Report - www.55b5l5s3s2.shop/index/home.html

Report Overview

Visited public
2025-07-08 03:56:38
Tags
Submit Tags
URL
www.55b5l5s3s2.shop/index/home.html
Finishing URL
www.55b5l5s3s2.shop/index/home.html
IP / ASN
23.225.248.101
#40065 CNSERVERS
Title
55b5l5s3s2.shop/index/home.html

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ajgvkj1jsv.shenglinyiyang.cn	unknown	2020-08-26	2025-02-26	2025-07-07	451 B	1.4 kB	18.154.206.90
www.55b5l5s3s2.shop	unknown	2025-04-29	2025-07-07	2025-07-07	3.3 kB	386 kB	172.247.11.214
lf3-cdn-tos.bytecdntp.com	413880	2021-01-11	2022-03-14	2025-07-05	2.9 kB	356 kB	163.181.92.203
lf26-cdn-tos.bytecdntp.com	356167	2021-01-11	2022-03-16	2025-07-07	2.3 kB	153 kB	27.221.84.32
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-07-02	880 B	795 kB	142.250.178.72
vpic.cms.qq.com	239844	1995-05-04	2021-05-10	2025-07-05	974 B	13 kB	119.167.249.58
3d-platform-pro.obs.cn-south-1.myhuaweicloud.com	unknown	2017-10-18	2021-10-20	2025-07-05	2.0 kB	109 kB	139.9.23.139
lf9-cdn-tos.bytecdntp.com	412636	2021-01-11	2021-11-14	2025-07-05	1.4 kB	29 kB	156.225.108.41

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-07-08	medium	55b5l5s3s2.shop	Sinkholed

ThreatFox

No alerts detected

JavaScript (17)

	URL	From	Size	First Seen	Last Seen
	lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/qrcodejs/1.0.0/qrcode.min.js	ScriptElement	20 kB	2023-03-07	2025-07-18
Pretty URL lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/qrcodejs/1.0.0/qrcode.min.js IP 27.221.84.32 ASN #4837 CHINA UNICOM China169 Backbone Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14 Last Seen2025-07-18 04:52 Times Seen17690 Hash 517b55d3688ce9ef1085a3d9632bcb97 2d06c1f823f34c19981c6ae0b0eb0f5861c5e14b c541ef06327885a8415bca8df6071e14189b4855336def4f36db54bde8484f36 Loading...

	3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/4d929120165ac16e9bb5d167c46c73cb.lazyload	ScriptElement	4.6 kB	2023-03-08	2025-07-14
Pretty URL 3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/4d929120165ac16e9bb5d167c46c73cb.lazyload IP 139.9.23.139 ASN #55990 Huawei Cloud Service data center Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:10 Last Seen2025-07-14 01:42 Times Seen150 Hash 4d929120165ac16e9bb5d167c46c73cb ba3275154b1e1f9347b49b779016fcd42ef8e07a 41d7c3cabe9d67ea1f1b53ae72629e9dbfae2c39042d6c1adc7a56a125190c5b Loading...

	lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.js	ScriptElement	146 kB	2023-03-07	2025-07-18
Pretty URL lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.js IP 163.181.92.203 ASN #24429 Zhejiang Taobao Network Co.,Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-07-18 03:19 Times Seen354 Hash ddc337be52f0a6e529de8418e7b1b5fa 0dee10e92826fc5cfe7d2fad2f730d3253076c7a 46b5a8e3460a7ec8fe6043ade762bc40d18735c3db77a68e4bead56b3de7f355 Loading...

	lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/layer/3.5.1/layer.min.js	ScriptElement	22 kB	2023-03-07	2025-07-17
Pretty URL lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/layer/3.5.1/layer.min.js IP 27.221.84.32 ASN #4837 CHINA UNICOM China169 Backbone Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58 Last Seen2025-07-17 01:18 Times Seen268 Hash 5d39fc6c1db94e8d211313805a70c24b 021fdc67c0acd11655fa605cb26ffd1b19ab243a be5b759996d0b5b388dc5922f99d18d5f3feb0ffb3b1a9d5b73b8c0a427ab8d4 Loading...

	3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/e071abda8fe61194711cfc2ab99fe104.min	ScriptElement	87 kB	2023-03-07	2025-07-18
Pretty URL 3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/e071abda8fe61194711cfc2ab99fe104.min IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-18 05:21 Times Seen118566 Hash e071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf Loading...

	lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/jquery/3.6.0/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-07-18
Pretty URL lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/jquery/3.6.0/jquery.min.js IP 27.221.84.32 ASN #4837 CHINA UNICOM China169 Backbone Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-18 05:33 Times Seen246816 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	lf26-cdn-tos.bytecdntp.com/cdn/expire-1-y/jquery.qrcode/1.0/jquery.qrcode.min.js	ScriptElement	14 kB	2023-03-07	2025-07-17
Pretty URL lf26-cdn-tos.bytecdntp.com/cdn/expire-1-y/jquery.qrcode/1.0/jquery.qrcode.min.js IP 27.221.84.32 ASN #4837 CHINA UNICOM China169 Backbone Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15 Last Seen2025-07-17 23:15 Times Seen1646 Hash 05f0b1d7d4b9b0b4975870606d650e3c f424bd339870510d1160d1c5da5d698aedbb452e f4ccf02b69092819ac24575c717a080c3b6c6d6161f1b8d82bf0bb523075032d Loading...

	www.55b5l5s3s2.shop/mxtheme/js/script.js	ScriptElement	16 kB	2025-05-21	2025-07-08
Pretty URL www.55b5l5s3s2.shop/mxtheme/js/script.js IP 172.247.11.214 ASN #40065 CNSERVERS Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-21 04:31 Last Seen2025-07-08 03:56 Times Seen30 Hash 9a7e0ac41112611cdb4ead438858eda5 415aa6575d0cd22d146b50ed57d74a4ce465384a faa60039baef0eec9ff2b12e8144760b6c3df3eb8bc3c7688c87b176e5d653e2 Loading...

	www.55b5l5s3s2.shop/?returnUrl=%2Findex%2Fhome.html	ScriptElement	1.6 kB	2025-07-08	2025-07-08
Pretty URL www.55b5l5s3s2.shop/?returnUrl=%2Findex%2Fhome.html IP 172.247.11.214 ASN #40065 CNSERVERS Introduced by scriptElement Embedded in HTML true Observations First Seen2025-07-08 03:56 Last Seen2025-07-08 03:56 Times Seen1 Hash d9f77fc04fa2589472e9a0fe7092d333 0405478103552ea7996f5bea7942ea0cd14773d6 48b5c5fe35ea341956b9480beaf1b50673b09b0d4791b0d7b54fd2d19e4cbb90 Loading...

	lf9-cdn-tos.bytecdntp.com/cdn/expire-1-M/clipboard.js/2.0.10/clipboard.min.js	ScriptElement	9.0 kB	2023-03-07	2025-07-17
Pretty URL lf9-cdn-tos.bytecdntp.com/cdn/expire-1-M/clipboard.js/2.0.10/clipboard.min.js IP 156.225.108.41 ASN #139057 LEGEND DYNASTY PTE. LTD. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41 Last Seen2025-07-17 11:56 Times Seen1106 Hash ad98572d415d2f2452845a6068a913c0 6674f81dd01c76be986cf0a8172d1073e56d7ef4 baff7541be9c20f7f977f6993ce39cfa937a7bde69db6e7beebb8f68372682a1 Loading...

	3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/3cb480232afd721e0ea2c9ea7bf33ead.sp	ScriptElement	34 kB	2023-11-17	2025-07-08
Pretty URL 3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/3cb480232afd721e0ea2c9ea7bf33ead.sp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-17 12:06 Last Seen2025-07-08 03:56 Times Seen35 Hash 3cb480232afd721e0ea2c9ea7bf33ead b6e3dfe8ccf9183ad7bf181656d67c11e8dcc661 88bdb7886e47047d8be8519c42eae742fead1b6ac8a8bd40fe2aea68a92f4d16 Loading...

	lf9-cdn-tos.bytecdntp.com/cdn/expire-1-M/clipboard.js/2.0.10/clipboard.min.js	ScriptElement	9.0 kB	2023-03-07	2025-07-17
Pretty URL lf9-cdn-tos.bytecdntp.com/cdn/expire-1-M/clipboard.js/2.0.10/clipboard.min.js IP 156.225.108.41 ASN #139057 LEGEND DYNASTY PTE. LTD. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41 Last Seen2025-07-17 11:56 Times Seen1106 Hash ad98572d415d2f2452845a6068a913c0 6674f81dd01c76be986cf0a8172d1073e56d7ef4 baff7541be9c20f7f977f6993ce39cfa937a7bde69db6e7beebb8f68372682a1 Loading...

	www.55b5l5s3s2.shop/index/home.html	ScriptElement	96 B	2025-07-08	2025-07-08
Pretty URL www.55b5l5s3s2.shop/index/home.html IP 172.247.11.214 ASN #40065 CNSERVERS Introduced by scriptElement Embedded in HTML true Observations First Seen2025-07-08 03:56 Last Seen2025-07-08 03:56 Times Seen1 Hash 570d7847f2b72adbe3e7425e31480b9a 97d14e2f216b98379b8475e948e832d8c9bce758 bde3e8ed6bdd3901eaad8ff239e7dc009b7af2a95b024790cdb8508876621ecd Loading...

	lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/jquery-cookie/1.4.1/jquery.cookie.min.js	ScriptElement	1.3 kB	2023-03-07	2025-07-18
Pretty URL lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/jquery-cookie/1.4.1/jquery.cookie.min.js IP 27.221.84.32 ASN #4837 CHINA UNICOM China169 Backbone Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14 Last Seen2025-07-18 04:30 Times Seen8028 Hash 4412bf8023109ee9eb1f1f226d391329 c273960aa874a87dd022b5e597887142f1b8e34f d40efcac911d8964f3728eaa767de281306ff55ba9377435a3364d4d1e1613f6 Loading...

	www.55b5l5s3s2.shop/index/home.html	ScriptElement	208 B	2023-06-11	2025-07-08
Pretty URL www.55b5l5s3s2.shop/index/home.html IP 172.247.11.214 ASN #40065 CNSERVERS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-11 18:48 Last Seen2025-07-08 03:56 Times Seen48 Hash 0ec1ca6d87b125ba0e77a8d8ed792b3f 7043329faeb80fad9a4dcd89fbd9f713f037f5fa 69cf33670b936fa6a6f329d76e9808c8ed6cc9eedf78e98674d072de403b801b Loading...

	www.55b5l5s3s2.shop/index/home.html	ScriptElement	236 B	2025-05-22	2025-07-08
Pretty URL www.55b5l5s3s2.shop/index/home.html IP 172.247.11.214 ASN #40065 CNSERVERS Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-22 05:49 Last Seen2025-07-08 03:56 Times Seen8 Hash 3219dc4909277fae4b299cc9c821ea12 83befbe8859a8616b1442fb1aed3607d375fde8a a105bf7901d2c42b142ba87ddd7e1b8e2b021a428f048d26a2065a7c4bd213f9 Loading...

	www.55b5l5s3s2.shop/index/home.html	ScriptElement	513 B	2023-03-12	2025-07-08
Pretty URL www.55b5l5s3s2.shop/index/home.html IP 172.247.11.214 ASN #40065 CNSERVERS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 17:54 Last Seen2025-07-08 03:56 Times Seen39 Hash b2088a7512d5876baac20237fc368265 0fc1bf41b6460ed52b2df667688be0c08636bef4 e4752e890cb9d98c1d68dce89091353c117f84aa1ac394ecbf5a3991d5777a6e Loading...

HTTP Transactions (29)

URL IP Response Size

GET www.55b5l5s3s2.shop/mxtheme/js/script.js

172.247.11.214

200 OK

16 kB

URL GET
www.55b5l5s3s2.shop/mxtheme/js/script.js
IP
172.247.11.214:443
ASN
#40065 CNSERVERS

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerLet's Encrypt
Subject55b5l5s3s2.shop
Fingerprint42:7F:BC:29:02:EE:C0:6F:96:CC:96:0A:E2:F1:7C:D2:C2:AA:09:E7
ValidityWed, 30 Apr 2025 21:13:13 GMT - Tue, 29 Jul 2025 21:13:12 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (15926), with no line terminators
Size
16 kB (15974 bytes)
Hash
9a7e0ac41112611cdb4ead438858eda5
415aa6575d0cd22d146b50ed57d74a4ce465384a
faa60039baef0eec9ff2b12e8144760b6c3df3eb8bc3c7688c87b176e5d653e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /mxtheme/js/script.js HTTP/1.1
Host: www.55b5l5s3s2.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/index/home.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 6706
content-encoding: gzip
content-type: application/javascript
date: Tue, 08 Jul 2025 02:04:28 GMT
etag: W/"6797fcde-3e66"
last-modified: Tue, 08 Jul 2025 02:04:28 GMT
server: openresty
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2

GET www.55b5l5s3s2.shop/mxtheme/js/script.js

172.247.11.214

200 OK

16 kB

URL GET
www.55b5l5s3s2.shop/mxtheme/js/script.js
IP
172.247.11.214:443
ASN
#40065 CNSERVERS

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerLet's Encrypt
Subject55b5l5s3s2.shop
Fingerprint42:7F:BC:29:02:EE:C0:6F:96:CC:96:0A:E2:F1:7C:D2:C2:AA:09:E7
ValidityWed, 30 Apr 2025 21:13:13 GMT - Tue, 29 Jul 2025 21:13:12 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (15926), with no line terminators
Size
16 kB (15974 bytes)
Hash
9a7e0ac41112611cdb4ead438858eda5
415aa6575d0cd22d146b50ed57d74a4ce465384a
faa60039baef0eec9ff2b12e8144760b6c3df3eb8bc3c7688c87b176e5d653e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /mxtheme/js/script.js HTTP/1.1
Host: www.55b5l5s3s2.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/index/home.html
Cookie: mx_style=cafb48e084ff51871ea2d6c2690cc7bb; hasVisitedIndex=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 6725
content-encoding: gzip
content-type: application/javascript
date: Tue, 08 Jul 2025 02:04:28 GMT
etag: W/"6797fcde-3e66"
last-modified: Tue, 08 Jul 2025 02:04:28 GMT
server: openresty
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2

GET lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.css

163.181.92.203

200 OK

14 kB

URL GET
lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.css
IP
163.181.92.203:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
FingerprintE3:B8:FB:E9:D9:7D:E8:B4:E3:00:0F:7F:AE:21:1F:C8:47:E9:A3:1F
ValidityTue, 25 Mar 2025 00:00:00 GMT - Tue, 24 Mar 2026 23:59:59 GMT

File type
ASCII text, with very long lines (13679)
Size
14 kB (13934 bytes)
Hash
2845ec55ea99279862ac6c90c1a5624d
9e78e41c085b7c0dd36d903765940dcb41bc9d03
bc0b8e8cf4d354da992e3b614bc221c793e74ee11ad6ab9760b3cd965d14c66b

HTTP Headers

GET /cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.css HTTP/1.1
Host: lf3-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: text/css
content-length: 4190
date: Wed, 25 Jun 2025 11:05:42 GMT
expires: Fri, 25 Jul 2025 11:25:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
server-timing: inner; dur=7
x-tt-trace-host: 018b701e74e57f7ace78c827d7e2fdc8f6d40a4e0c820fc73bb58805c9b1a8401ff4ce3475448890619cafe13dc4b877705c05a8633307e1e05cc692e3dd1fd7ec5163a4bcc80b97845b5f0ff2ddcef276
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-tt-trace-id: 00-250625190542559665CE683617A5BFA0-6F402DF921209527-00
x-tt-logid: 20250625190542559665CE683617A5BFA0
via: ens-cache10.l2de3[0,0,304-0,H], ens-cache7.l2de3[1,0], ens-cache15.de5[0,0,200-0,H], ens-cache8.de5[1,0]
last-modified: Mon, 24 Jan 2022 15:17:41 GMT
vary: Accept-Encoding
etag: W/"61eec315-366e"
content-encoding: gzip
age: 1097450
ali-swift-global-savetime: 1750849543
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Fri, 27 Jun 2025 00:02:41 GMT
x-swift-cachetime: 2458982
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
timing-allow-origin: *
eagleid: a3b55c9c17519469935713447e
X-Firefox-Spdy: h2

GET lf26-cdn-tos.bytecdntp.com/cdn/expire-1-y/jquery.qrcode/1.0/jquery.qrcode.min.js

27.221.84.32

200 OK

14 kB

URL GET
lf26-cdn-tos.bytecdntp.com/cdn/expire-1-y/jquery.qrcode/1.0/jquery.qrcode.min.js
IP
27.221.84.32:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
Fingerprint80:B0:74:91:BC:E4:19:5F:0C:EA:16:96:CC:BF:BB:81:73:43:51:C1
ValidityMon, 24 Mar 2025 00:00:00 GMT - Mon, 23 Mar 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (544)
Size
14 kB (13995 bytes)
Hash
05f0b1d7d4b9b0b4975870606d650e3c
f424bd339870510d1160d1c5da5d698aedbb452e
f4ccf02b69092819ac24575c717a080c3b6c6d6161f1b8d82bf0bb523075032d

HTTP Headers

GET /cdn/expire-1-y/jquery.qrcode/1.0/jquery.qrcode.min.js HTTP/1.1
Host: lf26-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Jul 2025 03:56:33 GMT
content-type: application/javascript
content-length: 4751
server: openresty
last-modified: Sat, 22 Jan 2022 19:38:56 GMT
vary: Accept-Encoding
etag: W/"61ec5d50-36ab"
expires: Sun, 25 Aug 2024 10:02:55 GMT
content-encoding: gzip
server-timing: inner; dur=8
x-tt-trace-host: 01a61ffb5e3e5410b3e53bca65b8280a13e8b42cedaa3caabeb1a40039b53ee9dbeecc86ea8910eb255401e910f05819e97505139648a2bdaca2ec41de069e85cfe7257cb11b0b58a477968d0c762ca68d8eff8e4e9667b6225f3f584d676cd498d6edadd56d51a41a92ce2978b4e4dd85
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
x-tt-logid: 20230826180307E62D0BDC1FE2CB19779D
x-ccdn-expires: 31392589
via: CHN-SDqingdao-CUCC7-CACHE1[16],CHN-SDqingdao-CUCC7-CACHE12[0,TCP_HIT,0],CHN-TJ-GLOBAL1-CACHE11[29],CHN-TJ-GLOBAL1-CACHE80[0,TCP_HIT,20],CHN-HEshijiazhuang-GLOBAL1-CACHE8[11],CHN-HEshijiazhuang-GLOBAL1-CACHE80[0,TCP_HIT,6]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 144203
cache-control: max-age=31536000
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2

GET lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/layer/3.5.1/theme/default/layer.css

163.181.92.203

200 OK

14 kB

URL GET
lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/layer/3.5.1/theme/default/layer.css
IP
163.181.92.203:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
FingerprintE3:B8:FB:E9:D9:7D:E8:B4:E3:00:0F:7F:AE:21:1F:C8:47:E9:A3:1F
ValidityTue, 25 Mar 2025 00:00:00 GMT - Tue, 24 Mar 2026 23:59:59 GMT

File type
ASCII text, with very long lines (14271), with no line terminators
Size
14 kB (14271 bytes)
Hash
c234eb06d5f32055092294e78957f17d
f15ee0bcb9694f32f5e1d524f2653aa0dd043402
5cdf3edb27b0c9f8e48918c486e9ae65a9e5beab806b64c4a7bc5bac53c0f540

HTTP Headers

GET /cdn/expire-1-M/layer/3.5.1/theme/default/layer.css HTTP/1.1
Host: lf3-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: text/css
content-length: 2789
date: Wed, 25 Jun 2025 08:42:16 GMT
last-modified: Sun, 24 Apr 2022 19:58:21 GMT
vary: Accept-Encoding
etag: W/"6265abdd-37bf"
expires: Fri, 25 Jul 2025 08:40:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
content-encoding: gzip
server-timing: inner; dur=6
x-tt-trace-host: 01bdbe4ae49b56d8e6081e85e81d63eaa5df852361fca8cd85c9708b36c285a3e999b369d4b0094a6af83f88f808e10324b8ffb90907bdd153355e2a018001656dfd6ac39b722e04cfd9dc3fbf9b23493f
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-tt-trace-id: 00-250625164216948A35E9F662E1B487E8-30FD2553972481E2-00
x-tt-logid: 20250625164216948A35E9F662E1B487E8
via: ens-cache14.l2de3[274,274,200-0,M], ens-cache8.l2de3[277,0], ens-cache5.de5[0,0,200-0,H], ens-cache8.de5[2,0]
age: 1106057
ali-swift-global-savetime: 1750840936
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Wed, 25 Jun 2025 08:42:16 GMT
x-swift-cachetime: 2592000
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
timing-allow-origin: *
eagleid: a3b55c9c17519469935993512e
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-40NKTEQ460

142.250.178.72

200 OK

396 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-40NKTEQ460
IP
142.250.178.72:443
ASN
#15169 GOOGLE

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint06:CD:2A:9C:6E:F9:40:51:AA:E0:81:4A:BB:69:6C:BA:FA:AD:AB:4D
ValidityTue, 17 Jun 2025 20:01:48 GMT - Tue, 09 Sep 2025 20:01:47 GMT

File type
JavaScript source, ASCII text, with very long lines (6004)
Size
396 kB (396421 bytes)
Hash
1e9638c16986534bd710211328bdd3bf
b853d9b5ed8ce3bdcf5b36469c425cb9f1fe9cd7
c5b19990371c6f0dd7c940aed5d19f5aabd199e6474a04ff466f1d48c3757f17

HTTP Headers

GET /gtag/js?id=G-40NKTEQ460 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 08 Jul 2025 03:56:14 GMT
expires: Tue, 08 Jul 2025 03:56:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 132229
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.55b5l5s3s2.shop/?returnUrl=%2Findex%2Fhome.html

172.247.11.214

200 OK

17 kB

URL User Request GET
www.55b5l5s3s2.shop/?returnUrl=%2Findex%2Fhome.html
IP
172.247.11.214:443
ASN
#40065 CNSERVERS

Certificate
IssuerLet's Encrypt
Subject55b5l5s3s2.shop
Fingerprint42:7F:BC:29:02:EE:C0:6F:96:CC:96:0A:E2:F1:7C:D2:C2:AA:09:E7
ValidityWed, 30 Apr 2025 21:13:13 GMT - Tue, 29 Jul 2025 21:13:12 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (699)
Size
17 kB (16824 bytes)
Hash
cee6e10d1a93bdbe12a52bee23164b3e
c07afef751d59f04cbde51ee692594213b3098aa
266c1cd69e1c215aea7d17d746afc08287ab7882cfdce045540aabb804f2e895

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?returnUrl=%2Findex%2Fhome.html HTTP/1.1
Host: www.55b5l5s3s2.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/index/home.html
Cookie: mx_style=cafb48e084ff51871ea2d6c2690cc7bb
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 1336
cache-control: public, max-age=3600
content-encoding: gzip
content-type: text/html;charset=utf-8
date: Tue, 08 Jul 2025 03:34:00 GMT
etag: "1751945640"
last-modified: Tue, 08 Jul 2025 03:34:00 GMT
server: openresty
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-cache: HIT, server, disk
X-Firefox-Spdy: h2

GET www.55b5l5s3s2.shop/index/home.html

172.247.11.214

200 OK

166 kB

URL User Request GET
www.55b5l5s3s2.shop/index/home.html
IP
172.247.11.214:443
ASN
#40065 CNSERVERS

Certificate
IssuerLet's Encrypt
Subject55b5l5s3s2.shop
Fingerprint42:7F:BC:29:02:EE:C0:6F:96:CC:96:0A:E2:F1:7C:D2:C2:AA:09:E7
ValidityWed, 30 Apr 2025 21:13:13 GMT - Tue, 29 Jul 2025 21:13:12 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (3858), with CRLF, LF line terminators
Size
166 kB (165463 bytes)
Hash
61f6c2243d7e4ab9ce2700c4fc34cd40
ce4cc03197ef4bac38fde3f0f8b5c94112322dde
9261f6c318e667dcc3f4d2ee88ea681654927994f29e94c16ab64bca2ae1e70c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index/home.html HTTP/1.1
Host: www.55b5l5s3s2.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/?returnUrl=%2Findex%2Fhome.html
Cookie: mx_style=cafb48e084ff51871ea2d6c2690cc7bb; hasVisitedIndex=true
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 2579
cache-control: public, max-age=7200
content-encoding: gzip
content-type: text/html;charset=utf-8
date: Tue, 08 Jul 2025 03:13:34 GMT
etag: "1751944414"
last-modified: Tue, 08 Jul 2025 03:13:34 GMT
server: openresty
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-cache: HIT, server, disk
X-Firefox-Spdy: h2

GET vpic.cms.qq.com/nj_vpic/3272248629/1738571699548996690/3635677961821188660

119.167.249.58

200 OK

1.1 kB

URL GET
vpic.cms.qq.com/nj_vpic/3272248629/1738571699548996690/3635677961821188660
IP
119.167.249.58:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerDigiCert, Inc.
Subject*.video.qq.com
Fingerprint87:90:2E:27:0B:F9:C4:74:88:E7:4F:30:FA:E1:8B:C5:50:E7:E1:FB
ValidityTue, 01 Jul 2025 00:00:00 GMT - Fri, 31 Jul 2026 23:59:59 GMT

File type
ISO Media, AVIF Image
Size
1.1 kB (1105 bytes)
Hash
63e45fcd1f8c4f77cfcfbaaa520f35c3
03cb89fb1bb11844a357f31b081c6ee73b68bffa
52035d20eda9b8cbf98725a8ad03a9afc0a51dd401bc57c38c23bc18e34280ec

HTTP Headers

GET /nj_vpic/3272248629/1738571699548996690/3635677961821188660 HTTP/1.1
Host: vpic.cms.qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Mon, 03 Feb 2025 16:35:08 GMT
content-type: image/avif
date: Mon, 21 Apr 2025 02:06:50 GMT
server: tencent-ci
size: 1105
timing-allow-origin: *
x-datasrc: 1
x-delay: 18821 us
x-hdrstate: 0
x-info: real data
x-rtflag: 1
x-ci-request-id: VF82ODA1YTgzYV83XzdkNTk3MDlfMWE5NDc=
x-cos-request-id: NjgwNWE4M2FfNTUwZjY5MGJfMTMzMTNfOWYzOTk3
age: 501855
content-length: 1105
accept-ranges: bytes
x-nws-log-uuid: 5916917283380783119
x-cache-lookup: Cache Hit
access-control-allow-origin: *
cache-control: max-age=604800
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-accept: avif
X-Firefox-Spdy: h2

GET www.55b5l5s3s2.shop/index/home.html

172.247.11.214

200 OK

166 kB

URL User Request GET
www.55b5l5s3s2.shop/index/home.html
IP
172.247.11.214:443
ASN
#40065 CNSERVERS

Certificate
IssuerLet's Encrypt
Subject55b5l5s3s2.shop
Fingerprint42:7F:BC:29:02:EE:C0:6F:96:CC:96:0A:E2:F1:7C:D2:C2:AA:09:E7
ValidityWed, 30 Apr 2025 21:13:13 GMT - Tue, 29 Jul 2025 21:13:12 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (3858), with CRLF, LF line terminators
Size
166 kB (165463 bytes)
Hash
61f6c2243d7e4ab9ce2700c4fc34cd40
ce4cc03197ef4bac38fde3f0f8b5c94112322dde
9261f6c318e667dcc3f4d2ee88ea681654927994f29e94c16ab64bca2ae1e70c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index/home.html HTTP/1.1
Host: www.55b5l5s3s2.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 2560
cache-control: public, max-age=7200
content-encoding: gzip
content-type: text/html;charset=utf-8
date: Tue, 08 Jul 2025 03:13:34 GMT
etag: "1751944414"
last-modified: Tue, 08 Jul 2025 03:13:34 GMT
server: openresty
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-cache: HIT, server, disk
X-Firefox-Spdy: h2

GET 3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/cafb48e084ff51871ea2d6c2690cc7bb.css

139.9.23.139

200 OK

15 kB

URL GET
3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/cafb48e084ff51871ea2d6c2690cc7bb.css
IP
139.9.23.139:443
ASN
#55990 Huawei Cloud Service data center

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerGlobalSign nv-sa
Subjectobs.cn-south-1.myhuaweicloud.com
FingerprintCF:1E:53:D2:4A:D1:BE:9C:3A:74:21:EA:5D:34:9D:F0:2B:B3:7A:C7
ValidityWed, 12 Feb 2025 06:36:14 GMT - Mon, 16 Mar 2026 06:36:13 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
15 kB (14711 bytes)
Hash
cafb48e084ff51871ea2d6c2690cc7bb
9f28fa07e832c8c31427e4ef44586b0909c95167
1dbe0b33dd4cafb96f45c154b8aa9edc13e531ea9e583a9e8e120bc3bf52dde4

HTTP Headers

GET /cafb48e084ff51871ea2d6c2690cc7bb.css HTTP/1.1
Host: 3d-platform-pro.obs.cn-south-1.myhuaweicloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: OBS
Date: Tue, 08 Jul 2025 03:56:33 GMT
Content-Type: text/css
Content-Length: 14711
Connection: keep-alive
x-obs-request-id: 00000197E82D9FF69351F8ACE3EA6B8F
Accept-Ranges: bytes
ETag: "adb928f7999ba4e8366e6d5dca795a67-1"
Last-Modified: Mon, 03 Jul 2023 16:07:22 GMT
x-obs-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA

GET lf9-cdn-tos.bytecdntp.com/cdn/expire-1-M/clipboard.js/2.0.10/clipboard.min.js

156.225.108.41

200 OK

9.0 kB

URL GET
lf9-cdn-tos.bytecdntp.com/cdn/expire-1-M/clipboard.js/2.0.10/clipboard.min.js
IP
156.225.108.41:443
ASN
#139057 LEGEND DYNASTY PTE. LTD.

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
FingerprintC5:37:BF:E8:AE:9E:51:E0:3B:97:4E:36:38:E1:D0:25:95:71:00:3B
ValidityTue, 25 Mar 2025 00:00:00 GMT - Wed, 25 Mar 2026 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (8941)
Size
9.0 kB (9034 bytes)
Hash
ad98572d415d2f2452845a6068a913c0
6674f81dd01c76be986cf0a8172d1073e56d7ef4
baff7541be9c20f7f977f6993ce39cfa937a7bde69db6e7beebb8f68372682a1

HTTP Headers

GET /cdn/expire-1-M/clipboard.js/2.0.10/clipboard.min.js HTTP/1.1
Host: lf9-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Jul 2025 03:56:33 GMT
content-type: application/javascript
expires: Thu, 07 Aug 2025 00:45:49 GMT
last-modified: Sun, 24 Apr 2022 10:51:14 GMT
vary: Accept-Encoding
etag: W/"62652ba2-234a"
cache-control: max-age=2592000
content-encoding: gzip
x-tt-trace-tag: id=09;cdn-cache=hit;type=static
x-tt-trace-id: 00-25070808324312E9D997BC1A92C45250-29512FD45AA714D6-00
server: TLB
x-tt-logid: 2025070808324312E9D997BC1A92C45250
x-ser: i37434_c26063, i33637_c26321, i1940237_c22409, i1935937_c22759
x-cache: HIT from i1935937_c22759(cloudsvr)
server-timing: cdn-cache;desc=HIT,edge;dur=1
access-control-allow-origin: *
timing-allow-origin: *
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
X-Firefox-Spdy: h2

GET 3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/4d929120165ac16e9bb5d167c46c73cb.lazyload

139.9.23.139

200 OK

4.6 kB

URL GET
3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/4d929120165ac16e9bb5d167c46c73cb.lazyload
IP
139.9.23.139:443
ASN
#55990 Huawei Cloud Service data center

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerGlobalSign nv-sa
Subjectobs.cn-south-1.myhuaweicloud.com
FingerprintCF:1E:53:D2:4A:D1:BE:9C:3A:74:21:EA:5D:34:9D:F0:2B:B3:7A:C7
ValidityWed, 12 Feb 2025 06:36:14 GMT - Mon, 16 Mar 2026 06:36:13 GMT

File type
JavaScript source, ASCII text, with very long lines (861)
Size
4.6 kB (4572 bytes)
Hash
4d929120165ac16e9bb5d167c46c73cb
ba3275154b1e1f9347b49b779016fcd42ef8e07a
41d7c3cabe9d67ea1f1b53ae72629e9dbfae2c39042d6c1adc7a56a125190c5b

HTTP Headers

GET /4d929120165ac16e9bb5d167c46c73cb.lazyload HTTP/1.1
Host: 3d-platform-pro.obs.cn-south-1.myhuaweicloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: OBS
Date: Tue, 08 Jul 2025 03:56:33 GMT
Content-Type: application/octet-stream
Content-Length: 4572
Connection: keep-alive
x-obs-request-id: 00000197E82DA0009985DEF762409FFE
Accept-Ranges: bytes
ETag: "83b47c70ad1976cb18f2377a626e9493-1"
Last-Modified: Mon, 03 Jul 2023 16:35:22 GMT
x-obs-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA

GET lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.css

163.181.92.203

200 OK

14 kB

URL GET
lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.css
IP
163.181.92.203:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
FingerprintE3:B8:FB:E9:D9:7D:E8:B4:E3:00:0F:7F:AE:21:1F:C8:47:E9:A3:1F
ValidityTue, 25 Mar 2025 00:00:00 GMT - Tue, 24 Mar 2026 23:59:59 GMT

File type
ASCII text, with very long lines (13679)
Size
14 kB (13934 bytes)
Hash
2845ec55ea99279862ac6c90c1a5624d
9e78e41c085b7c0dd36d903765940dcb41bc9d03
bc0b8e8cf4d354da992e3b614bc221c793e74ee11ad6ab9760b3cd965d14c66b

HTTP Headers

GET /cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.css HTTP/1.1
Host: lf3-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: text/css
content-length: 4190
date: Wed, 25 Jun 2025 11:05:42 GMT
expires: Fri, 25 Jul 2025 11:25:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
server-timing: inner; dur=7
x-tt-trace-host: 018b701e74e57f7ace78c827d7e2fdc8f6d40a4e0c820fc73bb58805c9b1a8401ff4ce3475448890619cafe13dc4b877705c05a8633307e1e05cc692e3dd1fd7ec5163a4bcc80b97845b5f0ff2ddcef276
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-tt-trace-id: 00-250625190542559665CE683617A5BFA0-6F402DF921209527-00
x-tt-logid: 20250625190542559665CE683617A5BFA0
via: ens-cache10.l2de3[0,0,304-0,H], ens-cache7.l2de3[1,0], ens-cache15.de5[0,0,200-0,H], ens-cache8.de5[2,0]
last-modified: Mon, 24 Jan 2022 15:17:41 GMT
vary: Accept-Encoding
etag: W/"61eec315-366e"
content-encoding: gzip
age: 1097432
ali-swift-global-savetime: 1750849543
x-cache: HIT TCP_HIT dirn:11:580810852
x-swift-savetime: Fri, 27 Jun 2025 00:02:41 GMT
x-swift-cachetime: 2458982
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
timing-allow-origin: *
eagleid: a3b55c9c17519469758978201e
X-Firefox-Spdy: h2

GET lf9-cdn-tos.bytecdntp.com/cdn/expire-1-M/clipboard.js/2.0.10/clipboard.min.js

156.225.108.41

200 OK

9.0 kB

URL GET
lf9-cdn-tos.bytecdntp.com/cdn/expire-1-M/clipboard.js/2.0.10/clipboard.min.js
IP
156.225.108.41:443
ASN
#139057 LEGEND DYNASTY PTE. LTD.

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
FingerprintC5:37:BF:E8:AE:9E:51:E0:3B:97:4E:36:38:E1:D0:25:95:71:00:3B
ValidityTue, 25 Mar 2025 00:00:00 GMT - Wed, 25 Mar 2026 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (8941)
Size
9.0 kB (9034 bytes)
Hash
ad98572d415d2f2452845a6068a913c0
6674f81dd01c76be986cf0a8172d1073e56d7ef4
baff7541be9c20f7f977f6993ce39cfa937a7bde69db6e7beebb8f68372682a1

HTTP Headers

GET /cdn/expire-1-M/clipboard.js/2.0.10/clipboard.min.js HTTP/1.1
Host: lf9-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Jul 2025 03:56:15 GMT
content-type: application/javascript
expires: Thu, 07 Aug 2025 00:45:49 GMT
last-modified: Sun, 24 Apr 2022 10:51:14 GMT
vary: Accept-Encoding
etag: W/"62652ba2-234a"
cache-control: max-age=2592000
content-encoding: gzip
x-tt-trace-tag: id=09;cdn-cache=hit;type=static
x-tt-trace-id: 00-25070808324312E9D997BC1A92C45250-29512FD45AA714D6-00
server: TLB
x-tt-logid: 2025070808324312E9D997BC1A92C45250
x-ser: i37434_c26063, i33637_c26321, i1940237_c22409, i1935937_c22759
x-cache: HIT from i1935937_c22759(cloudsvr)
server-timing: cdn-cache;desc=HIT,edge;dur=1
access-control-allow-origin: *
timing-allow-origin: *
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
X-Firefox-Spdy: h2

GET ajgvkj1jsv.shenglinyiyang.cn/files/671713e14eb9a/countly.js

18.154.206.90

200 OK

878 B

URL GET
ajgvkj1jsv.shenglinyiyang.cn/files/671713e14eb9a/countly.js
IP
18.154.206.90:443
ASN
#16509 AMAZON-02

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerAmazon
Subjectfile.static01.com
Fingerprint57:20:9E:85:6F:93:BA:BD:13:F6:08:CC:9B:44:53:7D:E8:79:7D:04
ValidityMon, 17 Feb 2025 00:00:00 GMT - Wed, 18 Mar 2026 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
878 B (878 bytes)
Hash
2b4be2934ca03b7de88b5fd819bd0f2e
d7d754cad678f6937dbdb8be99eeb01dfd630344
2d55d3669fe0bfaa9239f56e754e526f94f637333bf3ec4a861fead36c909914

HTTP Headers

GET /files/671713e14eb9a/countly.js HTTP/1.1
Host: ajgvkj1jsv.shenglinyiyang.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
content-length: 878
date: Mon, 02 Jun 2025 03:00:08 GMT
last-modified: Tue, 22 Oct 2024 02:54:26 GMT
etag: "db2317b980affeabfe86236be1eb68b2-1"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9a2c15e5fae551ba78d35ae4b56282e8.cloudfront.net (CloudFront)
x-amz-cf-pop: LAX50-P5
x-amz-cf-id: SCjWG9bV-anD3N-MPlhhUzmYGurzy7IJUxKZ--tdTQyoDC5OUmQDWg==
age: 3113786
vary: Origin
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-40NKTEQ460

142.250.178.72

200 OK

396 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-40NKTEQ460
IP
142.250.178.72:443
ASN
#15169 GOOGLE

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint06:CD:2A:9C:6E:F9:40:51:AA:E0:81:4A:BB:69:6C:BA:FA:AD:AB:4D
ValidityTue, 17 Jun 2025 20:01:48 GMT - Tue, 09 Sep 2025 20:01:47 GMT

File type
JavaScript source, ASCII text, with very long lines (6004)
Size
396 kB (396414 bytes)
Hash
36e5049061b25a4b58e3e52bd4134385
4c80d0becfd94c2edc2212a2e0c9143c32c8d201
59c9f2541e9b7bc400f8e53d7e3273b25f7bf1af76e17576f734701d29a45df0

HTTP Headers

GET /gtag/js?id=G-40NKTEQ460 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 08 Jul 2025 03:56:33 GMT
expires: Tue, 08 Jul 2025 03:56:33 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 131984
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET lf9-cdn-tos.bytecdntp.com/cdn/expire-1-M/clipboard.js/2.0.10/clipboard.min.js

156.225.108.41

200 OK

9.0 kB

URL GET
lf9-cdn-tos.bytecdntp.com/cdn/expire-1-M/clipboard.js/2.0.10/clipboard.min.js
IP
156.225.108.41:443
ASN
#139057 LEGEND DYNASTY PTE. LTD.

Requested by
https://www.55b5l5s3s2.shop/?returnUrl=%2Findex%2Fhome.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
FingerprintC5:37:BF:E8:AE:9E:51:E0:3B:97:4E:36:38:E1:D0:25:95:71:00:3B
ValidityTue, 25 Mar 2025 00:00:00 GMT - Wed, 25 Mar 2026 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (8941)
Size
9.0 kB (9034 bytes)
Hash
ad98572d415d2f2452845a6068a913c0
6674f81dd01c76be986cf0a8172d1073e56d7ef4
baff7541be9c20f7f977f6993ce39cfa937a7bde69db6e7beebb8f68372682a1

HTTP Headers

GET /cdn/expire-1-M/clipboard.js/2.0.10/clipboard.min.js HTTP/1.1
Host: lf9-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Jul 2025 03:56:17 GMT
content-type: application/javascript
expires: Thu, 07 Aug 2025 00:45:49 GMT
last-modified: Sun, 24 Apr 2022 10:51:14 GMT
vary: Accept-Encoding
etag: W/"62652ba2-234a"
cache-control: max-age=2592000
content-encoding: gzip
x-tt-trace-tag: id=09;cdn-cache=hit;type=static
x-tt-trace-id: 00-25070808324312E9D997BC1A92C45250-29512FD45AA714D6-00
server: TLB
x-tt-logid: 2025070808324312E9D997BC1A92C45250
x-ser: i37434_c26063, i33637_c26321, i1940237_c22409, i1935937_c22759
x-cache: HIT from i1935937_c22759(cloudsvr)
server-timing: cdn-cache;desc=HIT,edge;dur=1
access-control-allow-origin: *
timing-allow-origin: *
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
X-Firefox-Spdy: h2

GET lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/jquery-cookie/1.4.1/jquery.cookie.min.js

27.221.84.32

200 OK

1.3 kB

URL GET
lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/jquery-cookie/1.4.1/jquery.cookie.min.js
IP
27.221.84.32:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
Fingerprint80:B0:74:91:BC:E4:19:5F:0C:EA:16:96:CC:BF:BB:81:73:43:51:C1
ValidityMon, 24 Mar 2025 00:00:00 GMT - Mon, 23 Mar 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1266)
Size
1.3 kB (1300 bytes)
Hash
4412bf8023109ee9eb1f1f226d391329
c273960aa874a87dd022b5e597887142f1b8e34f
d40efcac911d8964f3728eaa767de281306ff55ba9377435a3364d4d1e1613f6

HTTP Headers

GET /cdn/expire-1-M/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1
Host: lf26-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Jul 2025 03:56:33 GMT
content-type: application/javascript
content-length: 697
server: openresty
last-modified: Sat, 22 Jan 2022 17:49:55 GMT
vary: Accept-Encoding
etag: W/"61ec43c3-514"
expires: Wed, 04 Jun 2025 00:42:31 GMT
content-encoding: gzip
server-timing: inner; dur=8
x-tt-trace-host: 01b987597410339274a8a8ee1fb8f4823a18f8032f33340b7841e604c9435ea9f18d4a3e2eef539c72789586c25b8813d99d90630f0236889ecb1c0c5ad8f609b47c818c5f646a73891e79ea2e0dbe30d48c626e87d49d12df1ecc0637cb9b7d65
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
x-tt-trace-id: 00-250505082444CB9F16EA45A8929F2A11-264BF12B6037DFCE-00
x-tt-logid: 20250505082444CB9F16EA45A8929F2A11
x-ccdn-expires: 1425110
via: CHN-SDqingdao-CUCC7-CACHE1[9],CHN-SDqingdao-CUCC7-CACHE7[0,TCP_HIT,0],CHN-TJ-GLOBAL1-CACHE111[22],CHN-TJ-GLOBAL1-CACHE7[0,TCP_HIT,20],CHN-HEshijiazhuang-GLOBAL1-CACHE47[10],CHN-HEshijiazhuang-GLOBAL1-CACHE7[0,TCP_HIT,9]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 1171415
cache-control: max-age=2592000
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2

GET vpic.cms.qq.com/nj_vpic/3272248629/1738571619832751129/5716822510667367545

119.167.249.58

200 OK

11 kB

URL GET
vpic.cms.qq.com/nj_vpic/3272248629/1738571619832751129/5716822510667367545
IP
119.167.249.58:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
https://www.55b5l5s3s2.shop/?returnUrl=%2Findex%2Fhome.html
Certificate
IssuerDigiCert, Inc.
Subject*.video.qq.com
Fingerprint87:90:2E:27:0B:F9:C4:74:88:E7:4F:30:FA:E1:8B:C5:50:E7:E1:FB
ValidityTue, 01 Jul 2025 00:00:00 GMT - Fri, 31 Jul 2026 23:59:59 GMT

File type
ISO Media, AVIF Image
Size
11 kB (10657 bytes)
Hash
0e73acf432827bf3912fdbe18ae70e47
4670d0e9322619bf9cf2aec45c9682dd46ea9ee3
d48c0203695b6df58c4728e82477ef6224984840280306ebb5f0a816ba0b53eb

HTTP Headers

GET /nj_vpic/3272248629/1738571619832751129/5716822510667367545 HTTP/1.1
Host: vpic.cms.qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Mon, 03 Feb 2025 16:34:18 GMT
content-type: image/avif
date: Wed, 21 May 2025 04:33:41 GMT
server: tencent-ci
size: 10657
timing-allow-origin: *
x-datasrc: 1
x-delay: 22843 us
x-hdrstate: 0
x-info: real data
x-rtflag: 1
x-ci-request-id: VF82ODJkNTdhNV83X2RiZDU5NzA5XzQxOTZl
x-cos-request-id: NjgyZDU3YTVfMWU2ZGFhMDlfMWI4YjZfMzgwNmE3ZA==
age: 480227
content-length: 10657
accept-ranges: bytes
x-nws-log-uuid: 5196611538817506033
x-cache-lookup: Cache Hit
access-control-allow-origin: *
cache-control: max-age=604800
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
x-accept: avif
X-Firefox-Spdy: h2

GET lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/qrcodejs/1.0.0/qrcode.min.js

27.221.84.32

200 OK

20 kB

URL GET
lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/qrcodejs/1.0.0/qrcode.min.js
IP
27.221.84.32:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
https://www.55b5l5s3s2.shop/?returnUrl=%2Findex%2Fhome.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
Fingerprint80:B0:74:91:BC:E4:19:5F:0C:EA:16:96:CC:BF:BB:81:73:43:51:C1
ValidityMon, 24 Mar 2025 00:00:00 GMT - Mon, 23 Mar 2026 23:59:59 GMT

File type
ASCII text, with very long lines (19927), with no line terminators
Size
20 kB (19927 bytes)
Hash
517b55d3688ce9ef1085a3d9632bcb97
2d06c1f823f34c19981c6ae0b0eb0f5861c5e14b
c541ef06327885a8415bca8df6071e14189b4855336def4f36db54bde8484f36

HTTP Headers

GET /cdn/expire-1-M/qrcodejs/1.0.0/qrcode.min.js HTTP/1.1
Host: lf26-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Jul 2025 03:56:17 GMT
content-type: application/javascript
content-length: 7007
server: openresty
last-modified: Sat, 22 Jan 2022 16:41:22 GMT
vary: Accept-Encoding
etag: W/"61ec33b2-4dd7"
expires: Tue, 27 May 2025 23:57:42 GMT
content-encoding: gzip
server-timing: inner; dur=12
x-tt-trace-host: 0168517f378ffffbcbc13a63cbd269d4423eade34d0aad55c1293ed03deb8a8df3bb0434f5abba1e55739dcfdb760fea9d404dd8ae65c3b10b55f23b30191f9a7da46791caebc77fff6ff10a2399b49548eb26eae8879f5432ce36da337083723a
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
x-tt-trace-id: 00-250428074945AFA97FC4E2BB74194F2F-35911C4D578CC261-00
x-tt-logid: 20250428074945AFA97FC4E2BB74194F2F
x-ccdn-expires: 1382952
via: CHN-SDqingdao-CUCC7-CACHE1[7],CHN-SDqingdao-CUCC7-CACHE5[0,TCP_HIT,0],CHN-TJ-GLOBAL1-CACHE2[14],CHN-TJ-GLOBAL1-CACHE5[0,TCP_HIT,2],CHN-HEshijiazhuang-GLOBAL1-CACHE22[12],CHN-HEshijiazhuang-GLOBAL1-CACHE5[0,TCP_HIT,12]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 1228625
cache-control: max-age=2592000
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2

GET 3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/af48b21a80b327ee76b2d169f4e8857f.webp

139.9.23.139

200 OK

74 kB

URL GET
3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/af48b21a80b327ee76b2d169f4e8857f.webp
IP
139.9.23.139:443
ASN
#55990 Huawei Cloud Service data center

Requested by
https://www.55b5l5s3s2.shop/?returnUrl=%2Findex%2Fhome.html
Certificate
IssuerGlobalSign nv-sa
Subjectobs.cn-south-1.myhuaweicloud.com
FingerprintCF:1E:53:D2:4A:D1:BE:9C:3A:74:21:EA:5D:34:9D:F0:2B:B3:7A:C7
ValidityWed, 12 Feb 2025 06:36:14 GMT - Mon, 16 Mar 2026 06:36:13 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 4500x2818, Scaling: [none]x[none], YUV color, decoders should clamp
Size
74 kB (74274 bytes)
Hash
af48b21a80b327ee76b2d169f4e8857f
eed1b6eb9072ec8f8ce9b750c1b90f256541c584
071ee9aac7dcc18932ecd501670fba727c86c3f8971cdba7bb72c242c2aaa813

HTTP Headers

GET /af48b21a80b327ee76b2d169f4e8857f.webp HTTP/1.1
Host: 3d-platform-pro.obs.cn-south-1.myhuaweicloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: OBS
Date: Tue, 08 Jul 2025 03:56:17 GMT
Content-Type: image/webp
Content-Length: 74274
Connection: keep-alive
x-obs-request-id: 00000197E82D602B9985DF70624C6831
Accept-Ranges: bytes
ETag: "7d556667671c88c17e0c5e6fce896cb2-1"
Last-Modified: Fri, 20 Dec 2024 08:23:22 GMT
x-obs-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA

GET lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.js

163.181.92.203

200 OK

146 kB

URL GET
lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.js
IP
163.181.92.203:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
FingerprintE3:B8:FB:E9:D9:7D:E8:B4:E3:00:0F:7F:AE:21:1F:C8:47:E9:A3:1F
ValidityTue, 25 Mar 2025 00:00:00 GMT - Tue, 24 Mar 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65281)
Size
146 kB (146371 bytes)
Hash
ddc337be52f0a6e529de8418e7b1b5fa
0dee10e92826fc5cfe7d2fad2f730d3253076c7a
46b5a8e3460a7ec8fe6043ade762bc40d18735c3db77a68e4bead56b3de7f355

HTTP Headers

GET /cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.js HTTP/1.1
Host: lf3-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 39049
date: Wed, 25 Jun 2025 20:16:21 GMT
expires: Fri, 25 Jul 2025 20:13:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
server-timing: inner; dur=10
x-tt-trace-host: 0136dba20fb90cb53103d42dd7ec2dd952f27928a81120b91a82be1a30e68afbd7fcb6280ae836c10bf9e5e8a264cead7e184fcd9005b9d4fb94846d8e422fa20e0726626e985a2870317345dc58909c76
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-tt-trace-id: 00-2506260416216A1A35A5CF6F1D528F64-5E3A22D90515815A-00
x-tt-logid: 202506260416216A1A35A5CF6F1D528F64
via: ens-cache15.l2de3[0,-1,304-0,H], ens-cache16.l2de3[3,0], ens-cache11.de5[0,0,200-0,H], ens-cache8.de5[1,0]
last-modified: Mon, 24 Jan 2022 15:17:43 GMT
vary: Accept-Encoding
etag: W/"61eec317-23bc3"
content-encoding: gzip
age: 1064394
ali-swift-global-savetime: 1750882581
x-cache: HIT TCP_HIT dirn:12:356341102
x-swift-savetime: Sat, 28 Jun 2025 15:15:08 GMT
x-swift-cachetime: 2350873
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
timing-allow-origin: *
eagleid: a3b55c9c17519469759038212e
X-Firefox-Spdy: h2

GET www.55b5l5s3s2.shop/favicon.ico

172.247.11.214

200 OK

4.3 kB

URL GET
www.55b5l5s3s2.shop/favicon.ico
IP
172.247.11.214:443
ASN
#40065 CNSERVERS

Requested by
https://www.55b5l5s3s2.shop/?returnUrl=%2Findex%2Fhome.html
Certificate
IssuerLet's Encrypt
Subject55b5l5s3s2.shop
Fingerprint42:7F:BC:29:02:EE:C0:6F:96:CC:96:0A:E2:F1:7C:D2:C2:AA:09:E7
ValidityWed, 30 Apr 2025 21:13:13 GMT - Tue, 29 Jul 2025 21:13:12 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Size
4.3 kB (4286 bytes)
Hash
2e25a7d25f02b401712c3cfbecfd4600
c2fe711e7745b1c2d3101e8ba9b214069c261a82
4d3f81567226484031638cbead696a4b8541c042a77ce92cc35fb0285e0fb99b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.55b5l5s3s2.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/?returnUrl=%2Findex%2Fhome.html
Cookie: mx_style=cafb48e084ff51871ea2d6c2690cc7bb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
age: 18
content-type: image/x-icon
date: Tue, 08 Jul 2025 03:55:59 GMT
etag: "6797fcde-10be"
last-modified: Tue, 08 Jul 2025 03:55:59 GMT
server: openresty
strict-transport-security: max-age=31536000
x-cache: HIT, policy, disk
content-length: 4286
X-Firefox-Spdy: h2

GET lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/layer/3.5.1/layer.min.js

27.221.84.32

200 OK

22 kB

URL GET
lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/layer/3.5.1/layer.min.js
IP
27.221.84.32:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
Fingerprint80:B0:74:91:BC:E4:19:5F:0C:EA:16:96:CC:BF:BB:81:73:43:51:C1
ValidityMon, 24 Mar 2025 00:00:00 GMT - Mon, 23 Mar 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (22256), with no line terminators
Size
22 kB (22256 bytes)
Hash
5d39fc6c1db94e8d211313805a70c24b
021fdc67c0acd11655fa605cb26ffd1b19ab243a
be5b759996d0b5b388dc5922f99d18d5f3feb0ffb3b1a9d5b73b8c0a427ab8d4

HTTP Headers

GET /cdn/expire-1-M/layer/3.5.1/layer.min.js HTTP/1.1
Host: lf26-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Jul 2025 03:56:33 GMT
content-type: application/javascript
content-length: 7689
server: openresty
last-modified: Sun, 24 Apr 2022 19:58:21 GMT
vary: Accept-Encoding
etag: W/"6265abdd-56f0"
expires: Mon, 14 Jul 2025 10:11:07 GMT
content-encoding: gzip
server-timing: inner; dur=11
x-tt-trace-host: 01e23518f1fc7b285d93c2c398ba13c4253e6fc284f627a521f01e21ba995405bae36e96743283642b93595406accb822cb87feb032c76170ff87a514cdafd04fccbe9a35680ce068720640b95b8017705fc79a4b3d3299b2a1c23b4648e6ea2ab
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
x-tt-trace-id: 00-25061418142221A47A0EA3F0C2764E28-5640F1BD7ED0803C-00
x-tt-logid: 2025061418142221A47A0EA3F0C2764E28
x-ccdn-expires: 2552929
via: CHN-SDqingdao-CUCC7-CACHE1[8],CHN-SDqingdao-CUCC7-CACHE5[0,TCP_HIT,0],CHN-TJ-GLOBAL1-CACHE50[12],CHN-TJ-GLOBAL1-CACHE70[0,TCP_HIT,7],CHN-HEshijiazhuang-GLOBAL1-CACHE93[22],CHN-HEshijiazhuang-GLOBAL1-CACHE70[0,TCP_HIT,20]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 47726
cache-control: max-age=2592000
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2

GET 3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/cafb48e084ff51871ea2d6c2690cc7bb.css

139.9.23.139

200 OK

15 kB

URL GET
3d-platform-pro.obs.cn-south-1.myhuaweicloud.com/cafb48e084ff51871ea2d6c2690cc7bb.css
IP
139.9.23.139:443
ASN
#55990 Huawei Cloud Service data center

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerGlobalSign nv-sa
Subjectobs.cn-south-1.myhuaweicloud.com
FingerprintCF:1E:53:D2:4A:D1:BE:9C:3A:74:21:EA:5D:34:9D:F0:2B:B3:7A:C7
ValidityWed, 12 Feb 2025 06:36:14 GMT - Mon, 16 Mar 2026 06:36:13 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
15 kB (14711 bytes)
Hash
cafb48e084ff51871ea2d6c2690cc7bb
9f28fa07e832c8c31427e4ef44586b0909c95167
1dbe0b33dd4cafb96f45c154b8aa9edc13e531ea9e583a9e8e120bc3bf52dde4

HTTP Headers

GET /cafb48e084ff51871ea2d6c2690cc7bb.css HTTP/1.1
Host: 3d-platform-pro.obs.cn-south-1.myhuaweicloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/layer/3.5.1/theme/default/layer.css

163.181.92.203

200 OK

14 kB

URL GET
lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/layer/3.5.1/theme/default/layer.css
IP
163.181.92.203:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
FingerprintE3:B8:FB:E9:D9:7D:E8:B4:E3:00:0F:7F:AE:21:1F:C8:47:E9:A3:1F
ValidityTue, 25 Mar 2025 00:00:00 GMT - Tue, 24 Mar 2026 23:59:59 GMT

File type
ASCII text, with very long lines (14271), with no line terminators
Size
14 kB (14271 bytes)
Hash
c234eb06d5f32055092294e78957f17d
f15ee0bcb9694f32f5e1d524f2653aa0dd043402
5cdf3edb27b0c9f8e48918c486e9ae65a9e5beab806b64c4a7bc5bac53c0f540

HTTP Headers

GET /cdn/expire-1-M/layer/3.5.1/theme/default/layer.css HTTP/1.1
Host: lf3-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: text/css
content-length: 2789
date: Wed, 25 Jun 2025 08:42:16 GMT
last-modified: Sun, 24 Apr 2022 19:58:21 GMT
vary: Accept-Encoding
etag: W/"6265abdd-37bf"
expires: Fri, 25 Jul 2025 08:40:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
content-encoding: gzip
server-timing: inner; dur=6
x-tt-trace-host: 01bdbe4ae49b56d8e6081e85e81d63eaa5df852361fca8cd85c9708b36c285a3e999b369d4b0094a6af83f88f808e10324b8ffb90907bdd153355e2a018001656dfd6ac39b722e04cfd9dc3fbf9b23493f
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-tt-trace-id: 00-250625164216948A35E9F662E1B487E8-30FD2553972481E2-00
x-tt-logid: 20250625164216948A35E9F662E1B487E8
via: ens-cache14.l2de3[274,274,200-0,M], ens-cache8.l2de3[277,0], ens-cache5.de5[0,0,200-0,H], ens-cache8.de5[1,0]
age: 1106039
ali-swift-global-savetime: 1750840936
x-cache: HIT TCP_HIT dirn:11:510470535
x-swift-savetime: Wed, 25 Jun 2025 08:42:16 GMT
x-swift-cachetime: 2592000
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
timing-allow-origin: *
eagleid: a3b55c9c17519469759058220e
X-Firefox-Spdy: h2

GET lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/jquery/3.6.0/jquery.min.js

27.221.84.32

200 OK

90 kB

URL GET
lf26-cdn-tos.bytecdntp.com/cdn/expire-1-M/jquery/3.6.0/jquery.min.js
IP
27.221.84.32:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
https://www.55b5l5s3s2.shop/?returnUrl=%2Findex%2Fhome.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
Fingerprint80:B0:74:91:BC:E4:19:5F:0C:EA:16:96:CC:BF:BB:81:73:43:51:C1
ValidityMon, 24 Mar 2025 00:00:00 GMT - Mon, 23 Mar 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
90 kB (89501 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /cdn/expire-1-M/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: lf26-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Jul 2025 03:56:17 GMT
content-type: application/javascript
content-length: 30947
server: openresty
last-modified: Sun, 24 Apr 2022 19:10:58 GMT
vary: Accept-Encoding
etag: W/"6265a0c2-15d9d"
expires: Fri, 18 Jul 2025 14:05:47 GMT
content-encoding: gzip
server-timing: inner; dur=10
x-tt-trace-host: 011e97b7b57a9b8eae7027b0a8ffec266242920a9c0b0dd61739cb028ec3d074a58a838e2a59fb96659ccc0b8d5c4688c89a163e8074dc9cd0203ccc4f5ab4184ace64dd1da452fff9e34858df8d83ab7ac841569fd2e0b6825aabe34a24f9bf43c00778a25761bba8bd8548a3465ddfa783feee16398d5f76960687f09ba9e353
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
x-tt-trace-id: 00-250618221229F47C9451D51551BD9A3E-210BA87576C13292-00
x-tt-logid: 20250618221229F47C9451D51551BD9A3E
x-ccdn-expires: 2232514
via: CHN-SDqingdao-CUCC7-CACHE1[6],CHN-SDqingdao-CUCC7-CACHE19[0,TCP_HIT,0],CHN-TJ-GLOBAL1-CACHE77[29],CHN-TJ-GLOBAL1-CACHE53[0,TCP_HIT,23],CHN-HEshijiazhuang-GLOBAL1-CACHE118[8],CHN-HEshijiazhuang-GLOBAL1-CACHE53[0,TCP_HIT,6]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
nginx-hit: 1
age: 381794
cache-control: max-age=2592000
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2

GET lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.js

163.181.92.203

200 OK

146 kB

URL GET
lf3-cdn-tos.bytecdntp.com/cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.js
IP
163.181.92.203:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://www.55b5l5s3s2.shop/index/home.html
Certificate
IssuerDigiCert Inc
Subject*.bytecdntp.com
FingerprintE3:B8:FB:E9:D9:7D:E8:B4:E3:00:0F:7F:AE:21:1F:C8:47:E9:A3:1F
ValidityTue, 25 Mar 2025 00:00:00 GMT - Tue, 24 Mar 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65281)
Size
146 kB (146371 bytes)
Hash
ddc337be52f0a6e529de8418e7b1b5fa
0dee10e92826fc5cfe7d2fad2f730d3253076c7a
46b5a8e3460a7ec8fe6043ade762bc40d18735c3db77a68e4bead56b3de7f355

HTTP Headers

GET /cdn/expire-1-M/Swiper/6.8.4/swiper-bundle.min.js HTTP/1.1
Host: lf3-cdn-tos.bytecdntp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.55b5l5s3s2.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 39049
date: Wed, 25 Jun 2025 20:16:21 GMT
expires: Fri, 25 Jul 2025 20:13:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
server-timing: inner; dur=10
x-tt-trace-host: 0136dba20fb90cb53103d42dd7ec2dd952f27928a81120b91a82be1a30e68afbd7fcb6280ae836c10bf9e5e8a264cead7e184fcd9005b9d4fb94846d8e422fa20e0726626e985a2870317345dc58909c76
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-tt-trace-id: 00-2506260416216A1A35A5CF6F1D528F64-5E3A22D90515815A-00
x-tt-logid: 202506260416216A1A35A5CF6F1D528F64
via: ens-cache15.l2de3[0,-1,304-0,H], ens-cache16.l2de3[3,0], ens-cache11.de5[0,0,200-0,H], ens-cache8.de5[2,0]
last-modified: Mon, 24 Jan 2022 15:17:43 GMT
vary: Accept-Encoding
etag: W/"61eec317-23bc3"
content-encoding: gzip
age: 1064412
ali-swift-global-savetime: 1750882581
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Sat, 28 Jun 2025 15:15:08 GMT
x-swift-cachetime: 2350873
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
timing-allow-origin: *
eagleid: a3b55c9c17519469935923501e
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (17)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML