Report - bjxhxjcx.com/qkl/11701.html

Report Overview

Visitedpublic

2025-04-19 14:58:59

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-04-16	2.1 kB	100 kB	142.250.74.35
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-04-16	454 B	19 kB	142.250.74.10
bjxhxjcx.com	unknown	2017-08-11	2025-04-19	2025-04-19	13 kB	702 kB	104.21.16.1
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-04-16	465 B	20 kB	104.17.24.14
oudngmslhifnsf.gdmgcyy.com	unknown	2020-05-10	2024-02-01	2025-04-16	405 B	1.1 kB	156.224.2.38

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2025-04-18	medium	bjxhxjcx.com/qkl/11701.html	Crypto/Wallet

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed
2025-04-19	medium	bjxhxjcx.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (21)

	URL	From	Size	First Seen	Last Seen
	bjxhxjcx.com/static/js/waypoints.min.js	ScriptElement	8.0 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/waypoints.min.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 3924 Size 8.0 kB (8044 bytes) MD5 dfe0eedf8da578f4a4c43b05448c51d9 SHA1 812d7071b4e44b1aa5d5ea6c7ce0b79eb9d46520 SHA256 a0fded691aed767f851011cd3185b928619298a21a0fbdad4808a9e88b490833 Format Code Loading...

	bjxhxjcx.com/static/js/hoverIntent.js	ScriptElement	7.1 kB	2023-03-07	2025-08-04
URL bjxhxjcx.com/static/js/hoverIntent.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-04 Times Seen 95 Size 7.1 kB (7078 bytes) MD5 6fdf4814817af1a513273be884166dfd SHA1 c48a39ec831f050690061910c363d2bcf76759eb SHA256 61168602288a63df2b3f98292b8dbea4e021ec0fd683444e49e4d95766a8a0e5 Format Code Loading...

	bjxhxjcx.com/static/js/vendor/bootstrap.min.js	ScriptElement	51 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/vendor/bootstrap.min.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 267 Size 51 kB (51041 bytes) MD5 3a4912f4311c63d3af01bcd3441959ce SHA1 f1c0f5a8fc1868582dcfbb4e955893f129bf7e4b SHA256 f203aa11401db444669a0a833bc0da0324f6c6b59bb8291a0e50af290ae7ff42 Format Code Loading...

	bjxhxjcx.com/qkl/11701.html	Eval	87 B	2024-04-04	2025-08-10
URL bjxhxjcx.com/qkl/11701.html IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by Eval Embedded false Resource Info First Seen 2024-04-04 Last Seen 2025-08-10 Times Seen 402 Size 87 B (87 bytes) MD5 deab99731237b52d1b60dd7d144a15c0 SHA1 1cd0ca53fbd8c8943a02250ab2e4e47a66e420da SHA256 e1bfbe54fd1f16ed88120eae9549e8cf7d708eb595d8c787930215b22b4497c2 Format Code Loading...

	bjxhxjcx.com/static/js/easing.min.js	ScriptElement	2.3 kB	2023-03-07	2025-08-09
URL bjxhxjcx.com/static/js/easing.min.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-09 Times Seen 735 Size 2.3 kB (2303 bytes) MD5 d64116a742887080b3a0abd09e0bdad7 SHA1 8cd4375fc3c60237ea3994209d17a57ccbe6b0c6 SHA256 901eb80cc3f8c274fe6711bd023884258839610c9274082a4881f71e2206b4fb Format Code Loading...

	bjxhxjcx.com/static/js/jquery.magnific-popup.min.js	ScriptElement	20 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/jquery.magnific-popup.min.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 17525 Size 20 kB (20216 bytes) MD5 ba6cf724c8bb1cf5b084e79ff230626e SHA1 f455c5f153f872e52265f87a644ff89fe14a6fb6 SHA256 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4 Format Code Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js	ScriptElement	19 kB	2023-03-07	2025-08-10
URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP / ASN 104.17.24.14 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 85907 Size 19 kB (19188 bytes) MD5 70d3fda195602fe8b75e0097eed74dde SHA1 c3b977aa4b8dfb69d651e07015031d385ded964b SHA256 a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 Format Code Loading...

	bjxhxjcx.com/static/js/owl.carousel.min.js	ScriptElement	40 kB	2023-03-07	2025-08-05
URL bjxhxjcx.com/static/js/owl.carousel.min.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-05 Times Seen 481 Size 40 kB (40402 bytes) MD5 db4c9c39a3af9343842156df81f25d08 SHA1 36af2c0bc454462355584a535897ca5ec6371f3a SHA256 e04e2b4e27ae9881b1e161954cc00ba16c8c3a0ce73a179824756353efd6c481 Format Code Loading...

	bjxhxjcx.com/qkl/11701.html	Eval	611 B	2024-06-09	2025-04-29
URL bjxhxjcx.com/qkl/11701.html IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by Eval Embedded false Resource Info First Seen 2024-06-09 Last Seen 2025-04-29 Times Seen 275 Size 611 B (611 bytes) MD5 9512450c43a616469513e6f0a3cf0957 SHA1 130557e34c1d4ca4a794977a5855debce59b0156 SHA256 43fcad7926cd2cef9732d939c76b72f328b561359a542a3d53f67956a67c666c Format Code Loading...

	bjxhxjcx.com/static/js/jquery.ajaxchimp.min.js	ScriptElement	4.8 kB	2023-03-07	2025-08-08
URL bjxhxjcx.com/static/js/jquery.ajaxchimp.min.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-08 Times Seen 446 Size 4.8 kB (4820 bytes) MD5 8eace32bdc314e746f5b01015115b3a8 SHA1 90395aa2ff153cfb6d5c256a3f70bc4d545a3190 SHA256 3c7c17459ec57867f6812625f1b95e2f878363ca728b92a5968d2fc8e60d9712 Format Code Loading...

	bjxhxjcx.com/static/js/superfish.min.js	ScriptElement	4.5 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/superfish.min.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 527 Size 4.5 kB (4474 bytes) MD5 0ae5f61bdbb22e9677a14a751a1a7d29 SHA1 b2365b4a513ea54d366bfffa7d99c825b178a637 SHA256 f31f14f173559d1bc035ffcec66bdcd19b6685f42a2853bf7eaabd1e4bd9aba0 Format Code Loading...

	bjxhxjcx.com/static/js/main.js	ScriptElement	12 kB	2025-01-09	2025-06-26
URL bjxhxjcx.com/static/js/main.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2025-01-09 Last Seen 2025-06-26 Times Seen 20 Size 12 kB (12304 bytes) MD5 1bf17910a94d3c25989a1d236bc0a419 SHA1 cc3be3dd8447175a7958f359f93eb774f8e090c5 SHA256 2d20a7c7a6abc5d3a2defd69caaa64bbebab437df7ccff596794ccf49509b855 Format Code Loading...

	oudngmslhifnsf.gdmgcyy.com/tj.js	ScriptElement	805 B	2024-06-09	2025-04-29
URL oudngmslhifnsf.gdmgcyy.com/tj.js IP / ASN 156.224.2.38 #133199 SonderCloud Limited Introduced by ScriptElement Embedded false Resource Info First Seen 2024-06-09 Last Seen 2025-04-29 Times Seen 280 Size 805 B (805 bytes) MD5 b91b404e65a6d55f48e3e8929aaa6631 SHA1 7feb40ab7aa9c2ff7458e6e89a74af63c5f56ae8 SHA256 d73b625c5e38c3fd1e0d5a113374bec35307dd4cde91aca48167ee3dc33567ee Format Code Loading...

	bjxhxjcx.com/static/js/jquery.nice-select.min.js	ScriptElement	2.9 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/jquery.nice-select.min.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 2346 Size 2.9 kB (2942 bytes) MD5 d13462ec489f9f0c309a811f85feb3d6 SHA1 d9545f8b139eae5b387de1a60a84abe949c7e88f SHA256 66bdef0724e5306421bcc7e0910e41b5645228119ad9096ca4a6099e48d94e6a Format Code Loading...

	bjxhxjcx.com/static/js/hexagons.min.js	ScriptElement	3.4 kB	2025-01-09	2025-06-26
URL bjxhxjcx.com/static/js/hexagons.min.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2025-01-09 Last Seen 2025-06-26 Times Seen 24 Size 3.4 kB (3421 bytes) MD5 7886c815fb394f3580bd97739e264d7f SHA1 556165fe3bce3ede9de84812c04e0676dff77d0d SHA256 83b6c8e756da5edbc093bab7f5ebd1ef82c8612839a3daf5d886c8d14be039a9 Format Code Loading...

	bjxhxjcx.com/static/js/mail-script.js	ScriptElement	1.2 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/mail-script.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 319 Size 1.2 kB (1230 bytes) MD5 df98b7098690619c0c9e6b42b5a77b48 SHA1 d3fe896ed8d259df077220f71fba197ff033d27e SHA256 01f639fd4c4119503e72e2bf2eb9c8a5984f7c83c7683c82dd0350ee9f63b3fd Format Code Loading...

	bjxhxjcx.com/static/js/owl-carousel-thumb.min.js	ScriptElement	3.6 kB	2023-03-08	2025-06-26
URL bjxhxjcx.com/static/js/owl-carousel-thumb.min.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-08 Last Seen 2025-06-26 Times Seen 23 Size 3.6 kB (3645 bytes) MD5 a4ce825d7443f94b264979f96626b467 SHA1 8d7981e2f0b97152f90bd6465114523267676dc3 SHA256 3c440dc3cae731812a91363cd1ff95d7145119a8c7870c88f2c0b0e6b80b7a5c Format Code Loading...

	bjxhxjcx.com/static/js/vendor/jquery-2.2.4.min.js	ScriptElement	86 kB	2023-03-07	2025-08-10
URL bjxhxjcx.com/static/js/vendor/jquery-2.2.4.min.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-10 Times Seen 3541 Size 86 kB (85577 bytes) MD5 b354cc9d56a1da6b0c77604d1b153850 SHA1 a3d8479f4d4e39b131bc9a53bbf53d1fbaa23732 SHA256 fdce77a6d0053f32d231518a84a71bcab5c86045ed52369da00b89d4284aef46 Format Code Loading...

	bjxhxjcx.com/tj.js	ScriptElement	363 B	2024-10-27	2025-05-05
URL bjxhxjcx.com/tj.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2024-10-27 Last Seen 2025-05-05 Times Seen 22 Size 363 B (363 bytes) MD5 1a57a47fe3aaf28b4864980bdeda1cf5 SHA1 402ff5e38f3d6b2fa703df5ba9437b0743659e83 SHA256 fd9600ac6e6a439e6b2a46360a04bc60361c63ec6f973f6751b7737a4e66089b Format Code Loading...

	bjxhxjcx.com/static/js/tilt.jquery.min.js	ScriptElement	5.6 kB	2023-03-07	2025-08-09
URL bjxhxjcx.com/static/js/tilt.jquery.min.js IP / ASN 104.21.16.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-09 Times Seen 791 Size 5.6 kB (5640 bytes) MD5 034d38aaa44f4ac1723c041d215eb146 SHA1 6dccde4d78b77b035d9da0396385ade6141864cb SHA256 6951eec0a8c0c9b2eab72c4f579765e0f190165822919ddc791bb391096fd7c0 Format Code Loading...

	HASH	FROM	Size	First Seen	Last Seen
	0c62e4b2ef2dd122138f49484f5df37e	DocumentWrite	64 B	2024-04-04	2025-08-10
Introduced by DocumentWrite First Seen 2024-04-04 Last Seen 2025-08-10 Times Seen 401 Size 64 B (64 bytes) MD5 0c62e4b2ef2dd122138f49484f5df37e SHA1 ff69377d20545562b648b7607e40251bcb0a004f SHA256 97e41672c8ac279bcf8d69500df45bf1b8650ecc272a99d9bcb34872c99edc56 Format Code Loading...

HTTP Transactions (37)

URL IP Response Size

GET fonts.gstatic.com/s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.74.35

200 OK

7.9 kB

URL GET HTTPS

fonts.gstatic.com/s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0

First Seen2023-04-05

Last Seen2025-08-10

Times Seen108566

Size7.9 kB (7884 bytes)

MD59212f6f9860f9fc6c69b02fedf6db8c3

SHA1ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b

SHA2567d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80

ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

HTTP Headers

GET /s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bjxhxjcx.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 09:32:10 GMT
expires: Fri, 17 Apr 2026 09:32:10 GMT
cache-control: public, max-age=31536000
age: 192392
last-modified: Wed, 04 Dec 2024 06:53:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.googleapis.com/css?family=Poppins:400,600|Roboto:400,400i,500

142.250.74.10

200 OK

18 kB

URL GET HTTPS

fonts.googleapis.com/css?family=Poppins:400,600|Roboto:400,400i,500

IP / ASN

142.250.74.10

#15169 GOOGLE

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeASCII text, with very long lines (1572)

First Seen2025-01-09

Last Seen2025-04-21

Times Seen19

Size18 kB (17937 bytes)

MD5a4ad77e30034d1801aa6a8cda47898cf

SHA1e505233b7e4bdd14d06c2e0f4df5ef5d232e8d7e

SHA2569e1019ffa69b51eb427c2a78f58e66ad9022489c15b436305451c4346d76947b

Certificate Info

IssuerGoogle Trust Services

Subjectupload.video.google.com

Fingerprint06:13:4C:49:F4:23:BB:58:C3:31:41:0E:F9:E0:C5:EF:74:A9:0C:67

ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

HTTP Headers

GET /css?family=Poppins:400,600|Roboto:400,400i,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 19 Apr 2025 14:58:40 GMT
date: Sat, 19 Apr 2025 14:58:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET bjxhxjcx.com/static/css/owl.carousel.css

104.21.16.1

200 OK

4.3 kB

URL GET HTTPS

bjxhxjcx.com/static/css/owl.carousel.css

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeASCII text, with CRLF line terminators

First Seen2023-04-07

Last Seen2025-08-04

Times Seen79

Size4.3 kB (4285 bytes)

MD5bf23e63d0afebc11d844cd32b090fb6b

SHA1779f876e61d14ce915401b4af00e5f67393decb2

SHA256d5d23027b15224f7ccf9ef91f47154a4d82546ce6315b3071cf4377832beb78d

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/owl.carousel.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ilw0Oj484vkIHS7XiMEPne0K%2F2FkAzXwg7nKqyLNJPUh6YH03EVAlJ96iJFsONmgdqI6wU7hw3H3BOXA2FzpzLz79hfnDG5Bbwn9vxuYLgGAHGaW%2Bmsbft%2FG%2B8cUaJ4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 20 Feb 2017 02:40:46 GMT
vary: Accept-Encoding
etag: W/"58aa572e-10bd"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18701
cf-ray: 932d42e87df95690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5074&min_rtt=1068&rtt_var=3923&sent=184&recv=149&lost=0&retrans=0&sent_bytes=92162&recv_bytes=14047&delivery_rate=3442436&cwnd=48000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=960&x=16"

GET bjxhxjcx.com/images/defaultpic.gif

104.21.16.1

200 OK

6.4 kB

URL GET HTTPS

bjxhxjcx.com/images/defaultpic.gif

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typePNG image data, 512 x 330, 8-bit/color RGBA, non-interlaced

First Seen2024-04-04

Last Seen2025-08-05

Times Seen253

Size6.4 kB (6408 bytes)

MD5a22087b8272e7e8c1ef5702ba943ad93

SHA102865bfb0c215e061f515a77882657a9aceee9e1

SHA256f4e3729058237486921233ba5eb99c641a4bff858279fb7d36b48ab42ab9989a

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/defaultpic.gif HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: image/gif
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JNY%2BKgY8sJifdxEDy%2BZEve9W5VcEsm27wjQkH5TYgKnL6uYRVkvkgWD84jD2z%2Br8fmGrQd%2BOIP%2BnmFGzJOtDJ9h%2BGHOyyTb%2Fm1ZWIIe6l8N6OnoLirIJ2iQB4KKFYEA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 30 Oct 2023 20:31:56 GMT
vary: Accept-Encoding
etag: W/"654012bc-1908"
expires: Sun, 18 May 2025 18:00:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 75486
cf-ray: 932d42e88dfd5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4900&min_rtt=1068&rtt_var=3292&sent=263&recv=150&lost=0&retrans=0&sent_bytes=179871&recv_bytes=14093&delivery_rate=4426556&cwnd=96000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=974&x=16"

GET bjxhxjcx.com/static/js/tilt.jquery.min.js

104.21.16.1

200 OK

5.6 kB

URL GET HTTPS

bjxhxjcx.com/static/js/tilt.jquery.min.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (5640), with no line terminators

First Seen2023-03-07

Last Seen2025-08-09

Times Seen791

Size5.6 kB (5640 bytes)

MD5034d38aaa44f4ac1723c041d215eb146

SHA16dccde4d78b77b035d9da0396385ade6141864cb

SHA2566951eec0a8c0c9b2eab72c4f579765e0f190165822919ddc791bb391096fd7c0

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/tilt.jquery.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tpjoVqDXHHR17W7sHw9pIfohENR6XAJxtSZPfMeuzK65L%2B7XddcHTTfZVl9gFCM3J5zaamCGOisU6wd%2FRZr6AI7H11bfOPW6VPFlnD0lUn4DyibUaQwIqIplv6r331I%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 01 Oct 2018 08:38:10 GMT
vary: Accept-Encoding
etag: W/"5bb1dcf2-1608"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e88dff5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=944&x=16"

GET bjxhxjcx.com/static/fonts/Linearicons-Free.woff2?w118d

104.21.16.1

200 OK

22 kB

URL GET HTTPS

bjxhxjcx.com/static/fonts/Linearicons-Free.woff2?w118d

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 21780, version 1.0

First Seen2023-04-07

Last Seen2025-08-10

Times Seen4579

Size22 kB (21780 bytes)

MD503e91f122aa5fd425abbe23c85546eb0

SHA1c87a3db06c5db4e75e639382f174eafa439aeb27

SHA256296945e5922e764eef17b1b4a3ee3e60dc202b3c7f074150b62158915bf74e33

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/Linearicons-Free.woff2?w118d HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/static/css/linearicons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:43 GMT
content-type: font/woff2
content-length: 21780
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NmlZWu%2BXf1NMIHw%2FufxvgPFtC7uRC%2B%2BJi%2Fl29sUEturM%2BeS4npn2zgiINAJVwblK1tRQaIkvUSkGkEZbRrKTZgsgl4MOYB8cicLYdhWVp7bFdJbAOk00dfB%2BRetjkgA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 23 May 2015 10:30:36 GMT
etag: "556056cc-5514"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
cf-ray: 932d42f5aeb65690-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6069&min_rtt=1068&rtt_var=4557&sent=290&recv=156&lost=0&retrans=0&sent_bytes=205164&recv_bytes=15449&delivery_rate=336017&cwnd=96000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=4022&x=16"

GET bjxhxjcx.com/static/js/easing.min.js

104.21.16.1

200 OK

2.3 kB

URL GET HTTPS

bjxhxjcx.com/static/js/easing.min.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (2301), with CRLF line terminators

First Seen2023-03-07

Last Seen2025-08-09

Times Seen735

Size2.3 kB (2303 bytes)

MD5d64116a742887080b3a0abd09e0bdad7

SHA18cd4375fc3c60237ea3994209d17a57ccbe6b0c6

SHA256901eb80cc3f8c274fe6711bd023884258839610c9274082a4881f71e2206b4fb

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/easing.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0JAFmufvXJdIKBioue1eSEfBuy0jqW6UlhuzOz63E4JogBpDMG%2BzyReZjve87l0RRpf8x9yNT0PaGI4nZqYC4JYstF1uASUHZTuui1Exb5oDoPg10G3GMDT8bPsxPio%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 08 Jan 2018 09:14:10 GMT
vary: Accept-Encoding
etag: W/"5a533662-8ff"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e88e005690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=939&x=16"

GET bjxhxjcx.com/static/js/hexagons.min.js

104.21.16.1

200 OK

3.4 kB

URL GET HTTPS

bjxhxjcx.com/static/js/hexagons.min.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (3421), with no line terminators

First Seen2025-01-09

Last Seen2025-06-26

Times Seen24

Size3.4 kB (3421 bytes)

MD57886c815fb394f3580bd97739e264d7f

SHA1556165fe3bce3ede9de84812c04e0676dff77d0d

SHA25683b6c8e756da5edbc093bab7f5ebd1ef82c8612839a3daf5d886c8d14be039a9

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/hexagons.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o0iQMIcwXX7BZxUm1mHPZLjtcM6QUjuRDXC0AKLSRUeHm2o%2Ft89KLo1ZdLpuosddbBd92YVzEoE4nrDX983DRFsRFFSRn%2FEYdws2qgAfZcsrLn2mME3aANVn2O6whPc%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 15 Sep 2015 13:03:38 GMT
vary: Accept-Encoding
etag: W/"55f8172a-d5d"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18701
cf-ray: 932d42e89e0a5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=943&x=16"

GET bjxhxjcx.com/static/css/linearicons.css

104.21.16.1

200 OK

8.4 kB

URL GET HTTPS

bjxhxjcx.com/static/css/linearicons.css

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeASCII text

First Seen2023-04-07

Last Seen2025-08-10

Times Seen427

Size8.4 kB (8362 bytes)

MD53d521f166004a36cd1fb211f51c7e02d

SHA17f112ce30590dce0cbb3b17e9f0a5f705ead4682

SHA256f0767561c44fc65c14649e3a39539525178803e8b75dd7ca036f5fd717623402

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/linearicons.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1jABdHzzzWLaUCZjS2MsK0h1fqrsxP%2BonQeEcZJ8VmHtHHkB8rewNk6o%2FNXYNNr70uV48BQy9HEVm7D8%2FlFg3SnhxxQExg%2BvSzmNHf24afjtt0n8yeBKC5Ve61xYMfY%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 15 May 2017 09:26:32 GMT
vary: Accept-Encoding
etag: W/"59197448-20aa"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e87df35690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=945&x=16"

GET bjxhxjcx.com/static/css/nice-select.css

104.21.16.1

200 OK

4.0 kB

URL GET HTTPS

bjxhxjcx.com/static/css/nice-select.css

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeASCII text

First Seen2023-04-05

Last Seen2025-08-10

Times Seen806

Size4.0 kB (4007 bytes)

MD5a7ace323b9fc8a831a6e64feb23fa0b9

SHA19317ad29306bc72eb3fa92981be8141fcd394e7c

SHA256c13280e79f74109c5e3854822c0f0c972d0a57245c95b0b3762f9788bd918f8d

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/nice-select.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1evuj9rXS%2BMmywOLgNYnLqBKsDVSrTXUfH19RMdcjtNQodwMyzYvJootVrWIfUASiPMon10fgt5lwRsqUuTrEGipGm0jF1pMOOPUGevB%2BuoE9Cfefza3nySG1L0IM0M%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 08 May 2016 13:32:24 GMT
vary: Accept-Encoding
etag: W/"572f3fe8-fa7"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e87df75690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=939&x=16"

GET bjxhxjcx.com/static/css/main.css

104.21.16.1

200 OK

84 kB

URL GET HTTPS

bjxhxjcx.com/static/css/main.css

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeassembler source, ASCII text, with very long lines (551)

First Seen2025-01-09

Last Seen2025-04-21

Times Seen19

Size84 kB (83614 bytes)

MD5726c3480ba0ec8cc5a7cfdc9ada85b77

SHA1e296e4139567ce4406d9924ce67944659d36e230

SHA2564ef65134ff029a21779ae04f733be96e21c1b9f62f5bdb81c8e0b40a2f0d0210

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/main.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WdLJtKLikKB4X3KQL6gUY1pk0mgpHAgVz78P5x2MMX6M0vX4GhTWuqxGqSrU00Bvbuj0iGYgT173nFJBVEFC8w5MFnGCPM1j7D1XtKdnUV%2F2MeUB4MbKQjyM0MWe07Y%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 31 Dec 1979 16:00:00 GMT
vary: Accept-Encoding
etag: W/"12ce3580-1469e"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e87dfa5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=943&x=16"

GET bjxhxjcx.com/static/js/superfish.min.js

104.21.16.1

200 OK

4.5 kB

URL GET HTTPS

bjxhxjcx.com/static/js/superfish.min.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (4246)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen527

Size4.5 kB (4474 bytes)

MD50ae5f61bdbb22e9677a14a751a1a7d29

SHA1b2365b4a513ea54d366bfffa7d99c825b178a637

SHA256f31f14f173559d1bc035ffcec66bdcd19b6685f42a2853bf7eaabd1e4bd9aba0

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/superfish.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8czpNq%2B%2BScGxZlkVDmCP8Vh6Z%2Fj4b9btaUNcw%2BY2RXwH5lzqiPFXAc8nArCtgz9ZeC0xA6P%2FTeKedGAQ8TZV46huT4Gzxbfrr3N%2B3NIrH8HHxONrK5%2BrYc1TanPriko%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 08 Jan 2018 09:14:10 GMT
vary: Accept-Encoding
etag: W/"5a533662-117a"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e88e035690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5316&min_rtt=1068&rtt_var=4588&sent=136&recv=148&lost=0&retrans=0&sent_bytes=44162&recv_bytes=14002&delivery_rate=82416&cwnd=24000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=953&x=16"

GET fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

142.250.74.35

200 OK

8.0 kB

URL GET HTTPS

fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 8000, version 1.0

First Seen2023-04-05

Last Seen2025-08-10

Times Seen60142

Size8.0 kB (8000 bytes)

MD572993dddf88a63e8f226656f7de88e57

SHA1179f97ec0275f09603a8db94d4380eb584d81cd5

SHA256f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80

ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

HTTP Headers

GET /s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bjxhxjcx.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 09:35:01 GMT
expires: Fri, 17 Apr 2026 09:35:01 GMT
cache-control: public, max-age=31536000
age: 192221
last-modified: Wed, 04 Dec 2024 06:53:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET bjxhxjcx.com/static/css/font-awesome.min.css

104.21.16.1

200 OK

31 kB

URL GET HTTPS

bjxhxjcx.com/static/css/font-awesome.min.css

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeASCII text, with very long lines (30837), with CRLF line terminators

First Seen2023-04-05

Last Seen2025-08-10

Times Seen7414

Size31 kB (31004 bytes)

MD5a0e784c4ca94c271b0338dfb02055be6

SHA188af80502c44cd52ca81ffe7dc7276b7eccb06cf

SHA256820e169ce24824066d9973fd4b6561aae9dcd6dbef6435da905d5a1d6482997c

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/font-awesome.min.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Da0oi3H3y9YG7tWpz7Be7dWgCvtVP57aMNUSa05GHeE6Hw9lAFd7eR%2FlaCuyu3O8%2F0UPX2iNvizwvVYS4djijO9oINI2qkdukHFfXHPucyKLACfoc85Gn5iB43SHSHw%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 20 Feb 2017 02:40:46 GMT
vary: Accept-Encoding
etag: W/"58aa572e-791c"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e87df45690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=947&x=16"

GET bjxhxjcx.com/static/js/owl.carousel.min.js

104.21.16.1

200 OK

40 kB

URL GET HTTPS

bjxhxjcx.com/static/js/owl.carousel.min.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (32068), with CRLF line terminators

First Seen2023-03-07

Last Seen2025-08-05

Times Seen481

Size40 kB (40402 bytes)

MD5db4c9c39a3af9343842156df81f25d08

SHA136af2c0bc454462355584a535897ca5ec6371f3a

SHA256e04e2b4e27ae9881b1e161954cc00ba16c8c3a0ce73a179824756353efd6c481

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/owl.carousel.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PJWjt8L%2F0NERjqNCVGbKPeXydJoRsLRP%2BYymbfra7bHYWUb6LGU6Z%2BhGfiXNl0dNj296JtmdAO6WySav3E0lRQ703H%2BVvmS3JFEkXokx0yUaMRv4xSbz%2BY85FHgS4dI%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 20 Feb 2017 02:40:46 GMT
vary: Accept-Encoding
etag: W/"58aa572e-9dd2"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18701
cf-ray: 932d42e88e055690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=951&x=16"

GET bjxhxjcx.com/static/js/waypoints.min.js

104.21.16.1

200 OK

8.0 kB

URL GET HTTPS

bjxhxjcx.com/static/js/waypoints.min.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (7808)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen3924

Size8.0 kB (8044 bytes)

MD5dfe0eedf8da578f4a4c43b05448c51d9

SHA1812d7071b4e44b1aa5d5ea6c7ce0b79eb9d46520

SHA256a0fded691aed767f851011cd3185b928619298a21a0fbdad4808a9e88b490833

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/waypoints.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=456wpaGhuZS1xIgmhRE7sxJ159bIbY8jNd4mciiyUlweR4y62XaTJuwq9dTMCgJmyU%2F%2FaaVQxz1iZOTdmmCftkUa2%2BrNe4xdgZNHtpgUdpjnB7gFxziTVLkojNxl5%2Fg%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 06 Dec 2017 09:29:52 GMT
vary: Accept-Encoding
etag: W/"5a27b890-1f6c"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18701
cf-ray: 932d42e89e095690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=948&x=16"

GET cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js

104.17.24.14

200 OK

19 kB

URL GET HTTPS

cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js

IP / ASN

104.17.24.14

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (19015)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen85907

Size19 kB (19188 bytes)

MD570d3fda195602fe8b75e0097eed74dde

SHA1c3b977aa4b8dfb69d651e07015031d385ded964b

SHA256a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66

Certificate Info

IssuerGoogle Trust Services

Subjectcdnjs.cloudflare.com

Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC

ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT

HTTP Headers

GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bjxhxjcx.com
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
cf-ray: 932d42e91cac568d-OSL
server: cloudflare
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 238563
expires: Thu, 09 Apr 2026 14:58:40 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qhHd3CiaqWC5TntbLjSTYUyu6W1LwN4eH1Ly8c8SuW00h0ALv6e0I%2BRyw1TqM4lUQqBgNxJt7ajYW40psnamw18%2F0AOnxhwdxlvx3%2FS%2FSuuTc0aBs3GzUzwa9tPx4efSjH8koM95"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET bjxhxjcx.com/static/js/hoverIntent.js

104.21.16.1

200 OK

7.1 kB

URL GET HTTPS

bjxhxjcx.com/static/js/hoverIntent.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with CRLF line terminators

First Seen2023-03-07

Last Seen2025-08-04

Times Seen95

Size7.1 kB (7078 bytes)

MD56fdf4814817af1a513273be884166dfd

SHA1c48a39ec831f050690061910c363d2bcf76759eb

SHA25661168602288a63df2b3f98292b8dbea4e021ec0fd683444e49e4d95766a8a0e5

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/hoverIntent.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iCM86%2BXA3DG9nLH6oHa6GDKPBsdUdawEvE%2B8qWsZMuRFBcWdTxXMwdbfezKKkAsxFGt91zx2glA7zR9n33sEksDRZU%2B5Cbb1hJicwEPLR8kURNHjtVdGa%2FjSyJVW7ws%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 08 Jan 2018 09:14:10 GMT
vary: Accept-Encoding
etag: W/"5a533662-1ba6"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e88e025690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=943&x=16"

GET bjxhxjcx.com/static/js/mail-script.js

104.21.16.1

200 OK

1.2 kB

URL GET HTTPS

bjxhxjcx.com/static/js/mail-script.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text

First Seen2023-03-07

Last Seen2025-08-10

Times Seen319

Size1.2 kB (1230 bytes)

MD5df98b7098690619c0c9e6b42b5a77b48

SHA1d3fe896ed8d259df077220f71fba197ff033d27e

SHA25601f639fd4c4119503e72e2bf2eb9c8a5984f7c83c7683c82dd0350ee9f63b3fd

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/mail-script.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=27nW5XSVgc%2Ba%2BfI87mN3qq48ZITSrJqA8TAxB5jnzr0eDoyJciO5fNnxROPGvAiw9ZmcK46Uyc%2Fg2kHmKQu5Q4xsISTuGt8FxbRZC7JI1sRuhlGldXCCKzHhsVoM4Ys%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 29 Jan 2018 10:55:36 GMT
vary: Accept-Encoding
etag: W/"5a6efda8-4ce"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e89e0b5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=939&x=16"

GET bjxhxjcx.com/static/js/owl-carousel-thumb.min.js

104.21.16.1

200 OK

3.6 kB

URL GET HTTPS

bjxhxjcx.com/static/js/owl-carousel-thumb.min.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (3644)

First Seen2023-03-08

Last Seen2025-06-26

Times Seen23

Size3.6 kB (3645 bytes)

MD5a4ce825d7443f94b264979f96626b467

SHA18d7981e2f0b97152f90bd6465114523267676dc3

SHA2563c440dc3cae731812a91363cd1ff95d7145119a8c7870c88f2c0b0e6b80b7a5c

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/owl-carousel-thumb.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Be7Zzb1noMWnF2t7ix3MD5GemNuqKxY%2B%2BogQJ03ewGBApenINpRljrKU%2FA1b%2Ft1pry%2FVez1kYjEx0JeB5OkaMj3nq3BV7hI%2FKDKr7wuNVc1wl9XoleOJBUukV9oOQis%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 18 Sep 2018 11:13:40 GMT
vary: Accept-Encoding
etag: W/"5ba0dde4-e3d"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e89e075690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=949&x=16"

GET fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET HTTPS

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 40128, version 1.0

First Seen2025-01-08

Last Seen2025-08-10

Times Seen103986

Size40 kB (40128 bytes)

MD59a01b69183a9604ab3a439e388b30501

SHA18ed1d59003d0dbe6360481017b44665153665fbe

SHA25620b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80

ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bjxhxjcx.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 10:03:46 GMT
expires: Fri, 17 Apr 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 190496
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET bjxhxjcx.com/static/js/main.js

104.21.16.1

200 OK

12 kB

URL GET HTTPS

bjxhxjcx.com/static/js/main.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (1695)

First Seen2025-01-09

Last Seen2025-06-26

Times Seen20

Size12 kB (12304 bytes)

MD51bf17910a94d3c25989a1d236bc0a419

SHA1cc3be3dd8447175a7958f359f93eb774f8e090c5

SHA2562d20a7c7a6abc5d3a2defd69caaa64bbebab437df7ccff596794ccf49509b855

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/main.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZPLpoFQXQxJtbf9mf%2B3p3suqH5cekm3kOy76bWV30RN9UE7843R1DclrHBdOxGwQvHHh3Lj2inKIg5m0HhWDdI229SwfI58Xl1oBCojzQ8id4140j6BPvRYDQmw%2BHlQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 03 Oct 2018 01:10:34 GMT
vary: Accept-Encoding
etag: W/"5bb4170a-3010"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18701
cf-ray: 932d42e89e0c5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=943&x=16"

GET bjxhxjcx.com/favicon.ico

104.21.16.1

404 Not Found

148 B

URL GET HTTPS

bjxhxjcx.com/favicon.ico

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeHTML document, ASCII text

First Seen2024-07-21

Last Seen2025-08-10

Times Seen3515

Size148 B (148 bytes)

MD5630e1f9fef1a483fe84154e2d0d046df

SHA1f10e0cf39fb920a438116caaea80a71e0dcdc162

SHA2569cad3cff676946810a81047247f12e4e51faccc01df4134edfd871aee8ba0956

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sat, 19 Apr 2025 14:58:43 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4p3Zg56C7nivlJ6l9%2BiJ0HvzdhUvNd34VR6wq9sOnJ%2BkeWc9FSBA72lGYmb6P%2FcRqxSBf29PZIgvl3K9LHvk2nJwf3WluH26fRpe%2FhUNHFWpvacUx6xzzxPjOSkPpV8%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=14400
cf-cache-status: EXPIRED
content-encoding: br
cf-ray: 932d42f98eed5690-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6277&min_rtt=1068&rtt_var=3833&sent=310&recv=157&lost=0&retrans=0&sent_bytes=228152&recv_bytes=15495&delivery_rate=22016&cwnd=96000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=4654&x=16"

GET bjxhxjcx.com/qkl/11701.html

104.21.16.1

200 OK

24 kB

URL User Request GET HTTPS

bjxhxjcx.com/qkl/11701.html

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeHTML document, Unicode text, UTF-8 text, with very long lines (1929), with CRLF, LF line terminators

First Seen2025-04-19

Last Seen2025-04-19

Times Seen2

Size24 kB (23513 bytes)

MD5d5621b3ab2e95a7651e243e85e1243e4

SHA120288ae4f837cb1f9b10abc37477aef1ddf91805

SHA2562aefbee84775d7fcf31566cc043feab287e3106cc69adcabaa49cf0d97b967fb

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /qkl/11701.html HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 14:58:39 GMT
content-type: text/html
server: cloudflare
last-modified: Mon, 17 Mar 2025 02:01:33 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 932d42dc0d74712f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET bjxhxjcx.com/static/css/magnific-popup.css

104.21.16.1

200 OK

7.0 kB

URL GET HTTPS

bjxhxjcx.com/static/css/magnific-popup.css

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeASCII text

First Seen2023-04-05

Last Seen2025-08-10

Times Seen6492

Size7.0 kB (6951 bytes)

MD530b593b71d7672658f89bfea0ab360c9

SHA1d6963db6faa9294387bb3175813a61bc3f859437

SHA25645d1f5f6cf913746c45dd697b1a8f3b719c02d8b3f678dc7fc2766d54e1aaf6e

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/magnific-popup.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=la5qr7jonaeD3MQJ9qfuobrvg1rjqGp6SOqZ9wgSehJg1sQGJ6dz%2B0FFOzcv3MMfNYYyrFoFFPInKW%2FYWE09R4rIRn51Q6%2Fj2qalrCB8%2FLLp29KlUcsVix63LjlA2N4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 17 Jul 2017 02:32:56 GMT
vary: Accept-Encoding
etag: W/"596c21d8-1b27"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e87df65690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=946&x=16"

GET bjxhxjcx.com/static/js/vendor/jquery-2.2.4.min.js

104.21.16.1

200 OK

86 kB

URL GET HTTPS

bjxhxjcx.com/static/js/vendor/jquery-2.2.4.min.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (32065)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen3541

Size86 kB (85577 bytes)

MD5b354cc9d56a1da6b0c77604d1b153850

SHA1a3d8479f4d4e39b131bc9a53bbf53d1fbaa23732

SHA256fdce77a6d0053f32d231518a84a71bcab5c86045ed52369da00b89d4284aef46

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/vendor/jquery-2.2.4.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q95rgM4tafLoTT5RFnXIHftSbO1B7FSDcqRLAT6PBu%2F8%2F376ZaU2lgWul5GTPWnfbqhecawm8f%2B%2F8LQ2uI2grSffLcKjS2%2F3PKJdJAxRHnRONt1CybYXkGjCeyLUJzI%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 15 May 2017 10:42:08 GMT
vary: Accept-Encoding
etag: W/"59198600-14e49"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18701
cf-ray: 932d42e88dfe5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=941&x=16"

GET bjxhxjcx.com/static/js/vendor/bootstrap.min.js

104.21.16.1

200 OK

51 kB

URL GET HTTPS

bjxhxjcx.com/static/js/vendor/bootstrap.min.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (50759)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen267

Size51 kB (51041 bytes)

MD53a4912f4311c63d3af01bcd3441959ce

SHA1f1c0f5a8fc1868582dcfbb4e955893f129bf7e4b

SHA256f203aa11401db444669a0a833bc0da0324f6c6b59bb8291a0e50af290ae7ff42

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/vendor/bootstrap.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bJZkyiv%2BNMe8Qih%2BaaiVQEOVx9IAeyLKpfHNSQrOB3d12UDdrSJdBigax1JxrAXpuYeyOWtmhVpwlGG69FosAXcsFoTfva5urRWETfzMf9oB%2FZ1hTEMjZ7zF8HSzCbQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 28 Aug 2018 04:27:26 GMT
vary: Accept-Encoding
etag: W/"5b84cf2e-c761"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18701
cf-ray: 932d42e88e015690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=102&recv=147&lost=0&retrans=0&sent_bytes=8162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=937&x=16"

GET bjxhxjcx.com/static/js/jquery.ajaxchimp.min.js

104.21.16.1

200 OK

4.8 kB

URL GET HTTPS

bjxhxjcx.com/static/js/jquery.ajaxchimp.min.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text

First Seen2023-03-07

Last Seen2025-08-08

Times Seen446

Size4.8 kB (4820 bytes)

MD58eace32bdc314e746f5b01015115b3a8

SHA190395aa2ff153cfb6d5c256a3f70bc4d545a3190

SHA2563c7c17459ec57867f6812625f1b95e2f878363ca728b92a5968d2fc8e60d9712

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.ajaxchimp.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Tg4tvbRZV87p%2Fq6nTuL1jOBCqocadcLv057B9evODZDmvYHcBoB4YnbbmT2OvM0L29TIf3Ju0YhGc%2FheQPYZ45GiE7rzc4L8fS8asIbSOGp24LxEzDGv2vAH%2FlPiSRA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 27 Aug 2017 08:45:04 GMT
vary: Accept-Encoding
etag: W/"59a28690-12d4"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18701
cf-ray: 932d42e88e045690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=102&recv=147&lost=0&retrans=0&sent_bytes=8162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=937&x=16"

GET bjxhxjcx.com/static/js/jquery.magnific-popup.min.js

104.21.16.1

200 OK

20 kB

URL GET HTTPS

bjxhxjcx.com/static/js/jquery.magnific-popup.min.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (20087)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen17525

Size20 kB (20216 bytes)

MD5ba6cf724c8bb1cf5b084e79ff230626e

SHA1f455c5f153f872e52265f87a644ff89fe14a6fb6

SHA2563fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.magnific-popup.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u3Q3aOfaoZe7XvhYD3tgfCFcDwfQbh8d9hSO3w2Gmt3mxMEQ4ThAOabaBSXvfkWqfbz8rwn3yy7bPAEq84dRwhmMyZgYVA%2B9Tp4VyYX0U5XMKfCiXxQiZwiC%2FACD6KQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 04 Jun 2017 17:11:48 GMT
vary: Accept-Encoding
etag: W/"59343f54-4ef8"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e88e065690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=951&x=16"

GET bjxhxjcx.com/static/img/banner.jpg

104.21.16.1

200 OK

35 kB

URL GET HTTPS

bjxhxjcx.com/static/img/banner.jpg

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015.5 (Macintosh), datetime=2018:10:02 08:43:58], baseline, precision 8, 1920x450, components 3

First Seen2025-04-19

Last Seen2025-04-21

Times Seen14

Size35 kB (34911 bytes)

MD536bafead5902a850fc7a2ce8a5e708a2

SHA118ea7b3a521ae5f14e363552d4938e32a7c45eaf

SHA256110c743cfe099958c79e0d7a04e15a1e0904ad6d62fbbf6df757810b3fdc3b65

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/banner.jpg HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/static/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:42 GMT
content-type: image/jpeg
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XCOsEVEXDroTkU9RElZ3pTRxoSiZHbeLEzvwEeFQ8d5cg1qgQmDmk9N1VS85UXpuMbqddkS1BEJfExPaF4fqWYw0Xuigv2iW4ALi7EfcTqU17YdboNu6XAYjbow0gaQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 02 Oct 2018 00:44:02 GMT
vary: Accept-Encoding
etag: W/"5bb2bf52-885f"
expires: Sun, 18 May 2025 18:00:40 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 75481
cf-ray: 932d42f4aeac5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6341&min_rtt=1068&rtt_var=5351&sent=270&recv=152&lost=0&retrans=0&sent_bytes=186453&recv_bytes=14429&delivery_rate=2969297&cwnd=96000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=2901&x=16"

GET fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET HTTPS

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 40128, version 1.0

First Seen2025-01-08

Last Seen2025-08-10

Times Seen103986

Size40 kB (40128 bytes)

MD59a01b69183a9604ab3a439e388b30501

SHA18ed1d59003d0dbe6360481017b44665153665fbe

SHA25620b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80

ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bjxhxjcx.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 10:03:46 GMT
expires: Fri, 17 Apr 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 190496
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET oudngmslhifnsf.gdmgcyy.com/tj.js

156.224.2.38

200 OK

805 B

URL GET HTTPS

oudngmslhifnsf.gdmgcyy.com/tj.js

IP / ASN

156.224.2.38

#133199 SonderCloud Limited

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (805), with no line terminators

First Seen2024-06-09

Last Seen2025-04-29

Times Seen280

Size805 B (805 bytes)

MD5b91b404e65a6d55f48e3e8929aaa6631

SHA17feb40ab7aa9c2ff7458e6e89a74af63c5f56ae8

SHA256d73b625c5e38c3fd1e0d5a113374bec35307dd4cde91aca48167ee3dc33567ee

Certificate Info

IssuerLet's Encrypt

Subjectoudngmslhifnsf.gdmgcyy.com

Fingerprint67:FA:6A:47:D7:8F:2B:66:5E:6B:74:C1:A7:E9:5D:E1:BF:00:E9:48

ValiditySat, 15 Mar 2025 08:28:00 GMT - Fri, 13 Jun 2025 08:27:59 GMT

HTTP Headers

GET /tj.js HTTP/1.1
Host: oudngmslhifnsf.gdmgcyy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty/1.21.4.3
Date: Sat, 19 Apr 2025 14:58:41 GMT
Content-Type: application/javascript
Content-Length: 805
Last-Modified: Sun, 19 May 2024 07:52:07 GMT
Connection: keep-alive
ETag: "6649afa7-325"
Accept-Ranges: bytes

GET bjxhxjcx.com/static/css/bootstrap.css

104.21.16.1

200 OK

184 kB

URL GET HTTPS

bjxhxjcx.com/static/css/bootstrap.css

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeASCII text

First Seen2023-04-20

Last Seen2025-06-26

Times Seen52

Size184 kB (183481 bytes)

MD5eabfbeeb69bcd7096f1096c8853022ea

SHA14397b30a538c8e287034b0a67be353c92716df7c

SHA2565beb0011ec164ce463074fe96489be6b6927568ebf8ae48b6337a50fc3149c19

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/bootstrap.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w52PBvo5ty%2FHV4szYpK9RNLDZZOydUStNWLMJmNWn6T%2FcfYGZvv5N%2FzP04xqZFLkO3SzTUgGbswf%2B%2F7GwQTFWKD2l23OOGHxNyjLz%2FqcFPzNb1jw2gVTsPh6F3kFw%2Bo%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 28 Aug 2018 04:31:14 GMT
vary: Accept-Encoding
etag: W/"5b84d012-2ccb9"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18701
cf-ray: 932d42e87df55690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=947&x=16"

GET bjxhxjcx.com/static/css/hexagons.min.css

104.21.16.1

200 OK

10 kB

URL GET HTTPS

bjxhxjcx.com/static/css/hexagons.min.css

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeASCII text, with very long lines (9408)

First Seen2025-04-07

Last Seen2025-06-26

Times Seen22

Size10 kB (9957 bytes)

MD58a43e6596b6bfc57c3e68a4a1c1aec99

SHA14ebc72b77f02ca66c9f9de94ecfd491369cf5dc2

SHA256e49f40633ec0312df00576bab62c2230882c1369418fbd678c14b3130b0ce52e

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/hexagons.min.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z2oUK2V7x9z%2B4aQCQGtcm5nKUyaArCJPaZr7t3srs7HOA9iTY1ew6cVDHDteQwgFlYxI7BP01YhK%2FE8enMFoQb15fuuBQexJzohHG1L71%2BShyIL9W5OVuJUs3dOyYd4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 15 Sep 2015 13:03:38 GMT
vary: Accept-Encoding
etag: W/"55f8172a-26e5"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e87df85690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5316&min_rtt=1068&rtt_var=4588&sent=136&recv=148&lost=0&retrans=0&sent_bytes=44162&recv_bytes=14002&delivery_rate=82416&cwnd=24000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=958&x=16"

GET bjxhxjcx.com/tj.js

104.21.16.1

200 OK

363 B

URL GET HTTPS

bjxhxjcx.com/tj.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, ASCII text, with very long lines (361)

First Seen2024-10-27

Last Seen2025-05-05

Times Seen22

Size363 B (363 bytes)

MD51a57a47fe3aaf28b4864980bdeda1cf5

SHA1402ff5e38f3d6b2fa703df5ba9437b0743659e83

SHA256fd9600ac6e6a439e6b2a46360a04bc60361c63ec6f973f6751b7737a4e66089b

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tj.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gIChgiPlnHnaq9YVs4B1kaRuGzHVgjkm1rI4o%2B%2FClfqjwYdLc48nUYQl9glkFoiZ%2BKoyNwNNhDTNFWVcnR%2BSJSghN6epehDQGOY737MDABojVDhintqToW6HGWHJiKw%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 30 Oct 2024 03:14:48 GMT
etag: W/"6721a4a8-16b"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 18701
content-encoding: br
cf-ray: 932d42e87dfb5690-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5316&min_rtt=1068&rtt_var=4588&sent=136&recv=148&lost=0&retrans=0&sent_bytes=44162&recv_bytes=14002&delivery_rate=82416&cwnd=24000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=953&x=16"

GET bjxhxjcx.com/static/img/logo.png

104.21.16.1

200 OK

1.5 kB

URL GET HTTPS

bjxhxjcx.com/static/img/logo.png

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typePNG image data, 108 x 36, 8-bit/color RGBA, non-interlaced

First Seen2023-11-30

Last Seen2025-08-10

Times Seen177

Size1.5 kB (1536 bytes)

MD5bb0f185735c1e4587da82b7ef4403ace

SHA1fc2f1ecd0019f1515e0012d29349b1811a00df5c

SHA2567ed24510b42ed7ac5bf0090d5b7c84e10a16633c6113e31d3a41349ea2bed9d9

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/logo.png HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: image/png
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GH00%2Bn%2FvJHWLB6Y0Kmxw8EjzECpuAt9a0XkegYNY5iSzE7918bWSY8%2BM9pJeAUbxDdzJL7GG29o0UbCwoHUzSxinboRkHgo%2FBfhLcc5RW%2BLQDkEoK1L%2FEYdHDs3ey%2FU%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 01 Oct 2018 08:38:10 GMT
vary: Accept-Encoding
etag: W/"5bb1dcf2-600"
expires: Mon, 19 May 2025 09:46:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e88dfc5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4170&min_rtt=1068&rtt_var=3063&sent=112&recv=147&lost=0&retrans=0&sent_bytes=20162&recv_bytes=13957&delivery_rate=92449&cwnd=12000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=942&x=16"

GET bjxhxjcx.com/static/js/jquery.nice-select.min.js

104.21.16.1

200 OK

2.9 kB

URL GET HTTPS

bjxhxjcx.com/static/js/jquery.nice-select.min.js

IP / ASN

104.21.16.1

#13335 CLOUDFLARENET

Requested byhttps://bjxhxjcx.com/qkl/11701.html

Resource Info

File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (2822)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen2346

Size2.9 kB (2942 bytes)

MD5d13462ec489f9f0c309a811f85feb3d6

SHA1d9545f8b139eae5b387de1a60a84abe949c7e88f

SHA25666bdef0724e5306421bcc7e0910e41b5645228119ad9096ca4a6099e48d94e6a

Certificate Info

IssuerGoogle Trust Services

Subjectbjxhxjcx.com

FingerprintB8:72:D9:CF:1A:0C:B9:B3:8E:2E:A2:6E:63:DE:04:F1:24:CD:46:F5

ValiditySun, 16 Mar 2025 15:29:31 GMT - Sat, 14 Jun 2025 16:26:55 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.nice-select.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/qkl/11701.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 14:58:40 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J9y2fe1oZkCZq%2FoCEH0O0QX3b0nfcDrrNacxJIms088J27AO%2FJnZ8l2Gd0u6lEpd2pBDF29xnIx%2BW1Oksnde6iDRnkCzwT5jO2UomNnyOM0iFRLrt2aW47sxxOZZlzQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 08 May 2016 13:32:24 GMT
vary: Accept-Encoding
etag: W/"572f3fe8-b7e"
expires: Sat, 19 Apr 2025 21:46:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 18702
cf-ray: 932d42e89e085690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5316&min_rtt=1068&rtt_var=4588&sent=136&recv=148&lost=0&retrans=0&sent_bytes=44162&recv_bytes=14002&delivery_rate=82416&cwnd=24000&unsent_bytes=0&cid=759d3b3d99ecd4c0&ts=953&x=16"