static/js/hexagons.min.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2025-01-09 Last Seen 2025-06-26 Times Seen 24 Size 3.4 kB (3421 bytes) MD5 7886c815fb394f3580bd97739e264d7f SHA1 556165fe3bce3ede9de84812c04e0676dff77d0d SHA256 83b6c8e756da5edbc093bab7f5ebd1ef82c8612839a3daf5d886c8d14be039a9 Format Code Loading...

	bjxhxjcx.com/static/js/jquery.ajaxchimp.min.js	ScriptElement	4.8 kB	2023-03-07	2025-08-08
URL bjxhxjcx.com/static/js/jquery.ajaxchimp.min.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-08 Times Seen 446 Size 4.8 kB (4820 bytes) MD5 8eace32bdc314e746f5b01015115b3a8 SHA1 90395aa2ff153cfb6d5c256a3f70bc4d545a3190 SHA256 3c7c17459ec57867f6812625f1b95e2f878363ca728b92a5968d2fc8e60d9712 Format Code Loading...

	bjxhxjcx.com/static/js/superfish.min.js	ScriptElement	4.5 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/superfish.min.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 527 Size 4.5 kB (4474 bytes) MD5 0ae5f61bdbb22e9677a14a751a1a7d29 SHA1 b2365b4a513ea54d366bfffa7d99c825b178a637 SHA256 f31f14f173559d1bc035ffcec66bdcd19b6685f42a2853bf7eaabd1e4bd9aba0 Format Code Loading...

	bjxhxjcx.com/static/js/easing.min.js	ScriptElement	2.3 kB	2023-03-07	2025-08-09
URL bjxhxjcx.com/static/js/easing.min.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-09 Times Seen 735 Size 2.3 kB (2303 bytes) MD5 d64116a742887080b3a0abd09e0bdad7 SHA1 8cd4375fc3c60237ea3994209d17a57ccbe6b0c6 SHA256 901eb80cc3f8c274fe6711bd023884258839610c9274082a4881f71e2206b4fb Format Code Loading...

	bjxhxjcx.com/tj.js	ScriptElement	363 B	2024-10-27	2025-05-05
URL bjxhxjcx.com/tj.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2024-10-27 Last Seen 2025-05-05 Times Seen 22 Size 363 B (363 bytes) MD5 1a57a47fe3aaf28b4864980bdeda1cf5 SHA1 402ff5e38f3d6b2fa703df5ba9437b0743659e83 SHA256 fd9600ac6e6a439e6b2a46360a04bc60361c63ec6f973f6751b7737a4e66089b Format Code Loading...

	bjxhxjcx.com/qkl/7251.html	Eval	87 B	2024-04-04	2025-08-10
URL bjxhxjcx.com/qkl/7251.html IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by Eval Embedded false Resource Info First Seen 2024-04-04 Last Seen 2025-08-10 Times Seen 402 Size 87 B (87 bytes) MD5 deab99731237b52d1b60dd7d144a15c0 SHA1 1cd0ca53fbd8c8943a02250ab2e4e47a66e420da SHA256 e1bfbe54fd1f16ed88120eae9549e8cf7d708eb595d8c787930215b22b4497c2 Format Code Loading...

	bjxhxjcx.com/static/js/waypoints.min.js	ScriptElement	8.0 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/waypoints.min.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 3924 Size 8.0 kB (8044 bytes) MD5 dfe0eedf8da578f4a4c43b05448c51d9 SHA1 812d7071b4e44b1aa5d5ea6c7ce0b79eb9d46520 SHA256 a0fded691aed767f851011cd3185b928619298a21a0fbdad4808a9e88b490833 Format Code Loading...

	bjxhxjcx.com/static/js/jquery.nice-select.min.js	ScriptElement	2.9 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/jquery.nice-select.min.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 2346 Size 2.9 kB (2942 bytes) MD5 d13462ec489f9f0c309a811f85feb3d6 SHA1 d9545f8b139eae5b387de1a60a84abe949c7e88f SHA256 66bdef0724e5306421bcc7e0910e41b5645228119ad9096ca4a6099e48d94e6a Format Code Loading...

	bjxhxjcx.com/static/js/hoverIntent.js	ScriptElement	7.1 kB	2023-03-07	2025-08-04
URL bjxhxjcx.com/static/js/hoverIntent.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-04 Times Seen 95 Size 7.1 kB (7078 bytes) MD5 6fdf4814817af1a513273be884166dfd SHA1 c48a39ec831f050690061910c363d2bcf76759eb SHA256 61168602288a63df2b3f98292b8dbea4e021ec0fd683444e49e4d95766a8a0e5 Format Code Loading...

	bjxhxjcx.com/static/js/main.js	ScriptElement	12 kB	2025-01-09	2025-06-26
URL bjxhxjcx.com/static/js/main.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2025-01-09 Last Seen 2025-06-26 Times Seen 20 Size 12 kB (12304 bytes) MD5 1bf17910a94d3c25989a1d236bc0a419 SHA1 cc3be3dd8447175a7958f359f93eb774f8e090c5 SHA256 2d20a7c7a6abc5d3a2defd69caaa64bbebab437df7ccff596794ccf49509b855 Format Code Loading...

	bjxhxjcx.com/static/js/vendor/bootstrap.min.js	ScriptElement	51 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/vendor/bootstrap.min.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 267 Size 51 kB (51041 bytes) MD5 3a4912f4311c63d3af01bcd3441959ce SHA1 f1c0f5a8fc1868582dcfbb4e955893f129bf7e4b SHA256 f203aa11401db444669a0a833bc0da0324f6c6b59bb8291a0e50af290ae7ff42 Format Code Loading...

	oudngmslhifnsf.gdmgcyy.com/tj.js	ScriptElement	805 B	2024-06-09	2025-04-29
URL oudngmslhifnsf.gdmgcyy.com/tj.js IP / ASN 156.224.2.38 #133199 SonderCloud Limited Introduced by ScriptElement Embedded false Resource Info First Seen 2024-06-09 Last Seen 2025-04-29 Times Seen 280 Size 805 B (805 bytes) MD5 b91b404e65a6d55f48e3e8929aaa6631 SHA1 7feb40ab7aa9c2ff7458e6e89a74af63c5f56ae8 SHA256 d73b625c5e38c3fd1e0d5a113374bec35307dd4cde91aca48167ee3dc33567ee Format Code Loading...

	bjxhxjcx.com/static/js/tilt.jquery.min.js	ScriptElement	5.6 kB	2023-03-07	2025-08-09
URL bjxhxjcx.com/static/js/tilt.jquery.min.js IP / ASN 104.21.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-09 Times Seen 791 Size 5.6 kB (5640 bytes) MD5 034d38aaa44f4ac1723c041d215eb146 SHA1 6dccde4d78b77b035d9da0396385ade6141864cb SHA256 6951eec0a8c0c9b2eab72c4f579765e0f190165822919ddc791bb391096fd7c0 Format Code Loading...

	HASH	FROM	Size	First Seen	Last Seen
	0c62e4b2ef2dd122138f49484f5df37e	DocumentWrite	64 B	2024-04-04	2025-08-10
Introduced by DocumentWrite First Seen 2024-04-04 Last Seen 2025-08-10 Times Seen 401 Size 64 B (64 bytes) MD5 0c62e4b2ef2dd122138f49484f5df37e SHA1 ff69377d20545562b648b7607e40251bcb0a004f SHA256 97e41672c8ac279bcf8d69500df45bf1b8650ecc272a99d9bcb34872c99edc56 Format Code Loading...

HTTP Transactions (38)

URL IP Response Size

GET fonts.googleapis.com/css?family=Poppins:400,600|Roboto:400,400i,500

142.250.74.10

200 OK

18 kB

URL GET HTTPS

fonts.googleapis.com/css?family=Poppins:400,600|Roboto:400,400i,500

IP / ASN

142.250.74.10

#15169 GOOGLE

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeASCII text, with very long lines (1572)

First Seen2025-01-09

Last Seen2025-04-21

Times Seen19

Size18 kB (17937 bytes)

MD5a4ad77e30034d1801aa6a8cda47898cf

SHA1e505233b7e4bdd14d06c2e0f4df5ef5d232e8d7e

SHA2569e1019ffa69b51eb427c2a78f58e66ad9022489c15b436305451c4346d76947b

Certificate Info

IssuerGoogle Trust Services

Subjectupload.video.google.com

Fingerprint06:13:4C:49:F4:23:BB:58:C3:31:41:0E:F9:E0:C5:EF:74:A9:0C:67

ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

HTTP Headers

GET /css?family=Poppins:400,600|Roboto:400,400i,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 19 Apr 2025 12:00:01 GMT
date: Sat, 19 Apr 2025 12:00:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET bjxhxjcx.com/static/img/logo.png

104.21.96.1

200 OK

1.5 kB

URL GET HTTPS

bjxhxjcx.com/static/img/logo.png

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typePNG image data, 108 x 36, 8-bit/color RGBA, non-interlaced

First Seen2023-11-30

Last Seen2025-08-10

Times Seen177

Size1.5 kB (1536 bytes)

MD5bb0f185735c1e4587da82b7ef4403ace

SHA1fc2f1ecd0019f1515e0012d29349b1811a00df5c

SHA2567ed24510b42ed7ac5bf0090d5b7c84e10a16633c6113e31d3a41349ea2bed9d9

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/logo.png HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: image/png
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TZ6yHfwt7JMvBumzC9HSLOVz5ABk9yzf%2Fmv0N16k8FVcNjrRzw4%2FlXLI8c8FynRDqldR3fkmTy2pllJSBD7McgZ%2FkHANe6Rzpgi4fKJblhQB0mkqe5Sd7xfVQqKVheQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 01 Oct 2018 08:38:10 GMT
vary: Accept-Encoding
etag: W/"5bb1dcf2-600"
expires: Mon, 19 May 2025 09:46:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d33eafcb517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13688&min_rtt=1659&rtt_var=12334&sent=109&recv=89&lost=0&retrans=0&sent_bytes=54991&recv_bytes=7875&delivery_rate=2438754&cwnd=22200&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1196&x=16"

GET bjxhxjcx.com/static/js/vendor/jquery-2.2.4.min.js

104.21.96.1

200 OK

86 kB

URL GET HTTPS

bjxhxjcx.com/static/js/vendor/jquery-2.2.4.min.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (32065)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen3541

Size86 kB (85577 bytes)

MD5b354cc9d56a1da6b0c77604d1b153850

SHA1a3d8479f4d4e39b131bc9a53bbf53d1fbaa23732

SHA256fdce77a6d0053f32d231518a84a71bcab5c86045ed52369da00b89d4284aef46

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/vendor/jquery-2.2.4.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wxicZZ%2FPArIdXigLtV0b1j49eDSrAVsgM1Y357gBy0NQZYV8Jknps%2BIJ8r4GnA%2FgRjdLZnDKN%2FsNh8yh7b8%2FeDNaKOqG4F12biiGCH31zadJAn5ZUeSiOpnpFkt4Pdo%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 15 May 2017 10:42:08 GMT
vary: Accept-Encoding
etag: W/"59198600-14e49"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7981
cf-ray: 932c3d33eafeb517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11165&min_rtt=1659&rtt_var=11271&sent=133&recv=91&lost=0&retrans=0&sent_bytes=81813&recv_bytes=7966&delivery_rate=551451&cwnd=24600&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1198&x=16"

GET bjxhxjcx.com/static/js/tilt.jquery.min.js

104.21.96.1

200 OK

5.6 kB

URL GET HTTPS

bjxhxjcx.com/static/js/tilt.jquery.min.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (5640), with no line terminators

First Seen2023-03-07

Last Seen2025-08-09

Times Seen791

Size5.6 kB (5640 bytes)

MD5034d38aaa44f4ac1723c041d215eb146

SHA16dccde4d78b77b035d9da0396385ade6141864cb

SHA2566951eec0a8c0c9b2eab72c4f579765e0f190165822919ddc791bb391096fd7c0

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/tilt.jquery.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2mUaj%2BuPsIciBAmP3ERV9rNyKMCPsOvWWgpZJSh97iahtSxSizNQPQ15bD%2F0oYr0P7Cz5GMxvlvWtTESyCZdrL49eKR8AY8GFgR3lNaTC%2F9LVGBeq0QGGmBtZdNBM0w%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 01 Oct 2018 08:38:10 GMT
vary: Accept-Encoding
etag: W/"5bb1dcf2-1608"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d341b00b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=8054&min_rtt=1659&rtt_var=7852&sent=173&recv=102&lost=0&retrans=0&sent_bytes=119230&recv_bytes=10638&delivery_rate=6239787&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1226&x=16"

GET bjxhxjcx.com/static/img/banner.jpg

104.21.96.1

200 OK

35 kB

URL GET HTTPS

bjxhxjcx.com/static/img/banner.jpg

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015.5 (Macintosh), datetime=2018:10:02 08:43:58], baseline, precision 8, 1920x450, components 3

First Seen2025-04-19

Last Seen2025-04-21

Times Seen14

Size35 kB (34911 bytes)

MD536bafead5902a850fc7a2ce8a5e708a2

SHA118ea7b3a521ae5f14e363552d4938e32a7c45eaf

SHA256110c743cfe099958c79e0d7a04e15a1e0904ad6d62fbbf6df757810b3fdc3b65

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/banner.jpg HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/static/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:02 GMT
content-type: image/jpeg
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u%2FiBTFeqZOUIemxwnqirhY5wKCKVQ1c3qnGm221PD9ftOaKOz9kIg15NfPPOjmsY444G9%2BmKA4QfxxxyZ07djkiMps%2F7lUDkEAxSOFmK3ga1GR4OLkaX1TO93SSYb2I%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 02 Oct 2018 00:44:02 GMT
vary: Accept-Encoding
etag: W/"5bb2bf52-885f"
expires: Sun, 18 May 2025 18:00:40 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 64761
cf-ray: 932c3d402b91b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6900&min_rtt=1659&rtt_var=4603&sent=244&recv=110&lost=0&retrans=0&sent_bytes=184866&recv_bytes=12114&delivery_rate=229579&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=3162&x=16"

GET fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

142.250.74.35

200 OK

8.0 kB

URL GET HTTPS

fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 8000, version 1.0

First Seen2023-04-05

Last Seen2025-08-10

Times Seen60142

Size8.0 kB (8000 bytes)

MD572993dddf88a63e8f226656f7de88e57

SHA1179f97ec0275f09603a8db94d4380eb584d81cd5

SHA256f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80

ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

HTTP Headers

GET /s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bjxhxjcx.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 09:35:01 GMT
expires: Fri, 17 Apr 2026 09:35:01 GMT
cache-control: public, max-age=31536000
age: 181501
last-modified: Wed, 04 Dec 2024 06:53:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET HTTPS

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 40128, version 1.0

First Seen2025-01-08

Last Seen2025-08-10

Times Seen103986

Size40 kB (40128 bytes)

MD59a01b69183a9604ab3a439e388b30501

SHA18ed1d59003d0dbe6360481017b44665153665fbe

SHA25620b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80

ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bjxhxjcx.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 10:03:46 GMT
expires: Fri, 17 Apr 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 179776
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.74.35

200 OK

7.9 kB

URL GET HTTPS

fonts.gstatic.com/s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0

First Seen2023-04-05

Last Seen2025-08-10

Times Seen108566

Size7.9 kB (7884 bytes)

MD59212f6f9860f9fc6c69b02fedf6db8c3

SHA1ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b

SHA2567d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80

ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

HTTP Headers

GET /s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bjxhxjcx.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 09:32:10 GMT
expires: Fri, 17 Apr 2026 09:32:10 GMT
cache-control: public, max-age=31536000
age: 181673
last-modified: Wed, 04 Dec 2024 06:53:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET bjxhxjcx.com/favicon.ico

104.21.96.1

404 Not Found

148 B

URL GET HTTPS

bjxhxjcx.com/favicon.ico

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeHTML document, ASCII text

First Seen2024-07-21

Last Seen2025-08-10

Times Seen3515

Size148 B (148 bytes)

MD5630e1f9fef1a483fe84154e2d0d046df

SHA1f10e0cf39fb920a438116caaea80a71e0dcdc162

SHA2569cad3cff676946810a81047247f12e4e51faccc01df4134edfd871aee8ba0956

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sat, 19 Apr 2025 12:00:03 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R84W0fnAfJmaKnRXpq%2BKfg3eROdD913tJwc8hl%2Ff08HIPTZTJiP3E2ittLVUd01ldunxf%2Bq7%2BRYOuctNX7Y3j7oD7DYnUI2GtWlVecgSdDawwhuRXLb95rV4hFiyxkY%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
content-encoding: br
cf-ray: 932c3d443bd1b517-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6235&min_rtt=1659&rtt_var=5492&sent=351&recv=117&lost=0&retrans=0&sent_bytes=306352&recv_bytes=13271&delivery_rate=31523915&cwnd=67500&unsent_bytes=0&cid=77dde2b53b5791e7&ts=3821&x=16"

GET bjxhxjcx.com/static/css/owl.carousel.css

104.21.96.1

200 OK

4.3 kB

URL GET HTTPS

bjxhxjcx.com/static/css/owl.carousel.css

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeASCII text, with CRLF line terminators

First Seen2023-04-07

Last Seen2025-08-04

Times Seen79

Size4.3 kB (4285 bytes)

MD5bf23e63d0afebc11d844cd32b090fb6b

SHA1779f876e61d14ce915401b4af00e5f67393decb2

SHA256d5d23027b15224f7ccf9ef91f47154a4d82546ce6315b3071cf4377832beb78d

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/owl.carousel.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pMr5JPDdczCNfdzicvlslxLYL55gjom4AhPYBz71%2BZPkYfRXtW942BEvB%2FToGQhsPgWgJXFrMFdvQU%2BQ5TMB2vZ%2FQ6pb5%2F71eNnjaKzPqZd3edrvOoDYeEaEY260XxQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 20 Feb 2017 02:40:46 GMT
vary: Accept-Encoding
etag: W/"58aa572e-10bd"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7981
cf-ray: 932c3d33daf9b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=19467&min_rtt=2196&rtt_var=14359&sent=73&recv=85&lost=0&retrans=0&sent_bytes=18166&recv_bytes=7696&delivery_rate=1696&cwnd=12000&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1184&x=16"

GET bjxhxjcx.com/static/css/main.css

104.21.96.1

200 OK

84 kB

URL GET HTTPS

bjxhxjcx.com/static/css/main.css

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeassembler source, ASCII text, with very long lines (551)

First Seen2025-01-09

Last Seen2025-04-21

Times Seen19

Size84 kB (83614 bytes)

MD5726c3480ba0ec8cc5a7cfdc9ada85b77

SHA1e296e4139567ce4406d9924ce67944659d36e230

SHA2564ef65134ff029a21779ae04f733be96e21c1b9f62f5bdb81c8e0b40a2f0d0210

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/main.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nzjzQ4%2FnLaRbdqW9oy5P%2B918czXXsV%2F7vqX647KghHG8wU4NdMMUTt0fWDRZduTdlUApFlsH9LvaNFXl4U0oo0YGT8El8gF%2Bb3HbX1ENoQow5%2BTnPU5vPLE3yF0klAM%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 31 Dec 1979 16:00:00 GMT
vary: Accept-Encoding
etag: W/"12ce3580-1469e"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d33dafab517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=12260&min_rtt=1659&rtt_var=12108&sent=120&recv=90&lost=0&retrans=0&sent_bytes=66580&recv_bytes=7920&delivery_rate=3853763&cwnd=22200&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1197&x=16"

GET bjxhxjcx.com/static/js/owl.carousel.min.js

104.21.96.1

200 OK

40 kB

URL GET HTTPS

bjxhxjcx.com/static/js/owl.carousel.min.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (32068), with CRLF line terminators

First Seen2023-03-07

Last Seen2025-08-05

Times Seen481

Size40 kB (40402 bytes)

MD5db4c9c39a3af9343842156df81f25d08

SHA136af2c0bc454462355584a535897ca5ec6371f3a

SHA256e04e2b4e27ae9881b1e161954cc00ba16c8c3a0ce73a179824756353efd6c481

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/owl.carousel.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rSW2eSIVNnNteEHTmnh3D2mzmQIU06smrBVOyqGI0u5oHkdgApYDebmiy3J7YFApdFwOZamgnOcGynFBE0VQJ2iDrPQG3fMt4ZXRKbeonXGdNgucSGvpKy0zGtE%2FyMk%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 20 Feb 2017 02:40:46 GMT
vary: Accept-Encoding
etag: W/"58aa572e-9dd2"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7981
cf-ray: 932c3d342b07b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=8054&min_rtt=1659&rtt_var=7852&sent=176&recv=102&lost=0&retrans=0&sent_bytes=121901&recv_bytes=10638&delivery_rate=6239787&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1232&x=16"

GET bjxhxjcx.com/qkl/7251.html

104.21.96.1

200 OK

29 kB

URL User Request GET HTTPS

bjxhxjcx.com/qkl/7251.html

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeHTML document, Unicode text, UTF-8 text, with very long lines (2441), with CRLF, LF line terminators

First Seen2025-04-19

Last Seen2025-04-19

Times Seen2

Size29 kB (29070 bytes)

MD5a283a2ff5c9bfa35c3440c8523446552

SHA16b2ccbe83e2431e202d3de0c8947ed2f745f294e

SHA256c990af12d536e58afe00bd6043ca9c5e2e056c1ed569d300ae8b6c8b3b06cff5

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /qkl/7251.html HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 11:59:59 GMT
content-type: text/html
server: cloudflare
last-modified: Wed, 05 Feb 2025 13:03:02 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 932c3d28cd4c568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET bjxhxjcx.com/static/css/font-awesome.min.css

104.21.96.1

200 OK

31 kB

URL GET HTTPS

bjxhxjcx.com/static/css/font-awesome.min.css

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeASCII text, with very long lines (30837), with CRLF line terminators

First Seen2023-04-05

Last Seen2025-08-10

Times Seen7414

Size31 kB (31004 bytes)

MD5a0e784c4ca94c271b0338dfb02055be6

SHA188af80502c44cd52ca81ffe7dc7276b7eccb06cf

SHA256820e169ce24824066d9973fd4b6561aae9dcd6dbef6435da905d5a1d6482997c

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/font-awesome.min.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M9Zk%2BG8M93qFCLTwcOGVz5wwsN0zG%2FBJhda2Xyf%2F5y8PA%2F3N%2FMKtQQTswoRym7vXOr8d56fP2ZTl57KK0JwcBnzpwhKiQlL1nQ7Hkm8cN5efPn8lKMNhu0F70nnOj2E%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 20 Feb 2017 02:40:46 GMT
vary: Accept-Encoding
etag: W/"58aa572e-791c"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d33caf4b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13688&min_rtt=1659&rtt_var=12334&sent=100&recv=89&lost=0&retrans=0&sent_bytes=46286&recv_bytes=7875&delivery_rate=2438754&cwnd=22200&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1193&x=16"

GET bjxhxjcx.com/static/js/easing.min.js

104.21.96.1

200 OK

2.3 kB

URL GET HTTPS

bjxhxjcx.com/static/js/easing.min.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (2301), with CRLF line terminators

First Seen2023-03-07

Last Seen2025-08-09

Times Seen735

Size2.3 kB (2303 bytes)

MD5d64116a742887080b3a0abd09e0bdad7

SHA18cd4375fc3c60237ea3994209d17a57ccbe6b0c6

SHA256901eb80cc3f8c274fe6711bd023884258839610c9274082a4881f71e2206b4fb

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/easing.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gCFtCX1Ui2mqNT%2FGNJEV%2FqOCD6nNYvJiPkF954WwzAtdPXysrTwL37uBRqQR7c43k2t3pxY8rsEkuHKEH3kJZjLP11UGuHeQSheKgxZkVsg1B%2F3v0C0c7iroQ4lyb%2Fw%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 08 Jan 2018 09:14:10 GMT
vary: Accept-Encoding
etag: W/"5a533662-8ff"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d341b02b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7487&min_rtt=1659&rtt_var=7023&sent=209&recv=104&lost=0&retrans=0&sent_bytes=154035&recv_bytes=11169&delivery_rate=522613&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1247&x=16"

GET bjxhxjcx.com/static/js/jquery.magnific-popup.min.js

104.21.96.1

200 OK

20 kB

URL GET HTTPS

bjxhxjcx.com/static/js/jquery.magnific-popup.min.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (20087)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen17525

Size20 kB (20216 bytes)

MD5ba6cf724c8bb1cf5b084e79ff230626e

SHA1f455c5f153f872e52265f87a644ff89fe14a6fb6

SHA2563fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.magnific-popup.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f0jmZDv3uelawV0MctUBeiVIEmuBxK2QLwfkr%2FAlkhELr8wVNVEC5D0DZBtme50WVNZDUezSte7CDMbBJ37ySHIqGNt4s6HjXw3EnQ7jT70T59VSBHXFCjSUud05lMk%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 04 Jun 2017 17:11:48 GMT
vary: Accept-Encoding
etag: W/"59343f54-4ef8"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d342b06b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7487&min_rtt=1659&rtt_var=7023&sent=198&recv=104&lost=0&retrans=0&sent_bytes=141826&recv_bytes=11169&delivery_rate=522613&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1243&x=16"

GET bjxhxjcx.com/static/js/jquery.ajaxchimp.min.js

104.21.96.1

200 OK

4.8 kB

URL GET HTTPS

bjxhxjcx.com/static/js/jquery.ajaxchimp.min.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text

First Seen2023-03-07

Last Seen2025-08-08

Times Seen446

Size4.8 kB (4820 bytes)

MD58eace32bdc314e746f5b01015115b3a8

SHA190395aa2ff153cfb6d5c256a3f70bc4d545a3190

SHA2563c7c17459ec57867f6812625f1b95e2f878363ca728b92a5968d2fc8e60d9712

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.ajaxchimp.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GpPNqxqCSzz4ii%2ByKDkICCSXiZzjsFiIlYnDbruoFgOMee9mAK9uKrgFg2YyVBFVKmJC1%2FMz1wp2MehWPLF5PzxTJOyTZ2h9gHnQoQitDjwaaMXK0LbbNtEp1CwsjSg%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 27 Aug 2017 08:45:04 GMT
vary: Accept-Encoding
etag: W/"59a28690-12d4"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7981
cf-ray: 932c3d342b05b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=8054&min_rtt=1659&rtt_var=7852&sent=189&recv=102&lost=0&retrans=0&sent_bytes=135175&recv_bytes=10638&delivery_rate=6239787&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1233&x=16"

GET bjxhxjcx.com/static/fonts/Linearicons-Free.woff2?w118d

104.21.96.1

200 OK

22 kB

URL GET HTTPS

bjxhxjcx.com/static/fonts/Linearicons-Free.woff2?w118d

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 21780, version 1.0

First Seen2023-04-07

Last Seen2025-08-10

Times Seen4579

Size22 kB (21780 bytes)

MD503e91f122aa5fd425abbe23c85546eb0

SHA1c87a3db06c5db4e75e639382f174eafa439aeb27

SHA256296945e5922e764eef17b1b4a3ee3e60dc202b3c7f074150b62158915bf74e33

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/Linearicons-Free.woff2?w118d HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/static/css/linearicons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:02 GMT
content-type: font/woff2
content-length: 21780
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n9RDf3fR3eQQ9o%2Bqt4L5E5oOXhr3mcbdhMTcTDA3OK2jrHnvzR29nK1AD5cOkdww54N8Yi6Em8iFtP65juiEpsZ0WhOd2r9dyJvdvKYo%2FcmFCNz2qDAcFxCwLiFVRhI%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 23 May 2015 10:30:36 GMT
etag: "556056cc-5514"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: HIT
age: 561
accept-ranges: bytes
cf-ray: 932c3d411ba1b517-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6278&min_rtt=1659&rtt_var=4695&sent=305&recv=113&lost=0&retrans=0&sent_bytes=253354&recv_bytes=12854&delivery_rate=736893&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=3320&x=16"

GET bjxhxjcx.com/static/css/linearicons.css

104.21.96.1

200 OK

8.4 kB

URL GET HTTPS

bjxhxjcx.com/static/css/linearicons.css

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeASCII text

First Seen2023-04-07

Last Seen2025-08-10

Times Seen427

Size8.4 kB (8362 bytes)

MD53d521f166004a36cd1fb211f51c7e02d

SHA17f112ce30590dce0cbb3b17e9f0a5f705ead4682

SHA256f0767561c44fc65c14649e3a39539525178803e8b75dd7ca036f5fd717623402

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/linearicons.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tPlUU1BQoNgC5YqhTA1zIWg5O2zbwz16rOOI5zfbxVwI6KutQB8FHS2xKDGwJZVNw9FXnGDll2Njahvv%2FxnkCn%2FwT9aCBOMbiCTxj6iaposbwWq0N4Z6x%2FSS%2FJoMXbI%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 15 May 2017 09:26:32 GMT
vary: Accept-Encoding
etag: W/"59197448-20aa"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d33baf3b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=19467&min_rtt=2196&rtt_var=14359&sent=73&recv=85&lost=0&retrans=0&sent_bytes=18166&recv_bytes=7696&delivery_rate=1696&cwnd=12000&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1184&x=16"

GET bjxhxjcx.com/static/css/magnific-popup.css

104.21.96.1

200 OK

7.0 kB

URL GET HTTPS

bjxhxjcx.com/static/css/magnific-popup.css

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeASCII text

First Seen2023-04-05

Last Seen2025-08-10

Times Seen6492

Size7.0 kB (6951 bytes)

MD530b593b71d7672658f89bfea0ab360c9

SHA1d6963db6faa9294387bb3175813a61bc3f859437

SHA25645d1f5f6cf913746c45dd697b1a8f3b719c02d8b3f678dc7fc2766d54e1aaf6e

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/magnific-popup.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xpmGcM0soG%2BEr0gA6MtvjFz5U%2FnkmWAEd3CZyn62JIkEKJ4ZkfsSVU%2BH7BJlKYK0eybiLRe%2BkcHCGXIWj62dnCPNVJHhK9bpgHp%2FHaFln6u1jz58jy%2Fws1BDVkt28iU%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 17 Jul 2017 02:32:56 GMT
vary: Accept-Encoding
etag: W/"596c21d8-1b27"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d33caf6b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=19467&min_rtt=2196&rtt_var=14359&sent=62&recv=85&lost=0&retrans=0&sent_bytes=6166&recv_bytes=7696&delivery_rate=1696&cwnd=12000&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1182&x=16"

GET bjxhxjcx.com/static/js/owl-carousel-thumb.min.js

104.21.96.1

200 OK

3.6 kB

URL GET HTTPS

bjxhxjcx.com/static/js/owl-carousel-thumb.min.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (3644)

First Seen2023-03-08

Last Seen2025-06-26

Times Seen23

Size3.6 kB (3645 bytes)

MD5a4ce825d7443f94b264979f96626b467

SHA18d7981e2f0b97152f90bd6465114523267676dc3

SHA2563c440dc3cae731812a91363cd1ff95d7145119a8c7870c88f2c0b0e6b80b7a5c

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/owl-carousel-thumb.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7WOijGfh6dfAgStGaJ4mbY0xB5GZvBloY%2FQR0c6LY6cx00WWzPGnaG9MEjMJK7wS02S4E5YKg2ekz9%2BQdoom3vBFkxfSpB8pCkM78nMnKqSF253ov6lPJaLqKhezZ8I%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 18 Sep 2018 11:13:40 GMT
vary: Accept-Encoding
etag: W/"5ba0dde4-e3d"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d342b08b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=8054&min_rtt=1659&rtt_var=7852&sent=195&recv=102&lost=0&retrans=0&sent_bytes=139897&recv_bytes=10638&delivery_rate=6239787&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1239&x=16"

GET bjxhxjcx.com/static/js/mail-script.js

104.21.96.1

200 OK

1.2 kB

URL GET HTTPS

bjxhxjcx.com/static/js/mail-script.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text

First Seen2023-03-07

Last Seen2025-08-10

Times Seen319

Size1.2 kB (1230 bytes)

MD5df98b7098690619c0c9e6b42b5a77b48

SHA1d3fe896ed8d259df077220f71fba197ff033d27e

SHA25601f639fd4c4119503e72e2bf2eb9c8a5984f7c83c7683c82dd0350ee9f63b3fd

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/mail-script.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WFZ9sablWbvagvYYvGcwVlS7SFWz5KCLi6cQrCMakfrrICN%2BhMIl62F3np3R1My8aCWt7JApHJLmEaJQGZYgPsKCNQjWXiBtXblZ6ECGZI2ru%2FaRYvpHanI%2FRbOjYSk%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 29 Jan 2018 10:55:36 GMT
vary: Accept-Encoding
etag: W/"5a6efda8-4ce"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d346b0fb517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6348&min_rtt=1659&rtt_var=4664&sent=237&recv=108&lost=0&retrans=0&sent_bytes=179641&recv_bytes=11778&delivery_rate=637223&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1274&x=16"

GET bjxhxjcx.com/static/js/main.js

104.21.96.1

200 OK

12 kB

URL GET HTTPS

bjxhxjcx.com/static/js/main.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (1695)

First Seen2025-01-09

Last Seen2025-06-26

Times Seen20

Size12 kB (12304 bytes)

MD51bf17910a94d3c25989a1d236bc0a419

SHA1cc3be3dd8447175a7958f359f93eb774f8e090c5

SHA2562d20a7c7a6abc5d3a2defd69caaa64bbebab437df7ccff596794ccf49509b855

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/main.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l2Oob2lSAgCapqArSqWm1SiV%2FOR7qDJ4jj7eoB9LsNBVR%2B8o0WbSS1QRY5Kybj%2FLz6j07GoB0OgCrZfp12cON%2FiA7XNfpBNky4yMJhAdfdFqb6%2B4R%2Bl8cq3xZlSzsgs%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 03 Oct 2018 01:10:34 GMT
vary: Accept-Encoding
etag: W/"5bb4170a-3010"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7981
cf-ray: 932c3d346b10b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6348&min_rtt=1659&rtt_var=4664&sent=239&recv=108&lost=0&retrans=0&sent_bytes=180869&recv_bytes=11778&delivery_rate=637223&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1281&x=16"

GET fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET HTTPS

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 40128, version 1.0

First Seen2025-01-08

Last Seen2025-08-10

Times Seen103986

Size40 kB (40128 bytes)

MD59a01b69183a9604ab3a439e388b30501

SHA18ed1d59003d0dbe6360481017b44665153665fbe

SHA25620b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80

ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bjxhxjcx.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 10:03:46 GMT
expires: Fri, 17 Apr 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 179776
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET bjxhxjcx.com/static/fonts/fontawesome-webfont.woff2?v=4.7.0

104.21.96.1

200 OK

77 kB

URL GET HTTPS

bjxhxjcx.com/static/fonts/fontawesome-webfont.woff2?v=4.7.0

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459

First Seen2023-04-05

Last Seen2025-08-10

Times Seen174822

Size77 kB (77160 bytes)

MD5af7ae505a9eed503f8b8e6982036873e

SHA1d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c

SHA2562adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/static/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:02 GMT
content-type: font/woff2
content-length: 77160
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8TL%2FtWsjsq%2BR915X7l2sS9V0JpKai9DL8MXa7XwK%2BT7DXzuaiC5%2B71G0CHCXDsZ06WBVeMj%2FsO98mna5wBUTUJzu2U5u%2FsflCSQl9uSiS4wYBbevGBv7pSJajVmc810%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 20 Feb 2017 02:40:46 GMT
etag: "58aa572e-12d68"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: HIT
age: 561
accept-ranges: bytes
cf-ray: 932c3d40eb9fb517-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6278&min_rtt=1659&rtt_var=4695&sent=263&recv=113&lost=0&retrans=0&sent_bytes=203554&recv_bytes=12854&delivery_rate=736893&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=3307&x=16"

GET cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js

104.17.24.14

200 OK

19 kB

URL GET HTTPS

cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js

IP / ASN

104.17.24.14

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (19015)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen85907

Size19 kB (19188 bytes)

MD570d3fda195602fe8b75e0097eed74dde

SHA1c3b977aa4b8dfb69d651e07015031d385ded964b

SHA256a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66

Certificate Info

IssuerGoogle Trust Services

Subjectcdnjs.cloudflare.com

Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC

ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT

HTTP Headers

GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bjxhxjcx.com
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
cf-ray: 932c3d34dc767130-OSL
server: cloudflare
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 227843
expires: Thu, 09 Apr 2026 12:00:00 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NQN3rxaT9q9QPoXc3eqNRFfO1cm6Xk2iAvhXMQTpHioTKoVwGKW%2FyNsWtjytk6bcuqnjFW4H%2FC1vRPS3qHyywrvR%2FY5LjFJoOeCiXE21%2FVfhZXqTs%2Fkpvs2rpuBYB24pplxIOo7P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET bjxhxjcx.com/static/css/hexagons.min.css

104.21.96.1

200 OK

10 kB

URL GET HTTPS

bjxhxjcx.com/static/css/hexagons.min.css

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeASCII text, with very long lines (9408)

First Seen2025-04-07

Last Seen2025-06-26

Times Seen22

Size10 kB (9957 bytes)

MD58a43e6596b6bfc57c3e68a4a1c1aec99

SHA14ebc72b77f02ca66c9f9de94ecfd491369cf5dc2

SHA256e49f40633ec0312df00576bab62c2230882c1369418fbd678c14b3130b0ce52e

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/hexagons.min.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=POIUT1rA1k7zruKKzA6DtkQpY67AWBqOuynTN5QodS5U5YABqX84knys92F3Lx1vEGnntmDaOdNIoBQGHuD%2FI338669CJ5KrQC43GGo%2BlrNiPL8zXZPUocc7msDpysI%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 15 Sep 2015 13:03:38 GMT
vary: Accept-Encoding
etag: W/"55f8172a-26e5"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d33caf8b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=12260&min_rtt=1659&rtt_var=12108&sent=117&recv=90&lost=0&retrans=0&sent_bytes=63760&recv_bytes=7920&delivery_rate=3853763&cwnd=22200&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1196&x=16"

GET bjxhxjcx.com/tj.js

104.21.96.1

200 OK

363 B

URL GET HTTPS

bjxhxjcx.com/tj.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (361)

First Seen2024-10-27

Last Seen2025-05-05

Times Seen22

Size363 B (363 bytes)

MD51a57a47fe3aaf28b4864980bdeda1cf5

SHA1402ff5e38f3d6b2fa703df5ba9437b0743659e83

SHA256fd9600ac6e6a439e6b2a46360a04bc60361c63ec6f973f6751b7737a4e66089b

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tj.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KzsJ81Fm8f9i1rmYn%2BEB4RhOtdCJYJ8U0MMqL3Klg5LDURVEXm20%2BLB2TAMB6WxHubYkRppq75aSMWsnyKNFGSZDn6akMrZ87%2BIaeStsqy%2FRZsBg0yPnLa1ip0CL%2BtM%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 30 Oct 2024 03:14:48 GMT
etag: W/"6721a4a8-16b"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 7981
content-encoding: br
cf-ray: 932c3d33dafbb517-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=10326&min_rtt=1659&rtt_var=10129&sent=150&recv=92&lost=0&retrans=0&sent_bytes=100780&recv_bytes=8012&delivery_rate=2876132&cwnd=34200&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1199&x=16"

GET bjxhxjcx.com/static/js/vendor/bootstrap.min.js

104.21.96.1

200 OK

51 kB

URL GET HTTPS

bjxhxjcx.com/static/js/vendor/bootstrap.min.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (50759)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen267

Size51 kB (51041 bytes)

MD53a4912f4311c63d3af01bcd3441959ce

SHA1f1c0f5a8fc1868582dcfbb4e955893f129bf7e4b

SHA256f203aa11401db444669a0a833bc0da0324f6c6b59bb8291a0e50af290ae7ff42

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/vendor/bootstrap.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yZpNWidJSfAQ3PrtYRYuOuoBiZ2gApsto9sfRusasvuffn8V8Rxfbz7mEtoyShO3k77fJADDRgsHVaRGBdEUnFCAV9%2FceMPVOXq3B5r8p%2F7v%2BE%2FAVoKNEr7hx6SqfUc%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 28 Aug 2018 04:27:26 GMT
vary: Accept-Encoding
etag: W/"5b84cf2e-c761"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7981
cf-ray: 932c3d341b03b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7487&min_rtt=1659&rtt_var=7023&sent=212&recv=104&lost=0&retrans=0&sent_bytes=155564&recv_bytes=11169&delivery_rate=522613&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1254&x=16"

GET bjxhxjcx.com/static/js/hoverIntent.js

104.21.96.1

200 OK

7.1 kB

URL GET HTTPS

bjxhxjcx.com/static/js/hoverIntent.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with CRLF line terminators

First Seen2023-03-07

Last Seen2025-08-04

Times Seen95

Size7.1 kB (7078 bytes)

MD56fdf4814817af1a513273be884166dfd

SHA1c48a39ec831f050690061910c363d2bcf76759eb

SHA25661168602288a63df2b3f98292b8dbea4e021ec0fd683444e49e4d95766a8a0e5

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/hoverIntent.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sgsxj3kpCN8wL%2FlAGYIpfGSrAVx6dzyLcngYLBoQnBYvJD1iBg3tUWiv4yRth%2Bje3OT7kSYf3TYti%2F8JI3qiIeblq1R7oSfb86hLXks3DwXYkyHERlacFkBFSWqJRV0%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 08 Jan 2018 09:14:10 GMT
vary: Accept-Encoding
etag: W/"5a533662-1ba6"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d341b01b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7487&min_rtt=1659&rtt_var=7023&sent=198&recv=104&lost=0&retrans=0&sent_bytes=141826&recv_bytes=11169&delivery_rate=522613&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1243&x=16"

GET bjxhxjcx.com/static/js/jquery.nice-select.min.js

104.21.96.1

200 OK

2.9 kB

URL GET HTTPS

bjxhxjcx.com/static/js/jquery.nice-select.min.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (2822)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen2346

Size2.9 kB (2942 bytes)

MD5d13462ec489f9f0c309a811f85feb3d6

SHA1d9545f8b139eae5b387de1a60a84abe949c7e88f

SHA25666bdef0724e5306421bcc7e0910e41b5645228119ad9096ca4a6099e48d94e6a

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.nice-select.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FQsvN9L8v8H4YGWJoSwc2N5YLViNCfAUJg9eEUtbvHzdHA%2Fr8Q8CbVl3eVCFqRRglyJa9xp2wggLIxbO17DGkRwgKxU%2BakjgFsVZdl9sahhzXmrnG%2Bou%2BY%2F%2B2EtbKiU%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 08 May 2016 13:32:24 GMT
vary: Accept-Encoding
etag: W/"572f3fe8-b7e"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d344b0eb517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6642&min_rtt=1659&rtt_var=5436&sent=235&recv=107&lost=0&retrans=0&sent_bytes=177836&recv_bytes=11732&delivery_rate=1832237&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1264&x=16"

GET oudngmslhifnsf.gdmgcyy.com/tj.js

156.224.2.38

200 OK

805 B

URL GET HTTPS

oudngmslhifnsf.gdmgcyy.com/tj.js

IP / ASN

156.224.2.38

#133199 SonderCloud Limited

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (805), with no line terminators

First Seen2024-06-09

Last Seen2025-04-29

Times Seen280

Size805 B (805 bytes)

MD5b91b404e65a6d55f48e3e8929aaa6631

SHA17feb40ab7aa9c2ff7458e6e89a74af63c5f56ae8

SHA256d73b625c5e38c3fd1e0d5a113374bec35307dd4cde91aca48167ee3dc33567ee

Certificate Info

IssuerLet's Encrypt

Subjectoudngmslhifnsf.gdmgcyy.com

Fingerprint67:FA:6A:47:D7:8F:2B:66:5E:6B:74:C1:A7:E9:5D:E1:BF:00:E9:48

ValiditySat, 15 Mar 2025 08:28:00 GMT - Fri, 13 Jun 2025 08:27:59 GMT

HTTP Headers

GET /tj.js HTTP/1.1
Host: oudngmslhifnsf.gdmgcyy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty/1.21.4.3
Date: Sat, 19 Apr 2025 12:00:02 GMT
Content-Type: application/javascript
Content-Length: 805
Last-Modified: Sun, 19 May 2024 07:52:07 GMT
Connection: keep-alive
ETag: "6649afa7-325"
Accept-Ranges: bytes

GET bjxhxjcx.com/static/css/bootstrap.css

104.21.96.1

200 OK

184 kB

URL GET HTTPS

bjxhxjcx.com/static/css/bootstrap.css

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeASCII text

First Seen2023-04-20

Last Seen2025-06-26

Times Seen52

Size184 kB (183481 bytes)

MD5eabfbeeb69bcd7096f1096c8853022ea

SHA14397b30a538c8e287034b0a67be353c92716df7c

SHA2565beb0011ec164ce463074fe96489be6b6927568ebf8ae48b6337a50fc3149c19

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/bootstrap.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BtIuYS8JY7BXSLRHsrN8E5yiVqUO85HPzEJavTcnni17uSImO3MYr3RpNeRkifCfPhrXK8WshBhTqV8QHeHwSfN7O6gLEtkeZgR%2B%2B7HL17zmFN3OdopOQnNAKaicRUE%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 28 Aug 2018 04:31:14 GMT
vary: Accept-Encoding
etag: W/"5b84d012-2ccb9"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7981
cf-ray: 932c3d33caf5b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=19467&min_rtt=2196&rtt_var=14359&sent=65&recv=85&lost=0&retrans=0&sent_bytes=8969&recv_bytes=7696&delivery_rate=1696&cwnd=12000&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1182&x=16"

GET bjxhxjcx.com/images/defaultpic.gif

104.21.96.1

200 OK

6.4 kB

URL GET HTTPS

bjxhxjcx.com/images/defaultpic.gif

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typePNG image data, 512 x 330, 8-bit/color RGBA, non-interlaced

First Seen2024-04-04

Last Seen2025-08-05

Times Seen253

Size6.4 kB (6408 bytes)

MD5a22087b8272e7e8c1ef5702ba943ad93

SHA102865bfb0c215e061f515a77882657a9aceee9e1

SHA256f4e3729058237486921233ba5eb99c641a4bff858279fb7d36b48ab42ab9989a

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/defaultpic.gif HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: image/gif
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g9R3PiviONwmjSS36BAlOP4%2FkuVA%2FeYJhQ6kLzaLwlRLBcKwOk35oaBgILz8djx49fNUHlwjRd2dBtwmswQeOjtFJU89cdsIsJv86fwk6LXC0lP4Q4mgYqEWPkSnH0A%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 30 Oct 2023 20:31:56 GMT
vary: Accept-Encoding
etag: W/"654012bc-1908"
expires: Sun, 18 May 2025 18:00:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 64766
cf-ray: 932c3d33eafdb517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=12260&min_rtt=1659&rtt_var=12108&sent=111&recv=90&lost=0&retrans=0&sent_bytes=57213&recv_bytes=7920&delivery_rate=3853763&cwnd=22200&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1196&x=16"

GET bjxhxjcx.com/static/js/superfish.min.js

104.21.96.1

200 OK

4.5 kB

URL GET HTTPS

bjxhxjcx.com/static/js/superfish.min.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (4246)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen527

Size4.5 kB (4474 bytes)

MD50ae5f61bdbb22e9677a14a751a1a7d29

SHA1b2365b4a513ea54d366bfffa7d99c825b178a637

SHA256f31f14f173559d1bc035ffcec66bdcd19b6685f42a2853bf7eaabd1e4bd9aba0

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/superfish.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JtxVqN3ojRK7vrZIwFjCc4fR71PncYKxUlp2%2BECbm3UXMRE%2Bd5VOGx4uOdLVysjt81LOnkTI8XRdjhIuO5IeEsh3s1NtWG9OPUEnMXxFvYahux9ZiHBUC5ypjzUaYyI%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 08 Jan 2018 09:14:10 GMT
vary: Accept-Encoding
etag: W/"5a533662-117a"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d341b04b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=8054&min_rtt=1659&rtt_var=7852&sent=191&recv=102&lost=0&retrans=0&sent_bytes=137172&recv_bytes=10638&delivery_rate=6239787&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1237&x=16"

GET bjxhxjcx.com/static/js/hexagons.min.js

104.21.96.1

200 OK

3.4 kB

URL GET HTTPS

bjxhxjcx.com/static/js/hexagons.min.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (3421), with no line terminators

First Seen2025-01-09

Last Seen2025-06-26

Times Seen24

Size3.4 kB (3421 bytes)

MD57886c815fb394f3580bd97739e264d7f

SHA1556165fe3bce3ede9de84812c04e0676dff77d0d

SHA25683b6c8e756da5edbc093bab7f5ebd1ef82c8612839a3daf5d886c8d14be039a9

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/hexagons.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ecOYnn%2FkeHmBDjNSiSFgaU561zS5PU9pllyaQ6z%2BK68phvTxHmeVbD5SStk%2B3x06ITm%2FafRcBv8laDwX8RbM5Jj%2Btcifr%2FAXXX9JfXpM4D7DehdZi2BOQ8D5o1L6Sus%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 15 Sep 2015 13:03:38 GMT
vary: Accept-Encoding
etag: W/"55f8172a-d5d"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7981
cf-ray: 932c3d342b09b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7078&min_rtt=1659&rtt_var=6084&sent=227&recv=105&lost=0&retrans=0&sent_bytes=172906&recv_bytes=11215&delivery_rate=458299&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1254&x=16"

GET bjxhxjcx.com/static/css/nice-select.css

104.21.96.1

200 OK

4.0 kB

URL GET HTTPS

bjxhxjcx.com/static/css/nice-select.css

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeASCII text

First Seen2023-04-05

Last Seen2025-08-10

Times Seen806

Size4.0 kB (4007 bytes)

MD5a7ace323b9fc8a831a6e64feb23fa0b9

SHA19317ad29306bc72eb3fa92981be8141fcd394e7c

SHA256c13280e79f74109c5e3854822c0f0c972d0a57245c95b0b3762f9788bd918f8d

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/nice-select.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PS3qhjpxUc5M%2FrHwpaIF1MUK8IhY38gfai7S32bqMgm6LjBMAy3bXRUOW9laOwlz3miSmaPeFcl7L4bY4AggZ7xr5Qu1Utv7ywtsffnLwXkC2Ah%2Fkgo5Y4Ph914ExFk%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 08 May 2016 13:32:24 GMT
vary: Accept-Encoding
etag: W/"572f3fe8-fa7"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7982
cf-ray: 932c3d33caf7b517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=16397&min_rtt=1659&rtt_var=13735&sent=97&recv=87&lost=0&retrans=0&sent_bytes=44414&recv_bytes=7785&delivery_rate=9040806&cwnd=22200&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1188&x=16"

GET bjxhxjcx.com/static/js/waypoints.min.js

104.21.96.1

200 OK

8.0 kB

URL GET HTTPS

bjxhxjcx.com/static/js/waypoints.min.js

IP / ASN

104.21.96.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/7251.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (7808)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen3924

Size8.0 kB (8044 bytes)

MD5dfe0eedf8da578f4a4c43b05448c51d9

SHA1812d7071b4e44b1aa5d5ea6c7ce0b79eb9d46520

SHA256a0fded691aed767f851011cd3185b928619298a21a0fbdad4808a9e88b490833

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/waypoints.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/7251.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 12:00:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p%2BYza24Q51hHcNMd5quavpYB0kGlA1wHexbUqNZ6Ymbwge8tW7l7gHNbR7e7p69PH2yZN3MqytOYsob%2B9OYwQb7EgVDBuy7LNX2f9lA8xhAPy4Dhdv53%2B5ZaEAKoFi8%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 06 Dec 2017 09:29:52 GMT
vary: Accept-Encoding
etag: W/"5a27b890-1f6c"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 7981
cf-ray: 932c3d344b0db517-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6642&min_rtt=1659&rtt_var=5436&sent=231&recv=107&lost=0&retrans=0&sent_bytes=174248&recv_bytes=11732&delivery_rate=1832237&cwnd=49800&unsent_bytes=0&cid=77dde2b53b5791e7&ts=1261&x=16"