{"report_id":"0a513f30-846d-4afc-927e-7c81f782a956","version":6,"status":"done","tags":[],"date":"2026-02-02T14:11:15Z","url":{"schema":"http","addr":"aliexpress66.cc","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":0,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"final":{"url":{"schema":"https","addr":"aliexpress66.cc/","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"title":"AliExpress","dom":{"size":63679,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (372)","md5":"5a0609cb8ffe33fbe96728d2e8c0c8f1","sha1":"d636aebe2c4285882a75e967e3b9a70a73b1c77c","sha256":"6790a9bc8fc790d6587c7034df9b3a49a08cfb6374b2a69fbc2e2d5906124a62","sha512":"bbeb0790ec96721183eb42ba174befee732460af03cb070039e3c1a3a23d8af64fd48a4e39467130b2c8e68629361a3e64dba625f21d09d72bee23a81057b053","ssdeep":"384:FSifR3pHt0PfsPHSMvPmcqotSqOoOTWak3xSPukipSJ8WiYgPI1UkS4hoDfu3Ta6:AifR3zPyM6qLOPfkCB8uL3vq1W1rn","tlshash":"5a530fb241bc1eb3820165e3b0d13a8ed88f9f2bd6d3896777fb12db92c58d5590d098","dom_hash":"domhashbd158b6db2b00e8ec7a0f265eaa73678","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"aliexpress66.cc","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":0,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-09T14:11:15Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"aliexpress66.cc","ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"domain_registered":"2025-12-16","domain_rank":0,"first_seen":"2026-02-02T12:52:08.58235Z","last_seen":"2026-02-02T12:52:08.58235Z","alert_count":93,"request_count":31,"received_data":1341461,"sent_data":15603,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/jquery.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8d64d0bc142b3f670cc0611b0aebcae","sha1":"abcd2ba13348f178b17141b445bc99f1917d47af","sha256":"47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4","sha512":"a684abbe37e8047c55c394366b012cc9ae5d682d29d340bc48a37be1a549aeced72de6408bedfed776a14611e6f3374015b236fbf49422b2982ef18125ff47dc","ssdeep":"1536:8YRKUfAjtledhTmtaFyQHGvCXsedOgRc9izzr4yff8teLvHHEjam7W5X3yzSiLnM:VUb6GvCu09s2o2skAieW","tlshash":"b393e7d9b2d67123c7b731b850af510bb17698aa784c8c50f068d8e4be74a48907bf7d","size":94840,"data":"","first_seen":"2023-03-07T01:03:23Z","last_seen":"2026-06-08T11:10:47.359771Z","times_seen":22440,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/js/swiper-bundle.min.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"254f4cb7566a60c212786f9dd2d2596b","sha1":"5f3b14b0ecd6172cf897c64fadec73460d6eeec2","sha256":"d3422c182871135666da685419bbed480a08f51fead9546fb95965a6e47450a3","sha512":"db0f39a8633d6a95d6f4481ebec6384b87e7248533e94ea65e52db8032a9841bb087b8cf40d69def42e5e56fa9708ac9eab20c1a98cfd02c58190c0ab329c869","ssdeep":"1536:qIJcfGRELR8Nxb0LzGhd+IWzGolxUFnOk8+ILDX1ftgeQV9qDlUpf/arWcplXvQM:RJDNqLz2vHnOk82V9SAXiTnXpk07jl","tlshash":"9de3f8896220b57646e316db93e4c621b3b54540b80ac8f470b94c9f597ec9813feffa","size":143046,"data":"","first_seen":"2023-09-28T20:09:41Z","last_seen":"2026-06-08T06:03:18.959635Z","times_seen":4423,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/jquery.SuperSlide.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"0b9bc63ab05e21e3830da5bbb4ccee67","sha1":"d162156bdaf14217d76d920e0e57b86d8feb1d97","sha256":"349e46b2c65028736d0bbff7b829c7fc6fbdebc1fb1e8b12365a0ca2e6e9e848","sha512":"bdfa220da1f08e29f05a9984c4999d7e742bea10ad86b7e497a0d112c7992cc52b7f1e9f5430b4286f14bb2336110f85cbdc3164a92121caaf5c91961f7e69c9","ssdeep":"192:j+K3bxH+nqfhD9VUVjIItpfg5uXG3+1tSCl+7flvSXwaHxImISLTNSfYXH7Le2HE:jNcnqflKFgEWulE8REcS3j/CkR1Xh3","tlshash":"9532c65fb66635ca4597b3f1107f940d222b5965fc8a8ca0b17082c0adb9a1c243bfed","size":11264,"data":"","first_seen":"2023-04-05T11:06:31Z","last_seen":"2026-06-08T05:17:00.628553Z","times_seen":13820,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"835f572c58dbdc0b8670148315a150ab","sha1":"9f317ce205b4a7fb27592aee8f5f07b185638dbc","sha256":"acede2cef38114ac0365bac4ecc4a43d4861e352c5127ec77982e49cf2c15dcf","sha512":"5fed3804400120ce5e6fd6e850860fdb29ad4ddb363777e111e305d6dea3fc4daab29cec0e10969a3d2c78d314e0810ab1eaad4609f7000925a8ee5a736b3593","ssdeep":"","tlshash":"546000303030c00ccc30000c300000000c3033c3303003cf330f0000c0000000030000","size":17,"data":"","first_seen":"2023-06-10T23:07:39Z","last_seen":"2026-06-01T05:03:35.089292Z","times_seen":67,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"8886d7c2096ccabb7d13a414b9536f4f","sha1":"fb4311add21442c739b3d169f6b071d9fe6f18e6","sha256":"192de897afde69589840edc56eaeac80c7f963dc80afde86304ef99b8bbeb289","sha512":"53a32d70ba6a8e6a8693b671a332d72c56248c28181ff78e1e2ff3eb90efbd5a5f6dc0b799a7df4a8bb13dcbce218e8795ada5cbdd4b770c9e18d61013bb66b9","ssdeep":"","tlshash":"18e02642117420361a23cc36082e1302a930028395bf7c7970c51d84fe2e22941ff9da","size":330,"data":"","first_seen":"2025-08-11T00:37:19.553169Z","last_seen":"2026-02-02T21:16:58.987378Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/wxsdk.js?v=1770041453","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"602e621af8de682293e4d80e64d66bd9","sha1":"a45b20afe90b6d101c73491bbaa3a25f10f50eb5","sha256":"d2157f629b7c3d9ad48ac78c65ed4a9774ae2861c35bd723d169f4308ce4fe97","sha512":"62ed3aebf68e521400dd08e90202d0bf9d3fc8c67da25538dcc9874d1fe502b87f34f587e044f1d9064edc0b32e3247b7f4b7f2a2f26db0b89d30c4e2655b7ec","ssdeep":"192:o1NY4iaUeeVw2Cla+b0dodXdEupiSFSPhLm+7JYKjiZT6CvUZs7UW:o44ileEx+b0d6XdEuiSksaYONY","tlshash":"6642a5deb682753b469734b22a8f350e51371741240cca5082b6f1d68e75b8e676ff8c","size":12788,"data":"","first_seen":"2023-03-09T22:32:24Z","last_seen":"2026-06-01T05:03:35.070565Z","times_seen":97,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"36db9072a4dbaa946c9f0b153fd3bf9d","sha1":"d14b334b1a22ff7efda769ba5ecef262f2a8b50f","sha256":"ea6009bd1a7cc90a0b9cae2ef3677783da671afb0fc6399c7252e88b08081de5","sha512":"2779827f38c706c6ae153e5deb5527d1c7e3a33cabb6e382fb76f720ab000727c547bf575f48e8ee30319f319b36691031ee68878da6ebf349072c6802c825eb","ssdeep":"","tlshash":"2401dd00611671b9b2721e792a7c1344073494238b87dcb8720e4528cfcabad22abdd3","size":669,"data":"","first_seen":"2026-02-02T14:11:17.336579Z","last_seen":"2026-02-02T14:11:17.336579Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/arttpl.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"dd622e58c9a123bbf70a159c8b3b0f10","sha1":"b37b4bd7acdf85b08278c1bcbe1571a5d7d96b23","sha256":"d28806438e35234b3287b06ba84873d366d8ac20eaef5c836467237b60dbabb1","sha512":"b8df150da1c908b2644cd5954f699a1e38e596cfcd26404ad81ab209c355683c74b430210238d55f20cc82b4730c4a874ead91d8cb4c4ceb62a77fd2f96d50f9","ssdeep":"96:B8GhIIHHSDySJTXj/VK4CY2ZcOHOqyP5uZ+E81vhBuJKPIBa9HQjqcYuqT9:B8o67e4CYJwOlRuZE1pBAB7qcYuU9","tlshash":"b2b1c8c8b57eb896c33a7970a1af040b60bad6a5b04cdda59185e5d37e3804c816bfdc","size":5324,"data":"","first_seen":"2023-03-07T15:25:43Z","last_seen":"2026-06-07T04:11:08.613551Z","times_seen":730,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/global.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"49611ca97d407463134ad9cf802852ca","sha1":"75a91d7a61d7d911420ac8a030328b94e4f57e53","sha256":"9525f729628eca04c18e5c4f36a2394816d791e43273ed5ddf9f1820e3ebffa1","sha512":"0150936102cfb100cec40c4ce7ae6a62b789f97c2b0fcb719b3593ff80210a5cee1be366547bdcf2160fbae385217b70909f6c0f67e43f5dec891be120ea6196","ssdeep":"384:YkuyAebZ6kQG9v0EtYo+QWrU3BpDl/ARQJrJLiPbHqHF6uc:YkuqWY3jRIRQJsPrEUuc","tlshash":"b15270587b4d621ab2b63361857e114c9d3cc8b24301d4bcfed564e0bab823d2317eba","size":14191,"data":"","first_seen":"2025-08-11T00:37:19.528683Z","last_seen":"2026-02-02T21:16:58.951698Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/jquery.scrollLoading.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"1c060b5a864494ebd27cc72e6f43ddd7","sha1":"c00c3d59dcc43d7be120f3f3dfa7335e60994af0","sha256":"9f37e5c740cc3426608a03b9f2dae137057913e8868d0b316e2e5f490d695e76","sha512":"da7d4fd49c9de0b047a9d6e9c9ec38aac2a77bb5d85390edccfb0664ab00ab2a9a2a3e2e07e0fe21f6daec4cb04f502b588afd882b87168598a5c36fd71c4352","ssdeep":"","tlshash":"5d4120a8e76d321e02b5b1ea1d3f03ce123ce033bd4154af7ea09da85ce4479a301e49","size":1947,"data":"","first_seen":"2023-03-07T15:25:43Z","last_seen":"2026-06-02T11:44:33.516456Z","times_seen":142,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/plugin/layer_mobile/layer.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"60ad01d2985e754eb18af23f3c4aa208","sha1":"c5a600b430187372feef7f618034d923979d3dc5","sha256":"f9d5ef6582d225c1762d8d9c5895fc084d879837867136ebda4f33566f620572","sha512":"67d9ea78d94fcb9bc8aae07590bac5ac1da7d982ab52f626d549576b898db30119282f723135385e2cd1ade781f42a961a4218defd417bdb4aa0eef07483cf41","ssdeep":"","tlshash":"5561a676f10136b7661320c5e06f690fb6775151b2008840e0e5e5aeaafed0ca87bf5d","size":3302,"data":"","first_seen":"2025-08-11T00:37:19.495021Z","last_seen":"2026-02-02T21:16:58.979433Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/pluginindex/jqweui/jquery-weui.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"36a934663f3d1ca2f73dd8ee24d54c10","sha1":"57a5f964420f542f545fae9d1c0c0739f25e94c6","sha256":"63d0e9425a5fa4dd83766eea7d4f6fc91da209c6ed47b75040fd5d9309ca4813","sha512":"4ee2650894305e2b7d1efd233c53dbaa7852be3d7b463f0516efc303a44acfbba98e5d0018df82554257b25fbcc75be03b59be1e62861caf06205b016feb4f3e","ssdeep":"6144:uZl1jyVhugL/OHHeZFlv0ht1BLRZeJ5/24v0HF+ROR3Wa47hrs48RcNopaq:aDjyVhuyOHHeZFlv0ht1tRZeJ5He","tlshash":"3814704a3afb2221956730785fef014072368427254ade587d6ca7941fd8a3887fdfe8","size":206396,"data":"","first_seen":"2025-08-11T00:37:19.534412Z","last_seen":"2026-02-02T21:16:58.978661Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/app.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"df8475355ee725bd346761541c14760b","sha1":"36ed448c8726264924648b118159485ff77dd1eb","sha256":"50ae2c021e51e0c832cafd26ea2294b86b4b6abeee50c1a9fed7fbd160f1cc57","sha512":"074935c161e1fe82b0f64c75f51861986c0405ab4fa522891d3e22a6ecff9116e63d9e9a5dacfd5584aaca7947ba8e48a160b2553bbf5a0c785e5bc00d7e22c2","ssdeep":"192:/URt/SFQDDqRndxD1dkNxMucp3E8Yk6mWGGD9UHMbh4/ayeZ7LVBf6JcA:/OM/Rn3BONxMR3E89WG6U4eayqb2","tlshash":"ca423d49a851a546c03ab3789b6f9108fa714a774302cb41befc90d03f7422db666fdd","size":12237,"data":"","first_seen":"2025-08-11T00:37:19.515464Z","last_seen":"2026-02-02T21:16:58.980206Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/plugin/swiper/swiper.jquery.min.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"d7749c8a97e6513c348d34998ffd4f9c","sha1":"5454d61c1a9d2c3e97a0dcd3fcb42bb41b110a9b","sha256":"3e5eb7885cd58a769515cdd0aab42fab70e2985d5f78fe96a9e926e634da6d7a","sha512":"919b919558f21b7a67b19c85bdf4a521e5d00ce591bd9428e3ef35fa0f9dc9b5145074e023dbedaf5db9f6be38bb75f972694e3f7fb1e6849e01a3157c4d5fca","ssdeep":"1536:W0MO5CLgJ1+JdI79d3xkjrSlv95aFMeBRz4SBlSP:+LqBkhOeBRz4SS","tlshash":"6b83b74ee220b3d255f3218967be858926b75541b801f9f870a54c8764fcc9c03aefbb","size":86923,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-06-08T05:43:22.502794Z","times_seen":934,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/wxapi.js?v=1770041453","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"0af29522f1fea8f6b3a3ae6cd3f7f95b","sha1":"fda9777a9b04d02fbe869b4440b60ef2a3d0a713","sha256":"c63c21a5fbfa6edc9dce304b8dcccab3872701a51f860b23be96a448d37ee3c8","sha512":"c294204d108802a6a7b0b362fc25e334de1b6fb799db01ff33330b3d8225ee7ee0041964f2be1f72c2dfcd389952d26f827f7f72c682697e868dc975a349b864","ssdeep":"","tlshash":"b7610e09732d61455ab633718abb6409e87dca7a1140043efc5e80d8bf357bc6293fb9","size":3277,"data":"","first_seen":"2025-08-11T00:37:19.513111Z","last_seen":"2026-02-02T21:16:58.986087Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"71d7c8f88ab6757b7e37dbb177ba837f","sha1":"97fa4fcbf5b88dd025b262c103322b3f83057e87","sha256":"1ae527e672d76286c7be73478523759ee95c5f8dee4a46676a8339588c12d2bd","sha512":"297db430f1011141304f9915e66d8ec6a8bb26c13a850b0475438736d233b97e6a910791af116e19c9b7b0609a4a9a5b59fc8b73dc07b687f7355ebb330dc05c","ssdeep":"","tlshash":"8fe0dfd9ed90eb82513521a418bf019cf4131893beeaec2684fe00f01a2b3f890f3844","size":336,"data":"","first_seen":"2026-02-02T12:52:13.982109Z","last_seen":"2026-02-02T21:16:58.989851Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"aliexpress66.cc/api.php?mod=cron","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:55.159Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /api.php?mod=cron HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:55 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T11:34:21.534624Z","times_seen":16238222,"resource_available":true,"data":null}},"time_used":511,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":511,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/template/mobile_index/css/style.css?v=201808062046","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.056Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /template/mobile_index/css/style.css?v=201808062046 HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 11 Mar 2025 12:47:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d030c7-138a5\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":80037,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (1596)","md5":"5d0c3a13734ebb596db1629b3d51a397","sha1":"2d9e20b6e18d9a055ca43ff7d96803efc8e11e94","sha256":"b9fdb8941f063acbabe7fb64823a2c603af8f9bfe16865b222f103c37b8abc0e","sha512":"6b44f5e6b8c5c46deba74655c42affe42a2dd9f5b06f5b6a28eaa811bbc73376ed983bdb6827364611cf7312682b52cabac853d3ab563dd657461b2e4a2a8c31","ssdeep":"1536:VQoSAsbSDAZnYKb4m5nJca3OOn7nHAJLjjjEoG:knn5n7nD","tlshash":"5773532de770204eb4bbe163ba916b8a3130840fd1631fbdeeac7578d64e4ad55b2740","first_seen":"2025-08-11T00:37:19.486246Z","last_seen":"2026-02-02T21:16:58.982605Z","times_seen":4,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":276,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/plugin/swiper/swiper.jquery.min.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.081Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/plugin/swiper/swiper.jquery.min.js HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-1538b\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":86923,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32000)","md5":"d7749c8a97e6513c348d34998ffd4f9c","sha1":"5454d61c1a9d2c3e97a0dcd3fcb42bb41b110a9b","sha256":"3e5eb7885cd58a769515cdd0aab42fab70e2985d5f78fe96a9e926e634da6d7a","sha512":"919b919558f21b7a67b19c85bdf4a521e5d00ce591bd9428e3ef35fa0f9dc9b5145074e023dbedaf5db9f6be38bb75f972694e3f7fb1e6849e01a3157c4d5fca","ssdeep":"1536:W0MO5CLgJ1+JdI79d3xkjrSlv95aFMeBRz4SBlSP:+LqBkhOeBRz4SS","tlshash":"6b83b74ee220b3d255f3218967be858926b75541b801f9f870a54c8764fcc9c03aefbb","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-06-08T05:43:22.502794Z","times_seen":934,"resource_available":true,"data":null}},"time_used":534,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":534,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/pluginindex/jqweui/weui.min.css","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/pluginindex/jqweui/weui.min.css HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-ec0c\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":60428,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (6295), with CRLF line terminators","md5":"a6e0eb035914f66cbef0181e6aef9e75","sha1":"c75269a7bdac47ed315e6c662def2c86d19c8ab1","sha256":"14e16d3a0340fa3e9dc058f750f3c2f21da99e9c746035f06c534c1090b35017","sha512":"ccd69215fc38ab5ca1a260c2871ccd370152f20e6a672419322968405a25fafc8cabdb9277fd447f19cb43e5ab3582d4b68eda9963c93327875dd8d3526f4825","ssdeep":"1536:Ep6K4hpcniCEwXaNPFO+hdatSSEx6KSR9I4kBehaOHjOHN92fp/pZeEOrEQ2vy:Ep6KNy","tlshash":"ef43203b971a214e735bbf5cb7f61f155f0441335e0b07aef682284e8385d6829a329e","first_seen":"2023-06-10T23:07:39Z","last_seen":"2026-06-01T17:51:11.488549Z","times_seen":98,"resource_available":false,"data":null}},"time_used":532,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":532,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/template/mobile_index/images/jt.png","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.648Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /template/mobile_index/images/jt.png HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/template/mobile_index/css/style.css?v=201808062046\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: image/png\r\ncontent-length: 266\r\nlast-modified: Mon, 04 Sep 2023 13:32:30 GMT\r\netag: \"64f5dc6e-10a\"\r\nexpires: Wed, 04 Mar 2026 14:10:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":266,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 12 x 20, 8-bit/color RGBA, non-interlaced","md5":"138094112902ebd5d468f72ace710ffc","sha1":"7fe1ecca19d9d8dbea908b98d735b958df03d219","sha256":"5a3ebd29b61460820a1c3db8cb85b7a061d34d1e1313baf0fafb55c57b18c642","sha512":"08059f0aacf479c72d2e3c5dd8f9517f9834103faf940edf2fa8da28dd3c2905efdaacab060f91f5c01cb18cc3f2ff25df4a2429ffa2b8cba85dadc53a5066fb","ssdeep":"","tlshash":"4cd02bb0a7710ea4921325b450a115819ce319001795e2e90887d4472165741b6d53e7","first_seen":"2023-06-10T23:07:39Z","last_seen":"2026-06-01T05:03:35.080245Z","times_seen":49,"resource_available":false,"data":null}},"time_used":474,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":473,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/template/mobile_index/css/swiper-bundle.min.css?v=201808062046","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.066Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /template/mobile_index/css/swiper-bundle.min.css?v=201808062046 HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 15 Oct 2024 17:27:02 GMT\r\nvary: Accept-Encoding\r\netag: W/\"670ea5e6-4813\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18451,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (18192)","md5":"eb21d0f0053cd0b33a1e2107e95156d2","sha1":"715460aed84071944bc26b7cb1e565f3ed107221","sha256":"79a42e24b867ff52d9e4d766b96d8882c83f18e7442408a41c4b09a043dffccb","sha512":"515f6e8f2331c98b9b3929026bcf8e1b3927275122940d7d58f8a63ec7b231c65a188a0ef25ee2369843d0cabfd11fe5364cc11fbd1a8b7b66babc405b4336c3","ssdeep":"192:UImUJbiKneSJTLdKSme+jeF474nQ7p/l2GZb0Q5RfufKDvAYfg5faeesedOJxX/A:UZUbeSJndKW+Sa0ni24tnWfz4cfQ","tlshash":"a88255a45350182753274f374bb1cbb9e97444c24f9389ae91c0ee58d7facb9132f2a9","first_seen":"2023-09-28T20:09:46Z","last_seen":"2026-06-08T01:51:23.653011Z","times_seen":4046,"resource_available":false,"data":null}},"time_used":538,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":538,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/js/swiper-bundle.min.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/js/swiper-bundle.min.js HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-22ec6\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":143046,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65277)","md5":"254f4cb7566a60c212786f9dd2d2596b","sha1":"5f3b14b0ecd6172cf897c64fadec73460d6eeec2","sha256":"d3422c182871135666da685419bbed480a08f51fead9546fb95965a6e47450a3","sha512":"db0f39a8633d6a95d6f4481ebec6384b87e7248533e94ea65e52db8032a9841bb087b8cf40d69def42e5e56fa9708ac9eab20c1a98cfd02c58190c0ab329c869","ssdeep":"1536:qIJcfGRELR8Nxb0LzGhd+IWzGolxUFnOk8+ILDX1ftgeQV9qDlUpf/arWcplXvQM:RJDNqLz2vHnOk82V9SAXiTnXpk07jl","tlshash":"9de3f8896220b57646e316db93e4c621b3b54540b80ac8f470b94c9f597ec9813feffa","first_seen":"2023-09-28T20:09:41Z","last_seen":"2026-06-08T06:03:18.959635Z","times_seen":4423,"resource_available":true,"data":null}},"time_used":535,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":535,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/plugin/layer_mobile/layer.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/plugin/layer_mobile/layer.js HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-ce6\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3302,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (3202)","md5":"60ad01d2985e754eb18af23f3c4aa208","sha1":"c5a600b430187372feef7f618034d923979d3dc5","sha256":"f9d5ef6582d225c1762d8d9c5895fc084d879837867136ebda4f33566f620572","sha512":"67d9ea78d94fcb9bc8aae07590bac5ac1da7d982ab52f626d549576b898db30119282f723135385e2cd1ade781f42a961a4218defd417bdb4aa0eef07483cf41","ssdeep":"","tlshash":"5561a676f10136b7661320c5e06f690fb6775151b2008840e0e5e5aeaafed0ca87bf5d","first_seen":"2025-08-11T00:37:19.495021Z","last_seen":"2026-02-02T21:16:58.979433Z","times_seen":4,"resource_available":true,"data":null}},"time_used":530,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":530,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/plugin/layer_mobile/need/layer.css?2.0","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:55.157Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/plugin/layer_mobile/need/layer.css?2.0 HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:55 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-1479\"\r\nexpires: Tue, 03 Feb 2026 02:10:55 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5241,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (5241), with no line terminators","md5":"dfbd3e8cfe9cdf349fa9f29c905f8e8c","sha1":"5cf589c2b8ecb33505271ab193ba9ca33d9cf568","sha256":"12310695a878f1cb6e22f2041d405835184bbc0926604ebc614a8ee618145257","sha512":"05594cbaf053097abc1c90390b11782b51efa2958b837c40353d74956cff9af2b24e6d49131a068a388db05939fbbd5ac096562c8843cd58e07058c3d87b25c8","ssdeep":"96:tJA7fs72CUf26B6ZtbXBh+Bcw0iZRfcSNHIFSa:J72/5YZtbXucwlrESNoL","tlshash":"37b1b796989307e8b027c51796dc5efe70388d43515209aef157382fc74bdd9b1b260b","first_seen":"2023-06-10T23:07:39Z","last_seen":"2026-06-01T17:51:11.486239Z","times_seen":58,"resource_available":false,"data":null}},"time_used":274,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":274,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/cache/thumb/2026-02/thumb_400x400_2026020113192417676c.jpg","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:55.178Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /cache/thumb/2026-02/thumb_400x400_2026020113192417676c.jpg HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:55 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 01 Feb 2026 18:41:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697f9e6c-81b2\"\r\nexpires: Wed, 04 Mar 2026 14:10:55 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33202,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 400x400, components 3","md5":"95114123cc961452af2537622b16ceeb","sha1":"438a5e3894922ec9dc1ba0109902c15ec8c9a4b0","sha256":"7d66d6500ec09b37a9eb32c34a8ce8eb406b910f4a693ed66489fe8f67ebb0e5","sha512":"1bdde8ba53a51854b48409ba49e4d80fd4e146678412d889519fa78347effe963290b15d4ffd343ec5188f757951ed075bbd0993e53c65fcc96743681793adb0","ssdeep":"768:+421/y2YwKlQ97WeLrp39MgmIEcvl911ct3UjwG:+421/oLK9/R9QcvPLct3swG","tlshash":"eee2e04bcd648de35826c7fc7b295e3447af0a6039d9b3f042765cf273162951c826b9","first_seen":"2026-02-02T12:52:13.962684Z","last_seen":"2026-02-02T21:16:58.974119Z","times_seen":3,"resource_available":false,"data":null}},"time_used":275,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":275,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/arttpl.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.064Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/jsindex/arttpl.js HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-14cc\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5324,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5251)","md5":"dd622e58c9a123bbf70a159c8b3b0f10","sha1":"b37b4bd7acdf85b08278c1bcbe1571a5d7d96b23","sha256":"d28806438e35234b3287b06ba84873d366d8ac20eaef5c836467237b60dbabb1","sha512":"b8df150da1c908b2644cd5954f699a1e38e596cfcd26404ad81ab209c355683c74b430210238d55f20cc82b4730c4a874ead91d8cb4c4ceb62a77fd2f96d50f9","ssdeep":"96:B8GhIIHHSDySJTXj/VK4CY2ZcOHOqyP5uZ+E81vhBuJKPIBa9HQjqcYuqT9:B8o67e4CYJwOlRuZE1pBAB7qcYuU9","tlshash":"b2b1c8c8b57eb896c33a7970a1af040b60bad6a5b04cdda59185e5d37e3804c816bfdc","first_seen":"2023-03-07T15:25:43Z","last_seen":"2026-06-07T04:11:08.613551Z","times_seen":730,"resource_available":true,"data":null}},"time_used":538,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":538,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/attachment/2025-02/2025022220481717435c.jpg","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.069Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /attachment/2025-02/2025022220481717435c.jpg HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 23 Feb 2025 01:48:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67ba7e60-42423\"\r\nexpires: Wed, 04 Mar 2026 14:10:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":271395,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1024x500, components 3","md5":"2503bb7fdd32f75081947c9d6a777362","sha1":"82c308e5420a6a835c886141e07d13d4156ea0ae","sha256":"8cb8ef137aa04aa778ad6777c6cb15cba11798df151ccb56ca85deb394c6f09d","sha512":"3fbc2e091e936c86f7451c5f612983af9d72adc9b5e338871430f3794d45a90434efa278080293609ccda0a54d3e14717cc3e00965a4327b3921edd51cbb7121","ssdeep":"6144:LYkHZaGauNy13y4EQGRiIF/3QynqzDVsRWTwfbDKEtOaF:LYkHtNgyNQM/3Jq1sRWO2a","tlshash":"be4413e79e6355de319e262030107ca1d85a4fc066d371be3ee3e81b6e905c48987deb","first_seen":"2025-08-11T00:37:19.538003Z","last_seen":"2026-02-02T21:16:58.974923Z","times_seen":4,"resource_available":false,"data":null}},"time_used":535,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":535,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/pluginindex/jqweui/jquery-weui.min.css","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.086Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/pluginindex/jqweui/jquery-weui.min.css HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-fa09\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":64009,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (1467), with CRLF line terminators","md5":"aadaa2ad23229b392f74cd9b32ec3f68","sha1":"e983b072f13331166a07453e92c9dc351b86850d","sha256":"782aa403a03e0afa7b5665960baf4317638b956a0316665b3eafde345bc0f7f6","sha512":"ef955aac66424f8cbdd660f444401d8a1030ed9ee189bfc3a96e5885daa7463b6bd0d3096504edb7390b1670e2f342fc94e224e8f2a14695fa9e14bfd6420325","ssdeep":"768:eJrI1ptqzSWiUyKM+B/W1YfTrQ9Pot5PxYqaiLNz6BnJHaaV5FElIXzpWPNIe1BD:0g+TPfPdP1Z17dc8KRtdt8","tlshash":"9e53451a5702325e77274f1de3f94b298f1940a32f2358ee71936c0a87daa5431e69cf","first_seen":"2025-08-11T00:37:19.53306Z","last_seen":"2026-02-02T21:16:58.977198Z","times_seen":4,"resource_available":false,"data":null}},"time_used":531,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":531,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/cache/thumb/2026-02/thumb_400x400_2026020113280817617w.jpg","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:55.174Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /cache/thumb/2026-02/thumb_400x400_2026020113280817617w.jpg HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:55 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 01 Feb 2026 18:41:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697f9e6c-b210\"\r\nexpires: Wed, 04 Mar 2026 14:10:55 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":45584,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 400x400, components 3","md5":"5c524d4f2c975e740391413e3e646781","sha1":"269e3696699efab048960e2cccb12d221d704c58","sha256":"322c064f552b3cc9f764a2b037c646164993fedb8e70811846ceab6cbc0f4325","sha512":"0a2f3c059bbc08513e0d9b3723d3938c5cf3102e05b6204f90c5a680e3956afbf63f767f7384822c1c9cc6d2ef5673be8c365058e669e610e956a668c3a18309","ssdeep":"768:+1UOBTamdzQwxqIQH5CiuVDBlGBxlajFwd1DinSTaglnPWHiBRG4:+CJYQwxdW64rymTbpPx","tlshash":"c223f2b9996107ebb74f0ec2c517dcf066e196f5b210b736bbd100b1c6cc67ab1a2260","first_seen":"2026-02-02T12:52:13.973977Z","last_seen":"2026-02-02T21:16:58.983356Z","times_seen":3,"resource_available":false,"data":null}},"time_used":275,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":275,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/cache/thumb/2026-02/thumb_400x400_2026020111354317684n.jpg","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:55.182Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /cache/thumb/2026-02/thumb_400x400_2026020111354317684n.jpg HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:55 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 01 Feb 2026 16:38:34 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697f818a-3a4f\"\r\nexpires: Wed, 04 Mar 2026 14:10:55 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14927,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 400x400, components 3","md5":"04e07ac7de49432b5c6824c37242d71b","sha1":"9f11d0ee711a090efe8248f5d029d402a0c68a79","sha256":"2381b85b29de7dca33d3b06e2b4cf7c8f382a64b1c277bc91ccac444a2058530","sha512":"ba59d5bd317d8d7aee8ba5cbdf194549e455d2d0efe6ba442fdcf26744990d7bacb91f6558a759398ee160d92316992a1118d7fd7be9db8a30eedd48768d4785","ssdeep":"192:+eZhtYVDIS4DxwQW+ml6aI0oFhxHP4T/oZbSdU5iurHys12kkVwoWGL5aNg31wkk:+etYVD1axwlJ+ZbiCz1Dk2zG1aNglw+U","tlshash":"79628d03dd2583da74590bbcbd074d3c5f9a2b2c48d227fa05e60ed6bca0a511cee02d","first_seen":"2026-02-02T12:52:13.958975Z","last_seen":"2026-02-02T21:16:58.980977Z","times_seen":3,"resource_available":false,"data":null}},"time_used":274,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":274,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/favicon.ico","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:55.561Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:55 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 4286\r\nlast-modified: Mon, 17 Feb 2025 16:23:17 GMT\r\netag: \"67b36275-10be\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"815bc7ed661e0465a634d68bc244fdd7","sha1":"f96287876e82185d9e09d08cfecae434c6375e4c","sha256":"ef181e9b6a58d8f36ebfc6acd589d2f94d371af0cb2c68e17032edebdaed99a0","sha512":"2ad3ec06ff944966902d1e51b454fbba4c6ed586a5b3856535b91eba853fca1070be4b3de4b8bbb25cb8d64f4bd8ead0b245d57d5b6d96f3674a328ab5894749","ssdeep":"24:su58nn0hdrsFtG4m5Lk0wutL2nJM0RR3FyUt2Ni:64V/h5o9aqnJb3Ic2Ni","tlshash":"489191ce8204c051f2a856f8c10e5a41c3b63f7be5aaa9471581bc703abe1f75737817","first_seen":"2023-05-01T23:59:39Z","last_seen":"2026-06-08T10:37:17.822448Z","times_seen":16461,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":259,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-02T14:10:53.017Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:53 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nset-cookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh; path=/; HttpOnly\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":63488,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (361), with CRLF, LF line terminators","md5":"073b653155bac4a365c0ce57c71e7f87","sha1":"cabac48bb6809b012161fca5c14cb52e4ce1b28a","sha256":"62efee052fd0055177f3c6cc3b0fc464c3d7e5e099e66be003bd0859fa562069","sha512":"9b87e60ab921c49b5581fc34736064d1afe2d4c898a84c285c175e0317f16f03fbc484ebddae415df8b2d598ff3330486c89e9ff299c087caa7926ea12a8a432","ssdeep":"384:aIySyDc3z0tPPJsPOSMGmmBTlISqfoOT3DZ+0rm/k7cS8h37VtmFgJZr1klC2/+Q:awyDc3xPdMuqgO3xWRgLuL3vql","tlshash":"5c530f7241bc1eb3820165e2b0d13a8ed88fdf2bd6d3896777fb12db92c58d5990d098","first_seen":"2026-02-02T14:11:17.325738Z","last_seen":"2026-02-02T14:11:17.325738Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1450,"timings":{"blocked":580,"dns":48,"connect":259,"send":0,"wait":290,"receive":0,"ssl":269},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/jquery.SuperSlide.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.082Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/jsindex/jquery.SuperSlide.js HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-2c9e\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11422,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10855), with CRLF line terminators","md5":"0b9bc63ab05e21e3830da5bbb4ccee67","sha1":"d162156bdaf14217d76d920e0e57b86d8feb1d97","sha256":"349e46b2c65028736d0bbff7b829c7fc6fbdebc1fb1e8b12365a0ca2e6e9e848","sha512":"bdfa220da1f08e29f05a9984c4999d7e742bea10ad86b7e497a0d112c7992cc52b7f1e9f5430b4286f14bb2336110f85cbdc3164a92121caaf5c91961f7e69c9","ssdeep":"192:j+K3bxH+nqfhD9VUVjIItpfg5uXG3+1tSCl+7flvSXwaHxImISLTNSfYXH7Le2HE:jNcnqflKFgEWulE8REcS3j/CkR1Xh3","tlshash":"9532c65fb66635ca4597b3f1107f940d222b5965fc8a8ca0b17082c0adb9a1c243bfed","first_seen":"2023-04-05T11:06:31Z","last_seen":"2026-06-08T05:17:00.628553Z","times_seen":13820,"resource_available":true,"data":null}},"time_used":533,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":533,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/cache/thumb/2026-02/thumb_400x400_2026020111535817688k.jpg","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:55.180Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /cache/thumb/2026-02/thumb_400x400_2026020111535817688k.jpg HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:55 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 01 Feb 2026 17:00:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697f869e-90ef\"\r\nexpires: Wed, 04 Mar 2026 14:10:55 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":37103,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 400x400, components 3","md5":"e65f9dddee75ebdd13315bfd4636fe07","sha1":"5ed561ca56c4aa13da0e05440dc7d33077aec971","sha256":"146a8dc2658fe608936d74d2ba7bd7c4b52442caa9d56a39e02ae8e29b754be6","sha512":"5346b9938a2a77a9f6de9f33ba4d908db37a0a4082a159fb952f24fd96f60f220f25df89218abf9967ebb8b13ea1071d4b218f906ccc0b709ab0ee646318b38a","ssdeep":"768:+zCUIof1KgAiypcjWoKeqY9omYmdmHmUQzdVtANXIba6vpM+L+J5k1:+zrIof1pPVLKeqCtmH9QbmNsjvpb6k1","tlshash":"c4f2f1a90a4707e7de5507ee8e700c5633dc6c25a0c3239f2a38d87995231a24dafd6a","first_seen":"2026-02-02T12:52:13.979122Z","last_seen":"2026-02-02T21:16:58.96158Z","times_seen":3,"resource_available":false,"data":null}},"time_used":275,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":275,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/template/mobile_index/images/pixel.gif","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.070Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /template/mobile_index/images/pixel.gif HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nlast-modified: Mon, 04 Sep 2023 13:32:34 GMT\r\netag: \"64f5dc72-2b\"\r\nexpires: Wed, 04 Mar 2026 14:10:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"325472601571f31e1bf00674c368d335","sha1":"2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a","sha256":"b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b","sha512":"717ea0ff7f3f624c268eccb244e24ec1305ab21557abb3d6f1a7e183ff68a2d28f13d1d2af926c9ef6d1fb16dd8cbe34cd98cacf79091dddc7874dcee21ecfdc","ssdeep":"","tlshash":"bf900003ea80c002c2a2c0300e0ccb802b88b0308a28030fb0fc3baeec3a3a20c23000","first_seen":"2023-04-05T06:29:39Z","last_seen":"2026-06-08T11:43:21.600301Z","times_seen":90082,"resource_available":true,"data":null}},"time_used":1072,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":535,"receive":537,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/global.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.062Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/jsindex/global.js HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-37db\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14299,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"49611ca97d407463134ad9cf802852ca","sha1":"75a91d7a61d7d911420ac8a030328b94e4f57e53","sha256":"9525f729628eca04c18e5c4f36a2394816d791e43273ed5ddf9f1820e3ebffa1","sha512":"0150936102cfb100cec40c4ce7ae6a62b789f97c2b0fcb719b3593ff80210a5cee1be366547bdcf2160fbae385217b70909f6c0f67e43f5dec891be120ea6196","ssdeep":"384:YkuyAebZ6kQG9v0EtYo+QWrU3BpDl/ARQJrJLiPbHqHF6uc:YkuqWY3jRIRQJsPrEUuc","tlshash":"b15270587b4d621ab2b63361857e114c9d3cc8b24301d4bcfed564e0bab823d2317eba","first_seen":"2025-08-11T00:37:19.528683Z","last_seen":"2026-02-02T21:16:58.951698Z","times_seen":4,"resource_available":true,"data":null}},"time_used":538,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":538,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/attachment/2025-02/2025021814192217393x.png","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.067Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /attachment/2025-02/2025021814192217393x.png HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 18 Feb 2025 11:19:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67b46cba-20ec\"\r\nexpires: Wed, 04 Mar 2026 14:10:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8428,"size_decoded":0,"mime_type":"image/png","magic":"ISO Media, AVIF Image","md5":"28007d0e1913837f9244d56d6eb70ecb","sha1":"385e75b888954cd5d4bc71e85ed8fce9c4173ac4","sha256":"375b7c1bf7dc2582b2d57a27937ebdbd8853ba0475232affa7f4a43b18bf97df","sha512":"a3943dea5758b12643aa093d985a566b40a7362bda7a009e69826d29c2cb286140840ec76c309fdba72782475156e461ade24d2830cf8a3c040e59ff4248d7dd","ssdeep":"192:+zCG1WTJi4si4kdvlNX98n/enyJghquaVAR9ub2TqeUSZ:SCJi4si5dvlNXCn2yJgILVWswH","tlshash":"3602bf977130accdef4c45743cbebb319bb0367a95b1a4806994b5008a3e7c69910737","first_seen":"2024-12-12T06:21:38.665571Z","last_seen":"2026-02-02T21:16:58.966476Z","times_seen":142,"resource_available":false,"data":null}},"time_used":538,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":538,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/plugin/swiper/swiper.min.css","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.079Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/plugin/swiper/swiper.min.css HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-456d\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17773,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (17459), with CRLF line terminators","md5":"018da5e642fda033e4debef641f6f582","sha1":"16bb9daf33ec818e293eff5cae7fad701f72e1d2","sha256":"46525cb298d262696150996f8731fe08bd6727c7e33f2dc8222ae40f1543dfe6","sha512":"55cf8dd14a2429555939a7ebdcbf2bbd36ddf6112a4cd78fa49b177130175612a8c3691d65b8a9248c1a20baa67ebeffb2e5124b0617ee9f232514b8df309e0c","ssdeep":"192:mPiN0GpaNCO8jrfg5WHmXgyXyzSHF68DJB0SwD:mP+52CXfgWHfyXyzSl68Pe","tlshash":"7682832c17002067f6324f1987c9e77c9715c8939e0368ef6650de48cbbb5a9227f796","first_seen":"2023-04-07T03:48:28Z","last_seen":"2026-06-07T17:47:58.514652Z","times_seen":1291,"resource_available":false,"data":null}},"time_used":534,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":534,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/wxsdk.js?v=1770041453","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.083Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/jsindex/wxsdk.js?v=1770041453 HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-31f4\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12788,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (12788), with no line terminators","md5":"602e621af8de682293e4d80e64d66bd9","sha1":"a45b20afe90b6d101c73491bbaa3a25f10f50eb5","sha256":"d2157f629b7c3d9ad48ac78c65ed4a9774ae2861c35bd723d169f4308ce4fe97","sha512":"62ed3aebf68e521400dd08e90202d0bf9d3fc8c67da25538dcc9874d1fe502b87f34f587e044f1d9064edc0b32e3247b7f4b7f2a2f26db0b89d30c4e2655b7ec","ssdeep":"192:o1NY4iaUeeVw2Cla+b0dodXdEupiSFSPhLm+7JYKjiZT6CvUZs7UW:o44ileEx+b0d6XdEuiSksaYONY","tlshash":"6642a5deb682753b469734b22a8f350e51371741240cca5082b6f1d68e75b8e676ff8c","first_seen":"2023-03-09T22:32:24Z","last_seen":"2026-06-01T05:03:35.070565Z","times_seen":97,"resource_available":true,"data":null}},"time_used":533,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":533,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/wxapi.js?v=1770041453","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.084Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/jsindex/wxapi.js?v=1770041453 HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-ccd\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3277,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"0af29522f1fea8f6b3a3ae6cd3f7f95b","sha1":"fda9777a9b04d02fbe869b4440b60ef2a3d0a713","sha256":"c63c21a5fbfa6edc9dce304b8dcccab3872701a51f860b23be96a448d37ee3c8","sha512":"c294204d108802a6a7b0b362fc25e334de1b6fb799db01ff33330b3d8225ee7ee0041964f2be1f72c2dfcd389952d26f827f7f72c682697e868dc975a349b864","ssdeep":"","tlshash":"b7610e09732d61455ab633718abb6409e87dca7a1140043efc5e80d8bf357bc6293fb9","first_seen":"2025-08-11T00:37:19.513111Z","last_seen":"2026-02-02T21:16:58.986087Z","times_seen":4,"resource_available":true,"data":null}},"time_used":532,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":532,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/pluginindex/jqweui/jquery-weui.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.087Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/pluginindex/jqweui/jquery-weui.js HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-32640\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":206400,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (327)","md5":"36a934663f3d1ca2f73dd8ee24d54c10","sha1":"57a5f964420f542f545fae9d1c0c0739f25e94c6","sha256":"63d0e9425a5fa4dd83766eea7d4f6fc91da209c6ed47b75040fd5d9309ca4813","sha512":"4ee2650894305e2b7d1efd233c53dbaa7852be3d7b463f0516efc303a44acfbba98e5d0018df82554257b25fbcc75be03b59be1e62861caf06205b016feb4f3e","ssdeep":"6144:uZl1jyVhugL/OHHeZFlv0ht1BLRZeJ5/24v0HF+ROR3Wa47hrs48RcNopaq:aDjyVhuyOHHeZFlv0ht1tRZeJ5He","tlshash":"3814704a3afb2221956730785fef014072368427254ade587d6ca7941fd8a3887fdfe8","first_seen":"2025-08-11T00:37:19.534412Z","last_seen":"2026-02-02T21:16:58.978661Z","times_seen":4,"resource_available":true,"data":null}},"time_used":530,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":530,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/jquery.scrollLoading.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.092Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/jsindex/jquery.scrollLoading.js HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-79b\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1947,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"1c060b5a864494ebd27cc72e6f43ddd7","sha1":"c00c3d59dcc43d7be120f3f3dfa7335e60994af0","sha256":"9f37e5c740cc3426608a03b9f2dae137057913e8868d0b316e2e5f490d695e76","sha512":"da7d4fd49c9de0b047a9d6e9c9ec38aac2a77bb5d85390edccfb0664ab00ab2a9a2a3e2e07e0fe21f6daec4cb04f502b588afd882b87168598a5c36fd71c4352","ssdeep":"","tlshash":"5d4120a8e76d321e02b5b1ea1d3f03ce123ce033bd4154af7ea09da85ce4479a301e49","first_seen":"2023-03-07T15:25:43Z","last_seen":"2026-06-02T11:44:33.516456Z","times_seen":142,"resource_available":true,"data":null}},"time_used":527,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":527,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/plugin/pageloading/style.css","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.059Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/plugin/pageloading/style.css HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-105e\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4190,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (790), with CRLF line terminators","md5":"8104ac4181d8d9fcbab17b5943777a03","sha1":"772c634eef2ab312a8e8d7adf561dab0eea05532","sha256":"dff82e1bbdea4ff27769f12a9aa80df6788334aeb3a0fa4f1e70f0a646d8c020","sha512":"7f596da52edf850a109a044c5e6725765287a1050fdca17368792a8e726be661791e0a39bd93720b29df82e030c01f9c3750510b614d80c6a5d78fc949e63f9a","ssdeep":"48:Hvn0FVm6SNlbsPoL5Ng4mxwVNg4mxwHNg4mxw7Ng4mxwgNg4mxwa4E5sXEtNFTEj:f0vm6SNlbsPoLZf9fPfLfafa4Sryqy","tlshash":"b58100d90d0322cec53b06dac3da5e244e2d8e5317130cdf7694284ba7063eeb5d5a1b","first_seen":"2025-08-11T00:37:19.506023Z","last_seen":"2026-02-02T21:16:58.964742Z","times_seen":4,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":276,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/jquery.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.060Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/jsindex/jquery.js HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-17278\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":94840,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (32769)","md5":"b8d64d0bc142b3f670cc0611b0aebcae","sha1":"abcd2ba13348f178b17141b445bc99f1917d47af","sha256":"47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4","sha512":"a684abbe37e8047c55c394366b012cc9ae5d682d29d340bc48a37be1a549aeced72de6408bedfed776a14611e6f3374015b236fbf49422b2982ef18125ff47dc","ssdeep":"1536:8YRKUfAjtledhTmtaFyQHGvCXsedOgRc9izzr4yff8teLvHHEjam7W5X3yzSiLnM:VUb6GvCu09s2o2skAieW","tlshash":"b393e7d9b2d67123c7b731b850af510bb17698aa784c8c50f068d8e4be74a48907bf7d","first_seen":"2023-03-07T01:03:23Z","last_seen":"2026-06-08T11:10:47.359771Z","times_seen":22440,"resource_available":true,"data":null}},"time_used":539,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":539,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/public/jsindex/app.js","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.091Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /public/jsindex/app.js HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 May 2025 15:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9cf8-2ff0\"\r\nexpires: Tue, 03 Feb 2026 02:10:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12272,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"df8475355ee725bd346761541c14760b","sha1":"36ed448c8726264924648b118159485ff77dd1eb","sha256":"50ae2c021e51e0c832cafd26ea2294b86b4b6abeee50c1a9fed7fbd160f1cc57","sha512":"074935c161e1fe82b0f64c75f51861986c0405ab4fa522891d3e22a6ecff9116e63d9e9a5dacfd5584aaca7947ba8e48a160b2553bbf5a0c785e5bc00d7e22c2","ssdeep":"192:/URt/SFQDDqRndxD1dkNxMucp3E8Yk6mWGGD9UHMbh4/ayeZ7LVBf6JcA:/OM/Rn3BONxMR3E89WG6U4eayqb2","tlshash":"ca423d49a851a546c03ab3789b6f9108fa714a774302cb41befc90d03f7422db666fdd","first_seen":"2025-08-11T00:37:19.515464Z","last_seen":"2026-02-02T21:16:58.980206Z","times_seen":4,"resource_available":true,"data":null}},"time_used":529,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":529,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aliexpress66.cc/template/mobile_index/images/search.png","fqdn":"aliexpress66.cc","domain":"aliexpress66.cc","tld":"cc"},"ip":{"addr":"119.28.119.83","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aliexpress66.cc/","date":"2026-02-02T14:10:54.646Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aliexpress66.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Jan 2026 08:36:13 GMT","end":"Mon, 27 Apr 2026 08:36:12 GMT"},"fingerprint":{"sha1":"11:B9:CC:C6:7E:C7:00:53:A3:37:AA:62:29:87:74:EF:EB:01:98:7A","sha256":"0B:C7:EE:47:98:5A:25:2E:F4:10:5B:85:72:95:2F:51:8F:C7:4F:11:19:BF:C5:6F:F3:FB:D4:DC:ED:03:BD:6A"}}},"request":{"raw":"GET /template/mobile_index/images/search.png HTTP/1.1\r\nHost: aliexpress66.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aliexpress66.cc/template/mobile_index/css/style.css?v=201808062046\r\nCookie: PHPSESSID=stk3j2ug7504hqv40cqprndcfh\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Feb 2026 14:10:54 GMT\r\ncontent-type: image/png\r\ncontent-length: 689\r\nlast-modified: Tue, 17 Oct 2023 12:19:53 GMT\r\netag: \"652e7be9-2b1\"\r\nexpires: Wed, 04 Mar 2026 14:10:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":689,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced","md5":"641b53c4311a2c85898478e999bcac59","sha1":"3ae5b6acd8b8396cb659f96df02cbcf25882b796","sha256":"2e82db8319532b0a3034594926531e80d2e92f7e04b63473f2d8e24367708673","sha512":"97a2f52ee93d8a7e452bbc5a0914caa19d65892276d791a2a6fc301ccad67772bc376561395d09133d32ebef7e0c6012fea4598e7bd1d3c10ad643df1365e950","ssdeep":"","tlshash":"390183c2c694ce2bdbb23814c1041a2085ce921058536d79917c7cd10138f8bc67e812","first_seen":"2023-06-10T23:07:39Z","last_seen":"2026-06-01T05:03:35.056744Z","times_seen":43,"resource_available":false,"data":null}},"time_used":474,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":473,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-02","alert":"Phishing Block","trigger":"aliexpress66.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"aliexpress66.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}