IP 104.21.89.57:443
CertificateIssuerGoogle Trust Services Subjectuknrmmx.cn Fingerprint45:77:07:1A:49:AC:FF:E9:6F:55:19:E2:C1:1A:C1:12:DB:FE:40:13 ValidityTue, 21 Jan 2025 12:29:31 GMT - Mon, 21 Apr 2025 13:26:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: uknrmmx.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 13 Mar 2025 19:30:09 GMT
content-type: text/html
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tkKbaBqU2T4jM77i3tGVEJG9UDgbVqs4hRDmLAuolEGCBo9MixiJE8hoqYKG2R1kmosqw7rhKWOnF8VVjnca%2FVF%2BveJdlpr94%2Fnh4F%2FGTvFcUYkI59zY1HhaIoAM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91fdf1b5ea4c56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5862&min_rtt=459&rtt_var=10817&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3195&recv_bytes=1122&delivery_rate=7412969&cwnd=254&unsent_bytes=0&cid=bcd52ed136178ba6&ts=576&x=0"
X-Firefox-Spdy: h2
|
IP104.21.89.57:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: uknrmmx.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 13 Mar 2025 19:30:10 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
cf-cache-status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U1dSvW6pnB7lYR4vel9Sixe76rHuSic44yDbY7%2FNwxkMMqWEOZQrLi68VWB2ud%2B4AMrTWVd1UVvjMtMm09QLLYrrr9wrS1UAmkc1BqvS8NaDWMSMKxmI%2FWJJRNoI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 91fdf1ba1f0d5699-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=520&min_rtt=520&rtt_var=260&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=395&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
|
IP104.21.89.57:80
File typeHTML document, Unicode text, UTF-8 text, with very long lines (3013), with no line terminators Hash93125721589ff39bdc288ebe777b1542 3b8e19dbf1e970ec2decebb0eb5315850fb63898 4127afb5405f785f8d1bea90683f08468f288a361ebe11a48d49e1e676d0e816
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: uknrmmx.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://uknrmmx.cn/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 13 Mar 2025 19:30:10 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Last-Modified: Thu, 13 Mar 2025 19:30:10 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QRYWWWvZmwj2rCUT%2BNeeWGACtwR5hRz3PLqYWKghiw8ilCly%2Bded7GayLR9oqMIMGm15kQ5NbQR5wb3BhadLeyfwz1iSeIAFdMQLwYU2uIroGVe40O07Hq9FCywh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 91fdf1bea8925699-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=522&min_rtt=471&rtt_var=175&sent=4&recv=6&lost=0&retrans=0&sent_bytes=813&recv_bytes=740&delivery_rate=4794701&cwnd=251&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
|