{"report_id":"2ddf5741-9c41-46ad-83d0-20432127fc7c","version":6,"status":"done","tags":[],"date":"2026-05-01T06:25:45Z","url":{"schema":"http","addr":"api66win.sbs","fqdn":"api66win.sbs","domain":"api66win.sbs","tld":"sbs"},"ip":{"addr":"104.21.85.51","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"api66win.sbs/","fqdn":"api66win.sbs","domain":"api66win.sbs","tld":"sbs"},"title":"API66WIN : Situs Terpercaya Mengelola Aliran Dana Keluar Masuk Secara Higienis","dom":{"size":57505,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (39993)","md5":"a10c60a3d42e5c9c2f073daf20a17f13","sha1":"58ae0657e171a4a9c3919b74cc71a4c2a4ff8629","sha256":"29b817315a7f13aadaa5d956f904f1b2af92508ec5f7d35b3a17fd4b8603ad04","sha512":"ba89ffe393cd0223b86864c3a997b057bbc50adf3e03199775e81bc0c740d0ac4026f8273f2d327efc06a21025e28bdcde2571b66856e4b165cd9dc42de4b710","ssdeep":"768:TW2CW0xheGvm8CdaMKX4GWdMupzyq84tCLrvddzUXVI2f5mFPY44M:TlE5OHapX4G7yyq84tCLr1GDwR4M","tlshash":"9643a3729541222de053d31789d1ebae3638dd03d223086ee72627d5cf927fe9372a19","dom_hash":"domhash5c0222a4b9d2eaf42d9e1326a8fee135","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"api66win.sbs","fqdn":"api66win.sbs","domain":"api66win.sbs","tld":"sbs"},"ip":{"addr":"104.21.85.51","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-05T06:25:45Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-01","alert":"Phishing Block","trigger":"priaidaman.edgeone.dev","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"priaidaman.edgeone.dev","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"priaidaman.edgeone.dev","ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"domain_registered":"2025-06-09","domain_rank":0,"first_seen":"2025-12-19T12:47:33.829796Z","last_seen":"2026-05-01T06:22:39.834465Z","alert_count":6,"request_count":3,"received_data":99700,"sent_data":1221,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.ampproject.org","ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2015-08-31","domain_rank":3289,"first_seen":"2015-10-09T04:27:01Z","last_seen":"2026-04-27T12:44:49.975768Z","alert_count":0,"request_count":2,"received_data":295609,"sent_data":823,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"api66win.sbs","ip":{"addr":"104.21.85.51","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-04-29","domain_rank":0,"first_seen":"2026-05-01T06:25:46.0197Z","last_seen":"2026-05-01T06:25:46.0197Z","alert_count":0,"request_count":2,"received_data":886203,"sent_data":911,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdn.ampproject.org/v0.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c54252d732bff78217cfbeff950b3476","sha1":"960deb0b579fba259aa9865d3b1deadff0538bff","sha256":"852bb88969e8e21c5f7403b97cdb69b072a54f60214690cee9f1dad4db2d6740","sha512":"e75fc0cc5405ac64ddce8e210062fda91bf50d668d8cbef548f54b22b311082da8d3830d9092375ab69a6d8def15d9889f195f03269ecc9f570ba7afbf77f7e2","ssdeep":"6144:ixUXfTWCOu6qiieuIbno1uzRePNS+7HYo:yqftp/0RENS+74o","tlshash":"e754949db286b0724793b075803f150aa33ba859244a812cf56de9d67cbcd89b137f7c","size":284617,"data":"","first_seen":"2026-03-17T22:15:38.805176Z","last_seen":"2026-05-02T00:41:13.228632Z","times_seen":2255,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012603032146000/v0/amp-auto-lightbox-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"dfd43df9e3425f6077d3bd69d5928cfd","sha1":"d5b1138d94904e2ab07092a86614976e1c2f543c","sha256":"94922d1f912dea5b7dd68a1a62d746f58d44a0c8305607aca116d6f08ba46708","sha512":"1f42867fd9dce4ae9a17c2a13be535196920068b4ca5b52b256baa92c48150b0f725a5f977ac59bafe6187e06e25aa2ff2787c37e23485bb943cd05fd126b6f5","ssdeep":"96:jKoAosPGpV3yMDc0jGAM+G0mj1hVXxSZ4tqSKN0OV0TjLRkiGj0ldmq43bDjHI:jKqswV3yv0jGAFCPX/tqKyWp4M0rDTI","tlshash":"d7f196dc7ac2b83a5757b4b780af414fa63ba94624ad9120d120f0d83cb995ed633e5c","size":7798,"data":"","first_seen":"2026-03-17T22:15:38.806244Z","last_seen":"2026-05-02T00:41:13.222127Z","times_seen":2168,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"priaidaman.edgeone.dev/favicon.png","fqdn":"priaidaman.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://api66win.sbs/","date":"2026-05-01T06:25:25.024Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /favicon.png HTTP/1.1\r\nHost: priaidaman.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Wed, 18 Feb 2026 12:23:48 GMT\r\nEtag: \"cdb04049a030cb5196e2283ed90558f4\"\r\nContent-Type: image/png\r\nCache-Control: public, must-revalidate, max-age=0\r\nAge: 878570\r\nContent-Length: 3741\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nDate: Fri, 01 May 2026 06:25:25 GMT\r\nEO-LOG-UUID: 16626390160435244542\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3741,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"cdb04049a030cb5196e2283ed90558f4","sha1":"583735cfd2034d153d9f86d0fb3d10fec09d2fd3","sha256":"341a9d8c0bf020c9c1735a7339c42df27420bc66d30181c140154556e4c53027","sha512":"8479be481b38eca716eb1e484ea00af51914c21824cf162e4c90f7fd9da696202c745d95ca329ccfded5a713a68ddf7a94f421199b7a1c1a6db0e191f1a9f5f7","ssdeep":"","tlshash":"0c715bc168268c3186461f6280fed85279f2374f131879f41f892e0ce6282c7d465fa4","first_seen":"2025-12-27T00:37:07.081902Z","last_seen":"2026-05-01T06:32:56.502499Z","times_seen":79,"resource_available":false,"data":null}},"time_used":280,"timings":{"blocked":-1,"dns":1,"connect":21,"send":0,"wait":22,"receive":0,"ssl":236},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-01","alert":"Phishing Block","trigger":"priaidaman.edgeone.dev","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"priaidaman.edgeone.dev","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012603032146000/v0/amp-auto-lightbox-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://api66win.sbs/","date":"2026-05-01T06:25:25.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Apr 2026 05:18:23 GMT","end":"Wed, 01 Jul 2026 05:18:22 GMT"},"fingerprint":{"sha1":"2F:B4:2D:83:EA:61:FA:47:24:53:6F:2B:F6:4B:AA:72:B3:30:7E:2C","sha256":"11:F4:87:95:E6:7F:88:4A:FE:D2:EE:1D:E8:AB:D6:2E:5D:77:73:B2:E5:D7:FF:34:70:DD:64:3C:16:CD:DA:3A"}}},"request":{"raw":"GET /rtv/012603032146000/v0/amp-auto-lightbox-0.1.js HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://api66win.sbs\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 2972\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 30 Apr 2026 21:38:20 GMT\r\nexpires: Fri, 30 Apr 2027 21:38:20 GMT\r\ncache-control: public, max-age=31536000\r\nage: 31625\r\netag: \"74a8e6f749d364bb\"\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7798,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (7676)","md5":"dfd43df9e3425f6077d3bd69d5928cfd","sha1":"d5b1138d94904e2ab07092a86614976e1c2f543c","sha256":"94922d1f912dea5b7dd68a1a62d746f58d44a0c8305607aca116d6f08ba46708","sha512":"1f42867fd9dce4ae9a17c2a13be535196920068b4ca5b52b256baa92c48150b0f725a5f977ac59bafe6187e06e25aa2ff2787c37e23485bb943cd05fd126b6f5","ssdeep":"96:jKoAosPGpV3yMDc0jGAM+G0mj1hVXxSZ4tqSKN0OV0TjLRkiGj0ldmq43bDjHI:jKqswV3yv0jGAFCPX/tqKyWp4M0rDTI","tlshash":"d7f196dc7ac2b83a5757b4b780af414fa63ba94624ad9120d120f0d83cb995ed633e5c","first_seen":"2026-03-17T22:15:38.806244Z","last_seen":"2026-05-02T00:41:13.222127Z","times_seen":2168,"resource_available":true,"data":null}},"time_used":64,"timings":{"blocked":44,"dns":1,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"priaidaman.edgeone.dev/logo.png","fqdn":"priaidaman.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://api66win.sbs/","date":"2026-05-01T06:25:25.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: priaidaman.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Wed, 18 Feb 2026 12:23:49 GMT\r\nEtag: \"796c1a172c374b2e92d13ae520a88381\"\r\nContent-Type: image/png\r\nCache-Control: public, must-revalidate, max-age=0\r\nAge: 1558140\r\nContent-Length: 91057\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nDate: Fri, 01 May 2026 06:25:25 GMT\r\nEO-LOG-UUID: 9851612744535190612\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":91057,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 540 x 135, 8-bit/color RGBA, non-interlaced","md5":"796c1a172c374b2e92d13ae520a88381","sha1":"d4c8502ee0589ce2527dafdae0dfd45a0051f91a","sha256":"0d81e6525d48928ce3962e9735311b74e587368d89295d76eaf13bbba2088ca5","sha512":"fc7a506b8eabb50d020cf04216782178b8c5af7f05c5a0d161639748df946e030520b3d479009083bc05abef820dcf79aae72ad19c3d31dc3920e947ffe74dc4","ssdeep":"1536:On13z+ns2g/88edA1LZWehUnJIrPWEESuU6LkKSemrBWpfssdEv7XPGBQ:613zZ/88+AJ/hbrxbux0ZIkv7Xp","tlshash":"5d9312a88bcc4c0dfaf6c43b8f60bc06cfb6784843614916ac69698db578d312d05e7a","first_seen":"2026-02-20T13:34:45.241763Z","last_seen":"2026-05-01T06:32:56.508857Z","times_seen":56,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"priaidaman.edgeone.dev","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-01","alert":"Phishing Block","trigger":"priaidaman.edgeone.dev","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api66win.sbs/banner.png","fqdn":"api66win.sbs","domain":"api66win.sbs","tld":"sbs"},"ip":{"addr":"104.21.85.51","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://api66win.sbs/","date":"2026-05-01T06:25:25.479Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api66win.sbs","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 01:28:14 GMT","end":"Tue, 28 Jul 2026 01:28:13 GMT"},"fingerprint":{"sha1":"6A:74:CB:BB:7F:AC:FB:07:4C:69:05:B4:E0:07:E6:E1:AD:A4:43:21","sha256":"B9:BF:FC:33:11:13:23:7B:69:D0:F0:26:09:8D:46:82:19:C6:E1:F1:56:91:17:D9:48:1A:07:26:9D:A3:7B:AF"}}},"request":{"raw":"GET /banner.png HTTP/1.1\r\nHost: api66win.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://api66win.sbs/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 01 May 2026 06:25:26 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 29 Apr 2026 07:35:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69f1b4a4-ccd0a\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\npriority: u=4,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8qFYTC93icYWf1nbkNmLEeDIqEEJxm6n0APKz68AzaNibi5DnB9QMiigIT8ocOzUu97JgDCx4nmDUhYKujZ23s9V1k1%2BkADuV4yJbb7eWl7cAHd2d%2FhC3L1070vaunk%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f4cb5762cee0b69-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":838922,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 736 x 736, 8-bit/color RGB, non-interlaced","md5":"2e13d7dca390e60eba2e6c701f789b2d","sha1":"96f9f87118b00f29fb2ce1af95bd4290a7259226","sha256":"438e2e2cc957c0487a643b89264c9601cf8b1cbcc34d7bf22c85bf852bd0827e","sha512":"387a3a061f9bf8e30ad24867dccc00b0deb3c5bfb18ca6b7933a8a8ef669307d4f5151896c9269d61e3cb97730bc1deaceb9cf3833bc5bda6078d78fe8657359","ssdeep":"24576:pco9xYL+YFuhzHoeutOQmVjwqwpIZhvrUw1iV7dZ:SsYL+YoHoeutkVkXQBrU8iV7","tlshash":"810533afe3644f72dc1d7e22863251fab8f8e057931352db8015c897ced8682197d2ad","first_seen":"2026-05-01T06:25:49.318729Z","last_seen":"2026-05-01T06:30:50.803311Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1711,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":781,"receive":930,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api66win.sbs/","fqdn":"api66win.sbs","domain":"api66win.sbs","tld":"sbs"},"ip":{"addr":"104.21.85.51","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-01T06:25:23.839Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api66win.sbs","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 01:28:14 GMT","end":"Tue, 28 Jul 2026 01:28:13 GMT"},"fingerprint":{"sha1":"6A:74:CB:BB:7F:AC:FB:07:4C:69:05:B4:E0:07:E6:E1:AD:A4:43:21","sha256":"B9:BF:FC:33:11:13:23:7B:69:D0:F0:26:09:8D:46:82:19:C6:E1:F1:56:91:17:D9:48:1A:07:26:9D:A3:7B:AF"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: api66win.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 01 May 2026 06:25:24 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Wed, 29 Apr 2026 07:35:00 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: master-only\r\nreferrer-policy: same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7JbuV%2B8KqYIC5FuhaWHcgwk7sn6CjVK%2F4d0YzWpFFmcOZhGvqZiAswfcHKRHJz0fOavepdjGSTk9EofTueo2zpzxRlRIfFtrqo1fzRZynhDObT6nlqE0xBv7hqdYE2U%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9f4cb56c99ffb4ed-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":45728,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (39987), with CRLF line terminators","md5":"00eae1b108b137feed146adfd4a43083","sha1":"a83f2ff888c72b31d8248a534cb3e4d940d2c5fc","sha256":"11509d8742b8301d92578dada618d11c97007e63f8d66ef15bfb50b13a6a9ef1","sha512":"c8fe83a5377a672504dd52ffbc9eb9d767fd4f73dfa63c7738750c3d90d4fb988a2b59e2cf622f85b867c8f57a003114bbd8025c7e3c24793348c069b992d102","ssdeep":"768:dntTGvu/OGwCsaMKX4GWdMupzyq84tCLrvddzUXVX2VKWf:jCw12apX4G7yyq84tCLr1GhWf","tlshash":"4e23a5b145021229f053d71bd9d1ae9d7278dd03e123486eb36b26d68fd26fe83b3a14","first_seen":"2026-05-01T06:25:49.327485Z","last_seen":"2026-05-01T06:30:50.809442Z","times_seen":2,"resource_available":true,"data":null}},"time_used":851,"timings":{"blocked":97,"dns":81,"connect":1,"send":0,"wait":654,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://api66win.sbs/","date":"2026-05-01T06:25:24.886Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Apr 2026 05:18:23 GMT","end":"Wed, 01 Jul 2026 05:18:22 GMT"},"fingerprint":{"sha1":"2F:B4:2D:83:EA:61:FA:47:24:53:6F:2B:F6:4B:AA:72:B3:30:7E:2C","sha256":"11:F4:87:95:E6:7F:88:4A:FE:D2:EE:1D:E8:AB:D6:2E:5D:77:73:B2:E5:D7:FF:34:70:DD:64:3C:16:CD:DA:3A"}}},"request":{"raw":"GET /v0.js HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\ncontent-type: text/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 73113\r\ndate: Fri, 01 May 2026 06:25:25 GMT\r\nexpires: Fri, 01 May 2026 06:25:25 GMT\r\ncache-control: private, max-age=3000, stale-while-revalidate=1206600\r\netag: \"5b239dc189f888b8\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":284617,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (64627)","md5":"c54252d732bff78217cfbeff950b3476","sha1":"960deb0b579fba259aa9865d3b1deadff0538bff","sha256":"852bb88969e8e21c5f7403b97cdb69b072a54f60214690cee9f1dad4db2d6740","sha512":"e75fc0cc5405ac64ddce8e210062fda91bf50d668d8cbef548f54b22b311082da8d3830d9092375ab69a6d8def15d9889f195f03269ecc9f570ba7afbf77f7e2","ssdeep":"6144:ixUXfTWCOu6qiieuIbno1uzRePNS+7HYo:yqftp/0RENS+74o","tlshash":"e754949db286b0724793b075803f150aa33ba859244a812cf56de9d67cbcd89b137f7c","first_seen":"2026-03-17T22:15:38.805176Z","last_seen":"2026-05-02T00:41:13.228632Z","times_seen":2255,"resource_available":true,"data":null}},"time_used":381,"timings":{"blocked":144,"dns":1,"connect":30,"send":0,"wait":40,"receive":53,"ssl":109},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"priaidaman.edgeone.dev/favicon.png","fqdn":"priaidaman.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://api66win.sbs/","date":"2026-05-01T06:25:25.022Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /favicon.png HTTP/1.1\r\nHost: priaidaman.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Wed, 18 Feb 2026 12:23:48 GMT\r\nEtag: \"cdb04049a030cb5196e2283ed90558f4\"\r\nContent-Type: image/png\r\nCache-Control: public, must-revalidate, max-age=0\r\nAge: 878570\r\nContent-Length: 3741\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nDate: Fri, 01 May 2026 06:25:25 GMT\r\nEO-LOG-UUID: 9773684704781436254\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3741,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"cdb04049a030cb5196e2283ed90558f4","sha1":"583735cfd2034d153d9f86d0fb3d10fec09d2fd3","sha256":"341a9d8c0bf020c9c1735a7339c42df27420bc66d30181c140154556e4c53027","sha512":"8479be481b38eca716eb1e484ea00af51914c21824cf162e4c90f7fd9da696202c745d95ca329ccfded5a713a68ddf7a94f421199b7a1c1a6db0e191f1a9f5f7","ssdeep":"","tlshash":"0c715bc168268c3186461f6280fed85279f2374f131879f41f892e0ce6282c7d465fa4","first_seen":"2025-12-27T00:37:07.081902Z","last_seen":"2026-05-01T06:32:56.502499Z","times_seen":79,"resource_available":false,"data":null}},"time_used":280,"timings":{"blocked":-1,"dns":0,"connect":19,"send":0,"wait":22,"receive":0,"ssl":239},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-01","alert":"Phishing Block","trigger":"priaidaman.edgeone.dev","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"priaidaman.edgeone.dev","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}