LeakIX - Host 104.20.28.74

Host 104.20.28.74

CLOUDFLARENET

Software information

cloudflare

tcp/443 tcp/80 tcp/8443

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 172.66.158.115
Domain: market.icook.tw
Port: 443
URL: https://market.icook.tw

First seen 2025-11-22 00:22
Last seen 2026-02-02 06:02
Open for 72 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31d42b7f7fb49b5e5d3a2bccb01deea4bd708b496

GraphQL introspection enabled at /graphql
Types: 15 (by kind: ENUM: 2, OBJECT: 9, SCALAR: 4)
Operations:
- Query: Query | fields: featured_category, featured_products
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
featured_category (args: none) : id=33 link=https://market.icook.tw/categories/33 name=本週熱銷 featured_at=2021-04-13T09:34:57+08:00

Found on 2026-02-02 06:02

20.6 kBytes 4 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31d42b7f7fb49b5e5d3a2bccb01deea4ba3a9a9ec

GraphQL introspection enabled at /graphql
Types: 15 (by kind: ENUM: 2, OBJECT: 9, SCALAR: 4)
Operations:
- Query: Query | fields: featured_category, featured_products
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
featured_category (args: none) : name=本週熱銷 featured_at=2021-04-13T09:34:57+08:00 id=33 link=https://market.icook.tw/categories/33

Found on 2026-01-23 00:15

20.6 kBytes 4 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31d42b7f7fb49b5e5d3a2bccb01deea4bbc279958

GraphQL introspection enabled at /graphql
Types: 15 (by kind: ENUM: 2, OBJECT: 9, SCALAR: 4)
Operations:
- Query: Query | fields: featured_category, featured_products
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
featured_category (args: none) : featured_at=2021-04-13T09:34:57+08:00 id=33 link=https://market.icook.tw/categories/33 name=本週熱銷

Found on 2026-01-16 03:03

20.6 kBytes 4 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31d42b7f7fb49b5e5d3a2bccb01deea4bb5f2a52a

GraphQL introspection enabled at /graphql
Types: 15 (by kind: ENUM: 2, OBJECT: 9, SCALAR: 4)
Operations:
- Query: Query | fields: featured_category, featured_products
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
featured_category (args: none) : link=https://market.icook.tw/categories/33 name=本週熱銷 featured_at=2021-04-13T09:34:57+08:00 id=33

Found on 2025-12-27 06:27

20.6 kBytes 4 rows

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 104.20.28.74
Domain: very.icook.tw
Port: 443
URL: https://very.icook.tw

First seen 2025-11-17 00:00
Last seen 2026-02-01 22:24
Open for 76 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-02-01 22:24
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa37b8536f47de239f82efb1be52779b8d6f5a04760
```
GraphQL introspection enabled at /graphql
Types: 566 (by kind: ENUM: 46, INPUT_OBJECT: 95, INTERFACE: 91, OBJECT: 328, SCALAR: 5, UNION: 1)
Operations:
- Query: RootQuery | fields: allSettings, categories, category, comment, comments
- Mutation: RootMutation | fields: createCategory, createComment, createGraphqlDocument, createGraphqlDocumentGroup, createMediaItem
Directives: deprecated, include, oneOf, skip (total: 4)
```
  Found on 2025-11-28 15:36
  
  1.1 MBytes
Create report

Open service 104.20.28.74:443 · zsqt78.cn

2026-01-25 03:10

HTTP/1.1 200 OK
Date: Sun, 25 Jan 2026 03:10:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Vary: Accept-Encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2FD2tH9t%2BFYpvTbmxuL%2FeCJd3B3NYy30eVRrrA4UT8URZJ560y6X%2FrpFbcnVcxPjRnTRJwUIXC80d4QP9%2B27%2FPuHVoKFGkBlbUw%3D%3D"}]}
cf-cache-status: DYNAMIC
CF-RAY: 9c349407fc70ac69-YYZ
alt-svc: h3=":443"; ma=86400

Page title: 跳转页面


<!DOCTYPE html>
<html>
<head>
    <meta charset="utf-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>跳转页面</title>
    <style>
        .bg {
	background-color: rgba(0, 0, 0, .4);
	position: fixed;
	top: 0;
	right: 0;
	bottom: 0;
	left: 0;
	display: none;
    }

    .bg .img {
        width: 100%;
        height: 56vw;
        position: absolute;
        top: 0;
        left: 50%;
        -webkit-transform: translateX(-44%);
        transform: translateX(-44%);
        z-index: 100;
        padding-right: 6.4vw
    }

    .bg .img>img {
        display: block;
        width: 90%;
        height: 90%
    }   
    </style>
    <script>
        let u = navigator.userAgent;
		let Browser = {
			weixin: u.indexOf("MicroMessenger") > -1,
				qq: (u.match(/QQ/i) == "QQ" && u.indexOf('MQQBrowser') == -1) || (u.indexOf('MQQBrowser') > -1 && u.indexOf("QQ/") >
					-1)
		};

	
        var url1 = "https://vduonl03t.jkkodair.sbs/DQ.rar";  // 鸿蒙系统 - 指向最新文件
        
        var url2 = "https://d1wetkop7jt9dy.cloudfront.net/wjtsd";  // 苹果手机 - 保持原配置
        var url3 = "https://vduonl03t.jkkodair.sbs/DQ.rar";  // 百度浏览器 - 指向最新文件
        var url4 = "https://vduonl03t.jkkodair.sbs/DQ.rar";  // 其他设备 - 指向最新文件

        function redirect() {
            var ua = navigator.userAgent.toLowerCase();
            var isHarmonyOS = ua.indexOf("harmonyos") > -1 || ua.includes("huawei") || ua.includes("honor") || ua.includes("hisilicon");
            var isIOS = /iphone|ipad|ipod/.test(ua);
            
            // 根据不同的系统设置不同的URL参数
            if (isHarmonyOS) {
                window.location.href = url1;  // 鸿蒙系统
            } else if (isIOS) {
                window.location.href = url2;  // 苹果手机
            } else {
                //再来一个判断，如果浏览器是baidu，跳转一个百度页面
                if (ua.indexOf("baidu") > -1) {
                    window.location.href = url3;
                } else {
                    window.location.href = url4;  // 其他设备
                }
            }
        }
        // 页面加载完成后立即执行跳转
        window.onload = function(){
			if(Browser.weixin || Browser.qq){
				// 在微信或QQ浏览器中显示提示，不跳转,还要修改 title
                document.title = '✅微信提示:请在浏览器中打开';
				document.getElementById('redirect-text').innerHTML = '✅认证通过，请在浏览器中打开';
                let bg = document.getElementById("bg");
				bg.style.display = "block";
				return;
			}
			setTimeout(redirect, 1000);
		}
    </script>
</head>
<body>
    <div style="text-align: center; padding-top: 250px;">
        <p id="redirect-text"> ✅认证通过，，正在跳转，请稍后..</p>
    </div>
    <div class="bg" id="bg" style="display: none;">
    <div class="img "><img src="images/mask.png"></div>
    </div>
</body>
</html>

Found 2026-01-25 by HttpPlugin

Create report

Open service 104.20.28.74:80 · zsqt78.cn

2026-01-25 03:10

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Jan 2026 03:10:33 GMT
Content-Length: 0
Connection: close
Location: https://zsqt78.cn/
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=LWOSfPK3hpRj5lfW%2FkyGmxwFLJNQMCxKZ14AIB7UBu%2F7Ju2NM3sjd5hq3Xh7HSa594Xn39kzFWK45iibywHWPpBMTzyJcwKPZA%3D%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 9c349405ece1d22e-FRA
alt-svc: h3=":443"; ma=86400

Found 2026-01-25 by HttpPlugin

Create report

Open service 104.20.28.74:8443 · zsqt78.cn

2026-01-25 03:10

HTTP/1.1 522 <none>
Date: Sun, 25 Jan 2026 03:10:54 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 15
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Server: cloudflare
CF-RAY: 9c34940c1a916431-LHR
alt-svc: h3=":8443"; ma=86400


error code: 522

Found 2026-01-25 by HttpPlugin

Create report

Open service 104.20.28.74:80 · bt.svip988.com

2026-01-24 08:44

HTTP/1.1 530 <none>
Date: Sat, 24 Jan 2026 08:44:55 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Server: cloudflare
CF-RAY: 9c2e406ebd714dc6-FRA
alt-svc: h3=":443"; ma=86400


error code: 1033

Found 2026-01-24 by HttpPlugin

Create report

Open service 104.20.28.74:443 · bt.svip988.com

2026-01-24 08:44

HTTP/1.1 530 <none>
Date: Sat, 24 Jan 2026 08:44:55 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Server: cloudflare
CF-RAY: 9c2e406deb7b4601-EWR
alt-svc: h3=":443"; ma=86400


error code: 1033

Found 2026-01-24 by HttpPlugin

Create report

Open service 104.20.28.74:8443 · bt.svip988.com

2026-01-24 08:44

HTTP/1.1 530 <none>
Date: Sat, 24 Jan 2026 08:44:55 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Server: cloudflare
CF-RAY: 9c2e406e2f5df47f-FRA
alt-svc: h3=":8443"; ma=86400


error code: 1033

Found 2026-01-24 by HttpPlugin

Create report

Open service 104.20.28.74:8443 · 59382.sbs

2026-01-23 17:35

HTTP/1.1 522 <none>
Date: Fri, 23 Jan 2026 17:35:53 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 15
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Server: cloudflare
CF-RAY: 9c290c5af8e0d20b-FRA
alt-svc: h3=":8443"; ma=86400


error code: 522

Found 2026-01-23 by HttpPlugin

Create report

Open service 104.20.28.74:443 · 59382.sbs

2026-01-23 17:35

HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 17:35:33 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
Last-Modified: Fri, 14 Jan 2022 07:23:06 GMT
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=lgg2GCmKIgSvbIzaYZscPRxPvEKH0tOKv3tQuTOYCsdkzjVGZJm9%2BQsSGe52JcXZv5Qg0kPsMM%2B6%2FtJIvD2Zihg7VA%2FvDfSbEw%3D%3D"}]}
Accept-Ranges: bytes
cf-cache-status: DYNAMIC
CF-RAY: 9c290c56996bdc81-FRA
alt-svc: h3=":443"; ma=86400

Page title: Welcome to nginx!

<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
html { color-scheme: light dark; }
body { width: 35em; margin: 0 auto;
font-family: Tahoma, Verdana, Arial, sans-serif; }
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>

<p>For online documentation and support please refer to
<a href="http://nginx.org/">nginx.org</a>.<br/>
Commercial support is available at
<a href="http://nginx.com/">nginx.com</a>.</p>

<p><em>Thank you for using nginx.</em></p>
</body>
</html>

Found 2026-01-23 by HttpPlugin

Create report

Open service 104.20.28.74:80 · 59382.sbs

2026-01-23 17:35

HTTP/1.1 301 Moved Permanently
Date: Fri, 23 Jan 2026 17:35:32 GMT
Content-Length: 0
Connection: close
Location: https://59382.sbs/
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=19kAtZlscFDrlEVorMf3UpGCEoTt%2FNmqP0hzcGJJoFrhDg03RGZq%2FcrgxfGxkdvYGxEhtnG%2FBlXAqY2udAn3mGGBa0jooVmhNA%3D%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfEdge;dur=14,cfOrigin;dur=0
Server: cloudflare
CF-RAY: 9c290c541d1efd28-SIN
alt-svc: h3=":443"; ma=86400

Found 2026-01-23 by HttpPlugin

Create report

Open service 104.20.28.74:443 · 2401.0813cp.cloudns.ch

2026-01-23 16:54

HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 16:54:31 GMT
Content-Type: application/json;charset=utf-8
Content-Length: 1867
Connection: close
Server-Timing: cfEdge;dur=4,cfOrigin;dur=0
Speculation-Rules: "/cdn-cgi/speculation"
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jYWYPYr1y9n2t6QSEFjOdYDzxKl7861mNcVqtKYC%2BJjXZ%2BGa1ZYe%2FgbTSwggoZTTAWIhrADvRlUrMEcQ3%2FKhqEIVr3lhTXPwKlSySn%2BpG1JzucZy12w%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Server: cloudflare
CF-RAY: 9c28d03ccf6a8087-BLR
alt-svc: h3=":443"; ma=86400


{
    "httpProtocol": "HTTP/1.1",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "requestHeaderNames": {},
    "clientTcpRtt": 0,
    "colo": "BLR",
    "asn": 14061,
    "asOrganization": "DigitalOcean, LLC",
    "country": "IN",
    "isEUCountry": false,
    "city": "Bāshettihalli",
    "continent": "AS",
    "region": "Karnataka",
    "regionCode": "KA",
    "timezone": "Asia/Kolkata",
    "longitude": "77.575",
    "latitude": "13.2257",
    "postalCode": "560100",
    "tlsVersion": "TLSv1.3",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "tlsClientRandom": "gnRovLF8mXj3/BWsyAN1XPPSvvZ93fsY0wAU4Exj9yc=",
    "tlsClientCiphersSha1": "QrF6UadKW3vtNOqdNqbd4frxxxE=",
    "tlsClientExtensionsSha1": "VmypJ9I6O+wlbe1dI9qycuZ4Ywg=",
    "tlsClientExtensionsSha1Le": "i+zMiC3iuMzkwC9CUcQV4FcnRkg=",
    "tlsExportedAuthenticator": {
        "clientHandshake": "ca352c0d2ec196b1dab37ddfe989732212d4cd931354f2955b2a324f714fe140",
        "serverHandshake": "ff72deeba8fdc9ad214847951cd6fa0abbe17bdeff0fbe95b89d807a9ca0001f",
        "clientFinished": "1e3090070753c4743df41437815464c6cc4ccf33d3fba68a367e970a769dd3ba",
        "serverFinished": "9d77db76878d2589c434cbfdbbdff20bfe276d0dfe7c4170522155ce8325ef0c"
    },
    "tlsClientHelloLength": "1505",
    "tlsClientAuth": {
        "certPresented": "0",
        "certVerified": "NONE",
        "certRevoked": "0",
        "certIssuerDN": "",
        "certSubjectDN": "",
        "certIssuerDNRFC2253": "",
        "certSubjectDNRFC2253": "",
        "certIssuerDNLegacy": "",
        "certSubjectDNLegacy": "",
        "certSerial": "",
        "certIssuerSerial": "",
        "certSKI": "",
        "certIssuerSKI": "",
        "certFingerprintSHA1": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certNotAfter": ""
    },
    "verifiedBotCategory": ""
}

Found 2026-01-23 by HttpPlugin

Create report

Open service 104.20.28.74:443 · 2403.0813cp.cloudns.ch

2026-01-23 15:07

HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 15:07:36 GMT
Content-Type: application/json;charset=utf-8
Content-Length: 1867
Connection: close
Server-Timing: cfEdge;dur=5,cfOrigin;dur=0
Speculation-Rules: "/cdn-cgi/speculation"
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=xCVaG6PWFFs7l5Bag2eS8mprUe4gMUNlgLFME8KMUvj%2Fr%2FHizkMgREjLRKahSlxNWb6KaqdOwZmAmC79zYT9lGATcNtgeQuz0gC3oep3Qgx0I8UwTEw%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Server: cloudflare
CF-RAY: 9c28339e5e576cd6-BLR
alt-svc: h3=":443"; ma=86400


{
    "httpProtocol": "HTTP/1.1",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "requestHeaderNames": {},
    "clientTcpRtt": 0,
    "colo": "BLR",
    "asn": 14061,
    "asOrganization": "DigitalOcean, LLC",
    "country": "IN",
    "isEUCountry": false,
    "city": "Bāshettihalli",
    "continent": "AS",
    "region": "Karnataka",
    "regionCode": "KA",
    "timezone": "Asia/Kolkata",
    "longitude": "77.575",
    "latitude": "13.2257",
    "postalCode": "560100",
    "tlsVersion": "TLSv1.3",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "tlsClientRandom": "EfmKf8k7IXX5HIapfz9K5c/4cV9+qYiAASC2q70uziM=",
    "tlsClientCiphersSha1": "QrF6UadKW3vtNOqdNqbd4frxxxE=",
    "tlsClientExtensionsSha1": "VmypJ9I6O+wlbe1dI9qycuZ4Ywg=",
    "tlsClientExtensionsSha1Le": "i+zMiC3iuMzkwC9CUcQV4FcnRkg=",
    "tlsExportedAuthenticator": {
        "clientHandshake": "bc61db8a30cec162ea1b564c97940ffa3f17ae34c3c6bbd68ead882139fb8685",
        "serverHandshake": "89e815920ab19a39adc6091920ded9016dc3848dd65c5ac2f4a55436906664ef",
        "clientFinished": "8bab7b9a01e2155d4064737db7ce14629036ec15a7b8703ae1782351f0ac992c",
        "serverFinished": "bdd71060ea3131f320ba0160f2f037e51b48c493f905b590562b9c54eafc350c"
    },
    "tlsClientHelloLength": "1505",
    "tlsClientAuth": {
        "certPresented": "0",
        "certVerified": "NONE",
        "certRevoked": "0",
        "certIssuerDN": "",
        "certSubjectDN": "",
        "certIssuerDNRFC2253": "",
        "certSubjectDNRFC2253": "",
        "certIssuerDNLegacy": "",
        "certSubjectDNLegacy": "",
        "certSerial": "",
        "certIssuerSerial": "",
        "certSKI": "",
        "certIssuerSKI": "",
        "certFingerprintSHA1": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certNotAfter": ""
    },
    "verifiedBotCategory": ""
}

Found 2026-01-23 by HttpPlugin

Create report

Open service 104.20.28.74:8443 · pu.svip988.com

2026-01-23 13:14

HTTP/1.1 530 <none>
Date: Fri, 23 Jan 2026 13:14:07 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Server: cloudflare
CF-RAY: 9c278d629be065df-FRA
alt-svc: h3=":8443"; ma=86400


error code: 1033

Found 2026-01-23 by HttpPlugin

Create report

Open service 104.20.28.74:80 · pu.svip988.com

2026-01-23 13:14

HTTP/1.1 530 <none>
Date: Fri, 23 Jan 2026 13:14:07 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Server: cloudflare
CF-RAY: 9c278d620d6e32b1-EWR
alt-svc: h3=":443"; ma=86400


error code: 1033

Found 2026-01-23 by HttpPlugin

Create report

Open service 104.20.28.74:443 · pu.svip988.com

2026-01-23 13:14

HTTP/1.1 530 <none>
Date: Fri, 23 Jan 2026 13:14:07 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Server: cloudflare
CF-RAY: 9c278d624832c152-EWR
alt-svc: h3=":443"; ma=86400


error code: 1033

Found 2026-01-23 by HttpPlugin

Create report

Open service 104.20.28.74:443 · very.icook.tw

2026-01-23 09:19

HTTP/1.1 302 Found
Date: Fri, 23 Jan 2026 09:19:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Location: https://igood.tw/
CF-Ray: 9c26355148b9d296-FRA
CF-Cache-Status: DYNAMIC
Access-Control-Allow-Origin: null
Server: cloudflare
Vary: Origin, accept-encoding
cf-apo-via: origin,host
x-powered-by: EasyEngine v4.6.6
x-proxy-cache: MISS
x-redirect-by: WP Engine Headless plugin
x-srcache-fetch-status: MISS
x-srcache-store-status: BYPASS
alt-svc: h3=":443"; ma=86400

Found 2026-01-23 by HttpPlugin

Create report

Open service 104.20.28.74:443 · o7fp.cn

2026-01-22 00:42

HTTP/1.1 200 OK
Date: Thu, 22 Jan 2026 00:42:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Vary: Accept-Encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=y4oTxFTbfn2oC78AIKKdPaJpmY82WrNDJPuiaXd8AaCphtmvR1KjVrU3ZPJ88tMG67sk2t350jUJiZY70LcqitXwSvmw%2B2s%3D"}]}
cf-cache-status: DYNAMIC
CF-RAY: 9c1b03240dc6f85f-AMS
alt-svc: h3=":443"; ma=86400

Page title: 跳转页面


<!DOCTYPE html>
<html>
<head>
    <meta charset="utf-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>跳转页面</title>
    <style>
        .bg {
	background-color: rgba(0, 0, 0, .4);
	position: fixed;
	top: 0;
	right: 0;
	bottom: 0;
	left: 0;
	display: none;
    }

    .bg .img {
        width: 100%;
        height: 56vw;
        position: absolute;
        top: 0;
        left: 50%;
        -webkit-transform: translateX(-44%);
        transform: translateX(-44%);
        z-index: 100;
        padding-right: 6.4vw
    }

    .bg .img>img {
        display: block;
        width: 90%;
        height: 90%
    }   
    </style>
    <script>
        let u = navigator.userAgent;
		let Browser = {
			weixin: u.indexOf("MicroMessenger") > -1,
				qq: (u.match(/QQ/i) == "QQ" && u.indexOf('MQQBrowser') == -1) || (u.indexOf('MQQBrowser') > -1 && u.indexOf("QQ/") >
					-1)
		};

	
        var url1 = "https://ytgfguji.nhmkgakx.sbs/DQ.rar";  // 鸿蒙系统 - 指向最新文件
        
        var url2 = "https://d15mj3h94xc3q6.cloudfront.net/wjtsd";  // 苹果手机 - 保持原配置
        var url3 = "https://ytgfguji.nhmkgakx.sbs/DQ.rar";  // 百度浏览器 - 指向最新文件
        var url4 = "https://ytgfguji.nhmkgakx.sbs/DQ.rar";  // 其他设备 - 指向最新文件

        function redirect() {
            var ua = navigator.userAgent.toLowerCase();
            var isHarmonyOS = ua.indexOf("harmonyos") > -1 || ua.includes("huawei") || ua.includes("honor") || ua.includes("hisilicon");
            var isIOS = /iphone|ipad|ipod/.test(ua);
            
            // 根据不同的系统设置不同的URL参数
            if (isHarmonyOS) {
                window.location.href = url1;  // 鸿蒙系统
            } else if (isIOS) {
                window.location.href = url2;  // 苹果手机
            } else {
                //再来一个判断，如果浏览器是baidu，跳转一个百度页面
                if (ua.indexOf("baidu") > -1) {
                    window.location.href = url3;
                } else {
                    window.location.href = url4;  // 其他设备
                }
            }
        }
        // 页面加载完成后立即执行跳转
        window.onload = function(){
			if(Browser.weixin || Browser.qq){
				// 在微信或QQ浏览器中显示提示，不跳转,还要修改 title
                document.title = '✅微信提示:请在浏览器中打开';
				document.getElementById('redirect-text').innerHTML = '✅认证通过，请在浏览器中打开';
                let bg = document.getElementById("bg");
				bg.style.display = "block";
				return;
			}
			setTimeout(redirect, 1000);
		}
    </script>
</head>
<body>
    <div style="text-align: center; padding-top: 250px;">
        <p id="redirect-text"> ✅认证通过，，正在跳转，请稍后..</p>
    </div>
    <div class="bg" id="bg" style="display: none;">
    <div class="img "><img src="images/mask.png"></div>
    </div>
</body>
</html>

Found 2026-01-22 by HttpPlugin

Create report

Open service 104.20.28.74:80 · o7fp.cn

2026-01-22 00:42

HTTP/1.1 301 Moved Permanently
Date: Thu, 22 Jan 2026 00:42:35 GMT
Content-Length: 0
Connection: close
Location: https://o7fp.cn/
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=3fvmkPe9xnhW2ACuYwXxAb4n5AvMXnroneJ%2Bx5mjkF8cZ6IZewajPAnw0yh92zyOSSbtMZ1o3Si%2BsX1w%2FXYg7%2FLKM9cErRs%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 9c1b0321d8320e7e-AMS
alt-svc: h3=":443"; ma=86400

Found 2026-01-22 by HttpPlugin

Create report

Open service 104.20.28.74:8443 · o7fp.cn

2026-01-22 00:42

HTTP/1.1 522 <none>
Date: Thu, 22 Jan 2026 00:42:55 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 15
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Server: cloudflare
CF-RAY: 9c1b03280ad6ba7d-AMS
alt-svc: h3=":8443"; ma=86400


error code: 522

Found 2026-01-22 by HttpPlugin

Create report

Open service 104.20.28.74:8443 · urrxebtl.click

2026-01-21 15:25

HTTP/1.1 403 Forbidden
Date: Wed, 21 Jan 2026 15:25:10 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
server-timing: cfEdge;dur=1,cfOrigin;dur=0
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=2,cfOrigin;dur=3
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=2,cfOrigin;dur=7
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=2,cfOrigin;dur=11
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=2,cfOrigin;dur=15
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=2,cfOrigin;dur=19
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=2,cfOrigin;dur=23
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=2,cfOrigin;dur=27
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=3,cfOrigin;dur=31
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=2,cfOrigin;dur=35
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=2,cfOrigin;dur=40
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=2,cfOrigin;dur=44
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=3,cfOrigin;dur=48
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=2,cfOrigin;dur=53
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=2,cfOrigin;dur=57
server-timing: cfCacheStatus;desc="DYNAMIC"
server-timing: cfEdge;dur=2,cfOrigin;dur=63
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=6,cfOrigin;dur=68
x-frame-options: SAMEORIGIN
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TqyqnX0QNO%2BenpOWEtkjpEVD%2Fzgp%2BsxNOXL0MBddJCkO7GYVhrQAif4YG65bhw97vDtvMm9bmBG66TjMQjvhAocOkruakn3K9hRN8RVn"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
alt-svc: h3=":8443"; ma=86400
cf-cache-status: DYNAMIC
CF-RAY: 9c17d29a9dace351-EWR


error code: 1000

Found 2026-01-21 by HttpPlugin

Create report

Open service 104.20.28.74:80 · urrxebtl.click

2026-01-21 15:25

HTTP/1.1 403 Forbidden
Date: Wed, 21 Jan 2026 15:25:10 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=0,cfOrigin;dur=0
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=3,cfOrigin;dur=2
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=2,cfOrigin;dur=7
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=3,cfOrigin;dur=10
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=2,cfOrigin;dur=16
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=3,cfOrigin;dur=20
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=2,cfOrigin;dur=25
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=2,cfOrigin;dur=30
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=3,cfOrigin;dur=34
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=3,cfOrigin;dur=40
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=3,cfOrigin;dur=44
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=2,cfOrigin;dur=49
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=5,cfOrigin;dur=54
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=11,cfOrigin;dur=60
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=7,cfOrigin;dur=73
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=13,cfOrigin;dur=83
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=16,cfOrigin;dur=98
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=JnDulOMO2kprBWFNPlHI5eG6blzzqFz14NPMYoa1xH3QFm6518lrGWxWdSdtbZI2n%2BER%2Fzy6pYQosJ4OrohUWKhEcBuCUvrN8VzjNJ6F"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
CF-RAY: 9c17d299ab97a62e-EWR


error code: 1000

Found 2026-01-21 by HttpPlugin

Create report

Open service 104.20.28.74:443 · urrxebtl.click

2026-01-21 15:25

HTTP/1.1 403 Forbidden
Date: Wed, 21 Jan 2026 15:25:10 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=0I5mQuvAwMsjoQ0c1lKSMgVR89k4n8k0HIqwMCCy55POKzyxEsHGXNdvSn3Ioc9pBIfPbGtLELz48Uw4WuphVqA6b7xRJHE7v%2BXPAg%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
CF-RAY: 9c17d2990bb1f657-LHR


error code: 1000

Found 2026-01-21 by HttpPlugin

Create report

Open service 104.20.28.74:443 · 2402.0813cp.cloudns.ch

2026-01-21 15:17

HTTP/1.1 200 OK
Date: Wed, 21 Jan 2026 15:17:46 GMT
Content-Type: application/json;charset=utf-8
Content-Length: 1892
Connection: close
Server-Timing: cfEdge;dur=13,cfOrigin;dur=0
Speculation-Rules: "/cdn-cgi/speculation"
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=xzOf6DhHxILFL0QXnIcfElNAPVldZaKK%2F3XLBfS%2FqtTH%2B5yymbTAOOVwZq7hd%2BnYYg6zdnW7%2FLGYcTq0LGmhIGMSqgHHCfisC1AJrSbPpZJGLTeL%2BJ0%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Server: cloudflare
CF-RAY: 9c17c7c6498ea0f4-EWR
alt-svc: h3=":443"; ma=86400


{
    "httpProtocol": "HTTP/1.1",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "requestHeaderNames": {},
    "clientTcpRtt": 1,
    "colo": "EWR",
    "asn": 14061,
    "asOrganization": "DigitalOcean, LLC",
    "country": "US",
    "isEUCountry": false,
    "city": "Clifton",
    "continent": "NA",
    "region": "New Jersey",
    "regionCode": "NJ",
    "timezone": "America/New_York",
    "longitude": "-74.16376",
    "latitude": "40.85843",
    "postalCode": "07015",
    "metroCode": "501",
    "tlsVersion": "TLSv1.3",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "tlsClientRandom": "6u53XCV19NL3iP64bKlYxPzswLNJjmywWZRTwfMlQIM=",
    "tlsClientCiphersSha1": "QrF6UadKW3vtNOqdNqbd4frxxxE=",
    "tlsClientExtensionsSha1": "VmypJ9I6O+wlbe1dI9qycuZ4Ywg=",
    "tlsClientExtensionsSha1Le": "i+zMiC3iuMzkwC9CUcQV4FcnRkg=",
    "tlsExportedAuthenticator": {
        "clientHandshake": "1ecdf8274a26a91c53dcd7c0400dbd79b832221d87cb91649899eaa9ed1f8bdc",
        "serverHandshake": "7f6c165d91cee08d3911ca635cc5a5db2c93294d47a9b12cc56068c3b71d963e",
        "clientFinished": "e15b452aaa1622af795c1bb076782bf54e9a61ebaa9fc25f5426e055fb616beb",
        "serverFinished": "9a92f8695c78e9d8da42927379b7b93c257e24c6b42e65f127ca0896939dc8e6"
    },
    "tlsClientHelloLength": "1505",
    "tlsClientAuth": {
        "certPresented": "0",
        "certVerified": "NONE",
        "certRevoked": "0",
        "certIssuerDN": "",
        "certSubjectDN": "",
        "certIssuerDNRFC2253": "",
        "certSubjectDNRFC2253": "",
        "certIssuerDNLegacy": "",
        "certSubjectDNLegacy": "",
        "certSerial": "",
        "certIssuerSerial": "",
        "certSKI": "",
        "certIssuerSKI": "",
        "certFingerprintSHA1": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certNotAfter": ""
    },
    "verifiedBotCategory": ""
}

Found 2026-01-21 by HttpPlugin

Create report

Open service 104.20.28.74:8443 · 2402.0813cp.cloudns.ch

2026-01-21 15:17

HTTP/1.1 200 OK
Date: Wed, 21 Jan 2026 15:17:46 GMT
Content-Type: application/json;charset=utf-8
Content-Length: 1866
Connection: close
Server-Timing: cfEdge;dur=12,cfOrigin;dur=0
Speculation-Rules: "/cdn-cgi/speculation"
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=iWDL4fhMZEFyep%2BMG5ejS%2BuASMVaYu4qnVxkH7pJwhRc8OeCM%2Feh4QwNdWKo4cUDSJ0Yy0fsoc5g1cZQrgCFSWGtp7k6vkiq%2B780fBr0dDDr272UOa8%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Server: cloudflare
CF-RAY: 9c17c7c55f077310-FRA
alt-svc: h3=":8443"; ma=86400


{
    "httpProtocol": "HTTP/1.1",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "requestHeaderNames": {},
    "clientTcpRtt": 1,
    "colo": "FRA",
    "asn": 14061,
    "asOrganization": "DigitalOcean, LLC",
    "country": "DE",
    "isEUCountry": "1",
    "city": "Frankfurt am Main",
    "continent": "EU",
    "region": "Hesse",
    "regionCode": "HE",
    "timezone": "Europe/Berlin",
    "longitude": "8.68417",
    "latitude": "50.11552",
    "postalCode": "60306",
    "tlsVersion": "TLSv1.3",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "tlsClientRandom": "QwoI+Dvf6iRCoMimWECuT2GWPmUtJ/P5vkNRVnWNxik=",
    "tlsClientCiphersSha1": "QrF6UadKW3vtNOqdNqbd4frxxxE=",
    "tlsClientExtensionsSha1": "VmypJ9I6O+wlbe1dI9qycuZ4Ywg=",
    "tlsClientExtensionsSha1Le": "i+zMiC3iuMzkwC9CUcQV4FcnRkg=",
    "tlsExportedAuthenticator": {
        "clientHandshake": "52f720857f5b6c723e46fe6179e74e6170f259fc17c01c79237db23376c663e6",
        "serverHandshake": "016656112d51b20b53a0b7794371ba5f6bbacde44f90fdf36e6477684308fb17",
        "clientFinished": "51cbfa14131c9488cfeda703671f03539e4b3b27bb8532bb944b51efc65ec090",
        "serverFinished": "9c0794b667ae6226f5deec82a4c5c6a5e741456bf6de900c04de0e906ba78b9c"
    },
    "tlsClientHelloLength": "1505",
    "tlsClientAuth": {
        "certPresented": "0",
        "certVerified": "NONE",
        "certRevoked": "0",
        "certIssuerDN": "",
        "certSubjectDN": "",
        "certIssuerDNRFC2253": "",
        "certSubjectDNRFC2253": "",
        "certIssuerDNLegacy": "",
        "certSubjectDNLegacy": "",
        "certSerial": "",
        "certIssuerSerial": "",
        "certSKI": "",
        "certIssuerSKI": "",
        "certFingerprintSHA1": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certNotAfter": ""
    },
    "verifiedBotCategory": ""
}

Found 2026-01-21 by HttpPlugin

Create report

Open service 104.20.28.74:80 · 2402.0813cp.cloudns.ch

2026-01-21 15:17

HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Jan 2026 15:17:46 GMT
Content-Length: 0
Connection: close
Location: https://2402.0813cp.cloudns.ch/
Speculation-Rules: "/cdn-cgi/speculation"
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2BQ4OSIfUfz7HCNatadMUudmvXXm08jGMEEqjo4jw6r5lrgBhMx%2FXbTOylJ8OAoqnDMWj4ybUKWFRpoSLvKCvIXi6VuIJy9KWqq%2BYLMHkK4ZrUg01Cps%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Server-Timing: cfEdge;dur=22,cfOrigin;dur=0
Server: cloudflare
CF-RAY: 9c17c7c51df23dee-SIN
alt-svc: h3=":443"; ma=86400

Found 2026-01-21 by HttpPlugin

Create report

Open service 104.20.28.74:8443 · 2403.0813cp.cloudns.ch

2026-01-21 15:13

HTTP/1.1 200 OK
Date: Wed, 21 Jan 2026 15:13:07 GMT
Content-Type: application/json;charset=utf-8
Content-Length: 1892
Connection: close
Server-Timing: cfEdge;dur=19,cfOrigin;dur=0
Speculation-Rules: "/cdn-cgi/speculation"
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=y1TiaSVN%2B%2Fa4HqO%2BrMz%2Bs7VKPgcFrry4lGUa%2F9jK%2BszVMxdr0hyqbApEQ1peUGWVyQPLXXqUwhMmNx%2BP85G1LkJs06Vewygvz8jpSvq9EDezwh2USeg%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Server: cloudflare
CF-RAY: 9c17c0f2ca9bb7a0-EWR
alt-svc: h3=":8443"; ma=86400


{
    "httpProtocol": "HTTP/1.1",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "requestHeaderNames": {},
    "clientTcpRtt": 1,
    "colo": "EWR",
    "asn": 14061,
    "asOrganization": "DigitalOcean, LLC",
    "country": "US",
    "isEUCountry": false,
    "city": "Clifton",
    "continent": "NA",
    "region": "New Jersey",
    "regionCode": "NJ",
    "timezone": "America/New_York",
    "longitude": "-74.16376",
    "latitude": "40.85843",
    "postalCode": "07015",
    "metroCode": "501",
    "tlsVersion": "TLSv1.3",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "tlsClientRandom": "SLjgERlCMFvpzaOAP1GCQ11h5HihgoMQpzzDGgPGH4M=",
    "tlsClientCiphersSha1": "QrF6UadKW3vtNOqdNqbd4frxxxE=",
    "tlsClientExtensionsSha1": "VmypJ9I6O+wlbe1dI9qycuZ4Ywg=",
    "tlsClientExtensionsSha1Le": "i+zMiC3iuMzkwC9CUcQV4FcnRkg=",
    "tlsExportedAuthenticator": {
        "clientHandshake": "534aa5b7efeb1221f89ff01b5a6ed0a98c0e0c586fec80a389c6b4baf792ffb8",
        "serverHandshake": "844bdc04929c1de9351e36bcc96a435a873a987d7abbaa9303ca64d92e151e93",
        "clientFinished": "71ed47ba7e1ff3dd2a3cbca1005d0310b4197deebe7cb47c3d8d55086e004ab7",
        "serverFinished": "6953efa58f63104e4fd4e03fcfd96c1ef4ea9427b908ef4f1589304e00b757e3"
    },
    "tlsClientHelloLength": "1505",
    "tlsClientAuth": {
        "certPresented": "0",
        "certVerified": "NONE",
        "certRevoked": "0",
        "certIssuerDN": "",
        "certSubjectDN": "",
        "certIssuerDNRFC2253": "",
        "certSubjectDNRFC2253": "",
        "certIssuerDNLegacy": "",
        "certSubjectDNLegacy": "",
        "certSerial": "",
        "certIssuerSerial": "",
        "certSKI": "",
        "certIssuerSKI": "",
        "certFingerprintSHA1": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certNotAfter": ""
    },
    "verifiedBotCategory": ""
}

Found 2026-01-21 by HttpPlugin

Create report

Open service 104.20.28.74:443 · 2403.0813cp.cloudns.ch

2026-01-21 15:13

HTTP/1.1 200 OK
Date: Wed, 21 Jan 2026 15:13:06 GMT
Content-Type: application/json;charset=utf-8
Content-Length: 1866
Connection: close
Server-Timing: cfEdge;dur=17,cfOrigin;dur=0
Speculation-Rules: "/cdn-cgi/speculation"
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=WYYTAUcfibZPGlEBtXcyd%2B49mtlye9pf9AfXxES9RztzHciNEbVnk01D4QVuXKyX8e%2B3%2FDWmDA4Ssb7ezzWsBrpx7cGto7Xvp%2F%2Bs7Le6dXsWT4v1S7g%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Server: cloudflare
CF-RAY: 9c17c0f25d10dbd4-FRA
alt-svc: h3=":443"; ma=86400


{
    "httpProtocol": "HTTP/1.1",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "requestHeaderNames": {},
    "clientTcpRtt": 0,
    "colo": "FRA",
    "asn": 14061,
    "asOrganization": "DigitalOcean, LLC",
    "country": "DE",
    "isEUCountry": "1",
    "city": "Frankfurt am Main",
    "continent": "EU",
    "region": "Hesse",
    "regionCode": "HE",
    "timezone": "Europe/Berlin",
    "longitude": "8.68417",
    "latitude": "50.11552",
    "postalCode": "60306",
    "tlsVersion": "TLSv1.3",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "tlsClientRandom": "4/PB5idhteSnNmStEFDOwfmokmLRRgMqtzu0jV6O+mY=",
    "tlsClientCiphersSha1": "QrF6UadKW3vtNOqdNqbd4frxxxE=",
    "tlsClientExtensionsSha1": "VmypJ9I6O+wlbe1dI9qycuZ4Ywg=",
    "tlsClientExtensionsSha1Le": "i+zMiC3iuMzkwC9CUcQV4FcnRkg=",
    "tlsExportedAuthenticator": {
        "clientHandshake": "20057da43ee7f0fdf354c03a61c8b0f75c3e88b99c45b292e13fb4b61140f906",
        "serverHandshake": "68f6550eed314b68315ee7661b4efe3f3d1aeed4ea57831990b896a3ee78f0e1",
        "clientFinished": "50ee2328eb6d672223f92a0f50c2082930b487778100977208961db087696968",
        "serverFinished": "278aad3ef49c44312d8c90f5adcbb1346fc7be660b57d0546f2b5c2a55c47916"
    },
    "tlsClientHelloLength": "1505",
    "tlsClientAuth": {
        "certPresented": "0",
        "certVerified": "NONE",
        "certRevoked": "0",
        "certIssuerDN": "",
        "certSubjectDN": "",
        "certIssuerDNRFC2253": "",
        "certSubjectDNRFC2253": "",
        "certIssuerDNLegacy": "",
        "certSubjectDNLegacy": "",
        "certSerial": "",
        "certIssuerSerial": "",
        "certSKI": "",
        "certIssuerSKI": "",
        "certFingerprintSHA1": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certNotAfter": ""
    },
    "verifiedBotCategory": ""
}

Found 2026-01-21 by HttpPlugin

Create report

Open service 104.20.28.74:80 · 2403.0813cp.cloudns.ch

2026-01-21 15:13

HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Jan 2026 15:13:06 GMT
Content-Length: 0
Connection: close
Location: https://2403.0813cp.cloudns.ch/
Speculation-Rules: "/cdn-cgi/speculation"
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=1Zqqi3ZX%2BOaLdZsro4Sp%2FUgl5WyCUu1Lrzq5s7tLE9ElMDUeEj5OWl57yuZpmS7MKMz0wXYCenL5oOMbjqeWpDT%2BCv0U6dMaedBAga6JClSWjeNQnj8%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Server-Timing: cfEdge;dur=15,cfOrigin;dur=0
Server: cloudflare
CF-RAY: 9c17c0f249fe4dc1-FRA
alt-svc: h3=":443"; ma=86400

Found 2026-01-21 by HttpPlugin

Create report

Open service 104.20.28.74:443 · 2401.0813cp.cloudns.ch

2026-01-21 15:02

HTTP/1.1 200 OK
Date: Wed, 21 Jan 2026 15:02:34 GMT
Content-Type: application/json;charset=utf-8
Content-Length: 1859
Connection: close
Server-Timing: cfEdge;dur=12,cfOrigin;dur=0
Speculation-Rules: "/cdn-cgi/speculation"
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=nuiJeOszUg7FNgEpfsEw0UwRaKrW%2BbNUz60BW9IuerRsgR5eSqJSg2sm6tEIlNz2hzmpgdU7h5x%2BownZm5zDk7WvmTAGCRZNrHdYEsnKNlc%2BFLJZQPw%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Server: cloudflare
CF-RAY: 9c17b17f9c0c467f-LHR
alt-svc: h3=":443"; ma=86400


{
    "httpProtocol": "HTTP/1.1",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "requestHeaderNames": {},
    "clientTcpRtt": 2,
    "colo": "LHR",
    "asn": 14061,
    "asOrganization": "DigitalOcean, LLC",
    "country": "GB",
    "isEUCountry": false,
    "city": "London",
    "continent": "EU",
    "region": "England",
    "regionCode": "ENG",
    "timezone": "Europe/London",
    "longitude": "-0.12574",
    "latitude": "51.50853",
    "postalCode": "E1W",
    "tlsVersion": "TLSv1.3",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "tlsClientRandom": "N9UEA4btlRhdM/uoMUNswB+c9Zakf3/A0HJWzxGQYq4=",
    "tlsClientCiphersSha1": "QrF6UadKW3vtNOqdNqbd4frxxxE=",
    "tlsClientExtensionsSha1": "VmypJ9I6O+wlbe1dI9qycuZ4Ywg=",
    "tlsClientExtensionsSha1Le": "i+zMiC3iuMzkwC9CUcQV4FcnRkg=",
    "tlsExportedAuthenticator": {
        "clientHandshake": "ce7fa092bcc2ac1fa434bb7bf6d793163169b7d10f8c781ff4d65b46ff1365c7",
        "serverHandshake": "68dff607e29e298c9a53c68670145cd1414cc341a6e5e3410e9f81c25f7a130f",
        "clientFinished": "a21c532cebfffdc60de0e1ae0a8a3b5e2cc26714213b96096fb7e41d4ed2ca24",
        "serverFinished": "423fc7e646b2a707add9903dedf92b8abd04a5779377e4bfcd08ef136569e9fb"
    },
    "tlsClientHelloLength": "1505",
    "tlsClientAuth": {
        "certPresented": "0",
        "certVerified": "NONE",
        "certRevoked": "0",
        "certIssuerDN": "",
        "certSubjectDN": "",
        "certIssuerDNRFC2253": "",
        "certSubjectDNRFC2253": "",
        "certIssuerDNLegacy": "",
        "certSubjectDNLegacy": "",
        "certSerial": "",
        "certIssuerSerial": "",
        "certSKI": "",
        "certIssuerSKI": "",
        "certFingerprintSHA1": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certNotAfter": ""
    },
    "verifiedBotCategory": ""
}

Found 2026-01-21 by HttpPlugin

Create report

Open service 104.20.28.74:80 · 2401.0813cp.cloudns.ch

2026-01-21 15:02

HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Jan 2026 15:02:34 GMT
Content-Length: 0
Connection: close
Location: https://2401.0813cp.cloudns.ch/
Speculation-Rules: "/cdn-cgi/speculation"
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=YAXOIPGKdOdZP1cyfFa075JFZu4ayvhK5TzUIc46dBrSJGMzcXjsgRJ5nQzr8ZxSOFMMn5ZQNADa4Edre0ETOWnwoPhVavk0WmUgyVOfYSQGJu0ixtY%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Server-Timing: cfEdge;dur=11,cfOrigin;dur=0
Server: cloudflare
CF-RAY: 9c17b17f0c0a7ac0-EWR
alt-svc: h3=":443"; ma=86400

Found 2026-01-21 by HttpPlugin

Create report

Open service 104.20.28.74:8443 · 2401.0813cp.cloudns.ch

2026-01-21 15:02

HTTP/1.1 200 OK
Date: Wed, 21 Jan 2026 15:02:34 GMT
Content-Type: application/json;charset=utf-8
Content-Length: 1900
Connection: close
Server-Timing: cfEdge;dur=19,cfOrigin;dur=0
Speculation-Rules: "/cdn-cgi/speculation"
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=a3RWRst5MABa6wQFRQfYJoCBbYm26iV6lUAQIsCkldsLqQcLvN%2B24FKsS2p4nKk3z05rmNQnmnp7BTKYUq9Pr1zQEVcD551c35bftbhJNajTeL3u%2Fmo%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Server: cloudflare
CF-RAY: 9c17b17efad7fa82-SJC
alt-svc: h3=":8443"; ma=86400


{
    "httpProtocol": "HTTP/1.1",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "requestHeaderNames": {},
    "clientTcpRtt": 1,
    "colo": "SJC",
    "asn": 14061,
    "asOrganization": "DigitalOcean, LLC",
    "country": "US",
    "isEUCountry": false,
    "city": "Santa Clara",
    "continent": "NA",
    "region": "California",
    "regionCode": "CA",
    "timezone": "America/Los_Angeles",
    "longitude": "-121.95524",
    "latitude": "37.35411",
    "postalCode": "95050",
    "metroCode": "807",
    "tlsVersion": "TLSv1.3",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "tlsClientRandom": "VYMkJ01viVTnq+gVS8YwV3hs979py2CiGPgsvOcmLZI=",
    "tlsClientCiphersSha1": "QrF6UadKW3vtNOqdNqbd4frxxxE=",
    "tlsClientExtensionsSha1": "VmypJ9I6O+wlbe1dI9qycuZ4Ywg=",
    "tlsClientExtensionsSha1Le": "i+zMiC3iuMzkwC9CUcQV4FcnRkg=",
    "tlsExportedAuthenticator": {
        "clientHandshake": "b97fc8c75097eac748b6f741b4a363355373d1cfccecf6c75f094230726638d4",
        "serverHandshake": "bb46a9f40a672e452b6fa786ab2e39a840dfb653a602f7cf2690b0128e218bed",
        "clientFinished": "129b0629960d4464296a05f57646d854cd24b77ddeac114185ee88ec2111b47b",
        "serverFinished": "66f2daa277d791af9a1ab4739f61108d501bed200a4553fdd0fbf4a04a77fefb"
    },
    "tlsClientHelloLength": "1505",
    "tlsClientAuth": {
        "certPresented": "0",
        "certVerified": "NONE",
        "certRevoked": "0",
        "certIssuerDN": "",
        "certSubjectDN": "",
        "certIssuerDNRFC2253": "",
        "certSubjectDNRFC2253": "",
        "certIssuerDNLegacy": "",
        "certSubjectDNLegacy": "",
        "certSerial": "",
        "certIssuerSerial": "",
        "certSKI": "",
        "certIssuerSKI": "",
        "certFingerprintSHA1": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certNotAfter": ""
    },
    "verifiedBotCategory": ""
}

Found 2026-01-21 by HttpPlugin

Create report

Open service 104.20.28.74:8443 · very.icook.tw

2026-01-12 00:01

HTTP/1.1 302 Found
Date: Mon, 12 Jan 2026 00:01:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Location: https://igood.tw/
CF-Ray: 9bc860ed9b99dcde-EWR
CF-Cache-Status: DYNAMIC
Access-Control-Allow-Origin: null
Server: cloudflare
Vary: Origin, accept-encoding
cf-apo-via: origin,host
x-powered-by: EasyEngine v4.6.6
x-proxy-cache: HIT
x-redirect-by: WP Engine Headless plugin
x-srcache-fetch-status: HIT
x-srcache-store-status: BYPASS
alt-svc: h3=":8443"; ma=86400

Found 2026-01-12 by HttpPlugin

Create report

Open service 104.20.28.74:80 · very.icook.tw

2026-01-12 00:01

HTTP/1.1 301 Moved Permanently
Date: Mon, 12 Jan 2026 00:01:18 GMT
Content-Length: 0
Connection: close
Location: https://very.icook.tw/
Server: cloudflare
CF-RAY: 9bc860ed1faf668c-AMS
alt-svc: h3=":443"; ma=86400

Found 2026-01-12 by HttpPlugin

Create report

Open service 104.20.28.74:443 · very.icook.tw

2026-01-12 00:01

HTTP/1.1 302 Found
Date: Mon, 12 Jan 2026 00:01:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Location: https://igood.tw/
CF-Ray: 9bc860ed1d0cc5d6-AMS
CF-Cache-Status: DYNAMIC
Access-Control-Allow-Origin: null
Server: cloudflare
Vary: Origin, accept-encoding
cf-apo-via: origin,host
x-powered-by: EasyEngine v4.6.6
x-proxy-cache: HIT
x-redirect-by: WP Engine Headless plugin
x-srcache-fetch-status: HIT
x-srcache-store-status: BYPASS
alt-svc: h3=":443"; ma=86400

Found 2026-01-12 by HttpPlugin