{"report_id":"0ede3b27-e25d-4c65-9a5b-1fb51d6e11d7","version":6,"status":"done","tags":[],"date":"2026-04-24T07:11:54Z","url":{"schema":"http","addr":"hpihc.vip/","fqdn":"hpihc.vip","domain":"hpihc.vip","tld":"vip"},"ip":{"addr":"103.238.130.40","port":0,"asn":60504,"as":"Spike Telecom LLC","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/?cid=2657320","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"title":"威尼斯人392com","dom":{"size":45296,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (37107)","md5":"05a7f5976857605c90c2840b1b850a96","sha1":"57a08d5ae5931695cd7f24f5479b716b25b2e1bb","sha256":"8765f22d3514ec63d07ea73457b9ce9f5b4e60d37907914c6117d297122b59d5","sha512":"6f0882e37ff77674c19637ab01dcfde8d0933ad3ff0eed8a6ef795e5d88e435439b2927b902a79ebf741625d19b4b92455840a0e9c94f5c8a75f6d519f6d02ff","ssdeep":"768:6JQxyYgKw3KbNSWa+Dac4vws+JGwiw8Se1BMeqSSQ1:6JjNiafv/15tjr","tlshash":"5913fafa6b3896dc1487479eef32b454234eb4feb598c8d0695e8ab44993cd8f647c00","dom_hash":"domhash43e8123f96ecb2ba9f3371808bc0f66c","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"hpihc.vip/","fqdn":"hpihc.vip","domain":"hpihc.vip","tld":"vip"},"ip":{"addr":"103.238.130.40","port":0,"asn":60504,"as":"Spike Telecom LLC","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-29T07:11:54Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":2,"urlquery":0,"analyzer":4}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-24T07:11:41Z","timestamp":1777014701,"ip_dst":{"addr":"47.254.187.138","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"ip_src":{"addr":"Client IP","port":58424,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-24T07:11:41.579792+0000\",\"flow_id\":2006196801078386,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":58424,\"dest_ip\":\"47.254.187.138\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"cypahp-1155-ppp.oss-accelerate.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":909,\"bytes_toclient\":6993,\"start\":\"2026-04-24T07:11:41.099442+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-24T07:11:49Z","timestamp":1777014709,"ip_dst":{"addr":"47.254.187.138","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"ip_src":{"addr":"Client IP","port":56314,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-24T07:11:49.309131+0000\",\"flow_id\":880954024787758,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":56314,\"dest_ip\":\"47.254.187.138\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"cypahp-1155-ppp.oss-accelerate.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":753,\"bytes_toclient\":6993,\"start\":\"2026-04-24T07:11:49.261934+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-24","alert":"Sinkholed","trigger":"aojwoem.37k3wjcvip-4dpaj8z.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-24","alert":"Sinkholed","trigger":"fwijow325.y71x2vm.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-24","alert":"Sinkholed","trigger":"fasjfksdjfks.y71x2vm.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-24","alert":"Sinkholed","trigger":"dfsadfasd.y71x2vm.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"146.103.79.31","ip":{"addr":"146.103.79.31","port":443,"asn":0,"as":"","country":"Belgium","country_code":"BE"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":558,"sent_data":459,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fwijow325.y71x2vm.vip","ip":{"addr":"45.125.14.203","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2025-04-10","domain_rank":0,"first_seen":"2026-01-10T22:02:57.835045Z","last_seen":"2026-04-20T23:48:32.537814Z","alert_count":2,"request_count":2,"received_data":1528,"sent_data":934,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"haohtog.5a6s9b3.com","ip":{"addr":"138.113.100.51","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"domain_registered":"2025-04-10","domain_rank":0,"first_seen":"2025-11-01T18:56:39.772732Z","last_seen":"2026-04-20T23:48:31.859039Z","alert_count":0,"request_count":1,"received_data":871,"sent_data":465,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"cypahp-1155-ppp.oss-accelerate.aliyuncs.com","ip":{"addr":"47.254.187.138","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"domain_registered":"2012-04-01","domain_rank":0,"first_seen":"2024-12-01T12:33:33.910045Z","last_seen":"2026-02-22T08:46:38.786778Z","alert_count":0,"request_count":4,"received_data":14400,"sent_data":2646,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"nowjojofjwijewk.o6isvj4.com","ip":{"addr":"138.113.100.53","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"domain_registered":"2025-04-10","domain_rank":0,"first_seen":"2026-02-01T22:49:59.697685Z","last_seen":"2026-02-27T00:59:48.081863Z","alert_count":0,"request_count":1,"received_data":880,"sent_data":473,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"aojwoem.37k3wjcvip-4dpaj8z.vip","ip":{"addr":"171.22.195.163","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"domain_registered":"2025-04-16","domain_rank":0,"first_seen":"2026-04-24T07:11:55.269739Z","last_seen":"2026-04-24T07:11:55.269739Z","alert_count":1,"request_count":1,"received_data":540,"sent_data":476,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"ghagtwgay.mhs476i.com","ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-04-10","domain_rank":0,"first_seen":"2025-12-19T23:44:34.987555Z","last_seen":"2026-02-22T08:46:38.55749Z","alert_count":0,"request_count":1,"received_data":835,"sent_data":467,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}]},{"fqdn":"xolcea.lbx3o1.com","ip":{"addr":"23.141.4.47","port":39528,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2025-12-07","domain_rank":0,"first_seen":"2025-12-19T23:44:34.990528Z","last_seen":"2026-04-20T23:48:31.702876Z","alert_count":0,"request_count":1,"received_data":3157,"sent_data":544,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"wtt297.sgikvo.cn","ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"domain_registered":"2025-12-22","domain_rank":0,"first_seen":"2026-04-24T07:11:55.265481Z","last_seen":"2026-04-24T07:11:55.265481Z","alert_count":0,"request_count":29,"received_data":955527,"sent_data":13227,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"138.113.11.140","ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":16,"received_data":687087,"sent_data":9833,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"wmeigojirto.spl96w4.com","ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-04-10","domain_rank":0,"first_seen":"2026-01-11T23:46:19.176333Z","last_seen":"2026-04-20T23:48:33.069856Z","alert_count":0,"request_count":1,"received_data":477,"sent_data":469,"comment":"","tags":null,"fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}]},{"fqdn":"awhtej.5a6s9b3.com","ip":{"addr":"138.113.100.52","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"domain_registered":"2025-04-10","domain_rank":0,"first_seen":"2025-11-01T18:56:41.200247Z","last_seen":"2026-04-20T23:48:33.154385Z","alert_count":0,"request_count":7,"received_data":5933,"sent_data":5550,"comment":"","tags":null,"fingerprints":null},{"fqdn":"153.43.17.57","ip":{"addr":"153.43.17.57","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":867,"sent_data":458,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"dfsadfasd.y71x2vm.vip","ip":{"addr":"45.125.14.216","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":1,"request_count":1,"received_data":461,"sent_data":467,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fasjfksdjfks.y71x2vm.vip","ip":{"addr":"45.125.14.216","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2025-04-10","domain_rank":0,"first_seen":"2026-04-24T07:11:55.265988Z","last_seen":"2026-04-24T07:11:55.265988Z","alert_count":1,"request_count":1,"received_data":764,"sent_data":470,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"shaikg.spl96w4.com","ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-04-10","domain_rank":0,"first_seen":"2025-12-19T23:44:34.988484Z","last_seen":"2026-04-20T23:48:32.708625Z","alert_count":0,"request_count":1,"received_data":835,"sent_data":464,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}]},{"fqdn":"153.43.16.243","ip":{"addr":"153.43.16.243","port":5029,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":869,"sent_data":464,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"ahhjl.5a6s9b3.com","ip":{"addr":"138.113.100.52","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"domain_registered":"2025-04-10","domain_rank":0,"first_seen":"2025-12-19T23:44:34.983076Z","last_seen":"2026-04-20T23:48:32.719506Z","alert_count":0,"request_count":1,"received_data":871,"sent_data":463,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"hpihc.vip","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2025-12-23","domain_rank":0,"first_seen":"2026-04-24T07:11:55.260685Z","last_seen":"2026-04-24T07:11:55.260685Z","alert_count":0,"request_count":2,"received_data":560,"sent_data":872,"comment":"","tags":null,"fingerprints":null},{"fqdn":"138.113.11.87","ip":{"addr":"138.113.11.87","port":5012,"asn":0,"as":"","country":"Canada","country_code":"CA"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":879,"sent_data":464,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/vant-D5IJGWJU.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"importedModule","is_inline":false,"md5":"852e273954fa90d55c0e74ba1adde9e4","sha1":"1edd5cd78042a89fdb453eff7ac00a81ee11381d","sha256":"a362f686e909416c308eb2e9bd7303593e68b441a6672db1d2d76f8545fe3049","sha512":"593a21cc5befa4ea9345c755b92e155f572805c6d43b162d45e5fc28db1d8aa7a29e65da492cdd1773689a4c5b28d321c6e70b57082931694d38695db8ebce6a","ssdeep":"768:aHcoeRdR113jDKzaKhIP3aJZmHD19BOoTEwVde0ewh6Kg462KIGsEnCrE/jXg:Jo0DKzO3aUnMULPKXg","tlshash":"f7b209993086f43f63f585ee40690201a3291b6a341ec4ecb53ceedbb299c5974b6b35","size":25153,"data":"","first_seen":"2025-06-19T04:15:59.508357Z","last_seen":"2026-04-24T07:12:19.624612Z","times_seen":7848,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/index-C4uIyFFH.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"5669c0bf36f26b8bf4f277b8c5cac9ae","sha1":"f5fb75ab510d7bbabb8a4bbdb88a479c47c53c43","sha256":"c3489daea4fc1488438799624b61741f0bf0225038109e2cc8a25238775f9375","sha512":"2b5ea7db1b12a816c39dd512adb588fee5f0e4fdd6046e579b118d2d20291149c213477afe4888da388a66870463aa10e7a8b1b5f8b521c15d0b97c035accd95","ssdeep":"","tlshash":"2c21114ef9899cb503b644ac6485006163ea5eae83b4d6f0b7fd0f9943b1c30c52ea7d","size":1405,"data":"","first_seen":"2025-09-23T05:38:40.244679Z","last_seen":"2026-04-24T07:12:19.646517Z","times_seen":772,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/@vue-BJUJtGKq.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"importedModule","is_inline":false,"md5":"f06f0fd561eea95c4feccde0746117b1","sha1":"32c45886151948703a8ac692a48d3cce70aa25e3","sha256":"e228111590701d2db46eb9d8c2a4d85377a449f398bbed10a94ef47938a57c55","sha512":"88e3e6da9f043912c14291675ff91b5426e21fe36defd0cd318131e1b2a9c791fdd662697838cbc1a0a0bddc3139d5ce4e81f82108886153575d383aef0fe4a1","ssdeep":"768:8XCLkQJtg/ocN0MjFuPgDpt6RDMk/0jOVT/eFYl9E27OqX6MQYAMOxTlExfheEqh:9wSCqJCI2b273WNK2U40MH","tlshash":"917308e83092b46253fa19e2007b0406f3792d5a3849d998b16dfedb3e7241550bbfbd","size":74100,"data":"","first_seen":"2025-06-19T04:15:59.499735Z","last_seen":"2026-04-24T07:12:19.640188Z","times_seen":7851,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":true,"md5":"cd7a34e714de94d5c29b8ac5acdde24b","sha1":"b722bccb435490630d97ef88cafeb02d92f70fd0","sha256":"312ebfdc50a0e168cff60c206811b02e944263a7d9060c2685509dacfacd7f71","sha512":"a724bc648a508c24e5bb1788e1f02b47030893bbb0b80a99e380d95480095983a35d8ec11193c53f0a67db47a289ab608fcbc9dbca846bfdd5d61a8832290f43","ssdeep":"","tlshash":"58e07d48ff28c7f316ce28ab516e770858d104d58c1b58024cebccc86935ed87291527","size":314,"data":"","first_seen":"2023-03-11T11:23:25Z","last_seen":"2026-04-24T08:59:42.153339Z","times_seen":31771,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":true,"md5":"528dd01eb509d1fc3c68b48e165c9d77","sha1":"8d702f33d869eb8c53cf75c17014f96385322395","sha256":"b508dff20bdbd9138e31aa48c45bc501805e509d2fd4709b39c4a60cd5c6b43a","sha512":"4c1edeec560f431005363ff5291acc80c1c42edf7c9a6d6e4fde2f7539b6a35a8e36f0bc228503263277bf5df4525dc579575faadca614c32e5dfa885a2d343b","ssdeep":"","tlshash":"78a012bb71b851710cd51ba7a40455e01c20123105052c101c8d5151c011c171d394c0","size":84,"data":"","first_seen":"2023-04-07T06:55:59Z","last_seen":"2026-04-24T09:34:17.711751Z","times_seen":35172,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/ua-parser-js-DP5omx3I.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"importedModule","is_inline":false,"md5":"b71c1a4fd07412d0ddd5f0006e401e75","sha1":"a3cf730602aeef3df364916f4ef42e7c0f903419","sha256":"bc8e4ca06ec494e7df32f2dbf125b9b0503a60de5991b5badbb20e5e6c043ad7","sha512":"d018e92aeb4d98a54260edbd707e088a8875010278bc8979921cbbc492281e1fb8720ced7e21cc29b33500d4221c0c403b88b31b6f70caf069f2fc4daad2b793","ssdeep":"384:KLykXfExhSMH+rq/51Raw7t2v6az5CgSpnMjEMuSI162By4iBWijdv:KLFfY1erq/51YGt2/z5C3fSI162By4ib","tlshash":"f6b2a77fe3d5b73c07ece508d63504482f271f69ea88a0746e9892a1a9747c612c7f36","size":24038,"data":"","first_seen":"2025-06-19T04:15:59.5131Z","last_seen":"2026-04-24T07:12:19.695862Z","times_seen":9222,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/index-BWyx4C_v.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"0e6a6fac56d6fde585dff989513539a0","sha1":"e1af81483ff9c8d2877f97ed3ec4e13993ee2815","sha256":"fd4cdb229bab97d76f49a437daf3644a9d59b696ca4a89d5cfc57d39a142a8f7","sha512":"5808262a58ddfde29448222c25bc7b4eee70d37c29fea48dde471a77ce295d2f4787da709829c8d0d0f23b586ed2ec9e5927eff5ba1e6a3857617c647d3c77a9","ssdeep":"3072:k3aAKlmlJ+Sj5KNpGqExCIkDCUkCD065tBD:+aANlJ+SYtExCIkDCUkCdD","tlshash":"2ac35cee7279657c62d309a8ab3b1140631d78a63985c4e0f56e8f782ba3c48f357f14","size":125531,"data":"","first_seen":"2025-09-23T05:38:40.263087Z","last_seen":"2026-04-24T07:12:19.633969Z","times_seen":908,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/zh-l1QUm94i.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"190a266aad198d95e50d014a6f44fa26","sha1":"490435eb1e6672a3a1cf7780059a955450969eb3","sha256":"b23ee6ee5c73d7b38a876e130f8f50affc79dcbba56dd6a12a158d65c5dc665f","sha512":"9d1bcd3abdfc558d7933be53c5eea12c099d3cc95c1dd27553e5aa564541285f00527cd85597a89e99f68d63d56c8e173b8affcd6049504b10c6db9a89aefc9a","ssdeep":"96:fASPtkQV+RbBllseqL/pI+MEag9Yn4pKzt7qzAr9NOQg71pLDIoblBenYGv3r:4SFhGnqbWJd4+Ms2QmPblUn/r","tlshash":"10d10ada47fc9eb8468602956f5b0884b0182dfbe6d6c8e45fa689f53089f1f13131db","size":6285,"data":"","first_seen":"2025-09-23T05:38:40.284185Z","last_seen":"2026-04-24T07:12:19.70578Z","times_seen":1756,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/index-PQFJZxti.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"1bbcce1d0dfd966b34e0a4fa36ba61eb","sha1":"e3326ee8a39e3fba28814952a94f193970f3720c","sha256":"77904cf515f878a7b35f04836c1f4ec147b1bddcd7a4582f60c70bfc8a2a91f2","sha512":"69839616aa9dcebaee8efa4fbfddf46420ace17eb744e0b199b41d25b9a5eb2a41554bb0e135fc95bee3592e38225719cb1cd01fe12f24da666cb459f20d0fe3","ssdeep":"192:LmYnduMPLweMZR7kNef+fgfQGFcI1tYURo0AJt4:JP8eqCUQGR0C","tlshash":"1cd1740efc184d7593b218ecb649040411655b9397bcc2b0f6be5b990ae4c649faf4fc","size":6713,"data":"","first_seen":"2025-09-23T05:38:40.278827Z","last_seen":"2026-04-24T07:12:19.625893Z","times_seen":772,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/index-DFEBLR_D.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"abfa63d4dea803bf1806dda850fd3d95","sha1":"d0c4461e7c50841c22857c596c1a6d1e684f0b76","sha256":"4ec50796613b5cc71f96273cc14bc8b4d7d89480b9309c11e5a2375eccf6a4ab","sha512":"886fba717ff674a3d2ba8c69c98596b9760c83256cf512e14f6d3170d4f86e5e63786fb6dcb413a57ba14e3d9981d65cff6a11d04dec51b07c8fae11c6c1f551","ssdeep":"96:khwXKuMKU1dNgKLRdpJzuHw+RwDG3wdAVEY30HYRl4VyAkul+KWuWZnp:kyXKuMzdpPp0Hw+Rw2wdO30HYjOkY+ff","tlshash":"35b1c88eb0b7d83a9396466855191411d218edc35078936cb6fcce2c77f2f5883ab70e","size":5247,"data":"","first_seen":"2025-09-23T05:38:40.274782Z","last_seen":"2026-04-24T07:12:19.632998Z","times_seen":773,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"hpihc.vip/","fqdn":"hpihc.vip","domain":"hpihc.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"bf6b468dd4696f0eba077b510fdbc3c7","sha1":"cbb9fdcb7720e8edb3cd1f6611e5d30cc3bea58b","sha256":"5e9dfe92510580c4250850ea1623d89f4b780f90ce6524b8fc9dd0e406e44223","sha512":"db1d46f0b49d6ab68d371805b6b8b530618af07755cac778305a26f75f92400455a9ce3bad2357e17886d3230cecbc4a0087002e208be06621dd255db2ed96b3","ssdeep":"","tlshash":"cde026f32440853029fa329bab13b7513c2251c72e42700544180c41a12cf8ec63dea9","size":325,"data":"","first_seen":"2025-12-19T23:45:11.194683Z","last_seen":"2026-04-24T07:12:19.717647Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/@vueuse-NPvArpLr.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"importedModule","is_inline":false,"md5":"f57c1dab91fa5bcf6cc05dafb72fe784","sha1":"02165143404317c6434319149653f730bbe80603","sha256":"7244981ad0fd0347cc2f3d384a2a2db3cc2678d99e6b5ea5381f4d98d7625108","sha512":"2bf0b1de7a04bc917d7a792b58d79d778ad5f35bd6c088a8a051b534c4f8a72eccb592c05adadd8e2304a84bc3dbfc21168fc5746bb7df89f2ef5a99640168bb","ssdeep":"96:lrJGxFiRKyxeF1NFjWtE8CEQxST3VPXt5L2kJOLUtNRCeSkG6ToEuvSOpeFPTbQP:lrYiRKD6tE8vQxST3pL2dUtNRnSkGCoX","tlshash":"ffb1c99875927071737b4c99d077010ab33c39a0358ee0d0a02fafd53a619e293b3d9e","size":5323,"data":"","first_seen":"2025-09-23T05:38:40.251503Z","last_seen":"2026-04-24T07:12:19.708412Z","times_seen":4616,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/@vant-BGmWO0Bj.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.142","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"importedModule","is_inline":false,"md5":"6d405d0e201a7e59001fa3732e601deb","sha1":"5e9782ceacd87cb267c610855a11d88388d5f849","sha256":"49225d1c23add4df603a7e2d4d8dd8cb7e26d926b4e461bb58b3ab6dc86e785f","sha512":"4ad5f0a44df106356de8d02bf00364e1000f804ace31a63094ba7174eb892a9ec3769118bc5ddea163ae8cc9784bf4b5008eff7c7a5bfae9492d2346dcf995a6","ssdeep":"","tlshash":"b95167ac3651bc34465a1ea2417f9ba5b2163824704b8050e008dd153951863c7fffde","size":2638,"data":"","first_seen":"2025-06-19T04:15:59.51972Z","last_seen":"2026-04-24T07:12:19.691001Z","times_seen":7847,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/crypto-js-Bxg3hG30.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"importedModule","is_inline":false,"md5":"0af8d2f1fe6e8561c27e25def2203a11","sha1":"795359172462f18ddf0b219d3f4f1025852a3232","sha256":"59a93b83cecb195f686ab071a66fed26cabca9bd21f797b9b78f7f20b3f8a9be","sha512":"e6de4c7e8731c98bda03cb76f76c0cbc674c2f14dc53228797f66a26c12e678a8840319e35480b37fe879745640134c306e147e16fda165df9645aa8b99cb54e","ssdeep":"1536:s1MrM4s1tY5FfYeOj/RQtPtNPU9ArHMto:s/aYeOLRK","tlshash":"64634ac4768870d1a3ab78a0093fb08b727335a249acd198f264e6dd6d7c6dd8136d3d","size":69315,"data":"","first_seen":"2025-06-19T04:15:59.523491Z","last_seen":"2026-04-24T07:12:19.647304Z","times_seen":5327,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"xolcea.lbx3o1.com:39528/?u=http://hpihc.vip/\u0026p=/","fqdn":"xolcea.lbx3o1.com","domain":"lbx3o1.com","tld":"com"},"ip":{"addr":"23.141.4.47","port":39528,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-24T07:11:34.950Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"xolcea.lbx3o1.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 07 Mar 2026 00:00:00 GMT","end":"Sun, 07 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"18:58:DC:4F:88:95:46:A4:2A:32:40:F7:DB:87:B6:14:DA:CE:65:32","sha256":"44:02:50:01:4A:3F:D4:A1:DA:D9:E0:0C:57:88:95:62:2F:72:89:9B:D9:E0:47:F1:17:38:41:9E:21:5A:9B:E1"}}},"request":{"raw":"GET /?u=http://hpihc.vip/\u0026p=/ HTTP/1.1\r\nHost: xolcea.lbx3o1.com:39528\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://hpihc.vip/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: nginx\r\nDate: Fri, 24 Apr 2026 07:11:35 GMT\r\nContent-Type: text/html; charset=utf-8\r\nContent-Length: 0\r\nConnection: keep-alive\r\nLocation: https://wtt297.sgikvo.cn\r\nX-Frame-Options: SAMEORIGIN\r\nVary: Origin\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2921,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-24T10:19:26.845862Z","times_seen":14139900,"resource_available":true,"data":null}},"time_used":1693,"timings":{"blocked":726,"dns":40,"connect":227,"send":0,"wait":240,"receive":0,"ssl":457},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/vant-D5IJGWJU.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:39.458Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/vant-D5IJGWJU.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:40 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:12 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db9244-6241\"\r\nExpires: Fri, 24 Apr 2026 19:11:40 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25153,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (24864)","md5":"852e273954fa90d55c0e74ba1adde9e4","sha1":"1edd5cd78042a89fdb453eff7ac00a81ee11381d","sha256":"a362f686e909416c308eb2e9bd7303593e68b441a6672db1d2d76f8545fe3049","sha512":"593a21cc5befa4ea9345c755b92e155f572805c6d43b162d45e5fc28db1d8aa7a29e65da492cdd1773689a4c5b28d321c6e70b57082931694d38695db8ebce6a","ssdeep":"768:aHcoeRdR113jDKzaKhIP3aJZmHD19BOoTEwVde0ewh6Kg462KIGsEnCrE/jXg:Jo0DKzO3aUnMULPKXg","tlshash":"f7b209993086f43f63f585ee40690201a3291b6a341ec4ecb53ceedbb299c5974b6b35","first_seen":"2025-06-19T04:15:59.508357Z","last_seen":"2026-04-24T07:12:19.624612Z","times_seen":7848,"resource_available":true,"data":null}},"time_used":1391,"timings":{"blocked":567,"dns":36,"connect":249,"send":0,"wait":252,"receive":1,"ssl":274},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/index-PQFJZxti.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:46.050Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/index-PQFJZxti.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/?cid=2657320\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:46 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:08 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db9240-1a39\"\r\nExpires: Fri, 24 Apr 2026 19:11:46 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6713,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (6227)","md5":"1bbcce1d0dfd966b34e0a4fa36ba61eb","sha1":"e3326ee8a39e3fba28814952a94f193970f3720c","sha256":"77904cf515f878a7b35f04836c1f4ec147b1bddcd7a4582f60c70bfc8a2a91f2","sha512":"69839616aa9dcebaee8efa4fbfddf46420ace17eb744e0b199b41d25b9a5eb2a41554bb0e135fc95bee3592e38225719cb1cd01fe12f24da666cb459f20d0fe3","ssdeep":"192:LmYnduMPLweMZR7kNef+fgfQGFcI1tYURo0AJt4:JP8eqCUQGR0C","tlshash":"1cd1740efc184d7593b218ecb649040411655b9397bcc2b0f6be5b990ae4c649faf4fc","first_seen":"2025-09-23T05:38:40.278827Z","last_seen":"2026-04-24T07:12:19.625893Z","times_seen":772,"resource_available":true,"data":null}},"time_used":513,"timings":{"blocked":265,"dns":0,"connect":0,"send":0,"wait":248,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/siteadmin/upload/img/2010996939338502146.avif","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:47.223Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"GET /siteadmin/upload/img/2010996939338502146.avif HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:47 GMT\r\ncontent-type: image/avif\r\ncontent-length: 37524\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B3FC4F3F3639A803A3\r\nvary: Accept-Encoding\r\naccept-ranges: bytes\r\netag: \"D46DA18B713ECFE1A1DA4368225D2D1A\"\r\nlast-modified: Tue, 13 Jan 2026 08:46:49 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 15893265700455420591\r\nx-oss-storage-class: Standard\r\ncache-control: immutable,stale-while-revalidate=86400,public,max-age=86400\r\ncontent-md5: 1G2hi3E+z+Gh2kNoIl0tGg==\r\nx-oss-server-time: 4\r\nvia: 1.1 PS-000-01haU38:2 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01haU38HKG(origin)\r\nx-ws-request-id: 69eb17b3_PS-SIN-04Xkl20_48021-58220\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":37524,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"d46da18b713ecfe1a1da4368225d2d1a","sha1":"e21e32ec57fa5aa359784f1803e1ae68414c9cbf","sha256":"e5624b3bd2b2142150e2c04c600b0c01e42036e7f152dba45bbdc696dfafe0ad","sha512":"7ecd6a68cf133445e5985ee47a30ab9b1bbbab157a5cd383dae0de23b8ecdce6775cbb884f857e2211d8036e93efabbca79318d0cb2883bf2c4fbf7ad87202a9","ssdeep":"768:u+WCRuPbLr9xSBqmQSLlJmm3piwCB2VYQXu7It5jb9/CQWvWmofLp+3QRZ:PWdfScmDlAm5iwC0XXu7IDN6QNm4XX","tlshash":"86f2f1c9e1b65266cd9c44b91030e73da3c603ed70d0aad83abc49b19c53ec5571afda","first_seen":"2026-02-01T22:50:33.532472Z","last_seen":"2026-04-24T07:12:19.627115Z","times_seen":5,"resource_available":false,"data":null}},"time_used":942,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":562,"receive":380,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aojwoem.37k3wjcvip-4dpaj8z.vip/ipacdn.txt?t=1777014702292","fqdn":"aojwoem.37k3wjcvip-4dpaj8z.vip","domain":"37k3wjcvip-4dpaj8z.vip","tld":"vip"},"ip":{"addr":"171.22.195.163","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:42.297Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aojwoem.37k3wjcvip-4dpaj8z.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 23 Apr 2026 19:22:07 GMT","end":"Wed, 22 Jul 2026 19:22:06 GMT"},"fingerprint":{"sha1":"66:80:97:0A:67:F6:83:7F:34:81:D6:DB:2C:FE:C7:90:3A:04:06:2B","sha256":"E6:9B:AF:E3:C0:18:A8:F1:27:65:3B:7D:9D:F4:B5:95:94:D1:20:59:A8:04:AB:CA:91:CF:F9:F6:42:A2:EB:D5"}}},"request":{"raw":"GET /ipacdn.txt?t=1777014702292 HTTP/1.1\r\nHost: aojwoem.37k3wjcvip-4dpaj8z.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:44 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3600\r\ncache-control: s-maxage=315360000,max-age=0,public\r\nset-cookie: acw_tc=0a0f6b9317770147045608911e480acb94439b992573f0abb28472b8db09bf;path=/;HttpOnly;Max-Age=1800\r\nx-cache: MISS\r\nserver: ****\r\nstrict-transport-security: max-age=31536000; preload\r\nx-request-id: 908ba1a6f144fb38cd365a7889d63ebc\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":4499,"timings":{"blocked":2103,"dns":1687,"connect":206,"send":0,"wait":290,"receive":0,"ssl":208},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-24","alert":"Sinkholed","trigger":"aojwoem.37k3wjcvip-4dpaj8z.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wmeigojirto.spl96w4.com/ipacdn.txt?t=1777014702293","fqdn":"wmeigojirto.spl96w4.com","domain":"spl96w4.com","tld":"com"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:42.305Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wmeigojirto.spl96w4.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sun, 22 Mar 2026 00:00:00 GMT","end":"Tue, 06 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"9B:93:25:68:5D:49:0E:62:B3:CA:CD:07:4B:29:A6:A1:AC:C1:03:B3","sha256":"0A:23:65:D0:3E:3E:B3:F4:02:51:89:A5:F1:03:A3:DA:75:B2:52:84:63:CD:84:7A:A9:F0:20:AD:8D:E1:FF:81"}}},"request":{"raw":"GET /ipacdn.txt?t=1777014702293 HTTP/1.1\r\nHost: wmeigojirto.spl96w4.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:43 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nset-cookie: acw_tc=0a0ccb2d17770147030817922e51380fdca681a227b4af9c94beeb6badeffd;path=/;HttpOnly;Max-Age=1800\r\ncache-control: s-maxage=315360000,max-age=0,public\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3600\r\naccess-control-allow-credentials: true\r\nserver: gocache\r\nc-type: pf\r\nrid: e12e0266826288b450143b85a58245af\r\nx-cache-status: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":1580,"timings":{"blocked":649,"dns":147,"connect":1,"send":0,"wait":280,"receive":0,"ssl":501},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ghagtwgay.mhs476i.com/bewcdn.txt?t=1777014702770","fqdn":"ghagtwgay.mhs476i.com","domain":"mhs476i.com","tld":"com"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:42.786Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ghagtwgay.mhs476i.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 12 Dec 2025 00:00:00 GMT","end":"Sat, 12 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"44:2E:7C:77:42:34:B6:9A:EE:FF:B1:B8:9B:69:3C:EB:B9:37:4C:07","sha256":"CB:FC:68:74:8A:F1:E6:06:0D:C4:29:56:69:19:04:37:AA:1C:60:88:8B:AC:CA:0F:06:59:F2:3E:3B:BA:30:3C"}}},"request":{"raw":"GET /bewcdn.txt?t=1777014702770 HTTP/1.1\r\nHost: ghagtwgay.mhs476i.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:43 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nx-oss-request-id: 69EB17AFCA8B1C35335C73DC\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Thu, 23 Apr 2026 11:34:58 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.2.39\r\ncache-control: s-maxage=31622400,max-age=0,public\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 2\r\nserver: gocache\r\nc-type: pf\r\nrid: f50996ac22581065eb6c56d12bcea650\r\nx-cache-status: MISS\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":1976,"timings":{"blocked":850,"dns":359,"connect":1,"send":0,"wait":270,"receive":0,"ssl":493},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"awhtej.5a6s9b3.com/hall/api/agent/promote/binding/reportViewV2","fqdn":"awhtej.5a6s9b3.com","domain":"5a6s9b3.com","tld":"com"},"ip":{"addr":"138.113.100.52","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:42.984Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"awhtej.5a6s9b3.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Feb 2026 13:12:47 GMT","end":"Fri, 29 May 2026 13:12:46 GMT"},"fingerprint":{"sha1":"3C:8B:BD:22:EF:20:B7:3E:AD:AF:94:6C:D5:97:B8:2B:CE:AC:CF:A4","sha256":"C2:09:34:01:AB:3B:04:E7:20:27:A0:97:B5:C2:89:88:37:B2:32:D3:33:B4:06:ED:D9:C2:60:B7:74:2B:1B:9C"}}},"request":{"raw":"POST /hall/api/agent/promote/binding/reportViewV2 HTTP/1.1\r\nHost: awhtej.5a6s9b3.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en;q=0.9, *;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nlanguage: en\r\ndevice: 9522bc702c9dca111c32c09840adf38f\r\nx-version: 6.4.3\r\nX-Request-Id: a1a59726-ee1b-4ce3-80e6-2252865c5e8a\r\nX-Custom-Referer: https://wtt297.sgikvo.cn/?cid=2657320\r\ndomain: wtt297.sgikvo.cn\r\nclienttimezone: UTC0\r\ndeviceModel: undefined-undefined\r\nnonce: a1a59726-ee1b-4ce3-80e6-2252865c5e8a\r\ntimestamp: 1777014702\r\nsiteCode: 1155\r\nsign: unFk4qEZmYr/Mh9QdlrpnG+LuDVEgVaFFjUyPPgg2sQafC3exjZXuQA1MvcZa3oA\r\ndevicetype: 4\r\nplatformtype: 3\r\nContent-Type: application/json\r\nContent-Length: 117\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":117,"data":"{\"channel_info\":\"2657320\",\"visitor_device\":\"9522bc702c9dca111c32c09840adf38f\",\"accessUrl\":\"https://wtt297.sgikvo.cn\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:43 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 100\r\nset-cookie: acw_tc=0a094e7317770147030884303e3fcf1aefcd6faac74437607e7f5bf67717e8;path=/;HttpOnly;Max-Age=1800\r\nx-trace-id: 535abcde87f2dc2fb191cd4659ee1259\r\nx-env-go-biz-agent-server: 0\r\ncache-control: no-cache\r\nx-saas-server-id: 844988bcd4-6jclc|51b20f23b03521e1b014ef59ee92a70e\r\naccess-control-allow-methods: *\r\naccess-control-max-age: 1728000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Trace-ID, newjwt, token\r\nvia: 1.1 jp184:2 (W), 1.1 PS-CDG-04A5e173:24 (W)\r\nx-px: ms PS-CDG-04A5e173CDG, ms jp184SIN(origin)\r\nx-ws-request-id: 69eb17ae_PS-CDG-04A5e173_40806-52229\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":100,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"321730592e99c809c3554b25965a946d","sha1":"9dc6f43747a95f9f0d6539e0f0007aa00b6ee4b9","sha256":"4a5747e6f40cfcd5fc6d4631b671704338869db5eebc223917bde38f0f427141","sha512":"9f5b244ab92208c1c30e38d3c83abe5420b10e85179bb35be78b086b8a12f596fb35be6fc3e86e1519263f3904d5b9e539ccb34bda6f6118cf0e809c8e40fab8","ssdeep":"","tlshash":"4db01292563c87428496a365114f05c1d79e15454c388318ce4ead38d4aa06b26041b8","first_seen":"2026-04-24T07:12:19.630809Z","last_seen":"2026-04-24T07:12:19.630809Z","times_seen":1,"resource_available":false,"data":null}},"time_used":207,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":207,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/index-PQFJZxti.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:46.324Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/index-PQFJZxti.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/js/index-BWyx4C_v.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:46 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:08 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db9240-1a39\"\r\nExpires: Fri, 24 Apr 2026 19:11:46 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6713,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (6227)","md5":"1bbcce1d0dfd966b34e0a4fa36ba61eb","sha1":"e3326ee8a39e3fba28814952a94f193970f3720c","sha256":"77904cf515f878a7b35f04836c1f4ec147b1bddcd7a4582f60c70bfc8a2a91f2","sha512":"69839616aa9dcebaee8efa4fbfddf46420ace17eb744e0b199b41d25b9a5eb2a41554bb0e135fc95bee3592e38225719cb1cd01fe12f24da666cb459f20d0fe3","ssdeep":"192:LmYnduMPLweMZR7kNef+fgfQGFcI1tYURo0AJt4:JP8eqCUQGR0C","tlshash":"1cd1740efc184d7593b218ecb649040411655b9397bcc2b0f6be5b990ae4c649faf4fc","first_seen":"2025-09-23T05:38:40.278827Z","last_seen":"2026-04-24T07:12:19.625893Z","times_seen":772,"resource_available":true,"data":null}},"time_used":271,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":271,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/index-DFEBLR_D.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:46.357Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/index-DFEBLR_D.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/?cid=2657320\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:46 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:08 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db9240-147f\"\r\nExpires: Fri, 24 Apr 2026 19:11:46 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5247,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (5246)","md5":"abfa63d4dea803bf1806dda850fd3d95","sha1":"d0c4461e7c50841c22857c596c1a6d1e684f0b76","sha256":"4ec50796613b5cc71f96273cc14bc8b4d7d89480b9309c11e5a2375eccf6a4ab","sha512":"886fba717ff674a3d2ba8c69c98596b9760c83256cf512e14f6d3170d4f86e5e63786fb6dcb413a57ba14e3d9981d65cff6a11d04dec51b07c8fae11c6c1f551","ssdeep":"96:khwXKuMKU1dNgKLRdpJzuHw+RwDG3wdAVEY30HYRl4VyAkul+KWuWZnp:kyXKuMzdpPp0Hw+Rw2wdO30HYjOkY+ff","tlshash":"35b1c88eb0b7d83a9396466855191411d218edc35078936cb6fcce2c77f2f5883ab70e","first_seen":"2025-09-23T05:38:40.274782Z","last_seen":"2026-04-24T07:12:19.632998Z","times_seen":773,"resource_available":true,"data":null}},"time_used":491,"timings":{"blocked":244,"dns":0,"connect":0,"send":0,"wait":247,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/index-BWyx4C_v.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:46.630Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/index-BWyx4C_v.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/?cid=2657320\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:47 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:08 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db9240-1ea5b\"\r\nExpires: Fri, 24 Apr 2026 19:11:46 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":125531,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (64612)","md5":"0e6a6fac56d6fde585dff989513539a0","sha1":"e1af81483ff9c8d2877f97ed3ec4e13993ee2815","sha256":"fd4cdb229bab97d76f49a437daf3644a9d59b696ca4a89d5cfc57d39a142a8f7","sha512":"5808262a58ddfde29448222c25bc7b4eee70d37c29fea48dde471a77ce295d2f4787da709829c8d0d0f23b586ed2ec9e5927eff5ba1e6a3857617c647d3c77a9","ssdeep":"3072:k3aAKlmlJ+Sj5KNpGqExCIkDCUkCD065tBD:+aANlJ+SYtExCIkDCUkCdD","tlshash":"2ac35cee7279657c62d309a8ab3b1140631d78a63985c4e0f56e8f782ba3c48f357f14","first_seen":"2025-09-23T05:38:40.263087Z","last_seen":"2026-04-24T07:12:19.633969Z","times_seen":908,"resource_available":true,"data":null}},"time_used":1017,"timings":{"blocked":260,"dns":0,"connect":0,"send":0,"wait":508,"receive":249,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/index-DFEBLR_D.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:46.703Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/index-DFEBLR_D.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/js/index-BWyx4C_v.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:46 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:08 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db9240-147f\"\r\nExpires: Fri, 24 Apr 2026 19:11:46 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5247,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (5246)","md5":"abfa63d4dea803bf1806dda850fd3d95","sha1":"d0c4461e7c50841c22857c596c1a6d1e684f0b76","sha256":"4ec50796613b5cc71f96273cc14bc8b4d7d89480b9309c11e5a2375eccf6a4ab","sha512":"886fba717ff674a3d2ba8c69c98596b9760c83256cf512e14f6d3170d4f86e5e63786fb6dcb413a57ba14e3d9981d65cff6a11d04dec51b07c8fae11c6c1f551","ssdeep":"96:khwXKuMKU1dNgKLRdpJzuHw+RwDG3wdAVEY30HYRl4VyAkul+KWuWZnp:kyXKuMzdpPp0Hw+Rw2wdO30HYjOkY+ff","tlshash":"35b1c88eb0b7d83a9396466855191411d218edc35078936cb6fcce2c77f2f5883ab70e","first_seen":"2025-09-23T05:38:40.274782Z","last_seen":"2026-04-24T07:12:19.632998Z","times_seen":773,"resource_available":true,"data":null}},"time_used":249,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":249,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"146.103.79.31/ipacdn.txt?t=1777014702293","fqdn":"146.103.79.31","domain":"146.103.79.31","tld":""},"ip":{"addr":"146.103.79.31","port":443,"asn":0,"as":"","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:42.304Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"146.103.79.24","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Sat, 04 Apr 2026 03:50:08 GMT","end":"Tue, 20 Oct 2026 03:50:08 GMT"},"fingerprint":{"sha1":"EF:46:8B:00:4B:19:BA:11:E3:82:4A:11:4A:8E:3F:28:B8:FD:0B:CC","sha256":"DE:0F:60:4C:F6:EB:51:5A:B2:C8:0C:33:8F:A3:65:84:68:20:42:F0:C7:E5:B1:19:C3:2E:19:61:5E:5E:D4:77"}}},"request":{"raw":"GET /ipacdn.txt?t=1777014702293 HTTP/1.1\r\nHost: 146.103.79.31\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:43 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nset-cookie: acw_tc=0a0ccb1517770147030378355e521696ba165ebecc64722e17569a7bc3326e;path=/;HttpOnly;Max-Age=1800\r\ncache-control: s-maxage=315360000,max-age=0,public\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3600\r\naccess-control-allow-credentials: true\r\nvia: 1.1 PS-SIN-047qh52:10 (W), 1.1 PS-SIN-04Xkl20:13 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-SIN-047qh52SIN(origin)\r\nx-ws-request-id: 69eb17af_PS-SIN-04Xkl20_44803-51228\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":1450,"timings":{"blocked":614,"dns":0,"connect":183,"send":0,"wait":219,"receive":0,"ssl":431},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fwijow325.y71x2vm.vip/bewcdn.txt?t=1777014702770","fqdn":"fwijow325.y71x2vm.vip","domain":"y71x2vm.vip","tld":"vip"},"ip":{"addr":"45.125.14.203","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:42.787Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fwijow325.y71x2vm.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 23:46:45 GMT","end":"Fri, 05 Jun 2026 23:46:44 GMT"},"fingerprint":{"sha1":"F2:04:2C:77:12:D8:16:26:6C:34:2A:0B:16:8C:E9:BF:90:81:99:EA","sha256":"8A:F3:42:CC:3D:46:1F:3D:A5:E3:AB:7E:70:6A:75:32:3F:0C:71:97:10:42:DA:2F:32:88:69:90:2D:3F:1B:5E"}}},"request":{"raw":"GET /bewcdn.txt?t=1777014702770 HTTP/1.1\r\nHost: fwijow325.y71x2vm.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\ncache-control: s-maxage=31622400,max-age=0,public\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\ncontent-type: text/plain\r\ndate: Fri, 24 Apr 2026 07:11:49 GMT\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Thu, 23 Apr 2026 11:34:58 GMT\r\nserver: AliyunOSS\r\nstrict-transport-security: max-age=31536000\r\nvary: Origin\r\nx-cache: UPDATING\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-meta-version: v7.2.39\r\nx-oss-object-type: Normal\r\nx-oss-request-id: 69EB17B5FC4F3F37315513A3\r\nx-oss-server-time: 2\r\nx-oss-storage-class: Standard\r\ncontent-length: 2\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":7187,"timings":{"blocked":-1,"dns":1425,"connect":226,"send":0,"wait":5300,"receive":0,"ssl":235},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-24","alert":"Sinkholed","trigger":"fwijow325.y71x2vm.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fasjfksdjfks.y71x2vm.vip/bewcdn.txt?t=1777014702769","fqdn":"fasjfksdjfks.y71x2vm.vip","domain":"y71x2vm.vip","tld":"vip"},"ip":{"addr":"45.125.14.216","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:42.781Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fasjfksdjfks.y71x2vm.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 22 Apr 2026 19:46:43 GMT","end":"Tue, 21 Jul 2026 19:46:42 GMT"},"fingerprint":{"sha1":"5C:4D:F6:B6:AE:55:31:DB:6A:31:F4:BF:59:1C:6F:F3:8C:09:FD:66","sha256":"FE:AF:F6:F2:9F:5C:28:08:96:CC:94:09:48:93:C5:BA:B4:C9:29:C6:46:0A:BC:A2:CE:A3:24:5C:E3:C7:DF:F4"}}},"request":{"raw":"GET /bewcdn.txt?t=1777014702769 HTTP/1.1\r\nHost: fasjfksdjfks.y71x2vm.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\ncache-control: s-maxage=31622400,max-age=0,public\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\ncontent-type: text/plain\r\ndate: Fri, 24 Apr 2026 07:11:46 GMT\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Thu, 23 Apr 2026 11:34:58 GMT\r\nserver: AliyunOSS\r\nstrict-transport-security: max-age=31536000\r\nvary: Origin\r\nx-cache: UPDATING\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-meta-version: v7.2.39\r\nx-oss-object-type: Normal\r\nx-oss-request-id: 69EB17B2EB4F4B353849958E\r\nx-oss-server-time: 1\r\nx-oss-storage-class: Standard\r\ncontent-length: 2\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":5656,"timings":{"blocked":1797,"dns":1372,"connect":210,"send":0,"wait":2056,"receive":0,"ssl":216},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-24","alert":"Sinkholed","trigger":"fasjfksdjfks.y71x2vm.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"awhtej.5a6s9b3.com/hall/api/agent/promote/binding/reportViewV2","fqdn":"awhtej.5a6s9b3.com","domain":"5a6s9b3.com","tld":"com"},"ip":{"addr":"138.113.100.52","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:42.784Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"awhtej.5a6s9b3.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Feb 2026 13:12:47 GMT","end":"Fri, 29 May 2026 13:12:46 GMT"},"fingerprint":{"sha1":"3C:8B:BD:22:EF:20:B7:3E:AD:AF:94:6C:D5:97:B8:2B:CE:AC:CF:A4","sha256":"C2:09:34:01:AB:3B:04:E7:20:27:A0:97:B5:C2:89:88:37:B2:32:D3:33:B4:06:ED:D9:C2:60:B7:74:2B:1B:9C"}}},"request":{"raw":"OPTIONS /hall/api/agent/promote/binding/reportViewV2 HTTP/1.1\r\nHost: awhtej.5a6s9b3.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: clienttimezone,content-type,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:42 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 0\r\nset-cookie: acw_tc=0a0ccafe17770147028864231e4fea841cddd22c05897150b7fd8aa75dc984;path=/;HttpOnly;Max-Age=1800\r\nx-saas-server-id: 844988bcd4-8txwj|6f80632aa42526fb74f1eadf99fcc203\r\naccess-control-allow-methods: *\r\naccess-control-max-age: 1728000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: clienttimezone,content-type,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\naccess-control-expose-headers: X-Trace-ID, newjwt, token\r\nvia: 1.1 PS-SIN-04DFS81:8 (W), 1.1 PS-CDG-04A5e173:24 (W)\r\nx-px: ms PS-CDG-04A5e173CDG, ms PS-SIN-04DFS81SIN(origin)\r\nx-ws-request-id: 69eb17ae_PS-CDG-04A5e173_40806-52214\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-24T10:19:26.845862Z","times_seen":14139900,"resource_available":true,"data":null}},"time_used":203,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":203,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/hall/api/agent/downloadSite/getDownloadTemplate/tid/4260399.json?t=1777014","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:44.775Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"GET /hall/api/agent/downloadSite/getDownloadTemplate/tid/4260399.json?t=1777014 HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en;q=0.9, *;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nlanguage: en\r\ndevice: 9522bc702c9dca111c32c09840adf38f\r\nx-version: 6.4.3\r\nX-Request-Id: 60b96849-88fe-46c1-a0ee-edf51f13f2a9\r\nX-Custom-Referer: https://wtt297.sgikvo.cn/?cid=2657320\r\ndomain: wtt297.sgikvo.cn\r\nclienttimezone: UTC0\r\ndeviceModel: undefined-undefined\r\nnonce: 60b96849-88fe-46c1-a0ee-edf51f13f2a9\r\ntimestamp: 1777014704\r\nsiteCode: 1155\r\nsign: AM5RisQh0y1L6qLdxoMPte4TyNKIN7W5DA9hwK5KE6duNFVDTjAuQrWy5AFHCiGV\r\ndevicetype: 4\r\nplatformtype: 3\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:44 GMT\r\ncontent-type: application/json\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B01F1978323579F3F9\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\nlast-modified: Fri, 24 Apr 2026 04:44:31 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 1971991495187394514\r\nx-oss-storage-class: Standard\r\ncache-control: s-maxage=600,max-age=0,public\r\ncontent-md5: MniFED8YGAi++m+AUZOy3Q==\r\nx-oss-server-time: 25\r\ncontent-encoding: gzip\r\nvia: 1.1 PS-000-01haU38:11 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01haU38HKG(origin)\r\nx-ws-request-id: 69eb17b0_PS-SIN-04Xkl20_48021-58015\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":9004,"size_decoded":0,"mime_type":"application/json","magic":"ASCII text, with very long lines (9004), with no line terminators","md5":"327885103f181808befa6f805193b2dd","sha1":"1ffaebdc75592a3d5e8d15f76805d2c24f9c3cb9","sha256":"0980bef96d33954b6b640b1560ba4271e72eae29cdeb7ec8767103c35ecaee01","sha512":"b5662dcc1c500f8628444523a51d375cae165158dd2905959d718c29618abd656ca580be9582afdc5016052a87e23220143025b8cd662ebcd06192b8061ff020","ssdeep":"192:OFbcoAxR2ZpClkTXeb8BZpbDsqQhOICQj1EL4LH+Hn1LfbhptURGOEBkdrKqnxM8:boAnkDXeb8ftsqwOTqEL4b+H1j1uPEBc","tlshash":"0202afc62c13f75e94c65b62343d4f1f959aac908ef2c644607c2b5b07a71ab22382b9","first_seen":"2026-04-24T07:12:19.634546Z","last_seen":"2026-04-24T07:12:19.634546Z","times_seen":1,"resource_available":false,"data":null}},"time_used":243,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":243,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/assets/index-Dfv7YTCK.css","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:46.354Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /assets/index-Dfv7YTCK.css HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/?cid=2657320\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:46 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:06 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db923e-c8a\"\r\nExpires: Fri, 24 Apr 2026 19:11:46 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3210,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3209)","md5":"9c7cb263a25e7a1cbf5a128484e73416","sha1":"4f72589f24de5a605f7ff866ad511cde06aa9f77","sha256":"f9c2f62f3d87dfeb2ca11c25fc69d3403bdb21be7918fe083c8d9b9ebd0be489","sha512":"47e43027d0d904213f2ae690a32a43f5f848cef9556c63c13174e9dcae4c53e795f494f71702f89a497d2e7fa9d73a9eb3733edb389b92d99deaa698e7366ff0","ssdeep":"","tlshash":"2c61c11ea7ab407512778f8a7d84df20d2469222b8d38fc4b1d3688a4caf54e30571bf","first_seen":"2025-09-23T05:38:40.258928Z","last_seen":"2026-04-24T07:12:19.638942Z","times_seen":773,"resource_available":false,"data":null}},"time_used":247,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":247,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"153.43.17.57/bewcdn.txt?t=1777014707027","fqdn":"153.43.17.57","domain":"153.43.17.57","tld":""},"ip":{"addr":"153.43.17.57","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:47.041Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"153.43.17.2","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 08 Dec 2025 06:56:08 GMT","end":"Sat, 09 Jan 2027 06:13:49 GMT"},"fingerprint":{"sha1":"9E:C5:FF:17:47:95:E9:AA:EC:B0:78:24:2A:28:55:6D:83:9D:67:BA","sha256":"0E:99:B2:3B:7F:F2:01:3F:50:36:A1:B9:4E:9E:08:69:AE:4A:87:56:5B:B2:A6:59:C5:4A:95:AC:1B:5E:EA:F3"}}},"request":{"raw":"GET /bewcdn.txt?t=1777014707027 HTTP/1.1\r\nHost: 153.43.17.57\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:48 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B42A8AB2303100F0EC\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\naccept-ranges: bytes\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Thu, 23 Apr 2026 11:34:58 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.2.39\r\ncache-control: s-maxage=31622400,max-age=0,public\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 1\r\nvia: 1.1 ianxun21:10 (W), 1.1 PS-SIN-04Xkl20:0 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms ianxun21HKG(origin)\r\nx-ws-request-id: 69eb17b4_PS-SIN-04Xkl20_40133-63801\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":2587,"timings":{"blocked":1092,"dns":0,"connect":257,"send":0,"wait":397,"receive":0,"ssl":837},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/@vue-BJUJtGKq.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:38.590Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/@vue-BJUJtGKq.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/js/index-BWyx4C_v.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:38 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:06 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db923e-12174\"\r\nExpires: Fri, 24 Apr 2026 19:11:38 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":74100,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"f06f0fd561eea95c4feccde0746117b1","sha1":"32c45886151948703a8ac692a48d3cce70aa25e3","sha256":"e228111590701d2db46eb9d8c2a4d85377a449f398bbed10a94ef47938a57c55","sha512":"88e3e6da9f043912c14291675ff91b5426e21fe36defd0cd318131e1b2a9c791fdd662697838cbc1a0a0bddc3139d5ce4e81f82108886153575d383aef0fe4a1","ssdeep":"768:8XCLkQJtg/ocN0MjFuPgDpt6RDMk/0jOVT/eFYl9E27OqX6MQYAMOxTlExfheEqh:9wSCqJCI2b273WNK2U40MH","tlshash":"917308e83092b46253fa19e2007b0406f3792d5a3849d998b16dfedb3e7241550bbfbd","first_seen":"2025-06-19T04:15:59.499735Z","last_seen":"2026-04-24T07:12:19.640188Z","times_seen":7851,"resource_available":true,"data":null}},"time_used":281,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":280,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dfsadfasd.y71x2vm.vip/ipacdn.txt?t=1777014702292","fqdn":"dfsadfasd.y71x2vm.vip","domain":"y71x2vm.vip","tld":"vip"},"ip":{"addr":"45.125.14.216","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:42.300Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dfsadfasd.y71x2vm.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Mar 2026 07:53:01 GMT","end":"Mon, 01 Jun 2026 07:53:00 GMT"},"fingerprint":{"sha1":"C6:59:8D:6C:0F:69:A2:EE:5B:9D:07:DD:26:9A:D4:8B:EF:76:E0:FC","sha256":"97:D0:F9:8E:D9:96:E3:9E:FD:60:DA:A2:FB:2A:42:F1:BB:F0:77:39:73:65:07:F9:8B:28:C4:2B:C9:05:51:5D"}}},"request":{"raw":"GET /ipacdn.txt?t=1777014702292 HTTP/1.1\r\nHost: dfsadfasd.y71x2vm.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3600\r\ncache-control: s-maxage=315360000,max-age=0,public\r\ncontent-type: text/plain\r\ndate: Fri, 24 Apr 2026 07:11:46 GMT\r\nset-cookie: acw_tc=0a0f6b8b17770147060238698e3a9b38c3ec7678522dcaedd1dcc2c230eac0;path=/;HttpOnly;Max-Age=1800\r\nstrict-transport-security: max-age=31536000\r\nx-cache: BYPASS, Set-Cookie\r\ncontent-length: 2\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":5837,"timings":{"blocked":1980,"dns":1560,"connect":206,"send":0,"wait":1873,"receive":0,"ssl":215},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-24","alert":"Sinkholed","trigger":"dfsadfasd.y71x2vm.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/assets/index-B6HEWjzw.css","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:46.621Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /assets/index-B6HEWjzw.css HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/?cid=2657320\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:46 GMT\r\nContent-Type: text/css\r\nContent-Length: 252\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:06 GMT\r\nETag: \"68db923e-fc\"\r\nExpires: Fri, 24 Apr 2026 19:11:46 GMT\r\nCache-Control: max-age=43200\r\nAccept-Ranges: bytes\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":252,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"ec4e0e467a79f565202ba2881ec334f6","sha1":"d730291d36b2c35c38d247bc4fa3b4450f0e9f5c","sha256":"61fdc439fec6abfbc3415726597b35027e26e79640c2bf89a32e2e898bd9ce7b","sha512":"be0e32d7a643530c09a52337481303e388f6ab6e9d7e7ecfbe3d90ace7f10c6f5d3fb82b218ed0c5e66576e61ae1fd4e81450c87095a782f1a28bdd04bd32a99","ssdeep":"","tlshash":"79d05b35e752e061d423851278ca8d4dd195d2c24772882c6f1a2e1cecdf95e34760d6","first_seen":"2025-09-23T05:38:40.287786Z","last_seen":"2026-04-24T07:12:19.645641Z","times_seen":5005,"resource_available":false,"data":null}},"time_used":267,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/index-C4uIyFFH.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:46.628Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/index-C4uIyFFH.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/?cid=2657320\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:46 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:08 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db9240-57d\"\r\nExpires: Fri, 24 Apr 2026 19:11:46 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1405,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1404)","md5":"5669c0bf36f26b8bf4f277b8c5cac9ae","sha1":"f5fb75ab510d7bbabb8a4bbdb88a479c47c53c43","sha256":"c3489daea4fc1488438799624b61741f0bf0225038109e2cc8a25238775f9375","sha512":"2b5ea7db1b12a816c39dd512adb588fee5f0e4fdd6046e579b118d2d20291149c213477afe4888da388a66870463aa10e7a8b1b5f8b521c15d0b97c035accd95","ssdeep":"","tlshash":"2c21114ef9899cb503b644ac6485006163ea5eae83b4d6f0b7fd0f9943b1c30c52ea7d","first_seen":"2025-09-23T05:38:40.244679Z","last_seen":"2026-04-24T07:12:19.646517Z","times_seen":772,"resource_available":true,"data":null}},"time_used":509,"timings":{"blocked":262,"dns":0,"connect":0,"send":0,"wait":247,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shaikg.spl96w4.com/bewcdn.txt?t=1777014707028","fqdn":"shaikg.spl96w4.com","domain":"spl96w4.com","tld":"com"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:47.043Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shaikg.spl96w4.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Thu, 10 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A3:EE:60:76:03:A0:C8:F7:A2:DB:66:10:BA:0C:7F:98:1D:B9:9B:B2","sha256":"62:7E:D6:8F:91:EF:36:88:BE:0D:58:BC:14:FC:9A:41:47:1F:A9:48:1A:A8:E3:7D:80:51:63:F2:76:7A:A3:DB"}}},"request":{"raw":"GET /bewcdn.txt?t=1777014707028 HTTP/1.1\r\nHost: shaikg.spl96w4.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:47 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nx-oss-request-id: 69EB17B3710AC138304AFB76\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Thu, 23 Apr 2026 11:34:58 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.2.39\r\ncache-control: s-maxage=31622400,max-age=0,public\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 1\r\nserver: gocache\r\nc-type: pf\r\nrid: 57ffd536b558d14882a934f66a8a188f\r\nx-cache-status: MISS\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":1620,"timings":{"blocked":684,"dns":186,"connect":1,"send":0,"wait":247,"receive":0,"ssl":499},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/crypto-js-Bxg3hG30.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:38.593Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/crypto-js-Bxg3hG30.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/js/index-BWyx4C_v.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:38 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:06 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db923e-10ec3\"\r\nExpires: Fri, 24 Apr 2026 19:11:38 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":69315,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"0af8d2f1fe6e8561c27e25def2203a11","sha1":"795359172462f18ddf0b219d3f4f1025852a3232","sha256":"59a93b83cecb195f686ab071a66fed26cabca9bd21f797b9b78f7f20b3f8a9be","sha512":"e6de4c7e8731c98bda03cb76f76c0cbc674c2f14dc53228797f66a26c12e678a8840319e35480b37fe879745640134c306e147e16fda165df9645aa8b99cb54e","ssdeep":"1536:s1MrM4s1tY5FfYeOj/RQtPtNPU9ArHMto:s/aYeOLRK","tlshash":"64634ac4768870d1a3ab78a0093fb08b727335a249acd198f264e6dd6d7c6dd8136d3d","first_seen":"2025-06-19T04:15:59.523491Z","last_seen":"2026-04-24T07:12:19.647304Z","times_seen":5327,"resource_available":true,"data":null}},"time_used":503,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":248,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"153.43.16.243:5029/bewcdn.txt?t=1777014707027","fqdn":"153.43.16.243","domain":"153.43.16.243","tld":""},"ip":{"addr":"153.43.16.243","port":5029,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:47.038Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"153.43.16.102","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 03:26:02 GMT","end":"Mon, 04 Jan 2027 03:26:01 GMT"},"fingerprint":{"sha1":"19:C6:30:35:FD:A8:47:32:1B:6E:86:B9:4D:C1:B6:FF:C9:F3:29:0E","sha256":"FE:47:9E:83:0A:6A:F2:DA:FF:99:76:74:F4:CE:FC:4B:BB:84:D3:D5:C9:55:8B:01:F1:B4:51:13:F7:7B:E1:2E"}}},"request":{"raw":"GET /bewcdn.txt?t=1777014707027 HTTP/1.1\r\nHost: 153.43.16.243:5029\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:47 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B3D5B2A230378C6A44\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\naccept-ranges: bytes\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Thu, 23 Apr 2026 11:34:58 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.2.39\r\ncache-control: s-maxage=31622400,max-age=0,public\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 2\r\nvia: 1.1 dianxun38:4 (W), 1.1 PS-SIN-04Xkl20:28 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms dianxun38HKG(origin)\r\nx-ws-request-id: 69eb17b3_PS-SIN-04Xkl20_49578-23652\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":1509,"timings":{"blocked":610,"dns":0,"connect":174,"send":0,"wait":285,"receive":0,"ssl":434},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/siteadmin/upload/img/2010995367538360321.avif","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:47.195Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"GET /siteadmin/upload/img/2010995367538360321.avif HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:47 GMT\r\ncontent-type: image/avif\r\ncontent-length: 146962\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B31F197832358B02FA\r\nvary: Accept-Encoding\r\naccept-ranges: bytes\r\netag: \"4F1B178BB5AD90747C5E8DDFFB808677\"\r\nlast-modified: Tue, 13 Jan 2026 08:40:41 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 12511020131119674283\r\nx-oss-storage-class: Standard\r\ncache-control: immutable,stale-while-revalidate=86400,public,max-age=86400\r\ncontent-md5: TxsXi7WtkHR8Xo3f+4CGdw==\r\nx-oss-server-time: 5\r\nvia: 1.1 PS-000-01haU38:11 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01haU38HKG(origin)\r\nx-ws-request-id: 69eb17b3_PS-SIN-04Xkl20_48021-58211\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":146962,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"4f1b178bb5ad90747c5e8ddffb808677","sha1":"35001a7d795f5e2e6d108fd082a2f9069779aede","sha256":"5d43f2b5d98140e45a9cd508cb138d1254c6309b9e92ab3768006347f1189990","sha512":"2c2c9f7228aadbc7d1cc7f04417db0eb27e6ab5864e7ab00f71d52d0d2679d76c7ff45f99dbe5cf9cbd56c9b7b4e89d679a51702c8da16de34e9527aa5996e07","ssdeep":"3072:d+C0SamW19dxKM1OCLQ2YDO7JNhAudN3S+N0VDuB3lfNuuUdBssasK1V:d+tSa9dsM1HS6Jv5nSK6UfCVK1V","tlshash":"82e3128fa0054e0efb7fc8eb674e478044f5a36634290e14975c26681644edebd6fb8b","first_seen":"2026-02-01T22:50:33.523094Z","last_seen":"2026-04-24T07:12:19.648189Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1158,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":225,"receive":933,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/siteadmin/upload/img/2010996900448624642.avif","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:47.222Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"GET /siteadmin/upload/img/2010996900448624642.avif HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:47 GMT\r\ncontent-type: image/avif\r\ncontent-length: 66880\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B336F3BB3332E78A92\r\nvary: Accept-Encoding\r\naccept-ranges: bytes\r\netag: \"AC6E06DB306F44D8A7D339F60DB1A296\"\r\nlast-modified: Tue, 13 Jan 2026 08:46:41 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 13487781368623687415\r\nx-oss-storage-class: Standard\r\ncache-control: immutable,stale-while-revalidate=86400,public,max-age=86400\r\ncontent-md5: rG4G2zBvRNin0zn2DbGilg==\r\nx-oss-server-time: 5\r\nvia: 1.1 PS-000-01yK737:6 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01yK737HKG(origin)\r\nx-ws-request-id: 69eb17b3_PS-SIN-04Xkl20_48021-58219\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":66880,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"ac6e06db306f44d8a7d339f60db1a296","sha1":"a6f40c1bf2d9baf5e2919fafb525c173cd7e3978","sha256":"1e1ac9b5e47a8e2ce687f6a810883330c590f7f8e71e63b7e28e65e743c993aa","sha512":"856935175d0ed844f7a8d1504832751498769e4d4a94438a6d06149135540369707b3e889805c91778479cedb907f9c016dc1145358ae346f23624bd4e485602","ssdeep":"1536:ujqbExEMWPXOIynHav+ara8xwMhLJ4De+0xsk6hsOQ7Ox:b4EVXOvnHam8AMhLJt66e","tlshash":"0a6302431bd87212d16003b8b8a476b5179b831724fd1be8d085313f56e5bdaa2ee3f9","first_seen":"2026-02-01T22:50:33.514185Z","last_seen":"2026-04-24T07:12:19.651958Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1103,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":562,"receive":541,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/assets/vant-DJOnW2S3.css","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:38.023Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /assets/vant-DJOnW2S3.css HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:38 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:06 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db923e-3133\"\r\nExpires: Fri, 24 Apr 2026 19:11:38 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12595,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (12594)","md5":"8462e978dcb7a1338c32e5713f5238fd","sha1":"c729ead6412c6e2170d8ebbb88266b47c9a26823","sha256":"e3d1127793c738345cec2f02d7c4f9aa268505ab2d4527e9b77f75bb2f840bd3","sha512":"fcc34c90f6434bcc64a1641d102ab82e0a4fbe541b841813e0938663e49aa2ccfa26474dd9b520d38ee22b543ad25d5b56e758c6c1274cd7ce5b6dd7b44dce84","ssdeep":"384:MD2KFZnHEcam51bjQurwcq6SWHd/flrwcq6SWHd/fyfzQWmhqIX:5fXmhqIX","tlshash":"5742412ae841027a6e036a2597de05d4f17ce6b27e62cde8715432498bc7ff81737247","first_seen":"2025-08-21T07:31:55.601088Z","last_seen":"2026-04-24T07:12:19.655705Z","times_seen":6837,"resource_available":false,"data":null}},"time_used":249,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":248,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/favicon.ico","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:40.607Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Fri, 24 Apr 2026 07:11:40 GMT\r\nContent-Type: text/html\r\nContent-Length: 146\r\nConnection: keep-alive\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-24T10:20:42.092331Z","times_seen":494483,"resource_available":true,"data":null}},"time_used":267,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"awhtej.5a6s9b3.com/hall/api/agent/downloadSite/regionAccessV2","fqdn":"awhtej.5a6s9b3.com","domain":"5a6s9b3.com","tld":"com"},"ip":{"addr":"138.113.100.52","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:43.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"awhtej.5a6s9b3.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Feb 2026 13:12:47 GMT","end":"Fri, 29 May 2026 13:12:46 GMT"},"fingerprint":{"sha1":"3C:8B:BD:22:EF:20:B7:3E:AD:AF:94:6C:D5:97:B8:2B:CE:AC:CF:A4","sha256":"C2:09:34:01:AB:3B:04:E7:20:27:A0:97:B5:C2:89:88:37:B2:32:D3:33:B4:06:ED:D9:C2:60:B7:74:2B:1B:9C"}}},"request":{"raw":"POST /hall/api/agent/downloadSite/regionAccessV2 HTTP/1.1\r\nHost: awhtej.5a6s9b3.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en;q=0.9, *;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nlanguage: en\r\ndevice: 9522bc702c9dca111c32c09840adf38f\r\nx-version: 6.4.3\r\nX-Request-Id: 5bacedc3-0166-49ae-8765-84dfaf7a3b1b\r\nX-Custom-Referer: https://wtt297.sgikvo.cn/?cid=2657320\r\ndomain: wtt297.sgikvo.cn\r\nclienttimezone: UTC0\r\ndeviceModel: undefined-undefined\r\nnonce: 5bacedc3-0166-49ae-8765-84dfaf7a3b1b\r\ntimestamp: 1777014703\r\nsiteCode: 1155\r\nsign: 6zqxHhdvmFk7EiJtMKjRSK17UGfOxS5pYtqWdoE6obtBujvJe63TAKKI8zyscaLD\r\ndevicetype: 4\r\nplatformtype: 3\r\nContent-Type: application/json\r\nContent-Length: 2\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2,"data":"{}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:44 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 278\r\nset-cookie: acw_tc=0a0ccaf217770147039316930e338d250272ddd971a3a5c8c5fba38502e73a;path=/;HttpOnly;Max-Age=1800\r\nx-trace-id: 472a1dd71df23a363c3e2264702bc415\r\nx-env-go-biz-agent-server: 0\r\ncache-control: no-cache\r\nx-saas-server-id: 844988bcd4-tdsph|906055511cd9cbb4764696f26a495e4e\r\naccess-control-allow-methods: *\r\naccess-control-max-age: 1728000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Trace-ID, newjwt, token\r\nvia: 1.1 jp184:14 (W), 1.1 PS-CDG-04A5e173:24 (W)\r\nx-px: ms PS-CDG-04A5e173CDG, ms jp184SIN(origin)\r\nx-ws-request-id: 69eb17af_PS-CDG-04A5e173_40806-52296\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":278,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"07e7544feac6a42951b4f4bfb6daa2f2","sha1":"373b2d05e6f6cec8f88955d086dc98b38d938108","sha256":"354dfc9ad88315e6d196c3254f2cfaee14534bb68b1c2e603dc8ee7b03a281c6","sha512":"b3633c61cb9471159e37eb0eaa601ebf22fe62a1cfe332f00b697a4b899f63486417716739531299a4d650e1bd8c5bdd5e98079bfd0a88b44460db42f355ccb3","ssdeep":"","tlshash":"edd05e1e0735adfcee9592a9602e6ed175ec5001204c9378fdde2e3422e838e433125e","first_seen":"2026-04-24T07:12:19.661438Z","last_seen":"2026-04-24T07:12:19.661438Z","times_seen":1,"resource_available":false,"data":null}},"time_used":232,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":232,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/assets/index-_5vVCG4s.css","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:46.047Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /assets/index-_5vVCG4s.css HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/?cid=2657320\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:46 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:06 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db923e-a8e\"\r\nExpires: Fri, 24 Apr 2026 19:11:46 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2702,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2701)","md5":"c58e1af1ea149b63c30769eb5bbc01be","sha1":"ad4f437dd189e519d2f660060144c00e2b3dcc13","sha256":"7bf7cff966bb9bfab5ed7aad030241d06a02054c95b26cde268b32637618cdb5","sha512":"701bf16986596431678eb81115b4bb861b2faf261d1248b0edf7f76be7b16a066206b7e22c4b88f5f95103b5a8376fbecb7644ef2bf99192efa92a09ebaeedd0","ssdeep":"","tlshash":"5b51247efb7b1029c637d1b63d444a482624f032660b0fc8bad378258acb54f3821199","first_seen":"2025-08-21T08:39:44.311723Z","last_seen":"2026-04-24T07:12:19.665456Z","times_seen":1549,"resource_available":false,"data":null}},"time_used":268,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":268,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fwijow325.y71x2vm.vip/bewcdn.txt?t=1777014707026","fqdn":"fwijow325.y71x2vm.vip","domain":"y71x2vm.vip","tld":"vip"},"ip":{"addr":"45.125.14.203","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:47.035Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fwijow325.y71x2vm.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 23:46:45 GMT","end":"Fri, 05 Jun 2026 23:46:44 GMT"},"fingerprint":{"sha1":"F2:04:2C:77:12:D8:16:26:6C:34:2A:0B:16:8C:E9:BF:90:81:99:EA","sha256":"8A:F3:42:CC:3D:46:1F:3D:A5:E3:AB:7E:70:6A:75:32:3F:0C:71:97:10:42:DA:2F:32:88:69:90:2D:3F:1B:5E"}}},"request":{"raw":"GET /bewcdn.txt?t=1777014707026 HTTP/1.1\r\nHost: fwijow325.y71x2vm.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\ncache-control: s-maxage=31622400,max-age=0,public\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\ncontent-type: text/plain\r\ndate: Fri, 24 Apr 2026 07:11:49 GMT\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Thu, 23 Apr 2026 11:34:58 GMT\r\nserver: AliyunOSS\r\nstrict-transport-security: max-age=31536000\r\nvary: Origin\r\nx-cache: UPDATING\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-meta-version: v7.2.39\r\nx-oss-object-type: Normal\r\nx-oss-request-id: 69EB17B51F19783339F312FA\r\nx-oss-server-time: 2\r\nx-oss-storage-class: Standard\r\ncontent-length: 2\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":2936,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2936,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-24","alert":"Sinkholed","trigger":"fwijow325.y71x2vm.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ahhjl.5a6s9b3.com/bewcdn.txt?t=1777014707028","fqdn":"ahhjl.5a6s9b3.com","domain":"5a6s9b3.com","tld":"com"},"ip":{"addr":"138.113.100.52","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:47.045Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ahhjl.5a6s9b3.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 06 Apr 2026 14:37:56 GMT","end":"Sun, 05 Jul 2026 14:37:55 GMT"},"fingerprint":{"sha1":"34:07:E1:D4:A4:DF:BF:3E:12:4B:CF:E4:80:36:83:A0:EA:1F:27:7A","sha256":"CD:6F:54:85:8A:AE:01:A3:FB:6D:CB:3F:4E:D2:F8:F1:B9:DB:CF:C1:98:6E:6D:85:54:CB:AB:35:99:55:64:E3"}}},"request":{"raw":"GET /bewcdn.txt?t=1777014707028 HTTP/1.1\r\nHost: ahhjl.5a6s9b3.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:47 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B31F85633932880D7F\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\naccept-ranges: bytes\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Thu, 23 Apr 2026 11:34:58 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.2.39\r\ncache-control: s-maxage=31622400,max-age=0,public\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 1\r\nvia: 1.1 ianxun22:16 (W), 1.1 PS-CDG-04A5e173:10 (W)\r\nx-px: ms PS-CDG-04A5e173CDG, ms ianxun22HKG(origin)\r\nx-ws-request-id: 69eb17b3_PS-CDG-04A5e173_34611-50227\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":586,"timings":{"blocked":129,"dns":69,"connect":27,"send":0,"wait":323,"receive":1,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"haohtog.5a6s9b3.com/bewcdn.txt?t=1777014710008","fqdn":"haohtog.5a6s9b3.com","domain":"5a6s9b3.com","tld":"com"},"ip":{"addr":"138.113.100.51","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:50.014Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"haohtog.5a6s9b3.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 02:40:08 GMT","end":"Wed, 01 Jul 2026 02:40:07 GMT"},"fingerprint":{"sha1":"0B:B7:3A:80:EE:CB:98:55:45:50:BB:74:8F:93:3D:D6:CD:5A:72:11","sha256":"90:36:CE:09:BA:56:8D:E5:8D:3A:70:7C:A8:E7:38:05:79:61:3F:A5:91:41:17:6E:DB:E0:DE:50:B1:2B:D3:C1"}}},"request":{"raw":"GET /bewcdn.txt?t=1777014710008 HTTP/1.1\r\nHost: haohtog.5a6s9b3.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:50 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B627077C3032B7B257\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\naccept-ranges: bytes\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Thu, 23 Apr 2026 11:34:58 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.2.39\r\ncache-control: s-maxage=31622400,max-age=0,public\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 2\r\nvia: 1.1 ianxun22:12 (W), 1.1 PS-CDG-04A5e173:29 (W)\r\nx-px: ms PS-CDG-04A5e173CDG, ms ianxun22HKG(origin)\r\nx-ws-request-id: 69eb17b6_PS-CDG-04A5e173_47275-51226\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":1133,"timings":{"blocked":136,"dns":73,"connect":27,"send":0,"wait":860,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-24T07:11:35.922Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: http://hpihc.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:37 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 14:52:58 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68dbeeca-b69\"\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2921,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (435)","md5":"804cffb3d4ee534dfe7cbdc6f70343a9","sha1":"a6659f4e58c40ce7475e39280930bacbf7a6a6d5","sha256":"6f89acf3436f70dca00565594b5ebb31b10a058ed094a7d772e6e328105199e2","sha512":"7b8e1d138516e7908f65942a4c3dcf8083822e72e2215c80cf0b9f24518641d73568427a246b40d635882d6c26d2c9357a729ac76151ecce821d526ea6999380","ssdeep":"","tlshash":"d9511093b9f4c8a616580e2bbdd6f4087ed15a83860da88074ee54fe4e40fd2cbd7865","first_seen":"2025-09-23T05:38:40.260805Z","last_seen":"2026-04-24T07:12:19.669477Z","times_seen":880,"resource_available":true,"data":null}},"time_used":3574,"timings":{"blocked":1653,"dns":1107,"connect":266,"send":0,"wait":268,"receive":0,"ssl":275},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/crypto-js-Bxg3hG30.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:39.451Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/crypto-js-Bxg3hG30.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:40 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:06 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db923e-10ec3\"\r\nExpires: Fri, 24 Apr 2026 19:11:40 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":69315,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"0af8d2f1fe6e8561c27e25def2203a11","sha1":"795359172462f18ddf0b219d3f4f1025852a3232","sha256":"59a93b83cecb195f686ab071a66fed26cabca9bd21f797b9b78f7f20b3f8a9be","sha512":"e6de4c7e8731c98bda03cb76f76c0cbc674c2f14dc53228797f66a26c12e678a8840319e35480b37fe879745640134c306e147e16fda165df9645aa8b99cb54e","ssdeep":"1536:s1MrM4s1tY5FfYeOj/RQtPtNPU9ArHMto:s/aYeOLRK","tlshash":"64634ac4768870d1a3ab78a0093fb08b727335a249acd198f264e6dd6d7c6dd8136d3d","first_seen":"2025-06-19T04:15:59.523491Z","last_seen":"2026-04-24T07:12:19.647304Z","times_seen":5327,"resource_available":true,"data":null}},"time_used":1607,"timings":{"blocked":549,"dns":43,"connect":249,"send":0,"wait":258,"receive":247,"ssl":259},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/bewcdn.txt?t=1777014702768","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:42.779Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"GET /bewcdn.txt?t=1777014702768 HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:43 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17AF9DB57839366AA723\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\naccept-ranges: bytes\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Thu, 23 Apr 2026 11:34:58 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.2.39\r\ncache-control: s-maxage=31622400,max-age=0,public\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 2\r\nvia: 1.1 PS-000-01haU38:11 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01haU38HKG(origin)\r\nx-ws-request-id: 69eb17af_PS-SIN-04Xkl20_48021-57936\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":1391,"timings":{"blocked":582,"dns":0,"connect":173,"send":0,"wait":223,"receive":0,"ssl":410},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/index-C4uIyFFH.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:46.896Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/index-C4uIyFFH.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/js/index-PQFJZxti.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:47 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:08 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db9240-57d\"\r\nExpires: Fri, 24 Apr 2026 19:11:47 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1405,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1404)","md5":"5669c0bf36f26b8bf4f277b8c5cac9ae","sha1":"f5fb75ab510d7bbabb8a4bbdb88a479c47c53c43","sha256":"c3489daea4fc1488438799624b61741f0bf0225038109e2cc8a25238775f9375","sha512":"2b5ea7db1b12a816c39dd512adb588fee5f0e4fdd6046e579b118d2d20291149c213477afe4888da388a66870463aa10e7a8b1b5f8b521c15d0b97c035accd95","ssdeep":"","tlshash":"2c21114ef9899cb503b644ac6485006163ea5eae83b4d6f0b7fd0f9943b1c30c52ea7d","first_seen":"2025-09-23T05:38:40.244679Z","last_seen":"2026-04-24T07:12:19.646517Z","times_seen":772,"resource_available":true,"data":null}},"time_used":267,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hpihc.vip/","fqdn":"hpihc.vip","domain":"hpihc.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-24T07:11:31.247Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: hpihc.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-24T10:19:26.845862Z","times_seen":14139900,"resource_available":true,"data":null}},"time_used":2427,"timings":{"blocked":2427,"dns":0,"connect":236,"send":0,"wait":0,"receive":0,"ssl":484},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/index-BWyx4C_v.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:38.021Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/index-BWyx4C_v.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:38 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:08 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db9240-1ea5b\"\r\nExpires: Fri, 24 Apr 2026 19:11:38 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":125531,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (64612)","md5":"0e6a6fac56d6fde585dff989513539a0","sha1":"e1af81483ff9c8d2877f97ed3ec4e13993ee2815","sha256":"fd4cdb229bab97d76f49a437daf3644a9d59b696ca4a89d5cfc57d39a142a8f7","sha512":"5808262a58ddfde29448222c25bc7b4eee70d37c29fea48dde471a77ce295d2f4787da709829c8d0d0f23b586ed2ec9e5927eff5ba1e6a3857617c647d3c77a9","ssdeep":"3072:k3aAKlmlJ+Sj5KNpGqExCIkDCUkCD065tBD:+aANlJ+SYtExCIkDCUkCdD","tlshash":"2ac35cee7279657c62d309a8ab3b1140631d78a63985c4e0f56e8f782ba3c48f357f14","first_seen":"2025-09-23T05:38:40.263087Z","last_seen":"2026-04-24T07:12:19.633969Z","times_seen":908,"resource_available":true,"data":null}},"time_used":549,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":281,"receive":268,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/config.json?t=1777014","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:39.641Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /config.json?t=1777014 HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en;q=0.9, *;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nlanguage: en\r\ndevice: 9522bc702c9dca111c32c09840adf38f\r\nx-version: 6.4.3\r\nX-Request-Id: 40a174d2-3304-4c88-8a4d-a09937e94386\r\nX-Custom-Referer: https://wtt297.sgikvo.cn/\r\ndomain: wtt297.sgikvo.cn\r\nclienttimezone: UTC0\r\ndeviceModel: undefined-undefined\r\nnonce: 40a174d2-3304-4c88-8a4d-a09937e94386\r\ntimestamp: 1777014699\r\nsiteCode: \r\nsign: sjy71jfyKTbX7/CDUbptfDOLsM2Eiaj7uNIePAr1Z15XKcoWwsJ/TGoJvyPrbCE1\r\ndevicetype: 4\r\nplatformtype: 3\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:39 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Fri, 24 Apr 2026 04:44:59 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"69eaf54b-3342e\"\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":209966,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"5c4a4493704548e78c68ee6a83b4fcf7","sha1":"a097c8c3c0998d73e3f876b5507655fb8213352b","sha256":"9e71154abe70affef7096fb8cdd9b84e2acd5556aab61d0ef0ab30a0de4366ac","sha512":"4d5acf3bf48e4883aefc45082a686d404d18a047b1d136a6aab9bf3553ae32f130ae5d1a171f48d65a7302e7ba99fe6deb3e97c9607e9ccc968032b6ac689035","ssdeep":"1536:CPAQVAVl4PhpJkQRvX+4U/hGyAihc2Sgi3RxWW2GKf:cAt0Sqvxn2fO8","tlshash":"e824b61ce615ce51e5b4369491993a49eb8c2f42ac548ceb3a3dcd880f76e7d838874f","first_seen":"2026-04-24T07:12:19.672992Z","last_seen":"2026-04-24T07:12:19.672992Z","times_seen":1,"resource_available":false,"data":null}},"time_used":547,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":280,"receive":267,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cypahp-1155-ppp.oss-accelerate.aliyuncs.com/cocos/config_data.json?t=1777014","fqdn":"cypahp-1155-ppp.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.138","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:41.919Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"OPTIONS /cocos/config_data.json?t=1777014 HTTP/1.1\r\nHost: cypahp-1155-ppp.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: clienttimezone,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Fri, 24 Apr 2026 07:11:42 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nx-oss-request-id: 69EB17AE35B82780F64A5634\r\nVary: Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, HEAD, PUT\r\nAccess-Control-Allow-Headers: clienttimezone, device, devicemodel, devicetype, domain, language, nonce, platformtype, sign, sitecode, timestamp, x-custom-referer, x-request-id, x-version\r\nAccess-Control-Expose-Headers: Etag\r\nAccess-Control-Max-Age: 200\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/json","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-24T10:19:26.845862Z","times_seen":14139900,"resource_available":true,"data":null}},"time_used":179,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/hall/api/lobby/channel/go/getChannelInfoById/id/2657320/info/channel.json?t=1777014","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:44.061Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"OPTIONS /hall/api/lobby/channel/go/getChannelInfoById/id/2657320/info/channel.json?t=1777014 HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: clienttimezone,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:44 GMT\r\ncontent-length: 0\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B01F19783235C7EEF9\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-allow-headers: clienttimezone, device, devicemodel, devicetype, domain, language, nonce, platformtype, sign, sitecode, timestamp, x-custom-referer, x-request-id, x-version\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\nx-oss-server-time: 1\r\nvia: 1.1 PS-000-01haU38:11 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01haU38HKG(origin)\r\nx-ws-request-id: 69eb17b0_PS-SIN-04Xkl20_48021-57987\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/json","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-24T10:19:26.845862Z","times_seen":14139900,"resource_available":true,"data":null}},"time_used":217,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":217,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/hall/api/lobby/channel/go/getChannelInfoById/id/2657320/info/channel.json?t=1777014","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:44.282Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"GET /hall/api/lobby/channel/go/getChannelInfoById/id/2657320/info/channel.json?t=1777014 HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en;q=0.9, *;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nlanguage: en\r\ndevice: 9522bc702c9dca111c32c09840adf38f\r\nx-version: 6.4.3\r\nX-Request-Id: ff39d353-55f9-4b2e-8122-de3392b745ce\r\nX-Custom-Referer: https://wtt297.sgikvo.cn/?cid=2657320\r\ndomain: wtt297.sgikvo.cn\r\nclienttimezone: UTC0\r\ndeviceModel: undefined-undefined\r\nnonce: ff39d353-55f9-4b2e-8122-de3392b745ce\r\ntimestamp: 1777014704\r\nsiteCode: 1155\r\nsign: FBvqQr48MeJkn2wVtq8H1nM7rMWnXNjVmk0zKP5vzl7RjghPdpam7WwFLzWkZEyv\r\ndevicetype: 4\r\nplatformtype: 3\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:44 GMT\r\ncontent-type: application/json\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B01F1978323539F0F9\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\nlast-modified: Tue, 21 Apr 2026 19:29:48 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 11792855626877606828\r\nx-oss-storage-class: Standard\r\ncache-control: s-maxage=600,public,max-age=0\r\ncontent-md5: BYqMk+h1u/ntndUMjA1oRA==\r\nx-oss-server-time: 43\r\ncontent-encoding: gzip\r\nvia: 1.1 PS-000-01haU38:11 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01haU38HKG(origin)\r\nx-ws-request-id: 69eb17b0_PS-SIN-04Xkl20_48021-57995\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1624,"size_decoded":0,"mime_type":"application/json","magic":"ASCII text, with very long lines (1624), with no line terminators","md5":"058a8c93e875bbf9ed9dd50c8c0d6844","sha1":"bef0427b0fbdca09834f5c79e54d2d05ab76b913","sha256":"3579561c333b2891aebbe9e2a28ed7597675bac871d9946b55109e3a589501c2","sha512":"b6cbd66b21d4f6cdb6f7c95d7ca01859c4daad751a58667850ea54f2a2de606e29f7d290ba654f1d7421402846a337a9eee0909e563504f5e466913b5565c8da","ssdeep":"","tlshash":"96312fe5d5bf40c59645b9c5491d7dde456972f4f183053a0e88ec285504d13c136c29","first_seen":"2026-04-24T07:12:19.678321Z","last_seen":"2026-04-24T07:12:19.678321Z","times_seen":1,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"awhtej.5a6s9b3.com/hall/api/statistics/domain/pointer","fqdn":"awhtej.5a6s9b3.com","domain":"5a6s9b3.com","tld":"com"},"ip":{"addr":"138.113.100.52","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:46.350Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"awhtej.5a6s9b3.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Feb 2026 13:12:47 GMT","end":"Fri, 29 May 2026 13:12:46 GMT"},"fingerprint":{"sha1":"3C:8B:BD:22:EF:20:B7:3E:AD:AF:94:6C:D5:97:B8:2B:CE:AC:CF:A4","sha256":"C2:09:34:01:AB:3B:04:E7:20:27:A0:97:B5:C2:89:88:37:B2:32:D3:33:B4:06:ED:D9:C2:60:B7:74:2B:1B:9C"}}},"request":{"raw":"OPTIONS /hall/api/statistics/domain/pointer HTTP/1.1\r\nHost: awhtej.5a6s9b3.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: clienttimezone,content-type,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:46 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 0\r\nset-cookie: acw_tc=0a094e7317770147064706433e3fcfd27017c8807afa2f80c29c74767a4244;path=/;HttpOnly;Max-Age=1800\r\nx-saas-server-id: 844988bcd4-f9hz8|930d53b6321659698aec33c759a658b2\r\naccess-control-allow-methods: *\r\naccess-control-max-age: 1728000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: clienttimezone,content-type,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\naccess-control-expose-headers: X-Trace-ID, newjwt, token\r\nvia: 1.1 jp184:2 (W), 1.1 PS-CDG-04A5e173:24 (W)\r\nx-px: ms PS-CDG-04A5e173CDG, ms jp184SIN(origin)\r\nx-ws-request-id: 69eb17b2_PS-CDG-04A5e173_40806-52468\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-24T10:19:26.845862Z","times_seen":14139900,"resource_available":true,"data":null}},"time_used":230,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":229,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"awhtej.5a6s9b3.com/hall/api/statistics/domain/pointer","fqdn":"awhtej.5a6s9b3.com","domain":"5a6s9b3.com","tld":"com"},"ip":{"addr":"138.113.100.52","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:46.583Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"awhtej.5a6s9b3.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Feb 2026 13:12:47 GMT","end":"Fri, 29 May 2026 13:12:46 GMT"},"fingerprint":{"sha1":"3C:8B:BD:22:EF:20:B7:3E:AD:AF:94:6C:D5:97:B8:2B:CE:AC:CF:A4","sha256":"C2:09:34:01:AB:3B:04:E7:20:27:A0:97:B5:C2:89:88:37:B2:32:D3:33:B4:06:ED:D9:C2:60:B7:74:2B:1B:9C"}}},"request":{"raw":"POST /hall/api/statistics/domain/pointer HTTP/1.1\r\nHost: awhtej.5a6s9b3.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en;q=0.9, *;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nlanguage: en\r\ndevice: 9522bc702c9dca111c32c09840adf38f\r\nx-version: 6.4.3\r\nX-Request-Id: 6b3f39ed-46bc-4f39-9b14-75113bcf0c91\r\nX-Custom-Referer: https://wtt297.sgikvo.cn/?cid=2657320\r\ndomain: wtt297.sgikvo.cn\r\nclienttimezone: UTC0\r\ndeviceModel: undefined-undefined\r\nnonce: 6b3f39ed-46bc-4f39-9b14-75113bcf0c91\r\ntimestamp: 1777014706\r\nsiteCode: 1155\r\nsign: 9/azy0zHHoViJkHAGaYsNXk5M+eZrkU5p3wf8td+rgFvYGxxDZFv8KbO9bnZ/0OM\r\ndevicetype: 4\r\nplatformtype: 3\r\nContent-Type: application/json\r\nContent-Length: 82\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":82,"data":"{\"domain\":\"wtt297.sgikvo.cn\",\"deviceKind\":3,\"visitsKind\":1,\"kind\":7,\"cid\":2657320}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:46 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 50\r\nset-cookie: acw_tc=0a0ccafe17770147066846094e4fea1e73ddec2e14c72122a4ea5ebc7ac4f2;path=/;HttpOnly;Max-Age=1800\r\nx-trace-id: 0cd180ca11d5d66288fbe3eabc5f6f78\r\nx-env-go-biz-statistics-server: 0\r\ncache-control: no-cache\r\nx-saas-server-id: 844988bcd4-nxxgf|f7e6956baa2e9241faf4ec16dfc381ef\r\naccess-control-allow-methods: *\r\naccess-control-max-age: 1728000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Trace-ID, newjwt, token\r\nvia: 1.1 PS-SIN-04DFS81:8 (W), 1.1 PS-CDG-04A5e173:24 (W)\r\nx-px: ms PS-CDG-04A5e173CDG, ms PS-SIN-04DFS81SIN(origin)\r\nx-ws-request-id: 69eb17b2_PS-CDG-04A5e173_40806-52490\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":50,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"7d33aae942e92def5b07628bee846947","sha1":"a00eeb7814cc3346636dee36a4edec4d8f0b4830","sha256":"c138e1349fb48c9997c6747ce23f8e9ba98f6d3767a98c45efac42ea76399079","sha512":"0517460867b55d5597fe4c509f4e455ca17430793f59779bf54cecb9169b3f3ad1036e9303ae815c36c09f047459601ad846d1e8a7c76bcaa7fd808805752575","ssdeep":"","tlshash":"68900294432d42424486a238611d65d1611854560466c3598f5d493414b80861005261","first_seen":"2026-04-24T07:12:19.687895Z","last_seen":"2026-04-24T07:12:19.687895Z","times_seen":1,"resource_available":false,"data":null}},"time_used":201,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":201,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/@vant-BGmWO0Bj.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.142","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:38.601Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/@vant-BGmWO0Bj.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/js/index-BWyx4C_v.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:39 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:06 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db923e-a4e\"\r\nExpires: Fri, 24 Apr 2026 19:11:39 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2638,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2637)","md5":"6d405d0e201a7e59001fa3732e601deb","sha1":"5e9782ceacd87cb267c610855a11d88388d5f849","sha256":"49225d1c23add4df603a7e2d4d8dd8cb7e26d926b4e461bb58b3ab6dc86e785f","sha512":"4ad5f0a44df106356de8d02bf00364e1000f804ace31a63094ba7174eb892a9ec3769118bc5ddea163ae8cc9784bf4b5008eff7c7a5bfae9492d2346dcf995a6","ssdeep":"","tlshash":"b95167ac3651bc34465a1ea2417f9ba5b2163824704b8050e008dd153951863c7fffde","first_seen":"2025-06-19T04:15:59.51972Z","last_seen":"2026-04-24T07:12:19.691001Z","times_seen":7847,"resource_available":true,"data":null}},"time_used":1366,"timings":{"blocked":543,"dns":1,"connect":271,"send":0,"wait":269,"receive":0,"ssl":277},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/vant-D5IJGWJU.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.142","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:38.600Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/vant-D5IJGWJU.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/js/index-BWyx4C_v.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:39 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:12 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db9244-6241\"\r\nExpires: Fri, 24 Apr 2026 19:11:39 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25153,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (24864)","md5":"852e273954fa90d55c0e74ba1adde9e4","sha1":"1edd5cd78042a89fdb453eff7ac00a81ee11381d","sha256":"a362f686e909416c308eb2e9bd7303593e68b441a6672db1d2d76f8545fe3049","sha512":"593a21cc5befa4ea9345c755b92e155f572805c6d43b162d45e5fc28db1d8aa7a29e65da492cdd1773689a4c5b28d321c6e70b57082931694d38695db8ebce6a","ssdeep":"768:aHcoeRdR113jDKzaKhIP3aJZmHD19BOoTEwVde0ewh6Kg462KIGsEnCrE/jXg:Jo0DKzO3aUnMULPKXg","tlshash":"f7b209993086f43f63f585ee40690201a3291b6a341ec4ecb53ceedbb299c5974b6b35","first_seen":"2025-06-19T04:15:59.508357Z","last_seen":"2026-04-24T07:12:19.624612Z","times_seen":7848,"resource_available":true,"data":null}},"time_used":1300,"timings":{"blocked":522,"dns":1,"connect":249,"send":0,"wait":250,"receive":1,"ssl":275},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/hall/api/agent/downloadSite/getDownloadTemplate/tid/4260399.json?t=1777014","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:44.554Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"OPTIONS /hall/api/agent/downloadSite/getDownloadTemplate/tid/4260399.json?t=1777014 HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: clienttimezone,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:44 GMT\r\ncontent-length: 0\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B01F19783235F6F1F9\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-allow-headers: clienttimezone, device, devicemodel, devicetype, domain, language, nonce, platformtype, sign, sitecode, timestamp, x-custom-referer, x-request-id, x-version\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\nx-oss-server-time: 1\r\nvia: 1.1 PS-000-01haU38:11 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01haU38HKG(origin)\r\nx-ws-request-id: 69eb17b0_PS-SIN-04Xkl20_48021-58005\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/json","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-24T10:19:26.845862Z","times_seen":14139900,"resource_available":true,"data":null}},"time_used":219,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":219,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/hall/api/lobby/config/getAppDownloadInfo.json?t=1777014","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:45.032Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"OPTIONS /hall/api/lobby/config/getAppDownloadInfo.json?t=1777014 HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: clienttimezone,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:45 GMT\r\ncontent-length: 0\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B11F1978323525F5F9\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-allow-headers: clienttimezone, device, devicemodel, devicetype, domain, language, nonce, platformtype, sign, sitecode, timestamp, x-custom-referer, x-request-id, x-version\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\nx-oss-server-time: 1\r\nvia: 1.1 PS-000-01haU38:11 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01haU38HKG(origin)\r\nx-ws-request-id: 69eb17b1_PS-SIN-04Xkl20_48021-58022\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/json","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-24T10:19:26.845862Z","times_seen":14139900,"resource_available":true,"data":null}},"time_used":237,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":236,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"awhtej.5a6s9b3.com/ipacdn.txt?t=1777014702292","fqdn":"awhtej.5a6s9b3.com","domain":"5a6s9b3.com","tld":"com"},"ip":{"addr":"138.113.100.52","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:42.302Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"awhtej.5a6s9b3.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Feb 2026 13:12:47 GMT","end":"Fri, 29 May 2026 13:12:46 GMT"},"fingerprint":{"sha1":"3C:8B:BD:22:EF:20:B7:3E:AD:AF:94:6C:D5:97:B8:2B:CE:AC:CF:A4","sha256":"C2:09:34:01:AB:3B:04:E7:20:27:A0:97:B5:C2:89:88:37:B2:32:D3:33:B4:06:ED:D9:C2:60:B7:74:2B:1B:9C"}}},"request":{"raw":"GET /ipacdn.txt?t=1777014702292 HTTP/1.1\r\nHost: awhtej.5a6s9b3.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:42 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nset-cookie: acw_tc=0a094e6b17770147026143526e3562f447548bde5b6f82b1dd84360a0c91bd;path=/;HttpOnly;Max-Age=1800\r\ncache-control: s-maxage=315360000,max-age=0,public\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3600\r\naccess-control-allow-credentials: true\r\nvia: 1.1 PS-SIN-01RKJ185:6 (W), 1.1 PS-CDG-04A5e173:24 (W)\r\nx-px: ms PS-CDG-04A5e173CDG, ms PS-SIN-01RKJ185SIN(origin)\r\nx-ws-request-id: 69eb17ae_PS-CDG-04A5e173_40806-52196\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":622,"timings":{"blocked":190,"dns":129,"connect":27,"send":0,"wait":239,"receive":0,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/siteadmin/upload/img/2010996850143797250.avif","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:47.221Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"GET /siteadmin/upload/img/2010996850143797250.avif HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:47 GMT\r\ncontent-type: image/avif\r\ncontent-length: 66073\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B31F197832351103FA\r\nvary: Accept-Encoding\r\naccept-ranges: bytes\r\netag: \"29A3FC083491C482BA2059926A6EE0A5\"\r\nlast-modified: Tue, 13 Jan 2026 08:46:29 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 13580141325549957159\r\nx-oss-storage-class: Standard\r\ncache-control: immutable,stale-while-revalidate=86400,public,max-age=86400\r\ncontent-md5: KaP8CDSRxIK6IFmSam7gpQ==\r\nx-oss-server-time: 4\r\nvia: 1.1 PS-000-01haU38:11 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01haU38HKG(origin)\r\nx-ws-request-id: 69eb17b3_PS-SIN-04Xkl20_48021-58218\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":66073,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"29a3fc083491c482ba2059926a6ee0a5","sha1":"5414c3751df21065607c26c5182b98e9459005a4","sha256":"9f794998235d18c5a2453814b01607ce615f312ad8b4b29475f13084b3ceb045","sha512":"c34208852ace35ae7f8706037627101ecdf04b8d40732f4d7fdfe2fc64a49c7fc152d1bc4c9aa2cc8e6d74f9bde1826f163bc00dd65c5106f283119bb45cda48","ssdeep":"1536:Tuol3x5UAQhii8vt5hYaM0pTNTwAVYleIlPWa0/rt:LhKzipvt5h+kT13Igp","tlshash":"d95302927f10b9c2d6300275972529e673a29efd12367661f62d23190ff9b28c979f08","first_seen":"2026-02-01T22:50:33.512045Z","last_seen":"2026-04-24T07:12:19.693759Z","times_seen":5,"resource_available":false,"data":null}},"time_used":946,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":563,"receive":383,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/ua-parser-js-DP5omx3I.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:38.597Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/ua-parser-js-DP5omx3I.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/js/index-BWyx4C_v.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:38 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:12 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db9244-5de6\"\r\nExpires: Fri, 24 Apr 2026 19:11:38 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24038,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (24037)","md5":"b71c1a4fd07412d0ddd5f0006e401e75","sha1":"a3cf730602aeef3df364916f4ef42e7c0f903419","sha256":"bc8e4ca06ec494e7df32f2dbf125b9b0503a60de5991b5badbb20e5e6c043ad7","sha512":"d018e92aeb4d98a54260edbd707e088a8875010278bc8979921cbbc492281e1fb8720ced7e21cc29b33500d4221c0c403b88b31b6f70caf069f2fc4daad2b793","ssdeep":"384:KLykXfExhSMH+rq/51Raw7t2v6az5CgSpnMjEMuSI162By4iBWijdv:KLFfY1erq/51YGt2/z5C3fSI162By4ib","tlshash":"f6b2a77fe3d5b73c07ece508d63504482f271f69ea88a0746e9892a1a9747c612c7f36","first_seen":"2025-06-19T04:15:59.5131Z","last_seen":"2026-04-24T07:12:19.695862Z","times_seen":9222,"resource_available":true,"data":null}},"time_used":274,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":273,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"awhtej.5a6s9b3.com/hall/api/agent/downloadSite/regionAccessV2","fqdn":"awhtej.5a6s9b3.com","domain":"5a6s9b3.com","tld":"com"},"ip":{"addr":"138.113.100.52","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:43.620Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"awhtej.5a6s9b3.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Feb 2026 13:12:47 GMT","end":"Fri, 29 May 2026 13:12:46 GMT"},"fingerprint":{"sha1":"3C:8B:BD:22:EF:20:B7:3E:AD:AF:94:6C:D5:97:B8:2B:CE:AC:CF:A4","sha256":"C2:09:34:01:AB:3B:04:E7:20:27:A0:97:B5:C2:89:88:37:B2:32:D3:33:B4:06:ED:D9:C2:60:B7:74:2B:1B:9C"}}},"request":{"raw":"OPTIONS /hall/api/agent/downloadSite/regionAccessV2 HTTP/1.1\r\nHost: awhtej.5a6s9b3.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: clienttimezone,content-type,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:43 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 0\r\nset-cookie: acw_tc=0a0ccafe17770147037244642e4feaf63aef8800db220a4b3d66fea8b40197;path=/;HttpOnly;Max-Age=1800\r\nx-saas-server-id: 844988bcd4-zmcw4|8fcad6f3e60d6e385b43dcf71e7c1203\r\naccess-control-allow-methods: *\r\naccess-control-max-age: 1728000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: clienttimezone,content-type,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\naccess-control-expose-headers: X-Trace-ID, newjwt, token\r\nvia: 1.1 PS-SIN-04DFS81:8 (W), 1.1 PS-CDG-04A5e173:24 (W)\r\nx-px: ms PS-CDG-04A5e173CDG, ms PS-SIN-04DFS81SIN(origin)\r\nx-ws-request-id: 69eb17af_PS-CDG-04A5e173_40806-52279\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-24T10:19:26.845862Z","times_seen":14139900,"resource_available":true,"data":null}},"time_used":199,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/siteadmin/upload/img/1950968296635486209.avif","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:46.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"GET /siteadmin/upload/img/1950968296635486209.avif HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:47 GMT\r\ncontent-type: image/avif\r\ncontent-length: 5116\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B31F197832352601FA\r\nvary: Accept-Encoding\r\naccept-ranges: bytes\r\netag: \"0E8C5619DF8D63DFD4186D518DDC55E7\"\r\nlast-modified: Tue, 12 Aug 2025 10:36:00 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 557667234205125563\r\nx-oss-storage-class: Standard\r\ncache-control: max-age=86400,stale-while-revalidate=86400,immutable,proxy-revalidate,public\r\ncontent-md5: DoxWGd+NY9/UGG1RjdxV5w==\r\nx-oss-server-time: 4\r\nvia: 1.1 PS-000-01haU38:11 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01haU38HKG(origin)\r\nx-ws-request-id: 69eb17b3_PS-SIN-04Xkl20_48021-58202\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":5116,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"0e8c5619df8d63dfd4186d518ddc55e7","sha1":"05f30d218fcd89d7ed2300e2b679f10dfb0d8493","sha256":"a58ac0628dd4ca7e63ba64ab059f0723df02a22d1c25c48224e9e4055b577682","sha512":"9ba3a0606fa3de401d7a50242b44a6cd1c431876816c2d899d8c7d26c24928f38e1981ede017d9a4babacac3b2917138193d6e51b35bfbea43121e7e1bac5aef","ssdeep":"96:rGcyh265f0F/kq25y6d1RMzuQtxn2+1rqMNOTYGPVEUUGa:rG3l2/kq25y01ezg0r0IGa","tlshash":"dbb18c121bf61ed2e60a03759601fb120216a346c28b7f90fd6358192bf87522eb3d96","first_seen":"2025-11-01T18:57:23.919848Z","last_seen":"2026-04-24T07:12:19.698111Z","times_seen":9,"resource_available":false,"data":null}},"time_used":223,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":220,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cypahp-1155-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1847600213080690689.ico","fqdn":"cypahp-1155-ppp.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.138","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:49.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /siteadmin/upload/img/1847600213080690689.ico HTTP/1.1\r\nHost: cypahp-1155-ppp.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Fri, 24 Apr 2026 07:11:49 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 5856\r\nConnection: keep-alive\r\nx-oss-request-id: 69EB17B581C2E1A3B2511DDE\r\nVary: Origin\r\nAccept-Ranges: bytes\r\nETag: \"62D4AF1FDF79B79B368E2BBE67311DEB\"\r\nLast-Modified: Tue, 12 Aug 2025 10:35:36 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 18431188768901621384\r\nx-oss-storage-class: Standard\r\nCache-Control: max-age=86400,stale-while-revalidate=86400,immutable,proxy-revalidate,public\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: YtSvH995t5s2jiu+ZzEd6w==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":5856,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"62d4af1fdf79b79b368e2bbe67311deb","sha1":"bb96ebc82976cea996dac1b19a627979f74eb01f","sha256":"2381cec9ddff12b3cc8985edd9f08c0bb3c68ddf675cc63417165ded161576f1","sha512":"57f6ae0f93fd669c4f2623088dd186481221cda6af3742f104f4fc4fb852de476476e1546d88100ad3e153a97f3eca1f0c0eea02f55df1864c88f8daa7264ec6","ssdeep":"96:27SMllcHitlIxv9vk7C1+I4wWHLihk/xlKZOdPgtSn745WHuq9+Ity+IGMC1HkfL:oSHIIHUCD4wa4d874IfR0CwVBspw8y","tlshash":"f0c18fcf4c04b73ea049457f153fae0a4666dac4a1ad6e588eb1524fc624842dcf6f07","first_seen":"2024-12-01T12:33:44.913129Z","last_seen":"2026-04-24T07:12:19.69944Z","times_seen":48,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":0,"dns":1,"connect":21,"send":0,"wait":180,"receive":4,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cypahp-1155-ppp.oss-accelerate.aliyuncs.com/cocos/config_data.json?t=1777014","fqdn":"cypahp-1155-ppp.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.138","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:42.102Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /cocos/config_data.json?t=1777014 HTTP/1.1\r\nHost: cypahp-1155-ppp.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en;q=0.9, *;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nlanguage: en\r\ndevice: 9522bc702c9dca111c32c09840adf38f\r\nx-version: 6.4.3\r\nX-Request-Id: bc3bc126-828d-4cc5-afd0-9763bf0eec2e\r\nX-Custom-Referer: https://wtt297.sgikvo.cn/?cid=2657320\r\ndomain: wtt297.sgikvo.cn\r\nclienttimezone: UTC0\r\ndeviceModel: undefined-undefined\r\nnonce: bc3bc126-828d-4cc5-afd0-9763bf0eec2e\r\ntimestamp: 1777014701\r\nsiteCode: \r\nsign: Zgeh4aw07Yq6EYJbXuNGNEdbEryFiwqSsYmu5ma3SxOs2l39ZBtWbGaFxr9yLrCU\r\ndevicetype: 4\r\nplatformtype: 3\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Fri, 24 Apr 2026 07:11:42 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 69EB17AE2599E0F1E03197B0\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, HEAD, PUT\r\nAccess-Control-Expose-Headers: Etag\r\nAccess-Control-Max-Age: 200\r\nLast-Modified: Thu, 23 Apr 2026 20:22:03 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 12234877988796636457\r\nx-oss-storage-class: Standard\r\nCache-Control: max-age=86400\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: K3TcrrYAOqg543W60R2vTA==\r\nx-oss-server-time: 2\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":5824,"size_decoded":0,"mime_type":"application/json","magic":"ASCII text, with very long lines (5824), with no line terminators","md5":"2b74dcaeb6003aa839e375bad11daf4c","sha1":"4d03f9fb59e5b353793a169a8e599705eba66a45","sha256":"9e46839a466001541283e1df09a1459f08078f64203164f28e594350c3cb7560","sha512":"2cecf3b188bc0c286376cbeb5694dd3f9800a6b3207d0cc7f506380d8c053cd12c6ced9325b423f18a30427d340fde63840b2f29be625118a4a34f44c357acb3","ssdeep":"96:m1g9YGt5H1SHIuvMeqS3uoMMVN2pJrDIRiZ4JAWfVXZqkOIUaJOlO9c3aq29rql:Mg9YGnH1ruSS3VMZpJrsQ4zX4k7E6pql","tlshash":"a1c16bef4e6ea04764a9ccac694fb5a2f76a06934e4a60b4aca71f1c811b01150d7264","first_seen":"2026-04-24T07:12:19.700604Z","last_seen":"2026-04-24T07:12:19.700604Z","times_seen":1,"resource_available":false,"data":null}},"time_used":182,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":181,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"hpihc.vip/","fqdn":"hpihc.vip","domain":"hpihc.vip","tld":"vip"},"ip":{"addr":"103.238.130.40","port":80,"asn":60504,"as":"Spike Telecom LLC","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-24T07:11:34.423Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: hpihc.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.0 200 OK\r\nConnection: close\r\nCache-Control: max-age=259200\r\nContent-Type: text/html;charset=utf-8\r\nContent-Length: 431\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":431,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (431), with no line terminators","md5":"b3486ad9037ea26884070a1b1ecf8b45","sha1":"ebb03db86b2d53340639801df76558100bc97cc1","sha256":"8560bb69968135b67d030535add71bd2319ed95c2e5ed13e4d792d753e0646ab","sha512":"9a30bd198173c479633694a12fe9afc51ad3e07832915699a5dacac1dee689f4773d6b91eb5488db0f9c8a949dce0acde321422ef34107f53472a8c47b7eaa2e","ssdeep":"","tlshash":"0ce0ecf72c51847469f53287ea93bb552c1261c72e01b40554445c91a51cf8eca39e99","first_seen":"2025-12-19T23:45:11.183199Z","last_seen":"2026-04-24T07:12:19.704075Z","times_seen":13,"resource_available":true,"data":null}},"time_used":646,"timings":{"blocked":214,"dns":1,"connect":216,"send":0,"wait":215,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nowjojofjwijewk.o6isvj4.com/bewcdn.txt?t=1777014702769","fqdn":"nowjojofjwijewk.o6isvj4.com","domain":"o6isvj4.com","tld":"com"},"ip":{"addr":"138.113.100.53","port":443,"asn":54994,"as":"ML-1432-54994","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:42.783Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nowjojofjwijewk.o6isvj4.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 05:29:31 GMT","end":"Wed, 17 Jun 2026 05:29:30 GMT"},"fingerprint":{"sha1":"C8:3B:8F:52:00:DB:B2:01:DB:CB:13:6E:DD:5A:C2:11:81:62:65:2F","sha256":"0A:B1:31:A4:CA:4F:61:33:70:CD:0C:BD:D2:1D:BC:47:42:17:4B:E9:23:76:B9:59:AF:EB:C3:9C:94:B7:40:D5"}}},"request":{"raw":"GET /bewcdn.txt?t=1777014702769 HTTP/1.1\r\nHost: nowjojofjwijewk.o6isvj4.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:43 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17AF2E39073230C9B8A9\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\naccept-ranges: bytes\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Thu, 23 Apr 2026 11:34:58 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.2.39\r\ncache-control: s-maxage=31622400,max-age=0,public\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 2\r\nvia: 1.1 PSxgHKG8oz134:6 (W), 1.1 PS-CDG-04A5e173:11 (W)\r\nx-px: ms PS-CDG-04A5e173CDG, ms PSxgHKG8oz134HKG(origin)\r\nx-ws-request-id: 69eb17af_PS-CDG-04A5e173_34858-53565\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":1393,"timings":{"blocked":307,"dns":249,"connect":26,"send":0,"wait":773,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/zh-l1QUm94i.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:45.768Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/zh-l1QUm94i.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/js/index-BWyx4C_v.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:45 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:12 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db9244-188d\"\r\nExpires: Fri, 24 Apr 2026 19:11:45 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6285,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (3912)","md5":"190a266aad198d95e50d014a6f44fa26","sha1":"490435eb1e6672a3a1cf7780059a955450969eb3","sha256":"b23ee6ee5c73d7b38a876e130f8f50affc79dcbba56dd6a12a158d65c5dc665f","sha512":"9d1bcd3abdfc558d7933be53c5eea12c099d3cc95c1dd27553e5aa564541285f00527cd85597a89e99f68d63d56c8e173b8affcd6049504b10c6db9a89aefc9a","ssdeep":"96:fASPtkQV+RbBllseqL/pI+MEag9Yn4pKzt7qzAr9NOQg71pLDIoblBenYGv3r:4SFhGnqbWJd4+Ms2QmPblUn/r","tlshash":"10d10ada47fc9eb8468602956f5b0884b0182dfbe6d6c8e45fa689f53089f1f13131db","first_seen":"2025-09-23T05:38:40.284185Z","last_seen":"2026-04-24T07:12:19.70578Z","times_seen":1756,"resource_available":true,"data":null}},"time_used":269,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":268,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/assets/index-B1RGe_0w.css","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.174","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:38.025Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /assets/index-B1RGe_0w.css HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:38 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:06 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db923e-70c5\"\r\nExpires: Fri, 24 Apr 2026 19:11:38 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":28869,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (28868)","md5":"4b65e46ac40ed95a60ca6b6c6f7a82ac","sha1":"d44626fdd4eadafa39c608c1c944dd3f256984dc","sha256":"2a59ed7e0374416e72fc176adbe78fee83966eb1cfc9e2c2cc107bfe6dd571f6","sha512":"1db71d3f59a701b46d612dbaf0f826b02e6f5bd325b8df1d4e218050db6e0c45c98be11128751e76ab49d8bf8f654c13296f8728a8c840b276f810482f1c1fc6","ssdeep":"384:Mt4AhNeXMvJUnzx2dWcQj1+CZhUrtVYqxPdzLzX5ywsK:Mt4AhN4MvJhsK","tlshash":"18d2753fd76702249437cd65a7c81f648218c93395130edeba527a068bcbb8f35a528f","first_seen":"2025-09-23T05:38:40.237958Z","last_seen":"2026-04-24T07:12:19.707298Z","times_seen":923,"resource_available":false,"data":null}},"time_used":491,"timings":{"blocked":243,"dns":0,"connect":0,"send":0,"wait":248,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/@vue-BJUJtGKq.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:39.450Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/@vue-BJUJtGKq.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:40 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:06 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db923e-12174\"\r\nExpires: Fri, 24 Apr 2026 19:11:40 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":74100,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"f06f0fd561eea95c4feccde0746117b1","sha1":"32c45886151948703a8ac692a48d3cce70aa25e3","sha256":"e228111590701d2db46eb9d8c2a4d85377a449f398bbed10a94ef47938a57c55","sha512":"88e3e6da9f043912c14291675ff91b5426e21fe36defd0cd318131e1b2a9c791fdd662697838cbc1a0a0bddc3139d5ce4e81f82108886153575d383aef0fe4a1","ssdeep":"768:8XCLkQJtg/ocN0MjFuPgDpt6RDMk/0jOVT/eFYl9E27OqX6MQYAMOxTlExfheEqh:9wSCqJCI2b273WNK2U40MH","tlshash":"917308e83092b46253fa19e2007b0406f3792d5a3849d998b16dfedb3e7241550bbfbd","first_seen":"2025-06-19T04:15:59.499735Z","last_seen":"2026-04-24T07:12:19.640188Z","times_seen":7851,"resource_available":true,"data":null}},"time_used":1596,"timings":{"blocked":546,"dns":44,"connect":246,"send":0,"wait":255,"receive":246,"ssl":257},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/ua-parser-js-DP5omx3I.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:39.454Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/ua-parser-js-DP5omx3I.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:40 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:12 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db9244-5de6\"\r\nExpires: Fri, 24 Apr 2026 19:11:40 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24038,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (24037)","md5":"b71c1a4fd07412d0ddd5f0006e401e75","sha1":"a3cf730602aeef3df364916f4ef42e7c0f903419","sha256":"bc8e4ca06ec494e7df32f2dbf125b9b0503a60de5991b5badbb20e5e6c043ad7","sha512":"d018e92aeb4d98a54260edbd707e088a8875010278bc8979921cbbc492281e1fb8720ced7e21cc29b33500d4221c0c403b88b31b6f70caf069f2fc4daad2b793","ssdeep":"384:KLykXfExhSMH+rq/51Raw7t2v6az5CgSpnMjEMuSI162By4iBWijdv:KLFfY1erq/51YGt2/z5C3fSI162By4ib","tlshash":"f6b2a77fe3d5b73c07ece508d63504482f271f69ea88a0746e9892a1a9747c612c7f36","first_seen":"2025-06-19T04:15:59.5131Z","last_seen":"2026-04-24T07:12:19.695862Z","times_seen":9222,"resource_available":true,"data":null}},"time_used":1361,"timings":{"blocked":547,"dns":42,"connect":248,"send":0,"wait":260,"receive":1,"ssl":257},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/@vueuse-NPvArpLr.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:39.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/@vueuse-NPvArpLr.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:40 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:06 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db923e-14cb\"\r\nExpires: Fri, 24 Apr 2026 19:11:40 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5323,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5322)","md5":"f57c1dab91fa5bcf6cc05dafb72fe784","sha1":"02165143404317c6434319149653f730bbe80603","sha256":"7244981ad0fd0347cc2f3d384a2a2db3cc2678d99e6b5ea5381f4d98d7625108","sha512":"2bf0b1de7a04bc917d7a792b58d79d778ad5f35bd6c088a8a051b534c4f8a72eccb592c05adadd8e2304a84bc3dbfc21168fc5746bb7df89f2ef5a99640168bb","ssdeep":"96:lrJGxFiRKyxeF1NFjWtE8CEQxST3VPXt5L2kJOLUtNRCeSkG6ToEuvSOpeFPTbQP:lrYiRKD6tE8vQxST3pL2dUtNRnSkGCoX","tlshash":"ffb1c99875927071737b4c99d077010ab33c39a0358ee0d0a02fafd53a619e293b3d9e","first_seen":"2025-09-23T05:38:40.251503Z","last_seen":"2026-04-24T07:12:19.708412Z","times_seen":4616,"resource_available":true,"data":null}},"time_used":1362,"timings":{"blocked":549,"dns":41,"connect":248,"send":0,"wait":258,"receive":0,"ssl":258},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/siteadmin/upload/img/2010996713328431105.avif","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:47.210Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"GET /siteadmin/upload/img/2010996713328431105.avif HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:47 GMT\r\ncontent-type: image/avif\r\ncontent-length: 17988\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B32A8AB23133BCE9EC\r\nvary: Accept-Encoding\r\naccept-ranges: bytes\r\netag: \"05DCBFF41B3C6F03C15502912AFA994B\"\r\nlast-modified: Tue, 13 Jan 2026 08:45:54 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 12366132495363838636\r\nx-oss-storage-class: Standard\r\ncache-control: immutable,stale-while-revalidate=86400,public,max-age=86400\r\ncontent-md5: Bdy/9Bs8bwPBVQKRKvqZSw==\r\nx-oss-server-time: 4\r\nvia: 1.1 PS-000-01yK737:8 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01yK737HKG(origin)\r\nx-ws-request-id: 69eb17b3_PS-SIN-04Xkl20_48021-58213\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":17988,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"05dcbff41b3c6f03c15502912afa994b","sha1":"ad2aab341857410f0698c3a978bdb6e149aa1536","sha256":"816ea99f2e9d75acf6088d496ff7f99a35659477b87c6cb4c6b47efe2f235f6f","sha512":"fce2dabb76bf92574e0cdcabf04552b83157df2ae0ccac325528bafa5ab1f75a9d17f15efbd0715e4c16cea6059bd9ef35a832bb9789364e452547c0417dafa5","ssdeep":"384:qECWBM8XQzwlgqOf1D938ACC0sRk0icTRckYBnIW6ITGrZvCf6:3MHztP1D9/R0eDTsj6r5Cf6","tlshash":"5e82bee6a71083c7d6b92f34d5d7db063a30de602d6d9fe762c1718819d51e39b20920","first_seen":"2026-02-01T22:50:33.541359Z","last_seen":"2026-04-24T07:12:19.70933Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1452,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":576,"receive":876,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/siteadmin/upload/img/2010996632921042946.avif","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:47.204Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"GET /siteadmin/upload/img/2010996632921042946.avif HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:47 GMT\r\ncontent-type: image/avif\r\ncontent-length: 77375\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B360F733373812E694\r\nvary: Accept-Encoding\r\naccept-ranges: bytes\r\netag: \"A2443564C9C6329CA2CCC72605248CD9\"\r\nlast-modified: Tue, 13 Jan 2026 08:45:37 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 12110075138816996535\r\nx-oss-storage-class: Standard\r\ncache-control: immutable,stale-while-revalidate=86400,public,max-age=86400\r\ncontent-md5: okQ1ZMnGMpyizMcmBSSM2Q==\r\nx-oss-server-time: 5\r\nvia: 1.1 PS-000-01haU38:9 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01haU38HKG(origin)\r\nx-ws-request-id: 69eb17b3_PS-SIN-04Xkl20_48021-58212\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":77375,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"a2443564c9c6329ca2ccc72605248cd9","sha1":"39d106f1c4d7779d5e1b4f6e93ea759f238beb37","sha256":"7e25ad86d9a64e00f1afd6aaf01d79161ec77f8a8d6b142d077e1f1f3d2e7690","sha512":"55fa2081fe76bb385f81441e9ff344cc7e77f4faf03e91c718380c8807ce599aa23a43071b8b4e9d88194680e018689adebe6cc365e7652ea07eaee33a25ccb3","ssdeep":"1536:MTGvJMkyptAmtNIsRTw8lkbp11gWq09+V6scT8qjau7yslqJ:mAMtpt7wbp11RYV6su7jatT","tlshash":"b27302b6c1402aced66e4c311f52b32377b7d21a552abe2ad4880276cd751c58f3b2de","first_seen":"2026-02-01T22:50:33.53504Z","last_seen":"2026-04-24T07:12:19.710126Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1683,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":579,"receive":1104,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.87:5012/bewcdn.txt?t=1777014710009","fqdn":"138.113.11.87","domain":"138.113.11.87","tld":""},"ip":{"addr":"138.113.11.87","port":5012,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:50.016Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.7","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Sun, 04 Jan 2026 02:09:46 GMT","end":"Fri, 05 Feb 2027 02:09:45 GMT"},"fingerprint":{"sha1":"86:B5:17:0A:5F:D6:6B:DA:B9:50:D9:56:BA:F5:BD:51:C1:B3:E6:5A","sha256":"32:FA:A4:59:E7:B7:27:F8:4F:22:CD:45:F7:F4:41:01:22:9B:D6:7C:8A:3A:CE:D4:07:75:9B:C4:AC:D4:1C:FA"}}},"request":{"raw":"GET /bewcdn.txt?t=1777014710009 HTTP/1.1\r\nHost: 138.113.11.87:5012\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:50 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B61F197838311417FA\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\naccept-ranges: bytes\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Thu, 23 Apr 2026 11:34:58 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.2.39\r\ncache-control: s-maxage=31622400,max-age=0,public\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 1\r\nvia: 1.1 PS-000-01yK737:12 (W), 1.1 PS-SIN-04Xkl20:21 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01yK737HKG(origin)\r\nx-ws-request-id: 69eb17b6_PS-SIN-04Xkl20_47241-3632\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":1054,"timings":{"blocked":404,"dns":0,"connect":184,"send":0,"wait":244,"receive":0,"ssl":219},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/@vueuse-NPvArpLr.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.142","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:38.598Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/@vueuse-NPvArpLr.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/js/index-BWyx4C_v.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:39 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:06 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db923e-14cb\"\r\nExpires: Fri, 24 Apr 2026 19:11:39 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5323,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5322)","md5":"f57c1dab91fa5bcf6cc05dafb72fe784","sha1":"02165143404317c6434319149653f730bbe80603","sha256":"7244981ad0fd0347cc2f3d384a2a2db3cc2678d99e6b5ea5381f4d98d7625108","sha512":"2bf0b1de7a04bc917d7a792b58d79d778ad5f35bd6c088a8a051b534c4f8a72eccb592c05adadd8e2304a84bc3dbfc21168fc5746bb7df89f2ef5a99640168bb","ssdeep":"96:lrJGxFiRKyxeF1NFjWtE8CEQxST3VPXt5L2kJOLUtNRCeSkG6ToEuvSOpeFPTbQP:lrYiRKD6tE8vQxST3pL2dUtNRnSkGCoX","tlshash":"ffb1c99875927071737b4c99d077010ab33c39a0358ee0d0a02fafd53a619e293b3d9e","first_seen":"2025-09-23T05:38:40.251503Z","last_seen":"2026-04-24T07:12:19.708412Z","times_seen":4616,"resource_available":true,"data":null}},"time_used":1291,"timings":{"blocked":517,"dns":1,"connect":248,"send":0,"wait":251,"receive":0,"ssl":271},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cypahp-1155-ppp.oss-accelerate.aliyuncs.com/bewcdn.txt?t=1777014700254","fqdn":"cypahp-1155-ppp.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.138","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:40.278Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /bewcdn.txt?t=1777014700254 HTTP/1.1\r\nHost: cypahp-1155-ppp.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Fri, 24 Apr 2026 07:11:41 GMT\r\nContent-Type: text/plain\r\nContent-Length: 2\r\nConnection: keep-alive\r\nx-oss-request-id: 69EB17ADB7D61ABE8F9846AA\r\nVary: Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, HEAD, PUT\r\nAccess-Control-Expose-Headers: Etag\r\nAccess-Control-Max-Age: 200\r\nAccept-Ranges: bytes\r\nETag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nLast-Modified: Thu, 23 Apr 2026 11:34:58 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.2.39\r\nCache-Control: s-maxage=31622400,max-age=0,public\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-04-24T10:17:08.803821Z","times_seen":275327,"resource_available":true,"data":null}},"time_used":2936,"timings":{"blocked":1377,"dns":824,"connect":20,"send":0,"wait":179,"receive":0,"ssl":533},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/hall/api/lobby/config/getAppDownloadInfo.json?t=1777014","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:45.272Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"GET /hall/api/lobby/config/getAppDownloadInfo.json?t=1777014 HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en;q=0.9, *;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nlanguage: en\r\ndevice: 9522bc702c9dca111c32c09840adf38f\r\nx-version: 6.4.3\r\nX-Request-Id: 477664e0-b72f-4291-946e-f1f9eae760f2\r\nX-Custom-Referer: https://wtt297.sgikvo.cn/?cid=2657320\r\ndomain: wtt297.sgikvo.cn\r\nclienttimezone: UTC0\r\ndeviceModel: undefined-undefined\r\nnonce: 477664e0-b72f-4291-946e-f1f9eae760f2\r\ntimestamp: 1777014705\r\nsiteCode: 1155\r\nsign: IiF/CG4A4ShgWTCyxAtIvqC/0F56Kx1M8i6Sn9cXCLYJ1BhLuwmznjxdZOIDdQVw\r\ndevicetype: 4\r\nplatformtype: 3\r\nOrigin: https://wtt297.sgikvo.cn\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:45 GMT\r\ncontent-type: application/json\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B11F19783235BBF6F9\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\nlast-modified: Thu, 23 Apr 2026 05:36:06 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 8539371045006369944\r\nx-oss-storage-class: Standard\r\ncache-control: s-maxage=600,public,max-age=0\r\ncontent-md5: pAntrG0jc9Lf9rBaB5OLDw==\r\nx-oss-server-time: 1\r\ncontent-encoding: gzip\r\nvia: 1.1 PS-000-01haU38:11 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01haU38HKG(origin)\r\nx-ws-request-id: 69eb17b1_PS-SIN-04Xkl20_48021-58058\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":7212,"size_decoded":0,"mime_type":"application/json","magic":"ASCII text, with very long lines (7212), with no line terminators","md5":"a409edac6d2373d2dff6b05a07938b0f","sha1":"3dcbddd2233d9c4e69ffb5a3a05501f8504569f4","sha256":"b7bec0f624cfcbf7ed07f0cf67d97f02247044811c74648bf4e37ab51f197c31","sha512":"5621138a15cf7a378e8e2361e5e4d62dcfc8c8196e3b196da6b907949eeb497d5153acc07a4ee51bb928a30c1e6acb8658008eaa2fe24cc2c5c805e84793a76a","ssdeep":"192:zrU5NBtMKwLdKBQkc74KjYiJJOH0nVvtOzIkWKgihsuTgUO:zr8NqLdKBQl8KEik0VvteI3K5hZUUO","tlshash":"dbe19f6b38ab750f109bcdb2d6078cedca4a901a6b068677ed83ae44cc8f40669c507c","first_seen":"2026-04-24T07:12:19.711067Z","last_seen":"2026-04-24T07:12:19.711067Z","times_seen":1,"resource_available":false,"data":null}},"time_used":232,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":230,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/siteadmin/upload/img/2010996772141326337.avif","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:47.215Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"GET /siteadmin/upload/img/2010996772141326337.avif HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:47 GMT\r\ncontent-type: image/avif\r\ncontent-length: 132185\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B327077C3730B99C57\r\nvary: Accept-Encoding\r\naccept-ranges: bytes\r\netag: \"BFA0ADE44C72D1D1BA4713809CC02BC5\"\r\nlast-modified: Tue, 13 Jan 2026 08:46:10 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 7496509889950688225\r\nx-oss-storage-class: Standard\r\ncache-control: immutable,stale-while-revalidate=86400,public,max-age=86400\r\ncontent-md5: v6Ct5Exy0dG6RxOAnMArxQ==\r\nx-oss-server-time: 63\r\nvia: 1.1 PS-000-01B1T36:2 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01B1T36HKG(origin)\r\nx-ws-request-id: 69eb17b3_PS-SIN-04Xkl20_48021-58214\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":132185,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"bfa0ade44c72d1d1ba4713809cc02bc5","sha1":"f3dbd1081418a36ff6b8d6cbb459cdf87bf80bba","sha256":"85b5a1131d9044dcb55cb1a6527129ce447f80e2bbcc295e8ad5c9a55288899f","sha512":"1b8b4df24d4b4d3436ba76a4bea07db1a1fe9afb07f85b1b96609c26b10408f5af39be2db57b71c72ef0e8683963d6d8200cbc87e94f245ae09f2d37ebae2aae","ssdeep":"3072:hr6m1/0nttDoMS57GqbwLwoeB2hzLDzwKzlcfBD+:Zj0nn9GqWw7U2dXlcZq","tlshash":"35d312f6db8ed72aed64b8f03815398d0b5ad92917b00093748137e16d6d8b4d27ab3c","first_seen":"2026-02-01T22:50:33.525498Z","last_seen":"2026-04-24T07:12:19.713693Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1850,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":572,"receive":1278,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"138.113.11.140:18025/siteadmin/upload/img/2010996816193478658.avif","fqdn":"138.113.11.140","domain":"138.113.11.140","tld":""},"ip":{"addr":"138.113.11.140","port":18025,"asn":0,"as":"","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:47.219Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"138.113.11.148","organization":"TXNetworks Beijing Co., Ltd."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 25 Dec 2025 06:55:12 GMT","end":"Tue, 26 Jan 2027 06:55:11 GMT"},"fingerprint":{"sha1":"FF:05:06:13:7E:2D:1C:51:43:8B:99:F1:19:E6:03:30:1D:AB:9E:DF","sha256":"9E:F3:B9:5D:75:DF:36:D9:09:27:79:26:CD:2C:D4:95:18:D6:38:31:24:75:5F:A8:5B:24:A5:5D:58:16:C0:FB"}}},"request":{"raw":"GET /siteadmin/upload/img/2010996816193478658.avif HTTP/1.1\r\nHost: 138.113.11.140:18025\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wtt297.sgikvo.cn/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 24 Apr 2026 07:11:47 GMT\r\ncontent-type: image/avif\r\ncontent-length: 107185\r\nserver: AliyunOSS\r\nx-oss-request-id: 69EB17B3F96C043139DC2DE1\r\nvary: Accept-Encoding\r\naccept-ranges: bytes\r\netag: \"C8799E6DCF737D19DB21372C066DFD28\"\r\nlast-modified: Tue, 13 Jan 2026 08:46:21 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 18262933768476312824\r\nx-oss-storage-class: Standard\r\ncache-control: immutable,stale-while-revalidate=86400,public,max-age=86400\r\ncontent-md5: yHmebc9zfRnbITcsBm39KA==\r\nx-oss-server-time: 5\r\nvia: 1.1 PS-000-01B1T36:10 (W), 1.1 PS-SIN-04Xkl20:24 (W)\r\nx-px: ms PS-SIN-04Xkl20SIN, ms PS-000-01B1T36HKG(origin)\r\nx-ws-request-id: 69eb17b3_PS-SIN-04Xkl20_48021-58216\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":107185,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"c8799e6dcf737d19db21372c066dfd28","sha1":"68ff5964367fa2def75112f4e3e3fc547c01341b","sha256":"fb1ad51b3f9f61dd7b97e2a6fe79e65ae44d2f4b41fb638a087a506026cb8ef4","sha512":"a3b415326bd055c970ca31ff5a598551de75512cb76cd62ad8bdb676fac55bd83012112f290eb8848d2279bac208d8a10c3e37495a237be01133cdcea89edd97","ssdeep":"3072:3LD25WiTfq1uaBJor7F1kmh8CmsgOxdm74bA:3LSWiTy1uEJob8vC/A","tlshash":"8ea312592e56118fc288e935a0a379bc7f18c461401bcbd33f99b06a9c74d5ffea05c8","first_seen":"2026-02-01T22:50:33.538432Z","last_seen":"2026-04-24T07:12:19.714789Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1460,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":566,"receive":894,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wtt297.sgikvo.cn/js/@vant-BGmWO0Bj.js","fqdn":"wtt297.sgikvo.cn","domain":"sgikvo.cn","tld":"cn"},"ip":{"addr":"137.220.156.154","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://wtt297.sgikvo.cn/","date":"2026-04-24T07:11:39.456Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sgikvo.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Mon, 20 Apr 2026 17:25:30 GMT","end":"Thu, 05 Nov 2026 17:25:29 GMT"},"fingerprint":{"sha1":"D8:F1:02:13:BD:47:B9:4F:93:19:44:9C:72:D2:B0:C6:FC:0F:96:6F","sha256":"A2:40:DD:83:D2:69:C3:E3:5E:94:64:4D:11:46:71:B3:39:C9:3E:10:01:5A:7C:34:FC:2B:2E:A5:4D:6A:B5:32"}}},"request":{"raw":"GET /js/@vant-BGmWO0Bj.js HTTP/1.1\r\nHost: wtt297.sgikvo.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://wtt297.sgikvo.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 24 Apr 2026 07:11:40 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 30 Sep 2025 08:18:06 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"68db923e-a4e\"\r\nExpires: Fri, 24 Apr 2026 19:11:40 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\nServer: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2638,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2637)","md5":"6d405d0e201a7e59001fa3732e601deb","sha1":"5e9782ceacd87cb267c610855a11d88388d5f849","sha256":"49225d1c23add4df603a7e2d4d8dd8cb7e26d926b4e461bb58b3ab6dc86e785f","sha512":"4ad5f0a44df106356de8d02bf00364e1000f804ace31a63094ba7174eb892a9ec3769118bc5ddea163ae8cc9784bf4b5008eff7c7a5bfae9492d2346dcf995a6","ssdeep":"","tlshash":"b95167ac3651bc34465a1ea2417f9ba5b2163824704b8050e008dd153951863c7fffde","first_seen":"2025-06-19T04:15:59.51972Z","last_seen":"2026-04-24T07:12:19.691001Z","times_seen":7847,"resource_available":true,"data":null}},"time_used":1358,"timings":{"blocked":548,"dns":39,"connect":249,"send":0,"wait":257,"receive":0,"ssl":256},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}