{"report_id":"3caa50f3-f9bd-4c38-ae28-6dfe7f2fa204","version":6,"status":"done","tags":[],"date":"2024-09-21T13:40:02Z","url":{"schema":"http","addr":"shikicheep.com/","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.2.4","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"shikicheep.com/","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"title":"Participate in Our Exclusive Online Survey: Share Your Insight"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-12-07T08:46:13Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r11.o.lencr.org","ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-07 07:43:57","last_seen":"2024-09-21 01:59:55","alert_count":0,"request_count":3,"received_data":2661,"sent_data":981,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.76.249","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-09-21 01:59:55","alert_count":0,"request_count":4,"received_data":3551,"sent_data":1308,"comment":"","tags":null,"fingerprints":null},{"fqdn":"shikicheep.com","ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-06-12","domain_rank":0,"first_seen":"2024-08-20 04:10:14","last_seen":"2024-09-20 23:17:13","alert_count":13,"request_count":13,"received_data":268236,"sent_data":5337,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"shikicheep.com/","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"b53a0dbb91e93fabde030b9ac7608367","sha1":"c820962d7a57c86695cba90a3050ae8baaf6130e","sha256":"b02aee6ef99ebe27b318a7b3ed5694c9a5b81d92608ba019b748a940054753db","sha512":"9e7563cf45ded6e5914cb45f771f968c83d127057ee04d50b963370691f07d3116e5014f8f15a09a4be6193c9c4756f0d49ed855379252015713936f8b49e621","ssdeep":"","tlshash":"01b01242ea3ca16e4381096121f31cd776640d1795f8046abdfce0914f11fb54b809b8","size":115,"data":"","first_seen":"2024-08-22T17:16:04.928329Z","last_seen":"2024-10-27T21:46:52.460229Z","times_seen":922,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"373b669931f9f40ef039b68bb3ff2ed4","sha1":"8d800c0f984084f63875366ac76aec4cd6dde5fd","sha256":"d5c21358a4390a88b3f695e3f0f263f732ddb390a6fc6a1ff7de421ed3e855be","sha512":"b314329ae74a45daa266a4b3ed2038d5906812a4447997099113e9675e27dc66508e71a82b2b781f9535684e5f11d5c806aa84a0cc60b8b8d5f3fdbc3b9bdeb5","ssdeep":"","tlshash":"25f0e25c6608f1ebc2806c2e9a3cef3317888c5eba673d709a88d60521bac3877504d5","size":498,"data":"","first_seen":"2024-09-10T14:49:13Z","last_seen":"2024-10-04T11:24:50.46366Z","times_seen":361,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/webpack-70e83c1e796cda87.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"67e5b41db27c964bcad6d8d747f17a42","sha1":"bfae27e6b0fb6205f1440f231cc62aa3fc401ab9","sha256":"77cb3dc85c7c0d50e1156dafd2d2353b3e4945a06ed6eac076bfe8b567dba2a7","sha512":"a5ea1ddfa6811ac1b91a610ac9280ddabd9f50ff4dad35d5f16cd265f79a53f9b285d73d329145ed37f3770047a741c131c2e226c208569ee0e14f146cf35945","ssdeep":"192:8hhwRpRIxb4VWGHn/0rW0x7xEGxiQ/D2Mtvs55cOP:OmaxsVLchxFEBD55cS","tlshash":"aff108fa3508fab12bd5e0b49f2f946a755628a2534efd54e145c4e9ec30ac0c222f5d","size":7202,"data":"","first_seen":"2024-09-20T16:48:39Z","last_seen":"2024-09-28T08:48:56.809942Z","times_seen":116,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/framework-f3a5861786cc8e61.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"405295ad54872f95616ad4a6c5825af1","sha1":"08c7947a0f01af2c9d2bbe966003667ef3ac1dfa","sha256":"b3f17c2e245d66acc87ac6add2462d56afd8a26c410a180381a37884a02aae00","sha512":"b507d561b7b6db189f1d1778f4853fb08f3b2aebad9da2cd8afd84def4172b598ead8c7253068f6f5a31ff7c7b6eb8957716e8a01501e35ac5ea2de41b149369","ssdeep":"384:MXv5bZ0z3IcV+NtIVVLuugpbSw2tC9pVCeBo01ALKiol7YACwEbhkX:MXvtZsIS+NSf6SwT9Vl89bhkX","tlshash":"f2c2b6e878e4f41027976076517f284bb37b186d688cd0a0e325f8e93db451e64a7fac","size":26670,"data":"","first_seen":"2024-09-04T12:59:23Z","last_seen":"2025-01-27T06:29:13.346765Z","times_seen":3751,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/pages/index-9b0da12d58a4acc0.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8deee1af5a6b5af34278dc246c3af3ed","sha1":"14a7a5d4914c42c8abaf2f828ad8ddc57c87a5f1","sha256":"f8b06bafd9619fd0f13b2cf73839ec75ee62cb10b91075e580f4707aa09944f9","sha512":"130d611b67e339f1a4e92286da0efb2cf674be5b2cde8319179dfef4444cf3f69d43a13ea305350fbb37b7f75b3c72d54b0c0cffaaf22e46032b7e53191316a5","ssdeep":"192:qKjGhsSnjKBakmWVifoRgNmo+y+fQflkbRrAz:UaUkmWv6+yVlcI","tlshash":"702254ddb5e7b0097243b8b050fb594eb22f1e40188d7754e61ab0da396d98df0b2f98","size":9743,"data":"","first_seen":"2024-09-19T14:22:29Z","last_seen":"2024-09-28T08:47:01.743363Z","times_seen":94,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/IjoP8VrlTe9JEJbdsIBoG/_ssgManifest.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5af451de5239a70857cf148059518454","sha1":"d6735fa6bfc3626a57b75af27472aead7bbbcfd2","sha256":"44c6c8a145065314f0fcf7e1a9624f4f73f49136ffdb9441199ec7166c6bfe33","sha512":"feab2e6b4b409fec527fc1bfd420e3f13768665957204c19e101985873ac1fa2a2e4c8cacb9f17b33ec1795d88b0e1b1e6b484fdc14519e68f0dad24984d177b","ssdeep":"","tlshash":"fdc048f2846cac26aa72dc285ab41f228fa00226a84a28938afda44580a20422a10d20","size":134,"data":"","first_seen":"2024-01-31T16:47:14Z","last_seen":"2025-04-16T11:01:56.431952Z","times_seen":9660,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"442f9bb533623f8c007ace1f039be9c6","sha1":"e631aceee3393cd23387a97d88924b83c2353e9a","sha256":"2848ab6e4d9ebd41f4d50ba74ee6bea13bebfb1796e080f88c4bf8e2d2c7e239","sha512":"df6adcc35bb25f2ebeefeca7a8f34c6229f50033f672b2dbfb7be0cd119936079baef265f3a392de6fcc39c6ad7477f31871f18a8285b67d87d9f8358796d75c","ssdeep":"","tlshash":"8c51a4cc73d2f05842972af9909fa84765b35d05b94c0c87d838dad126b9cbd8257ef8","size":2837,"data":"","first_seen":"2024-08-21T12:55:32.15871Z","last_seen":"2024-10-27T21:46:52.46642Z","times_seen":931,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/main-7a75ff3b0e9a5ceb.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7af61658e3b4b42d7a1e8daad3c1c92d","sha1":"6aed92eea6490aada1c83206fd2db1e4e7a3731a","sha256":"b85fee950261bc0977b62043310261be08cc00b601c93ba4aa018333235b3745","sha512":"519add241bcdf628948e50ee5e07104df52bd4f35e0b44ad051221ace2bb3861c86fea4975f8a9d70f2d1561f2571773fbb0d45bc66debe255dbe604541afbf3","ssdeep":"1536:NV8ZH0wowcd8HOlXMGSCJtIDqsSZHRTUfH:TWHH+32qnTOH","tlshash":"62b3e7e976d2f4a202d361b4843f110af37b1d3a605ea841e36adcd17d7498fa163f29","size":109699,"data":"","first_seen":"2024-09-04T12:59:25Z","last_seen":"2025-01-27T06:29:13.347399Z","times_seen":1956,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/1658-4a1fa007dc959763.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"45e374b70a5904938f24b23640e31888","sha1":"7c38c10b8b6040cc4c0ce25d2aed503f81b9513e","sha256":"7ed197e99e747ce5e97ae07fc1e728713132a18bbea23f10a7b5530ab0c53a3d","sha512":"b5c4a90c2c8a714647105ce34999e9d30b8cb00967fabd453b39b34fcb5190ea62d8a261021e925aeb83d9940d68957093bdb8d1d19e0d9a4604660951bec0bc","ssdeep":"384:xUMojjcKsVnjBHuJaSYhPd2DZRFtPW25HZlcR8SxY9opL5a2OIvfA5GgAy0t5:6MQjfsfHfV2DxpuhUY5ZfAExBt5","tlshash":"65d2c68c7183b015438390a5442f268bfa7e2c189c4c8c6af562f8d67978d6ed177fb9","size":30034,"data":"","first_seen":"2024-09-17T18:13:50Z","last_seen":"2024-11-25T04:29:16.902114Z","times_seen":1274,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/IjoP8VrlTe9JEJbdsIBoG/_buildManifest.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"17ff8898c16599f2ec72d41d22cb854f","sha1":"d16f572f045d8c302bd7b29774b89486261f64a4","sha256":"53d487da935786123c3a5563eae8f96f1708496f9da1fb28eb561fc09bf5ac62","sha512":"c56b362f6d831d9ab40eca9cd5113afeef5caf1312809cb1ebe3e139711741eaa24c97366b39a5b50d8543668a211c3b20090a7973c52b5caa698ebdd6ef5b89","ssdeep":"","tlshash":"ba219c4f901cf41268e2cd5a217b5f33dd89a976117d406ab24def2d3251a671f98c82","size":1316,"data":"","first_seen":"2024-09-20T16:48:39Z","last_seen":"2024-09-28T08:48:56.99783Z","times_seen":118,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/pages/_app-a01853fe12109d81.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"aeff63268266171ab7efd6c504b51f40","sha1":"c4858c9ff6f7ede6e23861471f9228d5a3bf7b47","sha256":"a06a2991850732f2d210f259b5cb33713fc587d123d6676cd8f215bb227193ec","sha512":"d36e54adad929f4d147fa94ae8a4b9954aece0050f87406625c3dc93078b799be50c8037102a35c6f90d7422026b9b9e5b617a44a1443c35bc03b0afc85e7b3d","ssdeep":"768:N7FiKMslYg41z83mJHvrP0/iz/382+NlnhL+CZBCu7:ziv37tRSkp+fj7","tlshash":"e033e9ccf6d3f16a22b254f950bb540a723f5d06118dc038f6468d8469bae5b61a3fec","size":53310,"data":"","first_seen":"2024-09-20T19:33:23Z","last_seen":"2024-09-28T08:48:56.932104Z","times_seen":87,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/1093-7040f3e69a9a35a0.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5285e045ae22e83eedc51f7695b3a319","sha1":"0b09110fc34add991f24a2a3488acf6d0a89434d","sha256":"acfd4c0819d291c2209670331310fe87a027882fe61c26f660563a186abb33e8","sha512":"f266d1d913deea64a481c1efc431092ed86d4058135100cc88baf4dda28f7ed2eee18f784b587cede4d260bdafb79effca44e2bb8b2ed59c1f7aa7901753d03a","ssdeep":"384:qe+UJ5bakcy1Of2BxBMBNB6B0BsBSBcBFXGXYCE+gr+uSDgWpG2AL4dl0FurZw9g:qebqt","tlshash":"2092b0dbefc7a05c16f3dea299f78a29927d3b01069d6010d89390d266643ce5322f7d","size":20404,"data":"","first_seen":"2024-09-19T13:26:43Z","last_seen":"2024-09-28T08:47:01.735954Z","times_seen":105,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"b507f8ef9a28424fd62ae549501f8e27","sha1":"81bdfb0c2cfd756ec2f0074107bb41cba75596de","sha256":"55215259109e6f83a2035705b514b9a3a9054279d30f70f35fd79cb6a62be69d","sha512":"df3a35ce3d413445dd90121e8a2fe92336e40a5ca7bc35c44e733b977f809155ac01721869dcad382c73f88a6a8e91a2ee23f7ac53e0abcc1abfd051ffeea524","ssdeep":"","tlshash":"0c800028000220a8a8208ea2b82b2822c30800ca0000b820e202b08c880b0aca8b0b38","size":28,"data":"","first_seen":"2024-06-07T10:07:20Z","last_seen":"2024-10-27T21:46:52.474114Z","times_seen":1750,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"dbd18615369a2c6dd28490f7d4dfd92f","sha1":"91c65d41dab8a6028888d8ce3ba03ad0d413806d","sha256":"a8733def7d52af46f6d922d4cf47f104b1f29b371aa2c0d2d8ab4e284ed596bb","sha512":"446668d593431d1fa5a32c029298cadf2c00561d1bc410c899130a5ff2bcd12d2692af6acb92d37da4b3b0344e1a2ba27ba6dd37b26e62b9073e6c5b2276e0b0","ssdeep":"","tlshash":"848000a0202aa0acac008eb2b32e2022c30888ea0000b8208003208cc80b0e8a8bcaa0","size":30,"data":"","first_seen":"2024-08-28T17:28:14Z","last_seen":"2024-10-27T21:46:52.482556Z","times_seen":849,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/5313-43ffd17d4e712d20.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0069eb037bae520d4f81669a0c1be419","sha1":"b1b241cd100a0da2a09fb4cc5d91324cc331e51d","sha256":"f61c7ae420cf560ae4d4214a7693ae12030eed13641b193aea319a9a36301cbc","sha512":"b4a894f4c7d64bd99ae13bb052d15047cfc99d994ea1c01eb54fc4e39bbdf4e3b73ce50514cc55b4eeb90c42361fd2ef99b5e3e48359d7d69b5b151d701fcd7a","ssdeep":"192:Cy9g8LZNij/cONUXv6r/xU+wjtTh2yMVU:fW/wBTJZ","tlshash":"2902749eb9d2f0052313b8b4907f281bb37a6d16150fa0987229c5ddbdb602d5533f2d","size":8177,"data":"","first_seen":"2024-09-10T14:39:01Z","last_seen":"2024-09-28T08:48:57.021855Z","times_seen":296,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.249","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-21T13:39:36.707384659Z","timestamp":1726925976707,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"A4DFB633C3D6C80962FE436220800F7F6FAC707A55806BFC1757D4FA49AF8CDC\"\r\nLast-Modified: Fri, 20 Sep 2024 21:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=6486\r\nExpires: Sat, 21 Sep 2024 15:27:42 GMT\r\nDate: Sat, 21 Sep 2024 13:39:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"d53da2de4fc4634a067495f858d15c81","sha1":"be0d08371e49c3ff6bb6eb6760b0142bb5e49181","sha256":"a4dfb633c3d6c80962fe436220800f7f6fac707a55806bfc1757d4fa49af8cdc","sha512":"36fb5e34eaac7cdb0c6176f32af647962bc35b21052b5877e4f9300d32db6ac1fd228b23a6d1673ea8a0e3e0d788dd3d296911534f1582831cf2c04a8bb9bcca","ssdeep":"","tlshash":"faf0c9bd09907ae5aa34980239bfc03d6b358dec3158eac0a89200d6ab26bf855c0408","first_seen":"2024-09-21T02:08:03Z","last_seen":"2024-09-28T08:49:28.524549Z","times_seen":32142,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.249","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-21T13:39:36.709293786Z","timestamp":1726925976709,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"34C785DED009E264C1E65D51F0C18F9967BADF244A2E279A8521945ED1338FED\"\r\nLast-Modified: Sat, 21 Sep 2024 05:57:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=10004\r\nExpires: Sat, 21 Sep 2024 16:26:20 GMT\r\nDate: Sat, 21 Sep 2024 13:39:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"722b54139ecda6f9a52afbc6bb4affc0","sha1":"5b6aa33d2346081ba80b762fa828436187ff9675","sha256":"34c785ded009e264c1e65d51f0c18f9967badf244a2e279a8521945ed1338fed","sha512":"cc02800d189e53f3a78921c6dc5d85dbbd5a7a1d8e39a03896b62e11b1586426abd4327ffe4b98794c7f1f170fd7458b9153feec41b6ffb14787ee974663365c","ssdeep":"","tlshash":"bff00ebf1d11b806e2d40d143ae8da646e1237edb42049e578a053d6b863ff69ba006d","first_seen":"2024-09-21T12:28:15Z","last_seen":"2024-09-28T08:48:15.32002Z","times_seen":6174,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.249","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-21T13:39:37.200777555Z","timestamp":1726925977200,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"1E2D60A034B27BC9479B7C4D22C5549B83DE2EE7DC1928436E42361F9B657709\"\r\nLast-Modified: Sat, 21 Sep 2024 06:50:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=19129\r\nExpires: Sat, 21 Sep 2024 18:58:26 GMT\r\nDate: Sat, 21 Sep 2024 13:39:37 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"16bea3ffe29b9735fad4571ef8803b94","sha1":"6f860655a49c7f758f856e75d1a66ecd16399610","sha256":"1e2d60a034b27bc9479b7c4d22c5549b83de2ee7dc1928436e42361f9b657709","sha512":"bb65ff9c97ec2410fd07f3ece6352e692c7b70b7a6961d6b0dd701d56eb01a756bcdae839ad2820a24595d84a49a476ec7dfe01b7b47a4cbc030d4b8a48ad899","ssdeep":"","tlshash":"52f005a155f07e44bba5cd6519e8c6855c0456ec2c1864cdf9d400f33541bacd74910c","first_seen":"2024-09-21T15:00:53Z","last_seen":"2024-09-28T08:46:45.267956Z","times_seen":4104,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.249","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-21T13:39:37.493583175Z","timestamp":1726925977493,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"D5D38A421B62D5DC17FAD4AF813D4199DAFFF91CC7C3574703A991D328763756\"\r\nLast-Modified: Sat, 21 Sep 2024 03:10:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=15907\r\nExpires: Sat, 21 Sep 2024 18:04:44 GMT\r\nDate: Sat, 21 Sep 2024 13:39:37 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"18c18929295da072e565830bef9bc83f","sha1":"51e2f8f748e303427e08b82b1bd7ec9181fad6a0","sha256":"d5d38a421b62d5dc17fad4af813d4199dafff91cc7c3574703a991d328763756","sha512":"2d51dc1df86328e8d3e1ad81c95d1a83fa6a9dc5a11caf92b9534b1ccb2ad0570e19aa4276f991a0a31ee83dad81b3cf07c5d57d64e704b477dc6e330584af01","ssdeep":"","tlshash":"77f005c02b59a4195fa00417788dd5b40516dfedb82419fda5f003917d00f8c4fc4148","first_seen":"2024-09-21T08:01:58.404579Z","last_seen":"2024-09-28T08:49:28.526748Z","times_seen":4710,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/framework-f3a5861786cc8e61.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shikicheep.com/","date":"2024-09-21T13:39:37.909Z","timestamp":1726925977909,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shikicheep.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Aug 2024 02:54:52 GMT","end":"Sun, 17 Nov 2024 03:54:47 GMT"},"fingerprint":{"sha1":"8F:17:AB:C8:97:64:A8:74:D2:32:F5:6C:82:50:40:6C:53:E0:43:AB","sha256":"E3:E1:EB:63:CE:D7:04:98:1D:36:84:38:0E:40:55:52:64:BC:E7:37:8C:33:6A:13:55:20:C5:7F:F4:5E:8D:59"}}},"request":{"raw":"GET /_next/static/chunks/framework-f3a5861786cc8e61.js HTTP/1.1\r\nHost: shikicheep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Sep 2024 13:39:37 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 Sep 2024 15:30:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66ed9501-682e\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: HIT\r\nage: 6863\r\nexpires: Sat, 21 Sep 2024 14:39:37 GMT\r\ncache-control: public, max-age=3600\r\nserver: cloudflare\r\ncf-ray: 8c6a7661dcb7b521-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10069,"size_decoded":26670,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (26670), with no line terminators","md5":"405295ad54872f95616ad4a6c5825af1","sha1":"08c7947a0f01af2c9d2bbe966003667ef3ac1dfa","sha256":"b3f17c2e245d66acc87ac6add2462d56afd8a26c410a180381a37884a02aae00","sha512":"b507d561b7b6db189f1d1778f4853fb08f3b2aebad9da2cd8afd84def4172b598ead8c7253068f6f5a31ff7c7b6eb8957716e8a01501e35ac5ea2de41b149369","ssdeep":"384:MXv5bZ0z3IcV+NtIVVLuugpbSw2tC9pVCeBo01ALKiol7YACwEbhkX:MXvtZsIS+NSf6SwT9Vl89bhkX","tlshash":"f2c2b6e878e4f41027976076517f284bb37b186d688cd0a0e325f8e93db451e64a7fac","first_seen":"2024-09-04T12:59:23Z","last_seen":"2025-01-27T06:29:13.346765Z","times_seen":3751,"resource_available":true,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-21T13:39:39.822683566Z","timestamp":1726925979822,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"5139AF7B8D8C8C3BE44DAA5A5F5A23481938FDF88D165AD83B3A42C6F055F81A\"\r\nLast-Modified: Fri, 20 Sep 2024 02:39:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=6505\r\nExpires: Sat, 21 Sep 2024 15:28:04 GMT\r\nDate: Sat, 21 Sep 2024 13:39:39 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"e004fdf95a45676551f61ab6d8790e30","sha1":"d56dfd42075d67d323f93ad3ff535e553f46756d","sha256":"5139af7b8d8c8c3be44daa5a5f5a23481938fdf88d165ad83b3a42c6f055f81a","sha512":"11f18944de9a9a25ff39abb3cc06005c204fd840814e0101d0fac6205bec5d87e5673107526d7f48478a3afcd3b5c384c2f90f4d8bbb4cd3011bfe141f4fe7c5","ssdeep":"","tlshash":"adf00e220832ad382b6c54210dd2d13f0128b9fa687438a191448aeaab19ff9a9083cd","first_seen":"2024-09-20T13:55:37Z","last_seen":"2024-09-28T08:48:35.658682Z","times_seen":19064,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-21T13:39:39.823802895Z","timestamp":1726925979823,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"5139AF7B8D8C8C3BE44DAA5A5F5A23481938FDF88D165AD83B3A42C6F055F81A\"\r\nLast-Modified: Fri, 20 Sep 2024 02:39:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=6505\r\nExpires: Sat, 21 Sep 2024 15:28:04 GMT\r\nDate: Sat, 21 Sep 2024 13:39:39 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"e004fdf95a45676551f61ab6d8790e30","sha1":"d56dfd42075d67d323f93ad3ff535e553f46756d","sha256":"5139af7b8d8c8c3be44daa5a5f5a23481938fdf88d165ad83b3a42c6f055f81a","sha512":"11f18944de9a9a25ff39abb3cc06005c204fd840814e0101d0fac6205bec5d87e5673107526d7f48478a3afcd3b5c384c2f90f4d8bbb4cd3011bfe141f4fe7c5","ssdeep":"","tlshash":"adf00e220832ad382b6c54210dd2d13f0128b9fa687438a191448aeaab19ff9a9083cd","first_seen":"2024-09-20T13:55:37Z","last_seen":"2024-09-28T08:48:35.658682Z","times_seen":19064,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-21T13:39:39.824988072Z","timestamp":1726925979824,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"5139AF7B8D8C8C3BE44DAA5A5F5A23481938FDF88D165AD83B3A42C6F055F81A\"\r\nLast-Modified: Fri, 20 Sep 2024 02:39:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=6505\r\nExpires: Sat, 21 Sep 2024 15:28:04 GMT\r\nDate: Sat, 21 Sep 2024 13:39:39 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"e004fdf95a45676551f61ab6d8790e30","sha1":"d56dfd42075d67d323f93ad3ff535e553f46756d","sha256":"5139af7b8d8c8c3be44daa5a5f5a23481938fdf88d165ad83b3a42c6f055f81a","sha512":"11f18944de9a9a25ff39abb3cc06005c204fd840814e0101d0fac6205bec5d87e5673107526d7f48478a3afcd3b5c384c2f90f4d8bbb4cd3011bfe141f4fe7c5","ssdeep":"","tlshash":"adf00e220832ad382b6c54210dd2d13f0128b9fa687438a191448aeaab19ff9a9083cd","first_seen":"2024-09-20T13:55:37Z","last_seen":"2024-09-28T08:48:35.658682Z","times_seen":19064,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/IjoP8VrlTe9JEJbdsIBoG/_buildManifest.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shikicheep.com/","date":"2024-09-21T13:39:37.924Z","timestamp":1726925977924,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shikicheep.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Aug 2024 02:54:52 GMT","end":"Sun, 17 Nov 2024 03:54:47 GMT"},"fingerprint":{"sha1":"8F:17:AB:C8:97:64:A8:74:D2:32:F5:6C:82:50:40:6C:53:E0:43:AB","sha256":"E3:E1:EB:63:CE:D7:04:98:1D:36:84:38:0E:40:55:52:64:BC:E7:37:8C:33:6A:13:55:20:C5:7F:F4:5E:8D:59"}}},"request":{"raw":"GET /_next/static/IjoP8VrlTe9JEJbdsIBoG/_buildManifest.js HTTP/1.1\r\nHost: shikicheep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Sep 2024 13:39:37 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 Sep 2024 15:30:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66ed9501-524\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: HIT\r\nage: 6863\r\nexpires: Sat, 21 Sep 2024 14:39:37 GMT\r\ncache-control: public, max-age=3600\r\nserver: cloudflare\r\ncf-ray: 8c6a7661ece9b521-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6286,"size_decoded":1316,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (1316), with no line terminators","md5":"17ff8898c16599f2ec72d41d22cb854f","sha1":"d16f572f045d8c302bd7b29774b89486261f64a4","sha256":"53d487da935786123c3a5563eae8f96f1708496f9da1fb28eb561fc09bf5ac62","sha512":"c56b362f6d831d9ab40eca9cd5113afeef5caf1312809cb1ebe3e139711741eaa24c97366b39a5b50d8543668a211c3b20090a7973c52b5caa698ebdd6ef5b89","ssdeep":"","tlshash":"ba219c4f901cf41268e2cd5a217b5f33dd89a976117d406ab24def2d3251a671f98c82","first_seen":"2024-09-20T16:48:39Z","last_seen":"2024-09-28T08:48:56.99783Z","times_seen":118,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-09-21T13:39:37.383Z","timestamp":1726925977383,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shikicheep.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Aug 2024 02:54:52 GMT","end":"Sun, 17 Nov 2024 03:54:47 GMT"},"fingerprint":{"sha1":"8F:17:AB:C8:97:64:A8:74:D2:32:F5:6C:82:50:40:6C:53:E0:43:AB","sha256":"E3:E1:EB:63:CE:D7:04:98:1D:36:84:38:0E:40:55:52:64:BC:E7:37:8C:33:6A:13:55:20:C5:7F:F4:5E:8D:59"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: shikicheep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Sep 2024 13:39:37 GMT\r\ncontent-type: text/html\r\nlast-modified: Fri, 20 Sep 2024 15:30:09 GMT\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncf-ray: 8c6a765eef4eb521-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5666,"size_decoded":5666,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (5868), with no line terminators","md5":"33829ef0ede9ceef093a52eec804612c","sha1":"4abdb6ccf2c69bbd700b8fef29f2f9b739ffcaae","sha256":"ca46aef088c555833eff5b05de4943b9ef532d541d01f26b7f022c24a8fcc092","sha512":"97ce3643a0e6aa92a0802d44a5ada3e80c4bdb944c553bbc2622bc42b4f6b2a261b3a2c8d216bc6a662eb1d6aa23ad68b3d1f87f953eb50744688dab59f7ab80","ssdeep":"96:msb5FEqV0B5ZQoEmQtLxgvnkWqY0Q4BO3DitEWG7PZFMozZsY3qoyQnWhEOsG:msb5FPg/aYCBw8G7PZFb9DnWhEg","tlshash":"e2c1c8cebe81f04901126dbe517ffa6f51a59c26b9188c58e4ccc8c80179ef94b5baf4","first_seen":"2024-09-21T03:45:19Z","last_seen":"2024-09-28T08:46:45.465222Z","times_seen":13,"resource_available":false,"data":null}},"time_used":197,"timings":{"blocked":39,"dns":1,"connect":8,"send":0,"wait":116,"receive":0,"ssl":30},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/pages/index-9b0da12d58a4acc0.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shikicheep.com/","date":"2024-09-21T13:39:37.923Z","timestamp":1726925977923,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shikicheep.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Aug 2024 02:54:52 GMT","end":"Sun, 17 Nov 2024 03:54:47 GMT"},"fingerprint":{"sha1":"8F:17:AB:C8:97:64:A8:74:D2:32:F5:6C:82:50:40:6C:53:E0:43:AB","sha256":"E3:E1:EB:63:CE:D7:04:98:1D:36:84:38:0E:40:55:52:64:BC:E7:37:8C:33:6A:13:55:20:C5:7F:F4:5E:8D:59"}}},"request":{"raw":"GET /_next/static/chunks/pages/index-9b0da12d58a4acc0.js HTTP/1.1\r\nHost: shikicheep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Sep 2024 13:39:37 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 Sep 2024 15:30:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66ed9501-260f\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: HIT\r\nexpires: Sat, 21 Sep 2024 14:39:37 GMT\r\ncache-control: public, max-age=3600\r\nserver: cloudflare\r\ncf-ray: 8c6a7661ece2b521-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":9743,"size_decoded":9743,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (9989), with no line terminators","md5":"9440a980b6828d8c606918e97a3200c8","sha1":"4fa7aaa470b696b6aa0fafd4ce7e98aa71a03065","sha256":"8c54293658e9c6ae217f820830be1631136157d94308a398453e842aa5c53605","sha512":"8c94ad1841b24718b39986a6f2f6567294020fb0b599f1699f888970b4d9edfd1df0eea82b4aca60944851f7525a1a40bd9ba7429c5787de718ba79131f110e7","ssdeep":"192:KKjGhsSnjKBakmWVifoRgNmo+y+fQflkbRrAL:0aUkmWv6+yVlcu","tlshash":"482254ddb5e7b0097243b8b050fb594eb22f1e40188d7754e61ab0da396d98df0b2f98","first_seen":"2024-09-19T14:22:29Z","last_seen":"2024-09-28T08:47:01.737255Z","times_seen":78,"resource_available":false,"data":null}},"time_used":72,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":72,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/IjoP8VrlTe9JEJbdsIBoG/_ssgManifest.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shikicheep.com/","date":"2024-09-21T13:39:37.926Z","timestamp":1726925977926,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shikicheep.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Aug 2024 02:54:52 GMT","end":"Sun, 17 Nov 2024 03:54:47 GMT"},"fingerprint":{"sha1":"8F:17:AB:C8:97:64:A8:74:D2:32:F5:6C:82:50:40:6C:53:E0:43:AB","sha256":"E3:E1:EB:63:CE:D7:04:98:1D:36:84:38:0E:40:55:52:64:BC:E7:37:8C:33:6A:13:55:20:C5:7F:F4:5E:8D:59"}}},"request":{"raw":"GET /_next/static/IjoP8VrlTe9JEJbdsIBoG/_ssgManifest.js HTTP/1.1\r\nHost: shikicheep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Sep 2024 13:39:37 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 Sep 2024 15:30:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66ed9501-86\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: HIT\r\nage: 6863\r\nexpires: Sat, 21 Sep 2024 14:39:37 GMT\r\ncache-control: public, max-age=3600\r\nserver: cloudflare\r\ncf-ray: 8c6a7661ed1fb521-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":134,"size_decoded":134,"mime_type":"application/javascript","magic":"ASCII text, with no line terminators","md5":"8ffe0d99020b7535af6db34ba54a25cf","sha1":"c9e0b6379bdae795228998c3050d295d14e65669","sha256":"1f5fd7652f124b236dc9ef40458fe6fbbd3b09ef521cd3e4f22602450525773c","sha512":"33da8feaef0adc67f82880178f1c9e420ef7ea6685eb15463ba06cf8e63a9b8ac40c0339150f86ee28fb58606135cd336d47597444db1e4d8f7c24d99140919d","ssdeep":"","tlshash":"57c048f2846cac26aa72dc285ab41f228fa00226a80a28938afda44580a20422a10d10","first_seen":"2024-01-31T16:47:14Z","last_seen":"2025-04-06T20:33:31.657085Z","times_seen":6130,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/main-7a75ff3b0e9a5ceb.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shikicheep.com/","date":"2024-09-21T13:39:37.911Z","timestamp":1726925977911,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shikicheep.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Aug 2024 02:54:52 GMT","end":"Sun, 17 Nov 2024 03:54:47 GMT"},"fingerprint":{"sha1":"8F:17:AB:C8:97:64:A8:74:D2:32:F5:6C:82:50:40:6C:53:E0:43:AB","sha256":"E3:E1:EB:63:CE:D7:04:98:1D:36:84:38:0E:40:55:52:64:BC:E7:37:8C:33:6A:13:55:20:C5:7F:F4:5E:8D:59"}}},"request":{"raw":"GET /_next/static/chunks/main-7a75ff3b0e9a5ceb.js HTTP/1.1\r\nHost: shikicheep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Sep 2024 13:39:37 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 Sep 2024 15:30:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66ed9501-1ac83\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: HIT\r\nage: 6863\r\nexpires: Sat, 21 Sep 2024 14:39:37 GMT\r\ncache-control: public, max-age=3600\r\nserver: cloudflare\r\ncf-ray: 8c6a7661dcc7b521-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":109699,"size_decoded":109699,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"7af61658e3b4b42d7a1e8daad3c1c92d","sha1":"6aed92eea6490aada1c83206fd2db1e4e7a3731a","sha256":"b85fee950261bc0977b62043310261be08cc00b601c93ba4aa018333235b3745","sha512":"519add241bcdf628948e50ee5e07104df52bd4f35e0b44ad051221ace2bb3861c86fea4975f8a9d70f2d1561f2571773fbb0d45bc66debe255dbe604541afbf3","ssdeep":"1536:NV8ZH0wowcd8HOlXMGSCJtIDqsSZHRTUfH:TWHH+32qnTOH","tlshash":"62b3e7e976d2f4a202d361b4843f110af37b1d3a605ea841e36adcd17d7498fa163f29","first_seen":"2024-09-04T12:59:25Z","last_seen":"2025-01-27T06:29:13.347399Z","times_seen":1956,"resource_available":true,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/pages/_app-a01853fe12109d81.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shikicheep.com/","date":"2024-09-21T13:39:37.913Z","timestamp":1726925977913,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shikicheep.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Aug 2024 02:54:52 GMT","end":"Sun, 17 Nov 2024 03:54:47 GMT"},"fingerprint":{"sha1":"8F:17:AB:C8:97:64:A8:74:D2:32:F5:6C:82:50:40:6C:53:E0:43:AB","sha256":"E3:E1:EB:63:CE:D7:04:98:1D:36:84:38:0E:40:55:52:64:BC:E7:37:8C:33:6A:13:55:20:C5:7F:F4:5E:8D:59"}}},"request":{"raw":"GET /_next/static/chunks/pages/_app-a01853fe12109d81.js HTTP/1.1\r\nHost: shikicheep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Sep 2024 13:39:37 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 Sep 2024 15:30:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66ed9501-d03e\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: HIT\r\nage: 6863\r\nexpires: Sat, 21 Sep 2024 14:39:37 GMT\r\ncache-control: public, max-age=3600\r\nserver: cloudflare\r\ncf-ray: 8c6a7661dcceb521-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":53310,"size_decoded":53310,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (53310), with no line terminators","md5":"aeff63268266171ab7efd6c504b51f40","sha1":"c4858c9ff6f7ede6e23861471f9228d5a3bf7b47","sha256":"a06a2991850732f2d210f259b5cb33713fc587d123d6676cd8f215bb227193ec","sha512":"d36e54adad929f4d147fa94ae8a4b9954aece0050f87406625c3dc93078b799be50c8037102a35c6f90d7422026b9b9e5b617a44a1443c35bc03b0afc85e7b3d","ssdeep":"768:N7FiKMslYg41z83mJHvrP0/iz/382+NlnhL+CZBCu7:ziv37tRSkp+fj7","tlshash":"e033e9ccf6d3f16a22b254f950bb540a723f5d06118dc038f6468d8469bae5b61a3fec","first_seen":"2024-09-20T19:33:23Z","last_seen":"2024-09-28T08:48:56.932104Z","times_seen":87,"resource_available":true,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/webpack-70e83c1e796cda87.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shikicheep.com/","date":"2024-09-21T13:39:37.907Z","timestamp":1726925977907,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shikicheep.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Aug 2024 02:54:52 GMT","end":"Sun, 17 Nov 2024 03:54:47 GMT"},"fingerprint":{"sha1":"8F:17:AB:C8:97:64:A8:74:D2:32:F5:6C:82:50:40:6C:53:E0:43:AB","sha256":"E3:E1:EB:63:CE:D7:04:98:1D:36:84:38:0E:40:55:52:64:BC:E7:37:8C:33:6A:13:55:20:C5:7F:F4:5E:8D:59"}}},"request":{"raw":"GET /_next/static/chunks/webpack-70e83c1e796cda87.js HTTP/1.1\r\nHost: shikicheep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Sep 2024 13:39:37 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 Sep 2024 15:30:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66ed9501-1c22\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: HIT\r\nage: 6863\r\nexpires: Sat, 21 Sep 2024 14:39:37 GMT\r\ncache-control: public, max-age=3600\r\nserver: cloudflare\r\ncf-ray: 8c6a7661dcb1b521-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7202,"size_decoded":7202,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (7579), with no line terminators","md5":"4d65f96383704e712bb3fa8fe89b96a8","sha1":"49156217530566c9627fbb9ebdb8e374e6f408fd","sha256":"0f8dde624eed185a2d204241ca4a7c5b2f2739d840e78752a74325ca22d46588","sha512":"3edb0421279755e4b6c9c208f64981d2cef7a7dd9ffef0ee6aa6f4914d10131db39174f545c7eb680224b4c3b2411fdc0d80e8e92e1f8829df62fb24ec7b1364","ssdeep":"192:chhwRpRIxb4VWGHn/0rW0x7xEGxiQ/D2Mtvs55cO/:umaxsVLchxFEBD55cQ","tlshash":"a3f108fa3508fab12bd5e0b49f2f946a755628a2534efd54e145c4e9ec30ac0c222f5d","first_seen":"2024-09-20T16:52:45Z","last_seen":"2024-09-28T08:47:24.511606Z","times_seen":88,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/1658-4a1fa007dc959763.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shikicheep.com/","date":"2024-09-21T13:39:37.914Z","timestamp":1726925977914,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shikicheep.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Aug 2024 02:54:52 GMT","end":"Sun, 17 Nov 2024 03:54:47 GMT"},"fingerprint":{"sha1":"8F:17:AB:C8:97:64:A8:74:D2:32:F5:6C:82:50:40:6C:53:E0:43:AB","sha256":"E3:E1:EB:63:CE:D7:04:98:1D:36:84:38:0E:40:55:52:64:BC:E7:37:8C:33:6A:13:55:20:C5:7F:F4:5E:8D:59"}}},"request":{"raw":"GET /_next/static/chunks/1658-4a1fa007dc959763.js HTTP/1.1\r\nHost: shikicheep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Sep 2024 13:39:37 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 Sep 2024 15:30:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66ed9501-7552\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: HIT\r\nage: 6863\r\nexpires: Sat, 21 Sep 2024 14:39:37 GMT\r\ncache-control: public, max-age=3600\r\nserver: cloudflare\r\ncf-ray: 8c6a7661ecd6b521-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":30034,"size_decoded":30034,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (30034), with no line terminators","md5":"45e374b70a5904938f24b23640e31888","sha1":"7c38c10b8b6040cc4c0ce25d2aed503f81b9513e","sha256":"7ed197e99e747ce5e97ae07fc1e728713132a18bbea23f10a7b5530ab0c53a3d","sha512":"b5c4a90c2c8a714647105ce34999e9d30b8cb00967fabd453b39b34fcb5190ea62d8a261021e925aeb83d9940d68957093bdb8d1d19e0d9a4604660951bec0bc","ssdeep":"384:xUMojjcKsVnjBHuJaSYhPd2DZRFtPW25HZlcR8SxY9opL5a2OIvfA5GgAy0t5:6MQjfsfHfV2DxpuhUY5ZfAExBt5","tlshash":"65d2c68c7183b015438390a5442f268bfa7e2c189c4c8c6af562f8d67978d6ed177fb9","first_seen":"2024-09-17T18:13:50Z","last_seen":"2024-11-25T04:29:16.902114Z","times_seen":1274,"resource_available":true,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/1093-7040f3e69a9a35a0.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shikicheep.com/","date":"2024-09-21T13:39:37.916Z","timestamp":1726925977916,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shikicheep.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Aug 2024 02:54:52 GMT","end":"Sun, 17 Nov 2024 03:54:47 GMT"},"fingerprint":{"sha1":"8F:17:AB:C8:97:64:A8:74:D2:32:F5:6C:82:50:40:6C:53:E0:43:AB","sha256":"E3:E1:EB:63:CE:D7:04:98:1D:36:84:38:0E:40:55:52:64:BC:E7:37:8C:33:6A:13:55:20:C5:7F:F4:5E:8D:59"}}},"request":{"raw":"GET /_next/static/chunks/1093-7040f3e69a9a35a0.js HTTP/1.1\r\nHost: shikicheep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Sep 2024 13:39:37 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 Sep 2024 15:30:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66ed9501-4fb4\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: HIT\r\nexpires: Sat, 21 Sep 2024 14:39:37 GMT\r\ncache-control: public, max-age=3600\r\nserver: cloudflare\r\ncf-ray: 8c6a7661ecdab521-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20404,"size_decoded":20404,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20404), with no line terminators","md5":"5285e045ae22e83eedc51f7695b3a319","sha1":"0b09110fc34add991f24a2a3488acf6d0a89434d","sha256":"acfd4c0819d291c2209670331310fe87a027882fe61c26f660563a186abb33e8","sha512":"f266d1d913deea64a481c1efc431092ed86d4058135100cc88baf4dda28f7ed2eee18f784b587cede4d260bdafb79effca44e2bb8b2ed59c1f7aa7901753d03a","ssdeep":"384:qe+UJ5bakcy1Of2BxBMBNB6B0BsBSBcBFXGXYCE+gr+uSDgWpG2AL4dl0FurZw9g:qebqt","tlshash":"2092b0dbefc7a05c16f3dea299f78a29927d3b01069d6010d89390d266643ce5322f7d","first_seen":"2024-09-19T13:26:43Z","last_seen":"2024-09-28T08:47:01.735954Z","times_seen":105,"resource_available":true,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":89,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/favicon.ico","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://shikicheep.com/","date":"2024-09-21T13:39:38.060Z","timestamp":1726925978060,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shikicheep.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Aug 2024 02:54:52 GMT","end":"Sun, 17 Nov 2024 03:54:47 GMT"},"fingerprint":{"sha1":"8F:17:AB:C8:97:64:A8:74:D2:32:F5:6C:82:50:40:6C:53:E0:43:AB","sha256":"E3:E1:EB:63:CE:D7:04:98:1D:36:84:38:0E:40:55:52:64:BC:E7:37:8C:33:6A:13:55:20:C5:7F:F4:5E:8D:59"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: shikicheep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sat, 21 Sep 2024 13:39:38 GMT\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: MISS\r\nexpires: Sat, 21 Sep 2024 14:39:38 GMT\r\ncache-control: public, max-age=3600\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8c6a7662de8ab521-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"image/x-icon","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-10T02:14:21.808818Z","times_seen":16284503,"resource_available":true,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":109,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/css/0bc0cde260d08b97.css","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://shikicheep.com/","date":"2024-09-21T13:39:37.904Z","timestamp":1726925977904,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shikicheep.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Aug 2024 02:54:52 GMT","end":"Sun, 17 Nov 2024 03:54:47 GMT"},"fingerprint":{"sha1":"8F:17:AB:C8:97:64:A8:74:D2:32:F5:6C:82:50:40:6C:53:E0:43:AB","sha256":"E3:E1:EB:63:CE:D7:04:98:1D:36:84:38:0E:40:55:52:64:BC:E7:37:8C:33:6A:13:55:20:C5:7F:F4:5E:8D:59"}}},"request":{"raw":"GET /_next/static/css/0bc0cde260d08b97.css HTTP/1.1\r\nHost: shikicheep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Sep 2024 13:39:37 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 20 Sep 2024 15:30:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66ed9501-733\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: HIT\r\nage: 6863\r\nexpires: Sat, 21 Sep 2024 14:39:37 GMT\r\ncache-control: public, max-age=3600\r\nserver: cloudflare\r\ncf-ray: 8c6a7661dcadb521-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1843,"size_decoded":1843,"mime_type":"text/css","magic":"ASCII text, with very long lines (1843), with no line terminators","md5":"64b2b4fa42c7d558d735e2cd28ecf88a","sha1":"03d6da6e55b1201b51689590520da495a9233d67","sha256":"2fdb3ce9ccba8355040e5ba3dfb2283194acba81858943b5d88f70030dbb71ea","sha512":"870ebd1188df4e368f9de2b7536e5647db6d1040bdc29cb46b227a6d3a917ab4ff710813246f79a11c5692035798d24f7085f0d8c1763e2d3c0ceea776ff4b69","ssdeep":"","tlshash":"6a3131b30b402b64a7738c263ad67f5436206033c562b5a6e050ecb4c7ca8627d6d78e","first_seen":"2023-04-12T06:56:24Z","last_seen":"2026-06-09T13:38:35.915558Z","times_seen":7839,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shikicheep.com/_next/static/chunks/5313-43ffd17d4e712d20.js","fqdn":"shikicheep.com","domain":"shikicheep.com","tld":"com"},"ip":{"addr":"104.18.3.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shikicheep.com/","date":"2024-09-21T13:39:37.921Z","timestamp":1726925977921,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shikicheep.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Aug 2024 02:54:52 GMT","end":"Sun, 17 Nov 2024 03:54:47 GMT"},"fingerprint":{"sha1":"8F:17:AB:C8:97:64:A8:74:D2:32:F5:6C:82:50:40:6C:53:E0:43:AB","sha256":"E3:E1:EB:63:CE:D7:04:98:1D:36:84:38:0E:40:55:52:64:BC:E7:37:8C:33:6A:13:55:20:C5:7F:F4:5E:8D:59"}}},"request":{"raw":"GET /_next/static/chunks/5313-43ffd17d4e712d20.js HTTP/1.1\r\nHost: shikicheep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Sep 2024 13:39:37 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 Sep 2024 15:30:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66ed9501-1ff1\"\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: HIT\r\nage: 6863\r\nexpires: Sat, 21 Sep 2024 14:39:37 GMT\r\ncache-control: public, max-age=3600\r\nserver: cloudflare\r\ncf-ray: 8c6a7661ecddb521-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8177,"size_decoded":8177,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (8338), with no line terminators","md5":"e621a0c71deb1538eaea5a71875ddeb9","sha1":"b841cc6a3cde56d945cdf9e3bda15db4f1d626ac","sha256":"b629c155b501ca6cbb17c2471886abf7c60db0dc78133d2b57266497d3a7e556","sha512":"fd08992890ecfac634980f23ee1b8a63667dfe7c4d76bd3ed6fe4a40c8d142bb9eb6c5adebc4e0b40d43e294cabb610d6798645dd341901b31ea0534afab469d","ssdeep":"192:iy9g8LZNij/cONUXv6r/xU+wjtTh2yMVy:/W/wBTJ5","tlshash":"7602749eb9d2f0052313b8b4907f281bb37a6d16150fa0987229c5ddbdb602d5533f2d","first_seen":"2024-09-10T14:39:05Z","last_seen":"2024-09-28T08:48:56.87013Z","times_seen":200,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-21","alert":"Sinkholed","trigger":"shikicheep.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}