{"report_id":"5fbb9121-4f5a-4158-8cc7-775ce0ad27ff","version":6,"status":"done","tags":[],"date":"2026-01-07T16:10:24Z","url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":0,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"title":"CPT MARKETS","dom":{"size":36718,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (30293)","md5":"a01dcfeec5519a55dc07bd68a6cec6f4","sha1":"0432029d6b77dc0732546c6e214c60cd6ea44626","sha256":"3847594591ea31afe39410a4848175494ccc73e40f591dff89bcb3d37428e5d6","sha512":"1b98da61b640321059270167be78a3de7e0a889cfac088b8cc4f8fdb135eaefbc672cc3f5bc6b09e4da8b3367c011478c1f760433c060ae528db2c3315a121c3","ssdeep":"384:nvSZCxw2Atc0IeF0FRFXFDsFOqFYFA3FXJrsIOCYkiI:n6Qxw268jVQO+oA1XJoMYkiI","tlshash":"44f22779a604056b03ab85c1f2757e1f76d2f30f850a8505bbbce18a2fc3c76bb65462","dom_hash":"domhash032204d2c88f3ffa1627610c79c92671","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":0,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-11T16:10:24Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":10,"urlquery":0,"analyzer":2}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-07T16:10:10Z","timestamp":1767802210,"ip_dst":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":35284,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-01-07T16:10:10.246537+0000\",\"flow_id\":2222089467707340,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.44\",\"src_port\":35284,\"dest_ip\":\"39.103.20.137\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo3.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":899,\"bytes_toclient\":6587,\"start\":\"2026-01-07T16:10:09.769996+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-07T16:10:10Z","timestamp":1767802210,"ip_dst":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":35266,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-01-07T16:10:10.250949+0000\",\"flow_id\":1315752584002975,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.44\",\"src_port\":35266,\"dest_ip\":\"39.103.20.137\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo3.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":899,\"bytes_toclient\":4662,\"start\":\"2026-01-07T16:10:09.769439+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-07T16:10:10Z","timestamp":1767802210,"ip_dst":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":35282,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-01-07T16:10:10.280788+0000\",\"flow_id\":166380680888050,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.44\",\"src_port\":35282,\"dest_ip\":\"39.103.20.137\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo3.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":899,\"bytes_toclient\":4662,\"start\":\"2026-01-07T16:10:09.769778+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-07T16:10:10Z","timestamp":1767802210,"ip_dst":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":35290,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-01-07T16:10:10.306240+0000\",\"flow_id\":409342685855838,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.44\",\"src_port\":35290,\"dest_ip\":\"39.103.20.137\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo3.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":899,\"bytes_toclient\":6587,\"start\":\"2026-01-07T16:10:09.770142+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-07T16:10:10Z","timestamp":1767802210,"ip_dst":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":35302,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-01-07T16:10:10.496130+0000\",\"flow_id\":1360957114830892,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.44\",\"src_port\":35302,\"dest_ip\":\"39.103.20.137\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo3.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":753,\"bytes_toclient\":4662,\"start\":\"2026-01-07T16:10:10.020524+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-07T16:10:10Z","timestamp":1767802210,"ip_dst":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":35326,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-01-07T16:10:10.535634+0000\",\"flow_id\":1256237222220011,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.44\",\"src_port\":35326,\"dest_ip\":\"39.103.20.137\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo3.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":753,\"bytes_toclient\":6587,\"start\":\"2026-01-07T16:10:10.020715+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-07T16:10:10Z","timestamp":1767802210,"ip_dst":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":35292,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-01-07T16:10:10.544345+0000\",\"flow_id\":498957178523542,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.44\",\"src_port\":35292,\"dest_ip\":\"39.103.20.137\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo3.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":899,\"bytes_toclient\":6587,\"start\":\"2026-01-07T16:10:10.020374+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-07T16:10:10Z","timestamp":1767802210,"ip_dst":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":35312,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-01-07T16:10:10.569831+0000\",\"flow_id\":432385185435792,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.44\",\"src_port\":35312,\"dest_ip\":\"39.103.20.137\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo3.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":753,\"bytes_toclient\":1634,\"start\":\"2026-01-07T16:10:10.020624+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-07T16:10:11Z","timestamp":1767802211,"ip_dst":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":35250,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-01-07T16:10:11.087522+0000\",\"flow_id\":967061369109352,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.44\",\"src_port\":35250,\"dest_ip\":\"39.103.20.137\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo3.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":7,\"bytes_toserver\":1324,\"bytes_toclient\":6587,\"start\":\"2026-01-07T16:10:09.768872+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-07T16:10:11Z","timestamp":1767802211,"ip_dst":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":35270,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-01-07T16:10:11.341560+0000\",\"flow_id\":437406002167395,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.44\",\"src_port\":35270,\"dest_ip\":\"39.103.20.137\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo3.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":5,\"bytes_toserver\":973,\"bytes_toclient\":4662,\"start\":\"2026-01-07T16:10:09.769635+0000\"}}"}],"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"btc-uss.top","ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":34,"request_count":36,"received_data":3617012,"sent_data":14797,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"trading-order-roseccc.s3.amazonaws.com","ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"domain_registered":"2005-08-18","domain_rank":0,"first_seen":"2025-06-03T12:45:54.189968Z","last_seen":"2025-12-11T06:25:25.843464Z","alert_count":0,"request_count":16,"received_data":50187,"sent_data":8494,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"webapi.btc-uss.top","ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2025-12-30","domain_rank":0,"first_seen":"2026-01-07T16:10:27.313476Z","last_seen":"2026-01-07T16:10:27.313476Z","alert_count":13,"request_count":13,"received_data":76332,"sent_data":6661,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"echo3.oss-cn-beijing.aliyuncs.com","ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"domain_registered":"2012-04-01","domain_rank":0,"first_seen":"2025-06-03T12:45:54.194431Z","last_seen":"2025-12-12T09:10:47.095837Z","alert_count":0,"request_count":27,"received_data":589727,"sent_data":12336,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"94cb806f13187b76d16e8079124171c5","sha1":"be4a8d1cf84b787988d13ce1525597114ffda19f","sha256":"8d842a1f950c7dae6582c415825541111a6556359dc37380452abbb9c426b1d1","sha512":"280cc32cda89db02b4cb60e620a1c175194998afeb2c4bea92194c0c4f335d00a8e35d4c1ca28c2f4201c4654493fc96a581e54175ed4ee4153af805d69c10df","ssdeep":"","tlshash":"62c08cc8a0c32d101603a92020af29e490384027b14c1b038de4d8492ea30b48233ee8","size":149,"data":"","first_seen":"2024-01-05T03:21:28Z","last_seen":"2026-06-04T04:33:14.485402Z","times_seen":339,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"afd6dadb9533533d8514ac548303e331","sha1":"0b297795e161099658da59b3912482e86732e56d","sha256":"e378d3c8bb137aed4116bdd0c560231896d500f4edbb80088c14fd8fb220c3a9","sha512":"0df2fd8eb6e505ad35fff7e135feb15d50d1ae87d9990d9fa472fb834b7baf48ca73b3e8850042c74584e60de2daa8b9a4a981e5bef460ab48ad5f8ddb5d03e6","ssdeep":"","tlshash":"6cc08cc4a0c22d101602661014bf29e59024802671881b42cc94e8882e220f08233e98","size":140,"data":"","first_seen":"2023-06-06T09:30:31Z","last_seen":"2026-06-08T05:16:21.741287Z","times_seen":879,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"c49b9327002d4ddf4d66b3a04314510f","sha1":"6c7cea95090f4929f7c28f0f25fa24f13a21648c","sha256":"0accfe1066a438e8568d54f98930a43ef978496fd43badde28de52b94b92926c","sha512":"c39a5eb3989570a5b8d2a43d7df175fb82a175c4c68ac9929c8d6834327e36c963b90112a30120b2bc2b719fc7854c443be12e3709d40c5b2b1e03a447231e69","ssdeep":"","tlshash":"df11abfe291a60296303405e976b7801643650a9400a185177cc9aadbb9ab7dd0cfb8d","size":1048,"data":"","first_seen":"2026-01-07T16:10:47.140695Z","last_seen":"2026-01-07T16:10:47.140695Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-057af867.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"c8724767c595ec2d432e1328bb7392cc","sha1":"ab36d2883f95a9d9fed011baabab21b02a28c135","sha256":"2475d79e4fe636d70abe20a4d67d13fbda7e1d92f699df96101efebab2444e3a","sha512":"b444de7e8ae7140b23564044f928250bfd4ffb06f4f66d8328ed2bdd9209ffdf7ac06de9b3605fc3cd95cb7fdf80e16f6186711f464fe5bd0e5113874ddcde4c","ssdeep":"1536:s1V+UbJrPSNukv9dygTU8F5UAN1yPhIYoIRx:mpPl8F5Uc14x","tlshash":"b6b35b8a990a0fbf1cfd084579564a1020a90fd7588ecc93b7bbae1527fec94639971c","size":115356,"data":"","first_seen":"2026-01-07T16:10:47.125669Z","last_seen":"2026-01-07T16:10:47.125669Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"f2f5a4f08c8536ee9b64126b563cd62c","sha1":"15d57cd315463221c807ad74b0e19578dd90f7a5","sha256":"1fce7bdbc1acea81dde9287f6971529e3cc024b01b1ebcd537ce4f16e064b760","sha512":"204e680610bbc982bcb79334b0acd7f7f3c101fcd0b0d384925c0d0f1dbb4fb222d259d164c7cf5a339887dc471086b3dcb2ca246f6af92c95526c91a4ac0427","ssdeep":"","tlshash":"48c08cd8a1cb6d005682b41459bf3ae4a0344027745cab139ce4dc682e230b48233e9c","size":158,"data":"","first_seen":"2024-01-21T00:00:16Z","last_seen":"2026-06-04T04:33:14.487894Z","times_seen":440,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"c0e88513b499aae066f13f6f0edfedab","sha1":"12fd9320e7be26e9257e2a1a39a698a5e2706292","sha256":"3ffd5a1fea533c35c122aeb0a36f3d4a37022e0a14c83167faeaa819b3ee8cfd","sha512":"36b57e74aa71e21ec5489637f206796e8b9097db32c59e4ffbbdd7eb11ce35c2f754178f996bd6e11abc560cdddd3af7cde3fc1847c1a455120b5c26ee4fb838","ssdeep":"","tlshash":"17c08cc8b0c6ad001602e45111bf25e4a024802770481b128d98e8483e220f48233e9c","size":139,"data":"","first_seen":"2023-08-29T11:10:58Z","last_seen":"2026-06-08T05:16:21.744552Z","times_seen":895,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"7746993e8adb9277ba5afa2584910974","sha1":"8e7e6d562fd56f594b40b6657156d483d7426e40","sha256":"833dc15f120cad89d5c0680edae217dbad02010e42af351959607df4170074ee","sha512":"10ee66e22fa45386057f1385e179955ad4fd4d53363c0aebe68aa9ba0547bf409a286e53ab6e678e5d0c3485d6cabcdd359f359c5258160b50a0a5a5496d6e6d","ssdeep":"","tlshash":"39c08cc5a0c22e101646641010bf28e49024402674481b028c98d8482e220b08233e9c","size":140,"data":"","first_seen":"2023-04-13T07:32:13Z","last_seen":"2026-06-08T05:16:21.760327Z","times_seen":3523,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"ccd150b26b19436bf630d3e55d886c56","sha1":"b1b0a07a69d04c4d3fd477f645bdf45520f62f80","sha256":"c24d2e1417d4808466ba562ca2a899798ce86afc46131750f60e27caee231f57","sha512":"10c397a1dfd5c74118cfe0e9e2ebd5eaff92efb8aa9790b59149d433b53ed52b58f56be0a4ba2700f418bf659071fe8e9a854c0b42ae798f805c1c77cb64f4c9","ssdeep":"","tlshash":"3dc08cc4b0c26e105a02651014bf3ae490244036b4481b128cd4e8482e230b08233ed8","size":139,"data":"","first_seen":"2023-04-13T07:32:13Z","last_seen":"2026-06-08T00:50:34.159444Z","times_seen":2886,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"9c5d85c82d132954746fe3a15f1ac3f4","sha1":"2d4c487d112bf5af108d30cac1c7d1d0f569fc36","sha256":"52cc3e291ddfc92c2d5de02652365b8e1733ddb2723aba9c17f9c8f0c9334573","sha512":"d28abdfeaca61ccaa8cc0beba79a6a756d3e0f28502e64caca98e33f6e8f406cc7b25a19e43b1c09024641b28a076a2bc6924d653dce27d727dca1689506aa33","ssdeep":"","tlshash":"3dc08cc8f0c36e246642646611af39e4d0248026744c1b038ea4e8493ea30f08233eac","size":151,"data":"","first_seen":"2025-03-08T01:47:03.579511Z","last_seen":"2026-05-08T21:32:02.125552Z","times_seen":24,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"7de71cd324bb8833f4a138cbcdafa759","sha1":"d7a8122c1483170fa571ec47c62f91c66d662ede","sha256":"62b9d7d992de0ba11591d4ed7c7ab166d886c09ddb4a6b79693795ce836c6003","sha512":"5d42f665549881c48abeb0ee42138dcd1b0f6140e49c3fc6efdfe3657cba54e63218787f0b0d2f12622873799b4ec3a21b9f4f62194f2cc9bda2758dd699a439","ssdeep":"","tlshash":"73c08cdab0d72d006602642110af78e8a0388027b08c9b439cd4d8883ea30b08233fa8","size":151,"data":"","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-06-07T17:52:02.030292Z","times_seen":347,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"d8a0b36a3bb5359d82373fd74ab0a55b","sha1":"109fcd2e9501021577ad657d5701aa40e771b723","sha256":"26b23c11a596c1301030aaa5e72296226d0b2c601ff7b24694d413a401ac9826","sha512":"ebb5fb5d0b9ad70253bc33b31f5fab9fa0efb74a89eefd5b900d6b956970a52ef306b8e62a73b47775339624aef7daf7f4779743b84394f80591c0ea8182f9fe","ssdeep":"","tlshash":"d8c08cc4a0d22d001a02641060af34e49028442670481b028ca4d8482e620b48233e98","size":138,"data":"","first_seen":"2023-06-06T09:30:31Z","last_seen":"2026-06-08T05:16:21.767001Z","times_seen":1327,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/charting_library/charting_library.min.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","size":10859,"data":"","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-06-08T05:16:21.679615Z","times_seen":1000,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"cd7a34e714de94d5c29b8ac5acdde24b","sha1":"b722bccb435490630d97ef88cafeb02d92f70fd0","sha256":"312ebfdc50a0e168cff60c206811b02e944263a7d9060c2685509dacfacd7f71","sha512":"a724bc648a508c24e5bb1788e1f02b47030893bbb0b80a99e380d95480095983a35d8ec11193c53f0a67db47a289ab608fcbc9dbca846bfdd5d61a8832290f43","ssdeep":"","tlshash":"58e07d48ff28c7f316ce28ab516e770858d104d58c1b58024cebccc86935ed87291527","size":314,"data":"","first_seen":"2023-03-11T11:23:25Z","last_seen":"2026-06-08T05:45:47.837456Z","times_seen":36440,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"83678961efc93c088d42dd78bc6ea6dd","sha1":"8007d82eec4894fa2867c628e925f1fcfa443fa3","sha256":"d6045334796ceaf006da578968c4ce319e6d4127c9c36ea88297daf6c6713026","sha512":"cd5e028a3850ceca98e01b30d338a9874404eba5a4d8fce81855dc9f8a6189c9c202e6caf3fe736b10295b4c81a1361a68fda5abeeca58d358c8fdb9c02a282d","ssdeep":"","tlshash":"13c08cc4a0c23e106602681124af24e4a0244027704c6b02cde4d8492ea34b8a233e98","size":147,"data":"","first_seen":"2023-07-28T08:36:26Z","last_seen":"2026-06-08T00:50:34.090492Z","times_seen":664,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"ba78027dcfdc9eb09767e4e83301b631","sha1":"1b7e7e0f0922b9165de433222ba8cc4afd0c59b2","sha256":"3de67c074b8692e1861e1c651848411308eb4c90e96f491e9cddc2df529a5da5","sha512":"158882fe08ddcf7bd297cd25a0e7b518789ef98ffa6ba9f14d1b565993ddd00de407f5be64c5c8a819e7a01c4da5887b21ba51f65308cd238c10076951e9e499","ssdeep":"","tlshash":"8ac08cd4a0c62d009646a51116ef36e4a0248026b8486b47cce4ec482e230b08633ea8","size":152,"data":"","first_seen":"2024-01-21T00:00:16Z","last_seen":"2026-06-04T04:33:14.481005Z","times_seen":445,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"d98acc1019303c876db914a972334937","sha1":"73807338e5295d0e4a62fbf19a5258d5cc93e72c","sha256":"864aa8328e7915cfbea7a8773cd622fbf24494c9b6019a076bef6e3f795e7d9d","sha512":"77d7c9975e811e66a77b15f141c84b12ae3aa0f991d15d2864c3c3ce082e0da5f4154d93424ae8580ebd93a1c7231752fbf22ef82ce7a01d997287d2d854d1af","ssdeep":"","tlshash":"e6c08cc8a0c32d001a13642210ff34e4d03440a6b44d1f028dd4e8493e624b09333edc","size":150,"data":"","first_seen":"2024-01-05T03:21:28Z","last_seen":"2026-06-07T17:52:02.029585Z","times_seen":525,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"5948bc3b90afab1829ab7ee61269f24e","sha1":"517e29a82521418181f702543be8ae74a3bf68b3","sha256":"14fc83a84c91770211dc352186f8e87ddc85e87c2dba0c80a159b45897b9ae2d","sha512":"05c079bbf0389ad341941c3e837aca91dc9aff681cee8da0b4560551ba13e6bbb76b01213af6514e6991e3369062870866a41e67e6d67a37038ddba3ddee7d5f","ssdeep":"","tlshash":"a5c08cc4a0c26d002606691010af24e49028802670485b028c94e8592e264b08233ea8","size":139,"data":"","first_seen":"2023-07-01T13:40:07Z","last_seen":"2026-06-08T05:16:21.785301Z","times_seen":1012,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/en-8bf233bb.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"b2443cce29549270fef155303fb9cbba","sha1":"7079fe208a7b03423522affd873c1df59e511cf2","sha256":"e74fe9ded5e142ff06026cd12d36f8d86504d8df3ffd7e6f246abc4c8f955cd7","sha512":"927464cd07f71b399123ccd47ddc3d889cccad1db3147a597e8128a843fe267f0ccc1856d7a9f927d6096eed98688330c512ed0f00557524916fb85fefe920b3","ssdeep":"768:/GtZcEw/o7r2OdQsihnAMCYrAaAMen5oP6+NsPG9d1mwO6fpk7aOLxu:bpon2OdQlEYrde5osPWdqLxu","tlshash":"6d13d78a3e16c8ab05f35366b4ce6e2160f909c2c255881f4fedc5fd53e2b566363724","size":43408,"data":"","first_seen":"2026-01-07T16:10:47.081689Z","last_seen":"2026-02-24T15:52:23.110274Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"528dd01eb509d1fc3c68b48e165c9d77","sha1":"8d702f33d869eb8c53cf75c17014f96385322395","sha256":"b508dff20bdbd9138e31aa48c45bc501805e509d2fd4709b39c4a60cd5c6b43a","sha512":"4c1edeec560f431005363ff5291acc80c1c42edf7c9a6d6e4fde2f7539b6a35a8e36f0bc228503263277bf5df4525dc579575faadca614c32e5dfa885a2d343b","ssdeep":"","tlshash":"78a012bb71b851710cd51ba7a40455e01c20123105052c101c8d5151c011c171d394c0","size":84,"data":"","first_seen":"2023-04-07T06:55:59Z","last_seen":"2026-06-08T05:45:47.838001Z","times_seen":38732,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/vendor-ff2ea35d.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"d10decc1903bd60ab1f54080c8e15e01","sha1":"ec1ce546c8ccabf1e9742db6db7172d6a2ee9258","sha256":"999c73ec5d84ec7ea41c21fae03c80c63e551ff32cff0fcb3a0218ebd3274bbb","sha512":"390036571ae35946dd05577fcefcf2772adc2f4c9bd46711114f2958a60556e502bfd56d2db0074e67d942987cc92851d95d6fe7dd006ef3506acf6b9bbb465f","ssdeep":"12288:Mv6NLEg6B1uVDwbV7VPUI2X2Y/BDr0A9Os5+BR1V2gYRWdQZEeJa2ne:Mv65Eg1VUh7mIGOs5+dXYRWdQZpa2e","tlshash":"971529c57292f06147ab20e240bb1006f3396e59744e8494f1add8eb7d69d89e2b7f3c","size":880058,"data":"","first_seen":"2025-12-12T09:10:54.048326Z","last_seen":"2026-04-21T18:12:28.874624Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/filters-615e8900.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"483ddb86920446879a90af921db55ca8","sha1":"3233cb7356099c03df4aa1c704c30416df7fc4bd","sha256":"f284126050559d0634c6a7c1035b85ac1568253c0a0a552a7dbadfc6b0fb8a81","sha512":"3f4f86293334ea28f7fc32ec14ed81f475b3b5454684e3c5f18647e65275991538762262d057e2205c012d8715b47d55911811de4b31fc41b4972ccb0ac84703","ssdeep":"","tlshash":"315134fdfdd7613356ea6ef944288110728ebe20686e0a49f54bd0455a338c8e0bf768","size":3102,"data":"","first_seen":"2026-01-07T16:10:47.064609Z","last_seen":"2026-01-07T16:10:47.064609Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"9d379fc52463f2b630c6894900da5180","sha1":"b33fecceae6c1ef97518c6ad7159534d78e7b2f7","sha256":"6c3288c6af4396096b1a8a927fbfaf05ac8cc29658fc97d13cf036ba6bb38ab3","sha512":"49b43b0c253e26c135bd5009d73c537cf2e78342ef6b116ce6efbd3627152ac804449ec5cbe637a544b5557b52a50213a19dfcf33158a4f6b0a8ff91d79372d5","ssdeep":"","tlshash":"61c012c5a0da29102951595424bf28e8a024c026b55c6b169de4dda829e64fcc627d98","size":190,"data":"","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-06-07T18:30:52.990769Z","times_seen":666,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"207820ea30e8c69ce04100e8526ac9b2","sha1":"289c2ffded67dd3ddfa4bfbbba56b6f8043610a9","sha256":"1fd71a67efe14f91b321e3f476ef6de1ac2329e77f5720cd37ae6589fb074b69","sha512":"d1237fe7e4dbcbfe699ee7e9b4b30d9963a1919d1451c928aa9af64326dfb7a7d43f8bde094fdd4dab7a65a070422f6904cdea73eaac2fb4225f0bb1c8d6df5e","ssdeep":"","tlshash":"30c08cc5b0c36e10261ba85050ef34e490248027b04c1b038da4e8892e630f08237e98","size":148,"data":"","first_seen":"2024-01-21T00:00:16Z","last_seen":"2026-06-06T23:47:44.218976Z","times_seen":411,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"c1155eee87487f5efe9634a03695b16c","sha1":"2532dae40bd8f2c93a9eb7cbb00bf21e050124b1","sha256":"41c9b4311d7a14bda7da372afb964f0bf08f0823e01617a967aa9eb2554d298b","sha512":"ae1174eea2e3597d1ecd46bea51c7948e05095c00c03cb3670e5b62dd0c14abd26e7c3643fda485610290a4426fa92d0c9d7920303a7bdbc659f735313f2ea48","ssdeep":"","tlshash":"28c08cc4b1d22e106606641010af36e490298426b08c1b028ca8e8892e260b08237fec","size":148,"data":"","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-06-05T10:33:32.173255Z","times_seen":408,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"ad53bdca95253da3ed0339a52f219d8e","sha1":"1acba9622b6c70c03ce56310becd1d72226538e4","sha256":"3fecdc9cf7339d52588891d5d7b0c4b4ebfd82fe813b141fd5b81fdc70694f81","sha512":"d2bf6f0a88bbc044c6aab45f1f8795b3aafcf709a0a2b294f27062c0c34e1f34ec3964286f776c55a40a412cdf01c2ace59fdf7981fd69c6d8a63a6791ff8d3e","ssdeep":"","tlshash":"61c08cc4a0c22d001a02645014bf24e4a024802770481b02dcd8d8483e220b08233e98","size":137,"data":"","first_seen":"2023-05-08T20:49:31Z","last_seen":"2026-06-08T05:16:21.757738Z","times_seen":963,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"f19a249a3e546a75d19b9d3f75497cdd","sha1":"4fcf8a4234dc76c37cb9415dd3c2d4820fb45a30","sha256":"8f0b9cbdf1999a03131eed312b7dc7ab85a5ddbf696e4805d240a61cdf5066b2","sha512":"7f999eee3d080218db37b9bd7ae6ca464771276ae0eb378b537d24635f5d700aede00359099b8e2197cc4f36e56162a46110fbdb85f213ed5ada51d9875a7402","ssdeep":"","tlshash":"c5c08cc9a2c22d001646641014bf28f4902480277048ab038dd4dc892e620f0823be9c","size":146,"data":"","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-06-07T17:52:02.043963Z","times_seen":527,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"c464eee61a30b35747e8e9848e60be3e","sha1":"3b58c9c7de2dd7f0322fd7bb9947ad3a01ac8cce","sha256":"955a99d585122831f4cabbe60b7755379393349c40795ff761e7ce78b3e491d7","sha512":"d548dacba908d5bd228c19df9e45083444741e1151dc914e356f01fd7fcb666a7077df8a57af5bc72e249160aa32ce3e40c77f22dc01fb2af95a6c3d19be3e4f","ssdeep":"","tlshash":"d3e0abeb3139c16456f09f2b6cec4c1bf69b27334d8c050bf8b4a9051ebad64227c894","size":420,"data":"","first_seen":"2024-07-24T17:37:43Z","last_seen":"2026-06-07T18:30:52.962806Z","times_seen":376,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-b0f24c10.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"74195ee3a3eba9a9faa93ee837191fcb","sha1":"8afe803a27e8cbb7eec06d64749d4d81772a83ff","sha256":"c2203fc6680d35fac32fe86d755efa18ec40203c7635a479544500f476cbce4d","sha512":"4eb3129198a3f808aea3e2632f864deea95c66f70637c50ccfcda9071be2d6c0a40f4f708f649c8aa9dc6feeb69e11bc154d71428f6b65d06e1eedb2f43f38ff","ssdeep":"","tlshash":"a6f02b1f2a7694f35be688ed96231851d21917051321c154fd4e4d15a73c5e2a2af398","size":448,"data":"","first_seen":"2026-01-07T16:10:47.113557Z","last_seen":"2026-01-07T16:10:47.113557Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"18c5d8b78c0defb08fb10e83d303ebe5","sha1":"9311bb004ac36aab7a582d0980cfd9d541474b79","sha256":"8e7dcc5d04cad973e034dcc0a5e5c3ab2dc97f87921f60689c546410ce06d667","sha512":"18e1a726b50166d99fa68af1682d85aac60894b7ca97819d3d5d4d27b7245a51299706a543ea0ecf2e671d8c859e14ef6e57b85856cc30454db1cd11515469c4","ssdeep":"","tlshash":"11c08cc9b5e62e10b602756014ff34e5a025402a70482b23cd95d88a2f7a2ba933bedc","size":166,"data":"","first_seen":"2025-09-14T16:18:45.754205Z","last_seen":"2026-04-21T18:12:28.909286Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"a4bdcb8203f55c2a0d42fe2daeba7f94","sha1":"28d4fb637c1f7d7cfc979d90f4f388d62eb58a51","sha256":"386fe5926fc7fa712f45c79142ec5390c9082ce14bd96a609004647fb1f4d823","sha512":"09dd6e53cd308472025baff2f600acd0b5be74b4d557bf48d7402cf6147449fa01db100adc90a5ea3930e80b42a5a2a1782265620c3f940cc93f60e873363d5e","ssdeep":"","tlshash":"c6c08cc8a1c33d001602661060bf35e4a0288026714c5b128cd4e8492f230b88237e98","size":145,"data":"","first_seen":"2023-06-06T19:23:28Z","last_seen":"2026-06-07T17:52:02.05263Z","times_seen":702,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"ced6204993ccd4d4792486f3b3c899b1","sha1":"c16ea5b8c59dcea2b9b03d844467f9db0d358cdc","sha256":"317f80fdd1cb3e7b69648541320cfeb07fd3ea3d1b70d3aab180edce7c3c4ac5","sha512":"dbf99b86ffabe8deeb56f836821b1f3c58fe9b502b89210ec5082f60b4cb4e30f060645fc970bf48f5c3f20073f0e79845925b0dfb4ac89df0319d4c26bdb795","ssdeep":"","tlshash":"b8c08cc4a0c22e509622651410af38e89034402ab08c5b52dc98e94e3f260f49237eac","size":149,"data":"","first_seen":"2024-01-05T03:21:28Z","last_seen":"2026-06-07T17:52:02.048336Z","times_seen":359,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/currencyItem-6f7dbb76.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"942887d1d571fba37f9cd497ba39f665","sha1":"5324b7926b3a65705be9195fe2a00f736ced71f0","sha256":"d109e7d54773bfd538d7487e5edbb9e5fe5d54270d2e37007b90c3b13a80bee0","sha512":"18a3c095777867fe6b476be0c61a3540bc0575707103ae5cf7a412b3047e44cae18fde12d260b271240304d06f91fe61417d14a35d81e863c44e67d559090ade","ssdeep":"","tlshash":"d021cd5a6a01c6f1c7bf946290bc1414525dbbca700189c1beed24a93b8a9bcd738a71","size":1289,"data":"","first_seen":"2026-01-07T16:10:47.108718Z","last_seen":"2026-01-07T16:10:47.108718Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-c044fd7c.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"106e03d988cbdb024e676f31e28dcfd2","sha1":"eec891557691e23af85eb96d84e442c5c5886184","sha256":"207a8f7075e64c3b1bda85e1eb4d5b0367a90d892ae0da24b7a76de10b218b36","sha512":"d2f075141f3e02a3b8a113d575898402473eca149ff47fcc8f6beddf3dc1eaa3824e9dd44605cab7c48d7f660f7737c8495365c56ad9f99b3e370fd38f4ccb2e","ssdeep":"","tlshash":"fc01bdf9fd1d8ebb0ea20a4142912601140a1fddfa1419f198867d661be4950d7de72d","size":776,"data":"","first_seen":"2025-12-12T09:10:54.116685Z","last_seen":"2026-04-21T18:12:28.868359Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"fad8dda09999e0fd217b78380e5b9931","sha1":"1bddff6b6fe1a67d9e9f9707d7f0bc29785bf221","sha256":"49c56c884b6b76d7f38ffa47669780f9c910b78ceeea25f299fccc5ad2e97552","sha512":"7454076946e83599db8ef6309473b1d3777893e48ac20ebdf4b60acd5fa4ae1505284ab3859d8b63697852bb1785c2090782e2ced1acf737e008ea216ec2962e","ssdeep":"","tlshash":"bfc08cc4a0c36d105602a41010af34e49034442670481b02cca4e8483e234b08233edc","size":139,"data":"","first_seen":"2025-07-18T09:36:58.761891Z","last_seen":"2026-04-07T11:52:09.030163Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"361e9d9b886c9f2b98f57c626c09b9d8","sha1":"01032a33013459a8de015112421c1a9e467f5d44","sha256":"b96071e372b614f6406f0b01ed200e24be43c5c21eac83934e41d7dd6f70ec38","sha512":"c3dc60f09e32481fa8a331627b2cd7911592847e3e0e82721694d14205de941a15ef18259c871c5957195b1ca8b3b63a8109390863f3f8d48e5e8a7d3f8b02dc","ssdeep":"","tlshash":"8bc08cc4a0c22e102602641010bf38e49024402774881b028cd4d8482e230b08233edc","size":140,"data":"","first_seen":"2023-12-19T15:12:13Z","last_seen":"2026-06-08T05:16:21.759691Z","times_seen":524,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"f2d562f0482af28097a1e8bff743e202","sha1":"ab1f7442f13da01242f874f07b84041f32ff8cb8","sha256":"8ea8193c70220762139c7844d4be3c37d53d805256513bc224b53d16ad35730a","sha512":"2cf8993becc7c96e42b0499e72862eefa57d365830253e8b580c35ee9f854d4adb0b5b6817b56dfb125acdbc496ae99e8e78d7f73220c4093e8f2d2e521205f0","ssdeep":"","tlshash":"21c08cc5a0c23d002616641011af38e49028402674481b029c94e8482e230b48233e98","size":137,"data":"","first_seen":"2023-06-05T11:50:57Z","last_seen":"2026-06-07T18:30:53.001133Z","times_seen":498,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"1797b90369a99ff22f1c40b0d94ec9a1","sha1":"aec8ba7bbf7bb80c7a4669d074c61aefb319ecfc","sha256":"e7129c3c36ef7b4a55f09622f14d1a60dd64551f16fd0f7a070edf2c75a13680","sha512":"a578a2dae3c0843433b3aca46d828da3db506e6c048302d6e857b77767968b4cac8e71e6d56dbd81aca28909b96a5f23447544a7a24ac9e3486478aa64b977bd","ssdeep":"","tlshash":"70c08cc4a0c72e001646641018af26e49034402ab0482f568df4d8492e620b08233ed8","size":146,"data":"","first_seen":"2024-01-05T03:21:28Z","last_seen":"2026-06-04T15:28:13.474953Z","times_seen":310,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"0f40806f855fc503ec7fe0e2cdc6da5f","sha1":"ad59d99993690064ee6565eea713ee4c5260f572","sha256":"954bc1931a5584c910a5391a0e2c05ba7190f3c672433a85c162ac948a74a44f","sha512":"7ea9c1cffaf640bc7083f2306a134368aa54ae775230a1f1990c43817594d950ecbf94412ea7ab6262bb8add4715ab6fffe7579f85b0a1c07f6acc4f8207cd9e","ssdeep":"","tlshash":"1fc08cc4a0c2ad001a12649010af24e49034402770481b029c94e8492e220b08237e98","size":137,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-06-08T05:59:05.53828Z","times_seen":5618,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-9a014b0b.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"dd1d65ce93f1eb6066305660eedc7b3a","sha1":"a2adcfb6f4cd17076ed403767c2f018d90aca155","sha256":"bd365ed23335e0762b1ca56c449bfc55da3d967758bd53230eaa0bbe536a38aa","sha512":"dc6306b0e3981edcbcf66033a77ec77c0cde424fedaee14aef18b02e1d0b3ca78efae8bf38191bb43886e23721b799ed6918d398031f91e64f2fc9629e790c75","ssdeep":"96:+HW0uLiJw52YGwC9nKg8zPlwr5VFC6rbO8+PV3hrSNfTK3wUjN9jhh:7LiJw52YGw8n16lwdvc8AdhrSNfm1nhh","tlshash":"87a1b95db412d87de9b3544540a80021219d3beea25d84f2f3bdac4977b8fb9e3d4322","size":4657,"data":"","first_seen":"2026-01-07T16:10:47.078951Z","last_seen":"2026-01-07T16:10:47.078951Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-e9966e52.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"f636c091b47ec52a2c3f7c08d773c3ee","sha1":"8d832a22b1068dbb61792d4bb286c2f904e621db","sha256":"0d7eadf790cf7738f662e925a3e4c41071836c932b6eb57fb78a144fddedc990","sha512":"a21b08cce276f42b4d7c27a5cb2d05501dcee10954e3f18df47fedcdad8e48df4703746b0c6ee47b54f588fe81bc3cd62cf0ce254a32593964f2ee717fe3fd31","ssdeep":"384:YmKmLI7y5XuZkqByF72xIxf2YIrLxb1OO9w9yDT7wJGau0/LC06ke3KF:YmrIK4PU72xIxf2vKAPtau0/LC06ke3w","tlshash":"8e62d799f9099a3ce5bb9461048c0110722e3fdb640d89e2f8bd6d873753ef8b75aa14","size":15500,"data":"","first_seen":"2026-01-07T16:10:47.10755Z","last_seen":"2026-01-07T16:10:47.10755Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"Function","is_inline":false,"md5":"088a6aa95783926cdda35b9bd61df402","sha1":"6bcc7a91394c2ec7d95c5a259f70e51ffa50dc29","sha256":"5efd1243926a95339e0c10066db940873b88a24070c8c70285adfdad50e7cfa6","sha512":"ec608e74458bb6cb3e0aaa13c9b2b17d814407459c022a625fe862a385518d367444c170f2fa700db1196c2f7c94ca5b7197e27023ad87c03daa1008dc96b767","ssdeep":"","tlshash":"aec08cc4a0c22d005656641018af34e890244027b04c1b128de8d8482e620b09333ea8","size":142,"data":"","first_seen":"2024-07-07T15:46:54Z","last_seen":"2026-06-05T10:33:32.161029Z","times_seen":496,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"btc-uss.top/assets/vendor-ff2ea35d.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:04.764Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/vendor-ff2ea35d.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:04 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-d6dba\"\r\nexpires: Thu, 08 Jan 2026 04:10:04 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":880058,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"d10decc1903bd60ab1f54080c8e15e01","sha1":"ec1ce546c8ccabf1e9742db6db7172d6a2ee9258","sha256":"999c73ec5d84ec7ea41c21fae03c80c63e551ff32cff0fcb3a0218ebd3274bbb","sha512":"390036571ae35946dd05577fcefcf2772adc2f4c9bd46711114f2958a60556e502bfd56d2db0074e67d942987cc92851d95d6fe7dd006ef3506acf6b9bbb465f","ssdeep":"12288:Mv6NLEg6B1uVDwbV7VPUI2X2Y/BDr0A9Os5+BR1V2gYRWdQZEeJa2ne:Mv65Eg1VUh7mIGOs5+dXYRWdQZpa2e","tlshash":"971529c57292f06147ab20e240bb1006f3396e59744e8494f1add8eb7d69d89e2b7f3c","first_seen":"2025-12-12T09:10:54.048326Z","last_seen":"2026-04-21T18:12:28.874624Z","times_seen":9,"resource_available":true,"data":null}},"time_used":627,"timings":{"blocked":3,"dns":0,"connect":0,"send":0,"wait":624,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/resource/fonts/Arial.ttf","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:05.486Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /resource/fonts/Arial.ttf HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://btc-uss.top/assets/index-f53e1e9d.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:05 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 1047012\r\nlast-modified: Wed, 11 Jun 2025 07:11:36 GMT\r\netag: \"68492c28-ff9e4\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1047012,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, digitally signed, 25 tables, 1st \"DSIG\", 58 names, Unicode, � 2017 The Monotype Corporation. All Rights Reserved. ","md5":"ffe66dbfc4b07f36ef38dd621ad2c7cc","sha1":"e032b102cfc37c3226d17e1b462edea5fbf8fe1c","sha256":"c1216a01b3cc4e94df72577a6f618154058a1d8999ed58fa31ab7e54c7e4be4b","sha512":"3c7952b71c8117938c5284efca0e0b3e8c20d7b84c74a4890f76a72af3b26295786b0f7c33d9b6c980527b4c4c8dad628d1f5e7e5f202d11076367f082349bb3","ssdeep":"24576:NoQIQRjo/Y7wjgTmKJ4WxA7EAD4OBfDamXKE6AMra:NHIQJo/Y7wjgTm0PxAwJHE6hG","tlshash":"f125be0bf3929f0fe3902b38c9a5d761939b76189b2743b73d8c5858ecc85a45e487d2","first_seen":"2023-07-29T15:16:45Z","last_seen":"2026-06-08T05:16:21.720932Z","times_seen":1329,"resource_available":false,"data":null}},"time_used":1854,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":509,"receive":1345,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/platform/dev/config.js?1767802206104","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.114Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /platform/dev/config.js?1767802206104 HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:06 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 394\r\nlast-modified: Wed, 11 Jun 2025 07:11:36 GMT\r\netag: \"68492c28-18a\"\r\nexpires: Thu, 08 Jan 2026 04:10:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":394,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"4bc52b1aa6813b98e0af16a138354c00","sha1":"91ee6accefe6f24544627bdd1ae2aba499d5016c","sha256":"bf904efa24cb62a824547b6df3a7bbade81bfa77cc27124d7766ae502e5d6231","sha512":"22c852a633d0c36ccf7d549fd1c6a800698e42994d993a47f534b92c8ff8430c14d668c72d2bf8eb79e8b4459f83116bc75ff5f5269f36bc3b8cf2cb9ae886ae","ssdeep":"","tlshash":"f5e0abab3138c16451b08f2b6cec4817f68b2733494c010bf8b469041e79d542178890","first_seen":"2024-07-24T17:37:43Z","last_seen":"2026-06-01T14:24:52.336032Z","times_seen":377,"resource_available":false,"data":null}},"time_used":1357,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1356,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-46c4c33e.css","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-46c4c33e.css HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:06 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-29f9\"\r\nexpires: Thu, 08 Jan 2026 04:10:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10745,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (10744)","md5":"7e7507fd0563a827c74623be3700018f","sha1":"bc2613e08fecc4dbe880d027372900118cba3499","sha256":"46c4c33e99edcb33fd0dd1daf839b39dc2c78c6f5399a2be6ed11ac1911d6197","sha512":"8265165a6a5fdfdc925dd5fc3273e968fdf4b89042505488570588e635de28d33657386fdf3f0cd73d51a464706142927d64fe657388438b1ed0980c28f681cb","ssdeep":"96:zXpyheLgRk2LOHdSFGfwNiHTgxAXMp5mXUVM2tL0a5Oa84aEp2r3NTCz3Q4LtRsZ:zrINE0NYvIWEfz3QmtRsLafhi","tlshash":"7422312cf7992234bc36d1d2bfd84dcce118bd12da83ada4e517a6225ecb3e71630149","first_seen":"2026-01-07T16:10:47.063699Z","last_seen":"2026-04-07T11:52:08.991414Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1320,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1320,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/filters-615e8900.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.180Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/filters-615e8900.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:06 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-c1e\"\r\nexpires: Thu, 08 Jan 2026 04:10:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3102,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3101)","md5":"483ddb86920446879a90af921db55ca8","sha1":"3233cb7356099c03df4aa1c704c30416df7fc4bd","sha256":"f284126050559d0634c6a7c1035b85ac1568253c0a0a552a7dbadfc6b0fb8a81","sha512":"3f4f86293334ea28f7fc32ec14ed81f475b3b5454684e3c5f18647e65275991538762262d057e2205c012d8715b47d55911811de4b31fc41b4972ccb0ac84703","ssdeep":"","tlshash":"315134fdfdd7613356ea6ef944288110728ebe20686e0a49f54bd0455a338c8e0bf768","first_seen":"2026-01-07T16:10:47.064609Z","last_seen":"2026-01-07T16:10:47.064609Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1315,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1315,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/6b346742-c5d5-4790-98bc-e2c9667a7baeecho-pro8422233c16ba42c98345a8c575247c62.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.980Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/6b346742-c5d5-4790-98bc-e2c9667a7baeecho-pro8422233c16ba42c98345a8c575247c62.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: R/BAgSt1p+4yTHvM+tdQEF9yzIm+BqA/FqnLcdeDzoLWD8WQaPgUusnmaf5uQ+QFj3/kh2v50BdYcstKSWvpGA==\r\nx-amz-request-id: H7P7ZXDNPSHSGP1X\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:52:39 GMT\r\nETag: \"7868e135f4fb3e4ad89ee43b86db40c1\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 5649\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":5649,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"7868e135f4fb3e4ad89ee43b86db40c1","sha1":"67c9d8637f62dabae0f08f457b005d79a3eaa9b6","sha256":"d655384e170d34b37bf41e68f739eb6ae1c4c91d7990e108461e04581e0b30d5","sha512":"410bec54fd333bbe3875f1c8160651e68c4cb387c4756427d4e1186ef9b901be323c1fec497da7f5883be9ce12a58112174aceb4c7225bef06d9ff47569f495e","ssdeep":"96:97dhTVFvKPGSUZIxRn+yk+N6MXUoMeFgpsSvQnwMwaE1Jksxn596dqAAjXq0W5+V:97dhJYiexR+WUCMjvQna1r8MAz5+FZG8","tlshash":"84c18dbd0ab97a3cfc1bc6ef6caa4cb353149625bc84fdcea560d41040fc84649d55a7","first_seen":"2025-09-14T16:18:45.711993Z","last_seen":"2026-04-27T17:21:18.581622Z","times_seen":16,"resource_available":false,"data":null}},"time_used":562,"timings":{"blocked":443,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/d14e7108-82cd-49ee-8c82-45b448f0cd19echo2.052f8627951f94c28a147ef1a57083863.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.166Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/d14e7108-82cd-49ee-8c82-45b448f0cd19echo2.052f8627951f94c28a147ef1a57083863.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 4tGAo6ZAsYhXx0TtLJcySF5SE/i1LHCtfeod1yKt4QP/530tDCGuiGww58CEUQIpo7tH++BtCm7ac+j5/Pyjfg==\r\nx-amz-request-id: H7PFJT10ZXTYP0N7\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:43:27 GMT\r\nETag: \"b61f1ca72c14930cc6204ceda9d4a1a8\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1476\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1476,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"b61f1ca72c14930cc6204ceda9d4a1a8","sha1":"d4fc6e900b4f0491c9e21b5bd87abb3a5774d197","sha256":"177ef0c77ae4e4dc8e7ecadcd84bb6e7532cb427ec8d1354cf1128521cfa8af2","sha512":"7cd45adb9967aa94bbe9b31e192eec3de548262312428e260296eb69cf49a68e5aa120ea96733d90c5b7d32bab97e2329d469aaeb260e151b6216686e8128aa2","ssdeep":"","tlshash":"8d31855ce3209852e205ee9320e6506b985304c0dbe2f0aae0cbd9925a303f745cd9cb","first_seen":"2024-12-08T15:39:09.775069Z","last_seen":"2026-06-01T14:33:57.982388Z","times_seen":77,"resource_available":false,"data":null}},"time_used":381,"timings":{"blocked":259,"dns":0,"connect":0,"send":0,"wait":122,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.btc-uss.top/api/common/type/defi_activity_type","fqdn":"webapi.btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.236Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:02:49 GMT","end":"Mon, 30 Mar 2026 13:02:48 GMT"},"fingerprint":{"sha1":"A1:D4:E3:C2:D8:CF:77:F9:28:03:D3:E2:FB:26:4D:30:84:4F:D2:4A","sha256":"9B:6C:8A:A1:89:4A:F7:61:EC:33:50:1F:8A:3B:67:96:16:D4:03:80:F3:43:5A:63:65:6A:25:F6:CC:D7:1D:F8"}}},"request":{"raw":"OPTIONS /api/common/type/defi_activity_type HTTP/1.1\r\nHost: webapi.btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://btc-uss.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:09 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://btc-uss.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T06:33:57.473216Z","times_seen":16232170,"resource_available":true,"data":null}},"time_used":335,"timings":{"blocked":8,"dns":0,"connect":0,"send":0,"wait":327,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/resource/svg/light/mengbanzu12.svg?2.0.1767103878282","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.982Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /resource/svg/light/mengbanzu12.svg?2.0.1767103878282 HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:09 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 802\r\nlast-modified: Wed, 11 Jun 2025 07:11:36 GMT\r\netag: \"68492c28-322\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":802,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"184d38c97adf35302491834eaf17aee3","sha1":"a21f6508e3eb8b4bf52a510ac9dd219783f561bc","sha256":"5cdcdf5fb66c61d69b6c308a4569e093ff7b0e178fbb1c7d94a599473339bf99","sha512":"a88827fe8f336cb9f4de9cbaade38ff0026d003f03cc096dc443724052a51c417432d1b96b7006e21c49498791fac31678492626f5643eb09d5b94b32afdb9f0","ssdeep":"","tlshash":"d201f6764321c19dd2538b80c7d93f44927eb65bb2d00448b3a32aa74e34f7f55bc595","first_seen":"2024-07-24T17:37:44Z","last_seen":"2026-06-04T04:33:14.422649Z","times_seen":360,"resource_available":false,"data":null}},"time_used":323,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":322,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/polkadot-new.png?echo-res?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.115Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/polkadot-new.png?echo-res?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:12 GMT\r\nContent-Type: image/png\r\nContent-Length: 6542\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8564F8C604363787B884\r\nAccept-Ranges: bytes\r\nETag: \"AF31C3FB19351BCD33B285E70384624D\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:02 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 1799945303628292707\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: rzHD+xk1G80zsoXnA4RiTQ==\r\nx-oss-server-time: 11\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":6542,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"af31c3fb19351bcd33b285e70384624d","sha1":"ec9a0a6b96b1e4d880b22217f6d60361af134719","sha256":"cc01a69f03df4cd483120c8630b6bbf64ab6898230751560fc04ccfa69a5af8d","sha512":"23090859bca1a8b43304f00fe30c564c18a96ca25b72a7a8743bd70624c4731d7957895bc68c553ad82698d72550ea102637b8a94531f2f431881ad74219e7db","ssdeep":"96:x894vVaZ11U9rV1zF8fNQfMwrHE66Yz8BSqVyD3R8C5nVV:qqaZWB1dfr360nayDKor","tlshash":"cdd16c2547981f7df86c2b78dc9042d4ea91ad227b15111fc3841929fb7f6b04d8c8eb","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-04-21T18:12:28.83176Z","times_seen":18,"resource_available":false,"data":null}},"time_used":3139,"timings":{"blocked":2859,"dns":0,"connect":0,"send":0,"wait":277,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.btc-uss.top/api/common/type/defi_activity_type","fqdn":"webapi.btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:10.056Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:02:49 GMT","end":"Mon, 30 Mar 2026 13:02:48 GMT"},"fingerprint":{"sha1":"A1:D4:E3:C2:D8:CF:77:F9:28:03:D3:E2:FB:26:4D:30:84:4F:D2:4A","sha256":"9B:6C:8A:A1:89:4A:F7:61:EC:33:50:1F:8A:3B:67:96:16:D4:03:80:F3:43:5A:63:65:6A:25:F6:CC:D7:1D:F8"}}},"request":{"raw":"POST /api/common/type/defi_activity_type HTTP/1.1\r\nHost: webapi.btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://btc-uss.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:10 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://btc-uss.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":635,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7a423e3451e474878191a0a7f1d323b9","sha1":"13312f533f380295131f6a1540f425d0c98a16ba","sha256":"49c938e0bb3a834cab9319575489cf6c1694cace3f1ceb9671570024328e2a35","sha512":"0522e47fc06c4329cee21e354b264c90ae4b0725941d75cf63af54bee4a307fbe91e7078a412bd9750f3856657159ffe5efff139a652ec0443368f7c146bfdbf","ssdeep":"","tlshash":"5af028143d3dcebf098f65e745ec7818399c152794a0fca058ab0f3c5ae4171088921c","first_seen":"2025-04-07T11:28:26.961944Z","last_seen":"2026-06-04T04:33:14.419392Z","times_seen":666,"resource_available":false,"data":null}},"time_used":326,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":326,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/vendor-ff2ea35d.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/vendor-ff2ea35d.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:06 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-d6dba\"\r\nexpires: Thu, 08 Jan 2026 04:10:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":880058,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"d10decc1903bd60ab1f54080c8e15e01","sha1":"ec1ce546c8ccabf1e9742db6db7172d6a2ee9258","sha256":"999c73ec5d84ec7ea41c21fae03c80c63e551ff32cff0fcb3a0218ebd3274bbb","sha512":"390036571ae35946dd05577fcefcf2772adc2f4c9bd46711114f2958a60556e502bfd56d2db0074e67d942987cc92851d95d6fe7dd006ef3506acf6b9bbb465f","ssdeep":"12288:Mv6NLEg6B1uVDwbV7VPUI2X2Y/BDr0A9Os5+BR1V2gYRWdQZEeJa2ne:Mv65Eg1VUh7mIGOs5+dXYRWdQZpa2e","tlshash":"971529c57292f06147ab20e240bb1006f3396e59744e8494f1add8eb7d69d89e2b7f3c","first_seen":"2025-12-12T09:10:54.048326Z","last_seen":"2026-04-21T18:12:28.874624Z","times_seen":9,"resource_available":true,"data":null}},"time_used":1264,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1264,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/platform/dev/logo.png?2.0.1767103878282","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:07.825Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /platform/dev/logo.png?2.0.1767103878282 HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:07 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 16 Sep 2025 14:54:11 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c97a13-9bc\"\r\nexpires: Fri, 06 Feb 2026 16:10:07 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2492,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 302 x 167, 8-bit colormap, non-interlaced","md5":"252f9ae33874c3563e7b0ffdbc3caa14","sha1":"86a875c37fcfd2795a65bc8bb25e62b5f3d5084c","sha256":"21939eafd2c80fe7d8e2c5123c9795c45dc5b851aeaca21364aaa71cc1bf1ee7","sha512":"aa38060eaaeabb5b8dbf7316316952c3ad7e12e9a6fb34576675ea91075ef3cc0148831e130a7c8fa6319eda018186fab52607d1453298f37c9a1b44368bf4fc","ssdeep":"","tlshash":"3d515da4cb9e016bce8662343e258036361887b0d22d2da74882d3628f9e578556d7f8","first_seen":"2026-01-07T16:10:47.070779Z","last_seen":"2026-02-24T15:52:23.134472Z","times_seen":2,"resource_available":false,"data":null}},"time_used":319,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":319,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/filters-615e8900.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:07.875Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/filters-615e8900.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-c1e\"\r\nexpires: Thu, 08 Jan 2026 04:10:08 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3102,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3101)","md5":"483ddb86920446879a90af921db55ca8","sha1":"3233cb7356099c03df4aa1c704c30416df7fc4bd","sha256":"f284126050559d0634c6a7c1035b85ac1568253c0a0a552a7dbadfc6b0fb8a81","sha512":"3f4f86293334ea28f7fc32ec14ed81f475b3b5454684e3c5f18647e65275991538762262d057e2205c012d8715b47d55911811de4b31fc41b4972ccb0ac84703","ssdeep":"","tlshash":"315134fdfdd7613356ea6ef944288110728ebe20686e0a49f54bd0455a338c8e0bf768","first_seen":"2026-01-07T16:10:47.064609Z","last_seen":"2026-01-07T16:10:47.064609Z","times_seen":1,"resource_available":true,"data":null}},"time_used":319,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":319,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/5337e9cd-6ac7-4572-a0cf-c8879e576c59echo-procce93ff8b98f4b7fb737b629efeb7d5b.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.940Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/5337e9cd-6ac7-4572-a0cf-c8879e576c59echo-procce93ff8b98f4b7fb737b629efeb7d5b.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: wl3ZuWPGS5mttDqbTWFlltT0gF8CmfrykYIJPhV7Nh/Gntw/yTRCCpo7deH8/m9Lq+gIMzcAxOqPR47nvCiZag==\r\nx-amz-request-id: H7P11J8MCMAX7G2T\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:36:12 GMT\r\nETag: \"52622a415647774ba3681c0e049e6800\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1712\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1712,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"52622a415647774ba3681c0e049e6800","sha1":"add4e37d5a7c33344b2a276395cf2f6b247837e9","sha256":"24eda54bc218b21a61b5539a111bbcfc26344f35a0165246b2938bade4a992a8","sha512":"8b6135dc16338c92d3723e72c4ab833794bb2219e328a8177661213c2b98a7ddebdc9fc6348aba722d5304e0eb49944af32acbac0ccf175ed72a1cfab76fb469","ssdeep":"","tlshash":"3731fa497250be419289991110fba0a74da74e90c9e4f261e4cfc9272c313fed97d8cf","first_seen":"2024-12-08T15:39:09.82287Z","last_seen":"2026-06-01T14:33:57.872473Z","times_seen":71,"resource_available":false,"data":null}},"time_used":853,"timings":{"blocked":364,"dns":60,"connect":97,"send":0,"wait":120,"receive":0,"ssl":208},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.btc-uss.top/api/common/getAllSetting","fqdn":"webapi.btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:10.055Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:02:49 GMT","end":"Mon, 30 Mar 2026 13:02:48 GMT"},"fingerprint":{"sha1":"A1:D4:E3:C2:D8:CF:77:F9:28:03:D3:E2:FB:26:4D:30:84:4F:D2:4A","sha256":"9B:6C:8A:A1:89:4A:F7:61:EC:33:50:1F:8A:3B:67:96:16:D4:03:80:F3:43:5A:63:65:6A:25:F6:CC:D7:1D:F8"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://btc-uss.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:10 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://btc-uss.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19766,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (19379), with no line terminators","md5":"7a88fa02231e536dccd68c34cbb89a1c","sha1":"ee711d9fabaf6b72370fa08c8a87d6a10fb3f1ed","sha256":"1b5ca7f6b6ab4c46d1f8088bdf4777d7870ecf1467174509693e033a18a6641a","sha512":"24af3ade992a50f65677ed46f13e716c52f3d843fa4224774f73ece817ccbe9393f64984a115b10304070b7a3ec2f1838e82ab778a0460e5fcc1389e94110976","ssdeep":"192:kZoE8YZUefKpYZOSpQ+orRMjvS+Rbp4n5+/76hiT3kLWA0uJakS54D6/znF2smXT:KH203iSpLF2pUM4H3nOhX0gY+I8","tlshash":"ea92658a37dc9c7da6c716c290eb3a9e75ac35b3d4e0ec45e5a7ff1898868304c0b149","first_seen":"2026-01-07T16:10:47.075348Z","last_seen":"2026-01-07T16:10:47.075348Z","times_seen":1,"resource_available":false,"data":null}},"time_used":649,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":649,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/#/","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-07T16:10:02.005Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:03 GMT\r\ncontent-type: text/html\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-14aa\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5290,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1094), with CRLF, LF line terminators","md5":"c80590c4c91236b92e4f0f5c937271ed","sha1":"3f1637ea5a7790e0e9b9ce880c3adb37d07b1c8e","sha256":"7de497c0e9c17cca17b2b0191fc0f2ef3bb010238403341d3cd0dd6ac5ae2241","sha512":"06fd1b7388874f6499e2822878fa6b2c7539ec964a91493a0e55f950f0d3802b389d13956afca05e80733ae0ae3bad014fef63be7c7a83e33ec17725420e7f06","ssdeep":"96:+r82U9f53uSP50F3lDh6r6TCZydHRH/gOX2mUsGKAiowGwuB1niHTiHCH/2:+FI9P5wEZCxfX2nfD3bwuB1niziif2","tlshash":"e1b151b35da4981a2376412beae7f018df711183861a4914b0cc50ee4feafd5c4ebb26","first_seen":"2026-01-07T16:10:47.076406Z","last_seen":"2026-01-07T16:10:47.076406Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3519,"timings":{"blocked":1596,"dns":957,"connect":319,"send":0,"wait":320,"receive":0,"ssl":325},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/resource/svg/light/kefu.svg?2.0.1767103878282","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.989Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /resource/svg/light/kefu.svg?2.0.1767103878282 HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:09 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Wed, 11 Jun 2025 07:11:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68492c28-54a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1354,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3e724d7ab7843c3085eecc6ca2f2bf45","sha1":"08fb02f6059fec2137bac5b3b2cf2c62acdfc798","sha256":"df985f79874337c4aaa5a582d93e80f71639af38e0877a277a3179d39e379740","sha512":"5b87c4dbc7e1499fe1531f1d3a38706b48174565eec3fc62dce651bd3fdc882b3e80ad3a0ab60890f1b2d77a287994de8f2bbe2553855d9a18ffce0b46d6c869","ssdeep":"","tlshash":"51218a3f031586aed1c0af9887c2590c173ce222f0b545d877535b665c14abb95bcd72","first_seen":"2025-09-14T16:18:45.645426Z","last_seen":"2026-06-01T14:38:08.562875Z","times_seen":18,"resource_available":false,"data":null}},"time_used":320,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":320,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/3f47bd81-e2e4-45b2-9cdf-c839bc5ba4f7echo-prob1dd369e88f84bbbb5403ae1f583871a.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.175Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/3f47bd81-e2e4-45b2-9cdf-c839bc5ba4f7echo-prob1dd369e88f84bbbb5403ae1f583871a.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: f0J8SnLqierIOK+IHOVsVGDK+NQrayuVDZeq2zqlmnEFvo6x+D2DZQqdoPEFr0yH5NcoGsOWy+VwI649W9fP0ZEhclVoQ0slAPMoijZaYOk=\r\nx-amz-request-id: H7PDQ0X17C29W14X\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:47:42 GMT\r\nETag: \"29e13d8e4019a00e982e57ef7489ef07\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1962\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1962,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"29e13d8e4019a00e982e57ef7489ef07","sha1":"7d6d22ad2b6239016dfa816b6cbb882669c35812","sha256":"068208afea55acd5b734b27889300a913b381c1aecb2d3f7a7b737a4b0b3b8d1","sha512":"86ccce1ff50162734c2110da2546b122d49c7dc214ad5d68fbc8c1de4bfa1a4539720b4704ca8a020fb87e011976045e1b9a6b7f3ee83065c8fc72266284760e","ssdeep":"","tlshash":"ac41ea05e9c16e83828c9a6510ef90a2cf6742c0dee0f925aacec51506353b5456d4db","first_seen":"2024-12-08T15:39:09.787655Z","last_seen":"2026-04-30T14:42:23.581534Z","times_seen":59,"resource_available":false,"data":null}},"time_used":557,"timings":{"blocked":437,"dns":0,"connect":0,"send":0,"wait":120,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-9a014b0b.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:07.869Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-9a014b0b.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-1231\"\r\nexpires: Thu, 08 Jan 2026 04:10:08 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4657,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (4650)","md5":"dd1d65ce93f1eb6066305660eedc7b3a","sha1":"a2adcfb6f4cd17076ed403767c2f018d90aca155","sha256":"bd365ed23335e0762b1ca56c449bfc55da3d967758bd53230eaa0bbe536a38aa","sha512":"dc6306b0e3981edcbcf66033a77ec77c0cde424fedaee14aef18b02e1d0b3ca78efae8bf38191bb43886e23721b799ed6918d398031f91e64f2fc9629e790c75","ssdeep":"96:+HW0uLiJw52YGwC9nKg8zPlwr5VFC6rbO8+PV3hrSNfTK3wUjN9jhh:7LiJw52YGw8n16lwdvc8AdhrSNfm1nhh","tlshash":"87a1b95db412d87de9b3544540a80021219d3beea25d84f2f3bdac4977b8fb9e3d4322","first_seen":"2026-01-07T16:10:47.078951Z","last_seen":"2026-01-07T16:10:47.078951Z","times_seen":1,"resource_available":true,"data":null}},"time_used":319,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":319,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-f53e1e9d.css","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:04.086Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-f53e1e9d.css HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:04 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-4a3e4\"\r\nexpires: Thu, 08 Jan 2026 04:10:04 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":304100,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65022), with no line terminators","md5":"b8ea2a1cdeb3e8ac9d5e550a456b3855","sha1":"bffa78730c23835b8af4eecee67d3088a831bc99","sha256":"f53e1e9d97d2e85c2fdd1f20834ae807650327f17af45d60b28998917635e813","sha512":"467ef56fb069a06dc79e7ad068e617d714cead356ad28c6fc2e57b53ffad896c7a9219ac5e87e5c733258faab0e08abc37948f9f0198ea9bfede59b63b3391c9","ssdeep":"6144:nSB/9S/Jk4UkZ8w71ZACkFDS3vyf58rBeV05Tm:SB/54NZ8w71ZACkFDS3vyf58rBeV05Tm","tlshash":"5b54d7a9a59011bc6f27aa7597ce9ad8f23ce6719c118de8f20150094fc3ff92363617","first_seen":"2026-01-07T16:10:47.080173Z","last_seen":"2026-02-24T15:52:23.087939Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1002,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1002,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/en-8bf233bb.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.502Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/en-8bf233bb.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-a992\"\r\nexpires: Thu, 08 Jan 2026 04:10:08 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43410,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (43387)","md5":"b2443cce29549270fef155303fb9cbba","sha1":"7079fe208a7b03423522affd873c1df59e511cf2","sha256":"e74fe9ded5e142ff06026cd12d36f8d86504d8df3ffd7e6f246abc4c8f955cd7","sha512":"927464cd07f71b399123ccd47ddc3d889cccad1db3147a597e8128a843fe267f0ccc1856d7a9f927d6096eed98688330c512ed0f00557524916fb85fefe920b3","ssdeep":"768:/GtZcEw/o7r2OdQsihnAMCYrAaAMen5oP6+NsPG9d1mwO6fpk7aOLxu:bpon2OdQlEYrde5osPWdqLxu","tlshash":"6d13d78a3e16c8ab05f35366b4ce6e2160f909c2c255881f4fedc5fd53e2b566363724","first_seen":"2026-01-07T16:10:47.081689Z","last_seen":"2026-02-24T15:52:23.110274Z","times_seen":2,"resource_available":true,"data":null}},"time_used":335,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":335,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/echo2.0688a8495b6574bfc8c220b4a615db101.jpg?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.007Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /echo2.0688a8495b6574bfc8c220b4a615db101.jpg?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:11 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 2967\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8563795C463033012C3A\r\nAccept-Ranges: bytes\r\nETag: \"7DDE7EC230A4A2939C4E60E2A5A043C0\"\r\nLast-Modified: Mon, 11 Aug 2025 02:57:40 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 794805949577184933\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: fd5+wjCkopOcTmDipaBDwA==\r\nx-oss-server-time: 7\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2967,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 96x96, components 3","md5":"7dde7ec230a4a2939c4e60e2a5a043c0","sha1":"f4850d10006a1e233e92675535e9e8e1b28db056","sha256":"8c48430bc62048b0b34d01e491519c68203513f0dd24a85113e8fedca79c3f30","sha512":"cdf79b01f74126c0aec0eebc3580874d9b9869c788e0e26b0a5ce537a7e9acddc1c1c52c3b0060ab0bf84010b85c389097c6a91439cdb107805a095a2c2af9b7","ssdeep":"","tlshash":"55515a3f88d9f1cdc5a105b9b12d8ccf7b5d6a02b9315d99670026adea681e10ca4225","first_seen":"2025-12-12T09:10:54.139418Z","last_seen":"2026-04-21T18:12:28.899627Z","times_seen":4,"resource_available":false,"data":null}},"time_used":2424,"timings":{"blocked":-1,"dns":766,"connect":239,"send":0,"wait":245,"receive":1,"ssl":1173},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/official-trump.png?echo-res?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/official-trump.png?echo-res?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:12 GMT\r\nContent-Type: image/png\r\nContent-Length: 7417\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8564795C463033DB2E3A\r\nAccept-Ranges: bytes\r\nETag: \"2850A20125EAE8C5EEAFEF3D3927DAC7\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:02 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 1172296790255412477\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: KFCiASXq6MXur+89OSfaxw==\r\nx-oss-server-time: 13\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":7417,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"2850a20125eae8c5eeafef3d3927dac7","sha1":"d38d61d9a90f63ad44b6ca36acf1be1e74a9feb6","sha256":"9e95511160dff9b448e5d0a35dd1d88b1b65a198b90704f4a2ad266d15100668","sha512":"49adbb59ec6db8f88b8f221894b764798ec5561aa811145e5ba381cc8158e502d5c7d708885c8b9b0a1c6bdb44cd1c71f7f3b6f6b4756180428a80641b53d2a6","ssdeep":"192:gPRdJch+yXnmJdXRV+FrNoyLKrmySMAnHv9d:gfah+d7D+FBTLom1MGX","tlshash":"70e1cf3225806ec7c1634cca09bd57a20248d910ca2f4fb9db65a7df64d853fb8b4de8","first_seen":"2025-03-12T20:22:06.023537Z","last_seen":"2026-05-24T00:48:01.2061Z","times_seen":57,"resource_available":false,"data":null}},"time_used":3461,"timings":{"blocked":2519,"dns":0,"connect":0,"send":0,"wait":940,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.btc-uss.top/api/notice/list?key=ROLL_NOTICE","fqdn":"webapi.btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:10.058Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:02:49 GMT","end":"Mon, 30 Mar 2026 13:02:48 GMT"},"fingerprint":{"sha1":"A1:D4:E3:C2:D8:CF:77:F9:28:03:D3:E2:FB:26:4D:30:84:4F:D2:4A","sha256":"9B:6C:8A:A1:89:4A:F7:61:EC:33:50:1F:8A:3B:67:96:16:D4:03:80:F3:43:5A:63:65:6A:25:F6:CC:D7:1D:F8"}}},"request":{"raw":"POST /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: webapi.btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://btc-uss.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:10 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://btc-uss.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":484,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"e23f942f7e9679b0edbcaefa50de2064","sha1":"1d823c8af05c1812d781aeb30c11fcf27b75de74","sha256":"62517deff07130498abbeea764d39495a98293bbabfa09346342d8de84aeebf5","sha512":"4c1303740ef90b8c873c5a100eba05f3be7acfec92346b610c338d9c4c78fa32fb32c4b4e62faa7c4fbaaf26612d9b0f6608fde360e39e9cf5b1d533a055bdc1","ssdeep":"","tlshash":"7bf05c4e043c8e76480644c715ccbdcd517f1793d660cd34865bcf1c82f56b5071b908","first_seen":"2024-08-19T15:53:11.172011Z","last_seen":"2026-06-04T04:33:14.45383Z","times_seen":64,"resource_available":false,"data":null}},"time_used":330,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":330,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-e45835e2.css","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.154Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-e45835e2.css HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:06 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-9fc\"\r\nexpires: Thu, 08 Jan 2026 04:10:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2556,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2555)","md5":"8dab100b5f985180d9f7270cb13e0fdb","sha1":"e4c87a70c38834cdd31a445c225670d9b14abf10","sha256":"e45835e247e1e2f3a42a247cae73681263f7486c081957ff54eb7010d8d978b7","sha512":"1fe760d158fabfa784b536baad6f8a73888e585722dde07db6746d6c311aef01ba5317d978c73d655154821d19c3c1d93e489fca21f7b1f17571d6abafdcf6a0","ssdeep":"","tlshash":"1151218dfa9412345c7bdacfae644b8cd0047e42e587add4f543874505cfad3266427a","first_seen":"2026-01-07T16:10:47.086973Z","last_seen":"2026-02-24T15:52:23.135342Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1329,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1329,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-c044fd7c.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.177Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-c044fd7c.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:06 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 776\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\netag: \"6953dd86-308\"\r\nexpires: Thu, 08 Jan 2026 04:10:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":776,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (775)","md5":"106e03d988cbdb024e676f31e28dcfd2","sha1":"eec891557691e23af85eb96d84e442c5c5886184","sha256":"207a8f7075e64c3b1bda85e1eb4d5b0367a90d892ae0da24b7a76de10b218b36","sha512":"d2f075141f3e02a3b8a113d575898402473eca149ff47fcc8f6beddf3dc1eaa3824e9dd44605cab7c48d7f660f7737c8495365c56ad9f99b3e370fd38f4ccb2e","ssdeep":"","tlshash":"fc01bdf9fd1d8ebb0ea20a4142912601140a1fddfa1419f198867d661be4950d7de72d","first_seen":"2025-12-12T09:10:54.116685Z","last_seen":"2026-04-21T18:12:28.868359Z","times_seen":9,"resource_available":true,"data":null}},"time_used":1316,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1316,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/1bbe8a9f-6b11-4688-b192-8a821d830897echo-pro646136db476840268fa000de6b2866c0.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.966Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/1bbe8a9f-6b11-4688-b192-8a821d830897echo-pro646136db476840268fa000de6b2866c0.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: fyAWGzO6U6tWudq4KG+b9mbVpKSgHDTvsCnGbkxsCjQ4+U6v8NHAZ/J/MrhLilJzojgKKudGs6ibbv4yUphKLQ==\r\nx-amz-request-id: H7PA7V9MSH0MV2P2\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:38:32 GMT\r\nETag: \"3fcd76d9e6fb1b58b0f964a295739696\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1716\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1716,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"3fcd76d9e6fb1b58b0f964a295739696","sha1":"a9cf8288a769999e808305bbbace849af4bd0e53","sha256":"0d7edb59077be9c09a150823032e17e01e7ba0bb7bae9b3681b1b16fe2e83f88","sha512":"baf0713c42e8c2f9dcf1165cc33aac0b7e3a217cd90b4b0fb84fd68550ce0637f7c8901a377c16fbf62cbd2cd29d1b7fb5e33add809ed40632a24e3dbc4b5569","ssdeep":"","tlshash":"5b31f88de2a46d42a1c88e0100fba1374d6344c0c7d4f22068cbc6220d612fe812e9eb","first_seen":"2024-12-08T15:39:09.738779Z","last_seen":"2026-06-01T14:33:57.996453Z","times_seen":57,"resource_available":false,"data":null}},"time_used":799,"timings":{"blocked":333,"dns":38,"connect":96,"send":0,"wait":123,"receive":1,"ssl":190},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/resource/svg/light/zu29.svg?2.0.1767103878282","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.987Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /resource/svg/light/zu29.svg?2.0.1767103878282 HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:09 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 834\r\nlast-modified: Wed, 11 Jun 2025 07:11:36 GMT\r\netag: \"68492c28-342\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":834,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"05ba8418a67571e85120d0bdf87007e6","sha1":"ec9cb84ec87d94b0ae1a4ef208ed3bcdc506c201","sha256":"6b0ad27c3dd039f781ac4faedac3bcca77869c357cbf7473a3ddf912ab7ade0b","sha512":"dc56fdf9961bb1857c00e23099fc4b5c76e53219a3f180891ff19fb05cffd8c2df38f72160356e57289cbf12a7eed12b5ab3c5ad1f68cada31ffd006316b1d80","ssdeep":"","tlshash":"810112be0736a3fdd6544690ead42699343df042e17408ecb3817e17bf2161a0abcd91","first_seen":"2025-09-14T16:18:45.653376Z","last_seen":"2026-04-21T18:12:28.858338Z","times_seen":13,"resource_available":false,"data":null}},"time_used":320,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":320,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/echo2.072e5e8a989d244ea992e73ff01c6a156.png?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.074Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /echo2.072e5e8a989d244ea992e73ff01c6a156.png?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:11 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 14027\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8563197743303631F3CE\r\nAccept-Ranges: bytes\r\nETag: \"27271304B7A46FC97661DCC7054E6E8D\"\r\nLast-Modified: Sat, 01 Mar 2025 14:33:58 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 972456497039753001\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: JycTBLekb8l2YdzHBU5ujQ==\r\nx-oss-server-time: 7\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":14027,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"27271304b7a46fc97661dcc7054e6e8d","sha1":"2a7eb7eaf3a970c47a4ea49c54125a03b0bbbf05","sha256":"c55f7fb57b675eb375ac6e006ac38495671370a5a880d0214565d7e67637d9dc","sha512":"83358adb9f2a620ad4a7a3da5ec5ce6c55fbd52e28a58c78153a71d6d01cb7a79e623d55635976225de5b133e8ac38ece39b9a76a9d75f60abdb05a34845fb2d","ssdeep":"384:6O+zKjdhc3W6DJn/lchFOHIJr/E1/jo+xhy:odW6DTchkHc/01y","tlshash":"9252c137967d9df863a09d784438d7222116ab08945b2dc9c7447f386efe454f0d3da2","first_seen":"2025-12-12T09:10:54.140723Z","last_seen":"2026-04-21T18:12:28.870404Z","times_seen":13,"resource_available":false,"data":null}},"time_used":3012,"timings":{"blocked":2193,"dns":0,"connect":0,"send":0,"wait":812,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/shiba-inu.png?echo-res?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.082Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/shiba-inu.png?echo-res?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:12 GMT\r\nContent-Type: image/png\r\nContent-Length: 35678\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8564CF0ACE3537665B40\r\nAccept-Ranges: bytes\r\nETag: \"32FC23E3AF2E227F153CFB2BABB334BB\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:02 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10304165572907997277\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: Mvwj468uIn8VPPsrq7M0uw==\r\nx-oss-server-time: 15\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":35678,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"32fc23e3af2e227f153cfb2babb334bb","sha1":"15a0ddf2192c52a2bd6874aa99019a94b829245d","sha256":"48bf42ff6a04442d2456194465af972bb8f972aa35f2b9bc93b5a54e4309e38b","sha512":"36c1f106a5e464036b0119aec22d542154bb1f5a87c8acc650a1c5dadd3f4175267b0c2e628782dc117028be1c8c92a1035c337336605bda58795f39d5d7838b","ssdeep":"768:YgWzF63SpAhk8chmFT8qLt8lSEG26ddGQmLTbHkOnvSSXn6qifC2Vh+K:P+Q3cwbymFJLtmSBHL4LfHVnaSyCc/","tlshash":"edf2f1db87603e58eece95b777c5737ba2832a06e743186f03f4d2211338aa5657841a","first_seen":"2025-09-14T16:18:45.616709Z","last_seen":"2026-05-19T06:31:41.507434Z","times_seen":16,"resource_available":false,"data":null}},"time_used":3500,"timings":{"blocked":2539,"dns":0,"connect":0,"send":0,"wait":936,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/melon.png?echo-res?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.122Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/melon.png?echo-res?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:12 GMT\r\nContent-Type: image/png\r\nContent-Length: 15223\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8564197743303673F4CE\r\nAccept-Ranges: bytes\r\nETag: \"8DEC4AF40D933A5A1E5F3AB42457D941\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:02 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 201984774367257027\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: jexK9A2TOloeXzq0JFfZQQ==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":15223,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"8dec4af40d933a5a1e5f3ab42457d941","sha1":"89bc59946420d39fb7350dd6c3883e7b6282e662","sha256":"b5532a62e486a99ec0bd858b9d19ec73472924617ab511a9272cc8cef724816c","sha512":"47da1727dd7f7ce85467af51441c275ce20be4531f02e8bf1708e8afc72fd9d404e8e5ec6038c9e75509678a1f47afcc798a7e5184f058ce3eceb1680b937107","ssdeep":"384:s2MiEP3F45dsl1y5iTWdLHYynnfJXJ0ihAUuGj:yB2MfyiTaHYUnPfhjuGj","tlshash":"2562c062b2169da1c2edbb7d9c6443d3a1e33c170aa9475fb64a0d6c33390f64b2d0c1","first_seen":"2025-09-14T16:18:45.569466Z","last_seen":"2026-04-21T18:12:28.863826Z","times_seen":13,"resource_available":false,"data":null}},"time_used":3478,"timings":{"blocked":3232,"dns":0,"connect":0,"send":0,"wait":237,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/96b67bad-1693-4a2f-aed4-90e1ef9d401fecho-pro81d1e34081af4a2f916e0baf80689886.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.142Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/96b67bad-1693-4a2f-aed4-90e1ef9d401fecho-pro81d1e34081af4a2f916e0baf80689886.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: HZEo2DxhPYWvC+Ov2etvrFOo8UjAq0IpeYEzEW7Tw5cm9QAPlZMSLPxrzCWZgqaQaKuGYL2i0tTFVeecO8bWWg==\r\nx-amz-request-id: H7PD1DEM4QA25P1M\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:44:55 GMT\r\nETag: \"cd69d086565731bb66ffaacb11d86880\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 4956\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":4956,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"cd69d086565731bb66ffaacb11d86880","sha1":"dd2e292dbdd462e496c9196f7386eb1e32951881","sha256":"53ee26bfd5089ed42c23c844e72a29962458cccdcc603ede272c9cf3acb83b0f","sha512":"c4bbcf7159ffdfa53b971b822c4bc0fd208480eb638562b67e29ac6da5702c3b0942431a625c24b2c0a8c8ff086f737da49fad00c441a48da1ef6c4e40f6a273","ssdeep":"96:2Krhf9rmJ1zMJb8/DopC8b06jJYVl+Wj7hQNyFPXz:2KrhNWzMJbeud0CaVfjfj","tlshash":"9ea17f0ca9beb91d4ef46565137209bf8d531e0088def181fc695dc7e3690a8bb306e5","first_seen":"2024-08-19T15:53:11.181904Z","last_seen":"2026-06-01T14:24:52.340092Z","times_seen":61,"resource_available":false,"data":null}},"time_used":393,"timings":{"blocked":282,"dns":0,"connect":0,"send":0,"wait":110,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-9a014b0b.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.176Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-9a014b0b.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:06 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-1231\"\r\nexpires: Thu, 08 Jan 2026 04:10:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4657,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (4650)","md5":"dd1d65ce93f1eb6066305660eedc7b3a","sha1":"a2adcfb6f4cd17076ed403767c2f018d90aca155","sha256":"bd365ed23335e0762b1ca56c449bfc55da3d967758bd53230eaa0bbe536a38aa","sha512":"dc6306b0e3981edcbcf66033a77ec77c0cde424fedaee14aef18b02e1d0b3ca78efae8bf38191bb43886e23721b799ed6918d398031f91e64f2fc9629e790c75","ssdeep":"96:+HW0uLiJw52YGwC9nKg8zPlwr5VFC6rbO8+PV3hrSNfTK3wUjN9jhh:7LiJw52YGw8n16lwdvc8AdhrSNfm1nhh","tlshash":"87a1b95db412d87de9b3544540a80021219d3beea25d84f2f3bdac4977b8fb9e3d4322","first_seen":"2026-01-07T16:10:47.078951Z","last_seen":"2026-01-07T16:10:47.078951Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1316,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1316,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.btc-uss.top/api/common/getCoinList","fqdn":"webapi.btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.115Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:02:49 GMT","end":"Mon, 30 Mar 2026 13:02:48 GMT"},"fingerprint":{"sha1":"A1:D4:E3:C2:D8:CF:77:F9:28:03:D3:E2:FB:26:4D:30:84:4F:D2:4A","sha256":"9B:6C:8A:A1:89:4A:F7:61:EC:33:50:1F:8A:3B:67:96:16:D4:03:80:F3:43:5A:63:65:6A:25:F6:CC:D7:1D:F8"}}},"request":{"raw":"POST /api/common/getCoinList HTTP/1.1\r\nHost: webapi.btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://btc-uss.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:08 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://btc-uss.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":27061,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (27045), with no line terminators","md5":"6408c3186d34f97ab58a2884420a9a12","sha1":"b409593fd2d5ef45212221cf05f6bc3fd58aa7a5","sha256":"bdeaee03a584fa203dd75ff2a1c42e9f2bd7e898727b8d7e686106e1b2ac2070","sha512":"1f9682a48b2789994345e7d440fb59cac4745177da6b7cb8e8f5ce90937c17c84f99b6b195ce8c358f05bcfcc6e7ffd2e9ccea457f629fca35f03c3fb17e5b58","ssdeep":"192:79XCMawXBw3qKXuRKXtyKXIgwXYmKXHTwXXcKXkEn2XH12XTfSneXoPwXIFSMgug:7R/RwMK1wyJnssZxK","tlshash":"bac2235a662c9d7dc579c0d05e7f3a1360cd317fe8c58e1a96da48888edeef4190af02","first_seen":"2026-01-07T16:10:47.098055Z","last_seen":"2026-01-07T16:10:47.098055Z","times_seen":1,"resource_available":false,"data":null}},"time_used":337,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":337,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/dfn.jpg?echo-res?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.120Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/dfn.jpg?echo-res?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:12 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 12047\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8564F8C604363742B984\r\nAccept-Ranges: bytes\r\nETag: \"9DC1C34F242BE38AE4B271DDDB7F41E3\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:03 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 1596445312545428591\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: ncHDTyQr44rksnHd239B4w==\r\nx-oss-server-time: 7\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":12047,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"9dc1c34f242be38ae4b271dddb7f41e3","sha1":"0aeeac2cf1bf553e8d808c6eef5c904522a34c30","sha256":"fcdce015a56d0c6922346144fde1069f26722e0630940754d4401009b04fa301","sha512":"9d646707ee180ff94ed942754c77f0bf96218baa9bdf4cc21f64de95bf2c9d839c5990fee404af39bf362028e2ddb6dcaa3cdc7adfa64ec4699b3ba8aa0d0d42","ssdeep":"192:5qvw48dJAdNfjBiNvagngjUTcD2HRUgHCDnbrQkzKaiL3eY8V7lX:5xdyNfjoNvavFDnqOnIufllX","tlshash":"25429ec2d71e0792fa3c07705da14365fba2ec645e18a7c7d6a08e682f6c07d51294fd","first_seen":"2025-02-26T18:31:17.526639Z","last_seen":"2026-05-19T06:31:41.500036Z","times_seen":30,"resource_available":false,"data":null}},"time_used":3417,"timings":{"blocked":3133,"dns":0,"connect":0,"send":0,"wait":276,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/tezos.png?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.133Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/tezos.png?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:12 GMT\r\nContent-Type: image/png\r\nContent-Length: 14381\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8564197743303618F5CE\r\nAccept-Ranges: bytes\r\nETag: \"5F4C93B52DBCF8AF26D39F046DF8882E\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:02 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 2349178242644440031\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: X0yTtS28+K8m058EbfiILg==\r\nx-oss-server-time: 8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":14381,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"5f4c93b52dbcf8af26d39f046df8882e","sha1":"276e1377b0cfc20c4c846bc624fdd921964f7b49","sha256":"7843d61f360e9f64e5546e48bf93c0c1f39d5317a654186cd3d9be44be9b3bc0","sha512":"908ba11353e96c480abbd0490bd9ee20aaf9f6a87f3aacaba683221584396d4bab2a41f23b207cb567781f89a6dbb18c4342bfab34f85804260dcb979e61df05","ssdeep":"384:1vdj2NCzZOaxCO8zqmsMV28xEbtL+Q66WpdB+DgUDyi7zm:1ljYa1xCOZMcJbAQOB+rFPm","tlshash":"ce52bf6ae050e3cbb98dbe8836f6b4515d5248c70ba82e5d7b9cd476031d8ab241b34a","first_seen":"2025-12-12T09:10:54.14724Z","last_seen":"2026-05-19T06:31:41.541184Z","times_seen":13,"resource_available":false,"data":null}},"time_used":3720,"timings":{"blocked":3466,"dns":0,"connect":0,"send":0,"wait":245,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/b3977889-2f00-4b0f-8d60-743707c4bb5eecho-pro84a01d03db064de8a955c0845688a326.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.143Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/b3977889-2f00-4b0f-8d60-743707c4bb5eecho-pro84a01d03db064de8a955c0845688a326.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: kSyvt9DDbWKAlnNtEP1R4orvA33vA/DCdY0ZJqA+mzhhagB7SfvA4g6t8n4YAorqfzm3fXkUZeE3BmueASMTkg==\r\nx-amz-request-id: H7PE4N7HSX1DQ31F\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:44:45 GMT\r\nETag: \"391fbd89746f7f45b2c39a932d284ab4\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 4876\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4876,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"391fbd89746f7f45b2c39a932d284ab4","sha1":"c2655150e8bdf70659f0a8d12f2c1f09ab4d8c99","sha256":"844b60fb0e6702e21e24a697b162acf9ee771047ee306478940055e7abe4a047","sha512":"f67d627b7633bd785807c3c0558da2452f20d47a0b1b8fd9dedabcb0de0627fa5a7ca186843cebe2eafabb553c7bcd8478348026c2e64ce680f097ece25dab91","ssdeep":"96:TBBcGKmpoCXAcsguA7Kvs8dLAF63C/5SiDN979i7kkp:BKmv798daN/DN9RkkW","tlshash":"9fa18def22c1c9f816d5ab315ccef74132b268a689d4c508e3d34900a7b4a0a63f156a","first_seen":"2024-08-19T15:53:11.186752Z","last_seen":"2026-06-01T14:24:52.316644Z","times_seen":54,"resource_available":false,"data":null}},"time_used":513,"timings":{"blocked":398,"dns":0,"connect":0,"send":0,"wait":115,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/charting_library/charting_library.min.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:04.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /charting_library/charting_library.min.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:04 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 11 Jun 2025 07:11:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68492c28-2a6b\"\r\nexpires: Thu, 08 Jan 2026 04:10:04 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10859,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10857), with CRLF line terminators","md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-06-08T05:16:21.679615Z","times_seen":1000,"resource_available":true,"data":null}},"time_used":320,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":320,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.btc-uss.top/api/common/getAllSetting","fqdn":"webapi.btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.121Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:02:49 GMT","end":"Mon, 30 Mar 2026 13:02:48 GMT"},"fingerprint":{"sha1":"A1:D4:E3:C2:D8:CF:77:F9:28:03:D3:E2:FB:26:4D:30:84:4F:D2:4A","sha256":"9B:6C:8A:A1:89:4A:F7:61:EC:33:50:1F:8A:3B:67:96:16:D4:03:80:F3:43:5A:63:65:6A:25:F6:CC:D7:1D:F8"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://btc-uss.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:07 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://btc-uss.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T06:33:57.473216Z","times_seen":16232170,"resource_available":true,"data":null}},"time_used":3503,"timings":{"blocked":1588,"dns":925,"connect":326,"send":0,"wait":330,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/currencyItem-15550dda.css","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.166Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/currencyItem-15550dda.css HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:06 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-6d6\"\r\nexpires: Thu, 08 Jan 2026 04:10:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1750,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1749)","md5":"0a88af6b4dca3c130c74addeb274fb10","sha1":"fb0c4b8a0f7b7c4bac8e193999f99b4070ffcfad","sha256":"15550dda13edd7fe55a2d29edacb7ba57f23f39ef10d087669c0f75facae0763","sha512":"5d046b442f0f471b2063fcd34fb68b1d95b79647ec7e50cf5290ebd866febcd12e9b890a1784512959c4f4a433d3f31d57540254b4e0abbb6f55dc7773677619","ssdeep":"","tlshash":"ed31c05457110375da3bc8866ea8010dc0d47fd1901765cae8afaa2b2ccfa931b7096b","first_seen":"2024-08-19T15:53:11.157884Z","last_seen":"2026-06-03T22:15:44.553345Z","times_seen":346,"resource_available":false,"data":null}},"time_used":1320,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1320,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-e9966e52.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.174Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-e9966e52.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:06 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-3c8c\"\r\nexpires: Thu, 08 Jan 2026 04:10:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15500,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (15499)","md5":"f636c091b47ec52a2c3f7c08d773c3ee","sha1":"8d832a22b1068dbb61792d4bb286c2f904e621db","sha256":"0d7eadf790cf7738f662e925a3e4c41071836c932b6eb57fb78a144fddedc990","sha512":"a21b08cce276f42b4d7c27a5cb2d05501dcee10954e3f18df47fedcdad8e48df4703746b0c6ee47b54f588fe81bc3cd62cf0ce254a32593964f2ee717fe3fd31","ssdeep":"384:YmKmLI7y5XuZkqByF72xIxf2YIrLxb1OO9w9yDT7wJGau0/LC06ke3KF:YmrIK4PU72xIxf2vKAPtau0/LC06ke3w","tlshash":"8e62d799f9099a3ce5bb9461048c0110722e3fdb640d89e2f8bd6d873753ef8b75aa14","first_seen":"2026-01-07T16:10:47.10755Z","last_seen":"2026-01-07T16:10:47.10755Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1317,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1317,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/currencyItem-6f7dbb76.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.182Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/currencyItem-6f7dbb76.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:06 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-509\"\r\nexpires: Thu, 08 Jan 2026 04:10:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1289,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1288)","md5":"942887d1d571fba37f9cd497ba39f665","sha1":"5324b7926b3a65705be9195fe2a00f736ced71f0","sha256":"d109e7d54773bfd538d7487e5edbb9e5fe5d54270d2e37007b90c3b13a80bee0","sha512":"18a3c095777867fe6b476be0c61a3540bc0575707103ae5cf7a412b3047e44cae18fde12d260b271240304d06f91fe61417d14a35d81e863c44e67d559090ade","ssdeep":"","tlshash":"d021cd5a6a01c6f1c7bf946290bc1414525dbbca700189c1beed24a93b8a9bcd738a71","first_seen":"2026-01-07T16:10:47.108718Z","last_seen":"2026-01-07T16:10:47.108718Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1312,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1312,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/litecoin.png?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.035Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/litecoin.png?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nContent-Type: image/png\r\nContent-Length: 34858\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8562FEA0E4313058DE13\r\nAccept-Ranges: bytes\r\nETag: \"BB27C369A3AA54D9C1F8E59E1706DA48\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:03 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 2593469271640333430\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: uyfDaaOqVNnB+OWeFwbaSA==\r\nx-oss-server-time: 7\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":34858,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"bb27c369a3aa54d9c1f8e59e1706da48","sha1":"7e1b9677305cad40b686a5a1077da57c4f6cf07f","sha256":"e691621963c6de60c05c0e91cf7c65cba4191df054a3b1bd5becbef3a426f9ee","sha512":"4ff3058897ecbcee5464eb954955cc40bad7f411ee86f21dcbebe3d02ee45410b42f68c8e3a22537ef530c65c9bc9960fb36134aeced2dd36688a21c0cb02415","ssdeep":"768:FAbT/SSUokJQD9Wvnwoo2hzabJIqRw/VH3+WFxL1nHLy:G/RU4yni2kKl53+WbBLy","tlshash":"3df2f155ed69527406b90571846e302ca4669a7ebdceb11bffbd67302b3246f008e06e","first_seen":"2023-11-19T03:02:17Z","last_seen":"2026-06-06T04:02:55.293479Z","times_seen":630,"resource_available":false,"data":null}},"time_used":1722,"timings":{"blocked":-1,"dns":745,"connect":235,"send":0,"wait":241,"receive":22,"ssl":479},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/currencyItem-6f7dbb76.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:07.876Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/currencyItem-6f7dbb76.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-509\"\r\nexpires: Thu, 08 Jan 2026 04:10:08 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1289,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1288)","md5":"942887d1d571fba37f9cd497ba39f665","sha1":"5324b7926b3a65705be9195fe2a00f736ced71f0","sha256":"d109e7d54773bfd538d7487e5edbb9e5fe5d54270d2e37007b90c3b13a80bee0","sha512":"18a3c095777867fe6b476be0c61a3540bc0575707103ae5cf7a412b3047e44cae18fde12d260b271240304d06f91fe61417d14a35d81e863c44e67d559090ade","ssdeep":"","tlshash":"d021cd5a6a01c6f1c7bf946290bc1414525dbbca700189c1beed24a93b8a9bcd738a71","first_seen":"2026-01-07T16:10:47.108718Z","last_seen":"2026-01-07T16:10:47.108718Z","times_seen":1,"resource_available":true,"data":null}},"time_used":320,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":320,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/37bf66d5-b9e3-412c-b823-bb37770cef10echo-proc689bd081e994bc7ae23260a3e5c9eb5.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.973Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/37bf66d5-b9e3-412c-b823-bb37770cef10echo-proc689bd081e994bc7ae23260a3e5c9eb5.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: iDqq9sKs7TpHjw8Ug6xjGJlGaHQlFhtmO7XRNfDV85lOZCa960lHGl63z7YwkSd9UZgT3AWAQist2khUJlJ22Q==\r\nx-amz-request-id: H7PBKX9FHT4GC7A4\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:38:48 GMT\r\nETag: \"122aa57dd9538429059cbd42ee99a59e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1437\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1437,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"122aa57dd9538429059cbd42ee99a59e","sha1":"e6d44defdb86a01caa67f663529aa0d70f7b6065","sha256":"4344191b60975b2acbac5c8168e581a89a2104d0b8ec789f63dbe67a600b172f","sha512":"94910eff5eb6449954b7dec9903e3b779201bed8b71dce794245f4810337f05348205209a5a26b4849256cbadc6f89b9c09a016baed9b09b1fc3b7feb4e4d148","ssdeep":"","tlshash":"0c217606faa57881528c9d5324f291634d670544dfd4f5ea78cfc52e1d203f687994cb","first_seen":"2024-12-08T15:39:09.743393Z","last_seen":"2026-06-01T14:33:57.912839Z","times_seen":83,"resource_available":false,"data":null}},"time_used":1521,"timings":{"blocked":689,"dns":46,"connect":96,"send":0,"wait":118,"receive":1,"ssl":548},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/binance-coin.png?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.039Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/binance-coin.png?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nContent-Type: image/png\r\nContent-Length: 12869\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8562F8C604363733B584\r\nAccept-Ranges: bytes\r\nETag: \"A533EECDEE5A789E7D94F8F79F95D588\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:03 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 18158548296662870332\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: pTPuze5aeJ59lPj3n5XViA==\r\nx-oss-server-time: 10\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":12869,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"a533eecdee5a789e7d94f8f79f95d588","sha1":"f1ae6df3a9baf6dbec969c6d1ab622850a282895","sha256":"ea257fac91d01858b7dfd0361f8b480caeb3d57b080570ef4b4f41d5d7e68c90","sha512":"e46ca5c2239c89c783805b1f4e17664118e57e95dff6513b8ff917aaaa763b922c6286b48d0e6daca644ae30c3e821674dade74a056837865353b451c50d074b","ssdeep":"192:3GSu8nGgOCcrSaheqQThcTrOcOAasSqXzcxfuZWfWOKJ6mVgCd7mOOwRB0IG:5/POzrSTThcTaPAaFqXzcqG6ekvP0IG","tlshash":"1442bfd83898c3e455233e69d56e4c138122251a66588517f22a2b7dbf03af27fcf1e6","first_seen":"2023-11-19T03:02:17Z","last_seen":"2026-06-06T04:02:55.266893Z","times_seen":677,"resource_available":false,"data":null}},"time_used":1824,"timings":{"blocked":-1,"dns":741,"connect":266,"send":0,"wait":275,"receive":5,"ssl":537},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/57c0cfa5-b945-476a-8cdc-3a5b58c5ff85echo-proe36d00e58a654af7a67ef5c241ef5be6.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.172Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/57c0cfa5-b945-476a-8cdc-3a5b58c5ff85echo-proe36d00e58a654af7a67ef5c241ef5be6.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: fUIHDc3nH3x1Hbwr/wi1IhRl2ngcXhVOQuBjV4IkwX0gNw9Y1se72mv8+Py/3G9VKPnSnKRYRFqbREciCkxSyg==\r\nx-amz-request-id: H7P3B3ZKCCR1NJAP\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:46:39 GMT\r\nETag: \"886dd2e9e7acf01ce99935135129da70\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 4132\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":4132,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"886dd2e9e7acf01ce99935135129da70","sha1":"a6b6378cdee4595bae45cf5236f301b316c4f4bc","sha256":"e39d56e54bce5eb62b4e911c72a527671cb0954aa49f8f17714c3def94c04acc","sha512":"91ed05a28d3f739ec9e31a94eaa6ac29f1f27b7a72ee25dd9759e73c41fcabb960452b014fbb40ac50f02d283eea1310764a4a659da639aff4bbbdb7d4274143","ssdeep":"96:3qrYVFKsDwGqu4cYipLzIEhsRrZ4xkzC4:hF4cfLz50rZ4QF","tlshash":"a8814c06f9c55483e368e00a51df31ab0d468c80ded2d15abbcbc6a642787ba572f09f","first_seen":"2024-12-08T15:39:09.777158Z","last_seen":"2026-06-01T14:33:57.961019Z","times_seen":64,"resource_available":false,"data":null}},"time_used":495,"timings":{"blocked":375,"dns":0,"connect":0,"send":0,"wait":120,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.btc-uss.top/api/notice/list?key=ACTIVITY_NOTICE\u0026modelKey=HOME_ACTIVITY","fqdn":"webapi.btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:10.052Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:02:49 GMT","end":"Mon, 30 Mar 2026 13:02:48 GMT"},"fingerprint":{"sha1":"A1:D4:E3:C2:D8:CF:77:F9:28:03:D3:E2:FB:26:4D:30:84:4F:D2:4A","sha256":"9B:6C:8A:A1:89:4A:F7:61:EC:33:50:1F:8A:3B:67:96:16:D4:03:80:F3:43:5A:63:65:6A:25:F6:CC:D7:1D:F8"}}},"request":{"raw":"POST /api/notice/list?key=ACTIVITY_NOTICE\u0026modelKey=HOME_ACTIVITY HTTP/1.1\r\nHost: webapi.btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://btc-uss.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:10 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://btc-uss.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":555,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"26750988fdc9805294dd57acf9562f8d","sha1":"b5a1702cd6dcab2ae3e7512e18c0c4caa49cc79a","sha256":"e9dee9c2a1c3d72fb929c3390d3912b2068c423a8858378eae0c31198e7913fe","sha512":"7da30fe9bedd0767e0fbc5613516dbf902bcd55ec0c3d9efd4a12c4e3be555326bdf2c6375c56c528a66494d73a1957cfec6de213d528d79f67e34ddcd0c1e41","ssdeep":"","tlshash":"05f08b0f26389e69090448c7a8c97dcd915e1a47d660ce74966bcf2cc1fa0bf1b06904","first_seen":"2026-01-07T16:10:47.11273Z","last_seen":"2026-02-24T15:52:23.128113Z","times_seen":2,"resource_available":false,"data":null}},"time_used":332,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":332,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-b0f24c10.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-b0f24c10.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:06 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 448\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\netag: \"6953dd86-1c0\"\r\nexpires: Thu, 08 Jan 2026 04:10:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":448,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (447)","md5":"74195ee3a3eba9a9faa93ee837191fcb","sha1":"8afe803a27e8cbb7eec06d64749d4d81772a83ff","sha256":"c2203fc6680d35fac32fe86d755efa18ec40203c7635a479544500f476cbce4d","sha512":"4eb3129198a3f808aea3e2632f864deea95c66f70637c50ccfcda9071be2d6c0a40f4f708f649c8aa9dc6feeb69e11bc154d71428f6b65d06e1eedb2f43f38ff","ssdeep":"","tlshash":"a6f02b1f2a7694f35be688ed96231851d21917051321c154fd4e4d15a73c5e2a2af398","first_seen":"2026-01-07T16:10:47.113557Z","last_seen":"2026-01-07T16:10:47.113557Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1316,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1315,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/touxiang-322c1360.png","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.904Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/touxiang-322c1360.png HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:09 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-22ce\"\r\nexpires: Fri, 06 Feb 2026 16:10:09 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8910,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 600 x 600, 8-bit colormap, non-interlaced","md5":"ce1a2d47601842de82bbabee8ccf6491","sha1":"87ebe0e98b0398a2d114fa062dbdf4e467a6d9ed","sha256":"322c1360671579187b47acd9e687207ae318a07d274f01bb28a3c24b6a1bf56c","sha512":"647cb2c505086d206af692ff753d50265d1b7a084dbd1d55d8f6f564247773ba14713bb169648f33226a1340d80b6a92b2eca219a4f93bc3e0c1b722b2ea3665","ssdeep":"192:YyzLbVvcTHknJrTMFkfI/3YYxHJ1Dt5uSn4+2D5i/xnlTcSUJal90hgZ8:YyzLtcTyxMJvtfDtxnP2EplEfhT","tlshash":"4b02cfe37e8a964eccd23894bf427798a9c531257fc1f217280e56b6dede83e1c42190","first_seen":"2025-09-14T16:18:45.715204Z","last_seen":"2026-06-01T14:38:08.577608Z","times_seen":16,"resource_available":false,"data":null}},"time_used":350,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":350,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/kyber-network.png?echo-res?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/kyber-network.png?echo-res?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:11 GMT\r\nContent-Type: image/png\r\nContent-Length: 3961\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8563F8C6043637D3B784\r\nAccept-Ranges: bytes\r\nETag: \"28C597DD66579ECCC0D76F2D1F6D996B\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:03 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 9891429249706845300\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: KMWX3WZXnszA128tH22Zaw==\r\nx-oss-server-time: 7\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":3961,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 128 x 128, 8-bit colormap, non-interlaced","md5":"28c597dd66579eccc0d76f2d1f6d996b","sha1":"c474dd8b68835ac3d31af87fec5b708d7c87676b","sha256":"569f5534c592adcf30b51e44cf4488e943b37604202185532c2dddb5eeb0382b","sha512":"968c4624072187dcfc4ca7a69671f94102286fda7b54cf30bf26df613052ec00289896a2d35afb8bdbe982a2759e39f3c8288a97f76550a5d5e2698ee0e0a3e2","ssdeep":"","tlshash":"c7816ef8d60d16ca01759cced18a172655f39eea190d908fef14f008bff52d239c95a5","first_seen":"2025-09-14T16:18:45.708525Z","last_seen":"2026-04-21T18:12:28.881648Z","times_seen":15,"resource_available":false,"data":null}},"time_used":2873,"timings":{"blocked":2598,"dns":0,"connect":0,"send":0,"wait":274,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/melania-trump.png?echo-res?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/melania-trump.png?echo-res?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:11 GMT\r\nContent-Type: image/png\r\nContent-Length: 8736\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8563F8C604363749B784\r\nAccept-Ranges: bytes\r\nETag: \"EE382F8D8BD2F208131F8477B8D888EB\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:02 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 13307557674139673408\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 7jgvjYvS8ggTH4R3uNiI6w==\r\nx-oss-server-time: 3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":8736,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"ee382f8d8bd2f208131f8477b8d888eb","sha1":"ff8346122640cb3ceb148d57149a5b174654f75c","sha256":"1bfe36ec622e16c25f92444778cf7c9f3f19f8dfe3c21ab0106ff8c5e54ef30d","sha512":"67d4c139fb7bceca74a7714646d481fd66b2180fe5ec85ee392e8e34dab1f09e40f3f492cf5c5afbae8ab9ec6f55274df346453e29b012d3090d0b6a5bad6c71","ssdeep":"192:wfAhtbtz6mSnRqVJXysR/6Ep4sP7nsUOmOC1nRn2:wfMtZ6mSnnuWUOmOARn2","tlshash":"8402bfd27da2f8d3da2ea6137e8675fa7021412a09225cc1161576ff0fe446a81b1f2d","first_seen":"2025-09-14T16:18:45.706336Z","last_seen":"2026-04-21T18:12:28.894615Z","times_seen":13,"resource_available":false,"data":null}},"time_used":2622,"timings":{"blocked":2350,"dns":0,"connect":0,"send":0,"wait":269,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/bitcoin-cash.png?echo-res?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.113Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/bitcoin-cash.png?echo-res?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:12 GMT\r\nContent-Type: image/png\r\nContent-Length: 14268\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8564FDD799323729D986\r\nAccept-Ranges: bytes\r\nETag: \"5D98FAD597969CA60B2C150B717D75C2\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:03 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 1886572319368033200\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: XZj61ZeWnKYLLBULcX11wg==\r\nx-oss-server-time: 7\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":14268,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"5d98fad597969ca60b2c150b717d75c2","sha1":"f64fa05a8ddc3ee085768f308db5bdc1fa45dd6c","sha256":"47373b88482223e17220c976db2859b2ad928c0a8725a81a859371ca1e052a81","sha512":"b0ffafe604e293786aca6a044f6147651d117b31afa201c051689b499e25ddacde63628be24e98a99b55aeb67676d6121c182443367789b05f9535c3c2aa0231","ssdeep":"192:FNYSd3bjNhYk+506I3KsuOr/iYmT67DVDbnbQD8/QiXSXfV/+7wDlb+St4:Fhd3Nh06/iYxDlrbZ/QiXw1JDlb9t4","tlshash":"9c529e5ccc41dd1d910a2a35d37c29f0892290bb230ad0133a8defd5b3993815abf55b","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-05-22T19:23:47.182691Z","times_seen":101,"resource_available":false,"data":null}},"time_used":3095,"timings":{"blocked":2816,"dns":0,"connect":0,"send":0,"wait":277,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/qtum.png?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.118Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/qtum.png?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:12 GMT\r\nContent-Type: image/png\r\nContent-Length: 23166\r\nConnection: keep-alive\r\nx-oss-request-id: 695E85641977433036D2F3CE\r\nAccept-Ranges: bytes\r\nETag: \"83B2FE60E5B65B9E92331440776EA605\"\r\nLast-Modified: Tue, 10 Jun 2025 11:50:41 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 9590626862748286241\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: g7L+YOW2W56SMxRAd26mBQ==\r\nx-oss-server-time: 9\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":23166,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"83b2fe60e5b65b9e92331440776ea605","sha1":"f5f113490b4ce9dc667703240500e29c84609b10","sha256":"185e2acd9eeb3ee6b97d9e8c656e627122d5c5cbdcd56f280ca1a5bd75c53020","sha512":"e85dbd4c82d0f0f431315bcdddbf564381c716f030ec269b6277e7f6fe65d165121e8b535df685a778134567078fed071adcf3a8fe99cf3f64f87c2be2b910d0","ssdeep":"384:rxXBar3ylDFlzCKvRdiT4ujQ76RyasEf6zkApG9d53kBat+nm:FAbyFFJCKvRd+UGy06oApG9d5Ftym","tlshash":"61a2d0b07f558a230c2ac4618d9b76561d97dc1379c81de2b128ea8f6d6dfeac04231a","first_seen":"2023-09-05T00:28:36Z","last_seen":"2026-05-22T19:23:47.173013Z","times_seen":128,"resource_available":false,"data":null}},"time_used":3235,"timings":{"blocked":2968,"dns":0,"connect":0,"send":0,"wait":245,"receive":22,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/echo2.000784ef1e7b34d29b3f63fc54afbe2e9.jpg?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /echo2.000784ef1e7b34d29b3f63fc54afbe2e9.jpg?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:12 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 2993\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8564F8C604363704BA84\r\nAccept-Ranges: bytes\r\nETag: \"0A62DBFD66319DA3C13467430F0325C9\"\r\nLast-Modified: Mon, 11 Aug 2025 02:59:48 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 8964427289077883440\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: CmLb/WYxnaPBNGdDDwMlyQ==\r\nx-oss-server-time: 3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2993,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 60x60, components 3","md5":"0a62dbfd66319da3c13467430f0325c9","sha1":"1ad97a09ecc0841074e2af5cf063354c2251d250","sha256":"ad683fff73b8172a4663821ee12c4bcf071abf507264ce60dcbf290d9eba435c","sha512":"91a7b3dbbea0c62efe9ce3df5e3f62fa585ca5493083b0df0a9b6f2750eb142e0e22d32dd7b999915e2928ee1f8acb4bb6ffbf0b208a4092230c1c4fd74b125a","ssdeep":"","tlshash":"88515bd1c8925582e6282873605e8c1b67a8f013a1309f84576163cefeed5d36df254b","first_seen":"2025-12-12T09:10:54.15505Z","last_seen":"2026-04-21T18:12:28.892664Z","times_seen":6,"resource_available":false,"data":null}},"time_used":3685,"timings":{"blocked":3414,"dns":0,"connect":0,"send":0,"wait":270,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/decentraland.png?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/decentraland.png?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:12 GMT\r\nContent-Type: image/png\r\nContent-Length: 9831\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8564FDD799323767DB86\r\nAccept-Ranges: bytes\r\nETag: \"1B54D835571A82BCA95513AFD5DAEC0B\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:03 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10673378435149675144\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: G1TYNVcagrypVROv1drsCw==\r\nx-oss-server-time: 21\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":9831,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 128 x 128, 8-bit colormap, non-interlaced","md5":"1b54d835571a82bca95513afd5daec0b","sha1":"63fffc86a63e9df51cacb49c1c0f2ef8700192e8","sha256":"71ecf91759edabec7f672ff97cb8adb27cbe3290bfed207248568e98902f9fad","sha512":"a2640dd8b131dad6460cecfd92621c3b46ce9cc51c21561fe97c74fe57ab18e44a1b8972aff51e73dd27ce653c4cdc8deccbd25f78e89942c7e5515620ddf0cf","ssdeep":"192:W9BENAdYjR29JTSUkGj33OotTbbnXEVA1Dy3UrFh8VIc2O8NXMcU5:+IA+jR29JTSUkfotTbbnXEVp3Uphw2bM","tlshash":"f912af60719a8e84e08bf7221ad04588cf145d7e72469971b327cb71c9e4dfa62b1674","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-04-21T18:12:28.875684Z","times_seen":15,"resource_available":false,"data":null}},"time_used":3964,"timings":{"blocked":3672,"dns":0,"connect":0,"send":0,"wait":291,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-b0f24c10.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:07.871Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-b0f24c10.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:08 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 448\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\netag: \"6953dd86-1c0\"\r\nexpires: Thu, 08 Jan 2026 04:10:08 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":448,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (447)","md5":"74195ee3a3eba9a9faa93ee837191fcb","sha1":"8afe803a27e8cbb7eec06d64749d4d81772a83ff","sha256":"c2203fc6680d35fac32fe86d755efa18ec40203c7635a479544500f476cbce4d","sha512":"4eb3129198a3f808aea3e2632f864deea95c66f70637c50ccfcda9071be2d6c0a40f4f708f649c8aa9dc6feeb69e11bc154d71428f6b65d06e1eedb2f43f38ff","ssdeep":"","tlshash":"a6f02b1f2a7694f35be688ed96231851d21917051321c154fd4e4d15a73c5e2a2af398","first_seen":"2026-01-07T16:10:47.113557Z","last_seen":"2026-01-07T16:10:47.113557Z","times_seen":1,"resource_available":true,"data":null}},"time_used":319,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":319,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/0b1cafde-7164-4e24-975a-43c04a2791ddecho-proc5bbc55628ed4e069f8b6652eefa50b4.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.977Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/0b1cafde-7164-4e24-975a-43c04a2791ddecho-proc5bbc55628ed4e069f8b6652eefa50b4.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: ioTNpL6PH2tbQwEkPtRg4DytNXUh8aGFiN6M1Vp63K45sJRcO6tmPd0GmW4aeDHkp22xOcptZrWPSXFEBf5BfA==\r\nx-amz-request-id: H7PCSD8MTADDJ5R2\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:38:57 GMT\r\nETag: \"4b3ef8c62b99a5c2073e57dcfbfacf29\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1830\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1830,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"4b3ef8c62b99a5c2073e57dcfbfacf29","sha1":"edb4b395b6adc8d884777339788e59f75da00d08","sha256":"ddd504d154b598383eb31999c85e0d678ee28004f2db2138fe4731db99daa6dd","sha512":"f4d13b854ae3139a998768426be833c8149851ce1227b120abcf87fc75d41bd75015554677cdddec9683d4a4e78d683973d3be2e7eb561b353890eb5bc3bbc7d","ssdeep":"","tlshash":"6231d50aea40bac1538d850270fb41675e6314888ee8f579a88fc12c3c353bf55998df","first_seen":"2024-12-08T15:39:09.749558Z","last_seen":"2026-05-20T11:21:40.079203Z","times_seen":122,"resource_available":false,"data":null}},"time_used":752,"timings":{"blocked":325,"dns":0,"connect":96,"send":0,"wait":120,"receive":0,"ssl":181},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/489ad0c0-8cca-4674-b1de-7e831332df6becho-pro6c57acf5e15c4a38bec2f69a37c99c16.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.979Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/489ad0c0-8cca-4674-b1de-7e831332df6becho-pro6c57acf5e15c4a38bec2f69a37c99c16.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: w2eSCeMgeBuDA5vkr3u523gFyTC/9vqhsM6LVtrh/73pLrUhZfVDj6+y88aSjv9KjDjwgfJetYv2t8VLVTGDDw==\r\nx-amz-request-id: H7PA80QVRBS9CGVW\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:52:17 GMT\r\nETag: \"cd9639c040f59589fcb5d6ed983201f1\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 4196\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4196,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"cd9639c040f59589fcb5d6ed983201f1","sha1":"dbdb74d71fb5cb16b7b8da75f94823dd95fc9d5e","sha256":"e1a782a8916940e24b67ef01c954ac6f353f2ec32825445e34a14fed70411b92","sha512":"2dd972fb315d7ed8bf431ddc91f62d14d2d9be2c1e993aa88f35f8db85ad59df74c93a3192c1f8b15e15e4f5ef4b32c08af2273065b068dee92f77cbc44f75e8","ssdeep":"96:YZCFp42ks3eAyPPPeWmWqK617l2WsRWsRWsRWsnu19TLOJYdRGYgcyTEs:YZ6p42ksryPPPzmx1h2WsRWsRWsRWsW+","tlshash":"0c815c66ce0136dd8c50a03c0b6401fe7df816e8be22ef65999477b56a9f6340814bf7","first_seen":"2025-06-06T01:26:06.899814Z","last_seen":"2026-04-28T19:33:35.962083Z","times_seen":41,"resource_available":false,"data":null}},"time_used":563,"timings":{"blocked":444,"dns":0,"connect":0,"send":0,"wait":118,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/c78e2787-8db4-47b4-a4f4-4899c3927a5becho-pro140ce76eee2e495682516529a8adf274.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.178Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/c78e2787-8db4-47b4-a4f4-4899c3927a5becho-pro140ce76eee2e495682516529a8adf274.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: kBEQkG7RUKGcGIjKC2n8oGiJu0YdaF7RArjVEdNDTD5YuCL0/jn6iAS9lVlt9+6fhaSg9xE+E261nblKf9nvcg==\r\nx-amz-request-id: H7P38XV6HZY722VM\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:47:25 GMT\r\nETag: \"c9201d51bf4a685443c119177dcdda52\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1428\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1428,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"c9201d51bf4a685443c119177dcdda52","sha1":"cabb5ee298f65e78718b60bbb9f393d51c315273","sha256":"0d4a8d66fcc758267650dc6c039aaffdb405ee2c73e09e0e924ecbfee808d129","sha512":"ab4fd563189616fb5e1efcdc1c4af66e5396f5cb68bf43a98f76647fe592b40221772db7e4aa7a175bb5174471fd2112423b7c5e81c7ba7ff764cda86b0b8ff4","ssdeep":"","tlshash":"0c21748cd5c17c429389fdc130f7a0bb9b620a80dac1f475baeec41145202fe4a6a4cb","first_seen":"2024-12-08T15:39:09.783612Z","last_seen":"2026-06-01T14:33:57.994624Z","times_seen":72,"resource_available":false,"data":null}},"time_used":464,"timings":{"blocked":356,"dns":0,"connect":0,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.btc-uss.top/api/common/getAllSetting","fqdn":"webapi.btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.235Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:02:49 GMT","end":"Mon, 30 Mar 2026 13:02:48 GMT"},"fingerprint":{"sha1":"A1:D4:E3:C2:D8:CF:77:F9:28:03:D3:E2:FB:26:4D:30:84:4F:D2:4A","sha256":"9B:6C:8A:A1:89:4A:F7:61:EC:33:50:1F:8A:3B:67:96:16:D4:03:80:F3:43:5A:63:65:6A:25:F6:CC:D7:1D:F8"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://btc-uss.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:09 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://btc-uss.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T06:33:57.473216Z","times_seen":16232170,"resource_available":true,"data":null}},"time_used":335,"timings":{"blocked":9,"dns":0,"connect":0,"send":0,"wait":326,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.btc-uss.top/api/common/getCoinList","fqdn":"webapi.btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.124Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:02:49 GMT","end":"Mon, 30 Mar 2026 13:02:48 GMT"},"fingerprint":{"sha1":"A1:D4:E3:C2:D8:CF:77:F9:28:03:D3:E2:FB:26:4D:30:84:4F:D2:4A","sha256":"9B:6C:8A:A1:89:4A:F7:61:EC:33:50:1F:8A:3B:67:96:16:D4:03:80:F3:43:5A:63:65:6A:25:F6:CC:D7:1D:F8"}}},"request":{"raw":"OPTIONS /api/common/getCoinList HTTP/1.1\r\nHost: webapi.btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://btc-uss.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:07 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://btc-uss.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T06:33:57.473216Z","times_seen":16232170,"resource_available":true,"data":null}},"time_used":3534,"timings":{"blocked":1601,"dns":929,"connect":332,"send":0,"wait":328,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/logo-fa2d0b18.png","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.899Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/logo-fa2d0b18.png HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:09 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-f5a8\"\r\nexpires: Fri, 06 Feb 2026 16:10:09 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":62888,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 204 x 204, 8-bit/color RGBA, non-interlaced","md5":"3e82e51b54a0e21b5efdc066feaa27da","sha1":"68801dca62467657cd39f1b765a34df8ee104f0d","sha256":"fa2d0b18576560911f763fa035c9b9abbcd8d8aace7004e54f07d0a5eb609680","sha512":"86cfffe9d6c65ab9fad1df2ee543ba6850ede48caed2edc120284c283bea912912707bacc77a6f9a6b98de9fc82cf4324cd6d2f024aa66d2d50b68e2a8a4ca5e","ssdeep":"768:mSaSibndsBsbxNh4YIZUv3JYCxGnGXH8/SaSnQzoTFKMUvqrFeVq1wAvBYpPdE:4SK7EYZXYnGXHySyYFKMIqxx1wAvBQE","tlshash":"57535a747e846595ce8ba67480160d52ff32129175ea0e0e20f64c89bfc8f69a36737f","first_seen":"2026-01-07T16:10:47.122601Z","last_seen":"2026-02-24T15:52:23.130177Z","times_seen":2,"resource_available":false,"data":null}},"time_used":345,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":345,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/bitcoin.png?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.004Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/bitcoin.png?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:11 GMT\r\nContent-Type: image/png\r\nContent-Length: 2691\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8563FDD7993237C4D786\r\nAccept-Ranges: bytes\r\nETag: \"2EDF1EF8B333C40979976D1A49BC234C\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:03 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 1939274224005843766\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: Lt8e+LMzxAl5l20aSbwjTA==\r\nx-oss-server-time: 10\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2691,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"2edf1ef8b333c40979976d1a49bc234c","sha1":"d75ac12795b4a9575c874e1b190712cd62a87afc","sha256":"50a1901684f223bf26594dd3415b1e50f184820a16daa810cc5452911e9117a9","sha512":"f697a1fa0786316fc01003f72621920932e2657e4acf5a471e35d02717c42c9db5a12df311895a776a563dcae9b8fc0b6721833529a054b9dbfff4c52fc564d3","ssdeep":"","tlshash":"2b515ee60252267980d32438616db1e178beabb2c3021ded6c1444954acc4b62555cfa","first_seen":"2023-05-01T18:49:36Z","last_seen":"2026-06-08T05:22:52.722485Z","times_seen":21665,"resource_available":false,"data":null}},"time_used":2638,"timings":{"blocked":-1,"dns":767,"connect":271,"send":0,"wait":280,"receive":0,"ssl":1320},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/tron.png?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/tron.png?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:13 GMT\r\nContent-Type: image/png\r\nContent-Length: 28273\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8565FEA0E431306AE513\r\nAccept-Ranges: bytes\r\nETag: \"D5CA5F90C7A46CB88E5F57B2D3046BA8\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:02 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 651333452456791640\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 1cpfkMekbLiOX1ey0wRrqA==\r\nx-oss-server-time: 10\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":28273,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"d5ca5f90c7a46cb88e5f57b2d3046ba8","sha1":"4a46fba9e1f7e0419539519e1936e6002f99b3a8","sha256":"a584af003890eeb5d527e91031218b66fc8d429ce7d8ddc5f5ceb9efaf627a40","sha512":"60e2cb71c7155b2f51159c37f53d85c567698b9baec7ffc34ec898df057fb64e2528909f68df9e901bf5243a4ee451f0ff432e210db1635ca0c448073e7811e2","ssdeep":"768:CXuoEFXvWj4CBn04bX73fOlLiRO2lFIVmfSD:9FXvWj4CueDGlLmOuIcqD","tlshash":"b2c2d005f8f592ca744cc6104925cd97f273a15b30a53eda3ddcca6f7f9c9e916a0282","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-06-06T04:02:55.285468Z","times_seen":581,"resource_available":false,"data":null}},"time_used":4563,"timings":{"blocked":1979,"dns":0,"connect":0,"send":0,"wait":2566,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/ethereum-classic.png?echo-res?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.127Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/ethereum-classic.png?echo-res?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:12 GMT\r\nContent-Type: image/png\r\nContent-Length: 14153\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8564CF0ACE3537175C40\r\nAccept-Ranges: bytes\r\nETag: \"166BCBD2C1D62DE6531949D433FEF1E2\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:03 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10734705667430018768\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: FmvL0sHWLeZTGUnUM/7x4g==\r\nx-oss-server-time: 11\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":14153,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"166bcbd2c1d62de6531949d433fef1e2","sha1":"410404c9b092b0b0e06e9a71ff4ee3c1b6558d93","sha256":"1528de6bb5bc93bdb368cd901193e5dafee879fa7e382277c44fcd884ca280ca","sha512":"4eb4c3a3834f16c13b920e20c40e511543011d0d4ac3dab9bc0b5bb956f5813490b3c492838f688efed48f8ed657f51ea84d88d824859c4c3f8c2c61aa3024ea","ssdeep":"384:EKxvi6XFf14eKuqFS/Oo4+/rZjQy/QFMJcpx6EyE:EKtFDKuqFS/Ob4rJuacpsZE","tlshash":"2552c0e7897303b49a4967ae66f40f8e4951430ceb2f7dab3c000937795796481f90db","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-04-30T14:43:21.680615Z","times_seen":51,"resource_available":false,"data":null}},"time_used":3731,"timings":{"blocked":3455,"dns":0,"connect":0,"send":0,"wait":267,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-e9966e52.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:07.528Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-e9966e52.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:07 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-3c8c\"\r\nexpires: Thu, 08 Jan 2026 04:10:07 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15500,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (15499)","md5":"f636c091b47ec52a2c3f7c08d773c3ee","sha1":"8d832a22b1068dbb61792d4bb286c2f904e621db","sha256":"0d7eadf790cf7738f662e925a3e4c41071836c932b6eb57fb78a144fddedc990","sha512":"a21b08cce276f42b4d7c27a5cb2d05501dcee10954e3f18df47fedcdad8e48df4703746b0c6ee47b54f588fe81bc3cd62cf0ce254a32593964f2ee717fe3fd31","ssdeep":"384:YmKmLI7y5XuZkqByF72xIxf2YIrLxb1OO9w9yDT7wJGau0/LC06ke3KF:YmrIK4PU72xIxf2vKAPtau0/LC06ke3w","tlshash":"8e62d799f9099a3ce5bb9461048c0110722e3fdb640d89e2f8bd6d873753ef8b75aa14","first_seen":"2026-01-07T16:10:47.10755Z","last_seen":"2026-01-07T16:10:47.10755Z","times_seen":1,"resource_available":true,"data":null}},"time_used":326,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":326,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-057af867.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:04.082Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-057af867.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:04 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-1c29c\"\r\nexpires: Thu, 08 Jan 2026 04:10:04 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":115356,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65526), with no line terminators","md5":"c8724767c595ec2d432e1328bb7392cc","sha1":"ab36d2883f95a9d9fed011baabab21b02a28c135","sha256":"2475d79e4fe636d70abe20a4d67d13fbda7e1d92f699df96101efebab2444e3a","sha512":"b444de7e8ae7140b23564044f928250bfd4ffb06f4f66d8328ed2bdd9209ffdf7ac06de9b3605fc3cd95cb7fdf80e16f6186711f464fe5bd0e5113874ddcde4c","ssdeep":"1536:s1V+UbJrPSNukv9dygTU8F5UAN1yPhIYoIRx:mpPl8F5Uc14x","tlshash":"b6b35b8a990a0fbf1cfd084579564a1020a90fd7588ecc93b7bbae1527fec94639971c","first_seen":"2026-01-07T16:10:47.125669Z","last_seen":"2026-01-07T16:10:47.125669Z","times_seen":1,"resource_available":true,"data":null}},"time_used":644,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":644,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/ripple.png?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.013Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/ripple.png?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nContent-Type: image/png\r\nContent-Length: 2274\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8562CF0ACE35376C5640\r\nAccept-Ranges: bytes\r\nETag: \"674B0999F6083084A2A4B1D8B20F3BC1\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:02 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 2919851811578833622\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: Z0sJmfYIMISipLHYsg87wQ==\r\nx-oss-server-time: 7\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2274,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"674b0999f6083084a2a4b1d8b20f3bc1","sha1":"8d14a526e83604e323723b4d25f8f8066f1ede70","sha256":"632f9cacb6b3fbedece774a8d27c436f37dc359de3bb0872ea19603b70347708","sha512":"4c04d137c2448c0d52a4298c858f95c58116c1d77e75899f5acdf6bb61ed839dbdc99fd5556eb63793b81258de40e515540acaeab007da76664476c9be2e514f","ssdeep":"","tlshash":"cd414bd7c53300ed9128e735b8c3ee819c00628d183bb46b89f5ec60b2346d31a53a98","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-06-06T04:02:55.304252Z","times_seen":638,"resource_available":false,"data":null}},"time_used":1790,"timings":{"blocked":-1,"dns":761,"connect":253,"send":0,"wait":259,"receive":0,"ssl":517},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/resource/svg/light/mengbanzu13.svg?2.0.1767103878282","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.986Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /resource/svg/light/mengbanzu13.svg?2.0.1767103878282 HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:09 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Wed, 11 Jun 2025 07:11:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68492c28-4af\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1199,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"66a33dc9a69e1df2e5e509050127b51d","sha1":"7e7392a1b123bfd7a180f8f45122507c6f13cb5e","sha256":"5f5fd09678e5b0b05b8fb3fbeaf242ce31e35ce9e948f923b7cda28416cda5e9","sha512":"410aee7b50b17af64d2ee1aacb4e9106ea86d7d3bff19a6f48f7d8f278f6848a63ebfbeb6c52900a040a99285491f09bc9172068c0971fbcc7e2305c1e0c34cc","ssdeep":"","tlshash":"652144b9c51052ca52814f88dbd82a06623ef167f3f54d9cb39116b20d79d5f15bca21","first_seen":"2025-12-12T09:10:54.151463Z","last_seen":"2026-04-21T18:12:28.826756Z","times_seen":6,"resource_available":false,"data":null}},"time_used":320,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":320,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/apecoin-ape.png?echo-res?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/apecoin-ape.png?echo-res?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:12 GMT\r\nContent-Type: image/png\r\nContent-Length: 54102\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8564795C4630338D2F3A\r\nAccept-Ranges: bytes\r\nETag: \"F222C8BE0475292B2A23A82FF93AC496\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:03 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 951687120942463076\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 8iLIvgR1KSsqI6gv+TrElg==\r\nx-oss-server-time: 12\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":54102,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"f222c8be0475292b2a23a82ff93ac496","sha1":"2c7bebbfdd4473f404ec2e5b46c87691f26097ef","sha256":"38bc45284ec31d151d0a8cf2a84b47a20c61b62841323e2d276ed36e4b269e39","sha512":"603b198a80079a42e0f1adc36e01970ea3cd927e3c08f0d6d89e87947b0d26b6976bc9a6d05181586b370de05522100c6816d6cd1de4bf21738777145f34fa1b","ssdeep":"768:vYFhpCqZoUJ+wSYJpbK+OpWkcy0mVE6erJTdm7gg4xrC8/UdfHUGJsecC:vYFhp2gSWVOwkcyhVxer9SL88dfrB","tlshash":"4333f2ccca54bdf40c4bbd42b8d84164373f570d49d2a1a071bfae0879b97b5ea88692","first_seen":"2023-06-06T18:28:26Z","last_seen":"2026-06-03T09:56:53.015499Z","times_seen":37,"resource_available":false,"data":null}},"time_used":3703,"timings":{"blocked":3416,"dns":0,"connect":0,"send":0,"wait":251,"receive":36,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/platform/dev/favicon.ico?2.0.1767103878282","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:07.827Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /platform/dev/favicon.ico?2.0.1767103878282 HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:07 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1097\r\nlast-modified: Tue, 16 Sep 2025 15:09:11 GMT\r\netag: \"68c97d97-449\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1097,"size_decoded":0,"mime_type":"image/x-icon","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"ce477479a587f5b5dea8dac1bcc7d296","sha1":"1f5a844bda2efba549bd73e42fb6ef8759281a58","sha256":"1b602debb70c8d1c6525d2a194e929bb4e51dd8aa6b9ec9a83c39ace7d42c4fb","sha512":"98130a712c7799d79897a6ea3413bbe3cf80671a566951e3a5ef9a6dff80842f751f0ad24bbe7999b5184ec8d29618957be4eb50307a9642ae0d61ffcb406250","ssdeep":"","tlshash":"1511b6f64ade04a0800c85f648babf0fde0c0147618d5094c72998e0a9336a62c00eb0","first_seen":"2026-01-07T16:10:47.128668Z","last_seen":"2026-02-24T15:52:23.123589Z","times_seen":2,"resource_available":false,"data":null}},"time_used":320,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":320,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.btc-uss.top/api/common/getAllSetting","fqdn":"webapi.btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.087Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:02:49 GMT","end":"Mon, 30 Mar 2026 13:02:48 GMT"},"fingerprint":{"sha1":"A1:D4:E3:C2:D8:CF:77:F9:28:03:D3:E2:FB:26:4D:30:84:4F:D2:4A","sha256":"9B:6C:8A:A1:89:4A:F7:61:EC:33:50:1F:8A:3B:67:96:16:D4:03:80:F3:43:5A:63:65:6A:25:F6:CC:D7:1D:F8"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://btc-uss.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:08 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://btc-uss.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19766,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (19379), with no line terminators","md5":"7a88fa02231e536dccd68c34cbb89a1c","sha1":"ee711d9fabaf6b72370fa08c8a87d6a10fb3f1ed","sha256":"1b5ca7f6b6ab4c46d1f8088bdf4777d7870ecf1467174509693e033a18a6641a","sha512":"24af3ade992a50f65677ed46f13e716c52f3d843fa4224774f73ece817ccbe9393f64984a115b10304070b7a3ec2f1838e82ab778a0460e5fcc1389e94110976","ssdeep":"192:kZoE8YZUefKpYZOSpQ+orRMjvS+Rbp4n5+/76hiT3kLWA0uJakS54D6/znF2smXT:KH203iSpLF2pUM4H3nOhX0gY+I8","tlshash":"ea92658a37dc9c7da6c716c290eb3a9e75ac35b3d4e0ec45e5a7ff1898868304c0b149","first_seen":"2026-01-07T16:10:47.075348Z","last_seen":"2026-01-07T16:10:47.075348Z","times_seen":1,"resource_available":false,"data":null}},"time_used":341,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":341,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/53abf262-8f41-4829-886a-692dd0330abfecho-proc867f38c2e5647cd850d77b91059d1aa.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.937Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/53abf262-8f41-4829-886a-692dd0330abfecho-proc867f38c2e5647cd850d77b91059d1aa.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: mDearOr5gouVmyCrdBDIHyIZeym3j5kaaiPpK7+onSKshabBxKSj4I72BP/R5waG32nI9nkQ9vB58rP6vHWyUQ==\r\nx-amz-request-id: H7P36199VFFF3TEW\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:35:44 GMT\r\nETag: \"d5976ba8379b358e534ace5a52b53242\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1997\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1997,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"d5976ba8379b358e534ace5a52b53242","sha1":"5edc63b7d064ba413750aa1fb041ec51de5e198c","sha256":"4210321132295a31f6710115146adadc92f74bcb1004c6a8a1b3a271597f5838","sha512":"9ce9ee37f060c4e73a8ec179e16fdd68673df3c6bb43ee34919090a3562cb2a892f8ceed20b43134580238db597481bcf8a3a5d69b37401ae0d8d25dfd7c7b8d","ssdeep":"","tlshash":"0f41c8ccaa657f51c304d91290fac167a9530a80c9d0b07a78ced61b09722fb641ebc7","first_seen":"2024-12-08T15:39:09.801273Z","last_seen":"2026-06-01T14:33:58.006199Z","times_seen":79,"resource_available":false,"data":null}},"time_used":829,"timings":{"blocked":370,"dns":31,"connect":96,"send":0,"wait":116,"receive":0,"ssl":207},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/echo2.0300f2a2d706447aaaf5575a04936d187.jpg?echo-res?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.010Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /echo2.0300f2a2d706447aaaf5575a04936d187.jpg?echo-res?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 14932\r\nConnection: keep-alive\r\nx-oss-request-id: 695E85621977433036AAF0CE\r\nAccept-Ranges: bytes\r\nETag: \"76DC1F85AACBC79B0AEAF638A88E226D\"\r\nLast-Modified: Fri, 07 Mar 2025 16:30:31 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 9101322287850982107\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: dtwfharLx5sK6vY4qI4ibQ==\r\nx-oss-server-time: 7\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":14932,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x500, components 3","md5":"76dc1f85aacbc79b0aeaf638a88e226d","sha1":"ae68ab5563c5675f9d7fd16d16b16e5514254ab0","sha256":"4bdc0f550b82024e378c5f249c6863a00105794666addeca752d05724e03d97b","sha512":"0593d28f20d5eb29a1b45bbc6592a86b55565d29e12ac266789008249dd66b9e5ff0bbf5febbcb471351c89088a1340a639f38b68bc064087c56128a89f4790d","ssdeep":"384:gHT7OCP8kecIr6F9ePW+3HNGSgJnWDQM044PRfqXV:gHT7OCPxezmF9sW+3tnYWDQM0JPRK","tlshash":"cf62ae625795ce10e7cb9e345a28fb0cc331e603f9467a9345541bf169d2ad04e888fe","first_seen":"2025-09-14T16:18:45.551564Z","last_seen":"2026-04-07T11:52:08.962062Z","times_seen":13,"resource_available":false,"data":null}},"time_used":1978,"timings":{"blocked":-1,"dns":765,"connect":486,"send":0,"wait":243,"receive":7,"ssl":476},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/vet.png?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.050Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/vet.png?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nContent-Type: image/png\r\nContent-Length: 4776\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8562FEA0E4313011DF13\r\nAccept-Ranges: bytes\r\nETag: \"27C50640A55579EE1B4FC4F2A3D7F28C\"\r\nLast-Modified: Tue, 10 Jun 2025 11:37:14 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 3803492234771251295\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: J8UGQKVVee4bT8Tyo9fyjA==\r\nx-oss-server-time: 8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":4776,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"27c50640a55579ee1b4fc4f2a3d7f28c","sha1":"e570061cf95eac0a86f5e6f48ec60311bc2e6193","sha256":"758725d6efa75e09097767312101518dec66d83cee90509651b21ad6e3240eb9","sha512":"76e60b4eeff515cee9fb28eed8dae67f2163c84f77c734c66b96265bf8c2ff00419b5b737a650988761cc35c57672215e157f6d2837162c67a08024a673b6dae","ssdeep":"96:NhIwaWckkzRRTD1/pWuaQRUDsqzogEIwlBSCvXtk0:NhIWct1RTJ/UsRUY3IwlBdvh","tlshash":"19a17ecba8ece602cd39340ff1c58a97e6ec7196786e084e6e40b8a19905d683dd210b","first_seen":"2025-12-12T09:10:54.108697Z","last_seen":"2026-04-21T18:12:28.838492Z","times_seen":12,"resource_available":false,"data":null}},"time_used":2001,"timings":{"blocked":1756,"dns":0,"connect":0,"send":0,"wait":244,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/solana.png?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.068Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/solana.png?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nContent-Type: image/png\r\nContent-Length: 25649\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8562F8C6043637D9B584\r\nAccept-Ranges: bytes\r\nETag: \"670C723ABC22056BC5368CA2A97DD6A2\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:02 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10769821075161595358\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: ZwxyOrwiBWvFNoyiqX3Wog==\r\nx-oss-server-time: 3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":25649,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 201, 8-bit/color RGBA, non-interlaced","md5":"670c723abc22056bc5368ca2a97dd6a2","sha1":"5ba69b915180c31e4d35a524a9de7b3409ef80a8","sha256":"11192935f626fdb37ddfd8418d754feee326fc6f0a3ce7aa6e61283a820d8b09","sha512":"546901ff0dd66b4768e7560c2ccdceedc3bdac577eea114e600613d98319bde07a84d4fd8a303f4c34c05b3a26c73f03602ba38aaa5436dfcdac6712e0868652","ssdeep":"768:9SDR4lelsfdJTM1JiB+mP9LsYKPlAgezlYWXu23fgiqs:9Alsfd9MqBZ1L5MGgQuW+2vLqs","tlshash":"feb2d076137254ea4442115b97364e812c39f4e3adea6e2c7507a40c7d4a33b30db6bf","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-06-06T04:02:55.294395Z","times_seen":678,"resource_available":false,"data":null}},"time_used":2072,"timings":{"blocked":1785,"dns":0,"connect":0,"send":0,"wait":268,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/dogecoin.png?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.070Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/dogecoin.png?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:11 GMT\r\nContent-Type: image/png\r\nContent-Length: 55728\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8563197743303632F1CE\r\nAccept-Ranges: bytes\r\nETag: \"48384A67185DBDFEEF3AA43C99D3319C\"\r\nLast-Modified: Tue, 10 Jun 2025 11:37:14 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 3192987439189544564\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: SDhKZxhdvf7vOqQ8mdMxnA==\r\nx-oss-server-time: 11\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":55728,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"48384a67185dbdfeef3aa43c99d3319c","sha1":"23e15189bebafbbec8b23e8ed0f3392a9b7979ee","sha256":"1ceba4efa6a645fbe532e520385f37001922e14b6aa7b4ebeb19e755014feb39","sha512":"2f7a13f56ff64b874a76994d00f198c5fc2b7424181935e641eb81bcf171db54fa50b711502c0c4a7e8f5c934ed5747233d87ae0602916244947d3724eb3ce10","ssdeep":"1536:5ko5w6RHlzxqElMwBI6M3iD+oLKTn6EPwhk6g9p6uP5I:x5fR9xjlMGnMSDYLPJ6bOq","tlshash":"0d430247c0529ed2c68853aa0e3de48a84779d12358f80577ce6525a82e2df29bd770f","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-06-06T23:47:44.168837Z","times_seen":643,"resource_available":false,"data":null}},"time_used":2197,"timings":{"blocked":1913,"dns":0,"connect":0,"send":0,"wait":246,"receive":38,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.btc-uss.top/api/notice/list?key=ROLL_NOTICE","fqdn":"webapi.btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.238Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:02:49 GMT","end":"Mon, 30 Mar 2026 13:02:48 GMT"},"fingerprint":{"sha1":"A1:D4:E3:C2:D8:CF:77:F9:28:03:D3:E2:FB:26:4D:30:84:4F:D2:4A","sha256":"9B:6C:8A:A1:89:4A:F7:61:EC:33:50:1F:8A:3B:67:96:16:D4:03:80:F3:43:5A:63:65:6A:25:F6:CC:D7:1D:F8"}}},"request":{"raw":"OPTIONS /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: webapi.btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://btc-uss.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:09 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://btc-uss.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T06:33:57.473216Z","times_seen":16232170,"resource_available":true,"data":null}},"time_used":335,"timings":{"blocked":9,"dns":0,"connect":0,"send":0,"wait":326,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-33acd217.css","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.162Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-33acd217.css HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:06 GMT\r\ncontent-type: text/css\r\ncontent-length: 61\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\netag: \"6953dd86-3d\"\r\nexpires: Thu, 08 Jan 2026 04:10:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":61,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"fae69c2f45a4ef6b923b0395822b90fc","sha1":"15e56c20df99b158876036efef974b73f102e688","sha256":"33acd2173c8e0c625f83972bf4a1212941a1b7666b69975ef0188b874166174f","sha512":"dabd3f7da2b606cc00a5e22d6606ccce506425e986260868ecf4775886b385a52b99d770f0423db3d2b5bfdb0f9dfa57b22797c9e2921b74bdc7cbcf8a821b2b","ssdeep":"","tlshash":"6ba0022d12292514b2624b11ff4be94dce3869179aa18204a7061cd1b5cfa1e275961b","first_seen":"2025-07-18T09:36:58.746195Z","last_seen":"2026-04-21T18:12:28.842515Z","times_seen":18,"resource_available":false,"data":null}},"time_used":1326,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1326,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"webapi.btc-uss.top/ws/23ba4260-3b8b-4ec6-bc25-f0834ab49440","fqdn":"webapi.btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:07.051Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:02:49 GMT","end":"Mon, 30 Mar 2026 13:02:48 GMT"},"fingerprint":{"sha1":"A1:D4:E3:C2:D8:CF:77:F9:28:03:D3:E2:FB:26:4D:30:84:4F:D2:4A","sha256":"9B:6C:8A:A1:89:4A:F7:61:EC:33:50:1F:8A:3B:67:96:16:D4:03:80:F3:43:5A:63:65:6A:25:F6:CC:D7:1D:F8"}}},"request":{"raw":"GET /ws/23ba4260-3b8b-4ec6-bc25-f0834ab49440 HTTP/1.1\r\nHost: webapi.btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://btc-uss.top\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: eiHrqh4EOlAjstjfSvGPfg==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 \r\nServer: nginx\r\nDate: Wed, 07 Jan 2026 16:10:08 GMT\r\nConnection: upgrade\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://btc-uss.top\r\nAccess-Control-Allow-Credentials: true\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: NSQSEfgm+jY9+rl5TZVB4GMtsdA=\r\nSec-WebSocket-Extensions: permessage-deflate\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T06:33:57.473216Z","times_seen":16232170,"resource_available":true,"data":null}},"time_used":2937,"timings":{"blocked":0,"dns":972,"connect":1300,"send":0,"wait":328,"receive":0,"ssl":1316},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/resource/fonts/DINOT-Medium.otf","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.191Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /resource/fonts/DINOT-Medium.otf HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://btc-uss.top/assets/index-f53e1e9d.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:09 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 73096\r\nlast-modified: Wed, 11 Jun 2025 07:11:36 GMT\r\netag: \"68492c28-11d88\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":73096,"size_decoded":0,"mime_type":"application/octet-stream","magic":"OpenType font data","md5":"ab876400560626fbe045633dc44f0748","sha1":"85bbfb1729e86f40ddc9af7197b5f54ed6136226","sha256":"5888b24f6b65ff7c989b4a258dbeb5d997320d61417371210da0258be21d854d","sha512":"82e96ade51b0570c1f691ba45d1a3c0802015dad7598954675c4abe2fa8a9fc705adbe6eb5e677aa5cc03b6704e594cfe99279c678855ebbbcbade6d5028dbd6","ssdeep":"1536:TlK/cP2D2oV7otQjBG1+acfZZHHDEdom1hvd5JItkB7k3Z:TKQQtG1yZSdomrvpIqcZ","tlshash":"0b636f031d4fb9548de4513a52de4ea34bb39ecc1ca493c30ae12d938fece6657152ae","first_seen":"2023-08-16T00:37:20Z","last_seen":"2026-06-08T05:16:21.696807Z","times_seen":961,"resource_available":false,"data":null}},"time_used":396,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":332,"receive":64,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/echo2.0efd2c63c134d4dff98e1c57791ed05b0.jpg?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:10.204Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /echo2.0efd2c63c134d4dff98e1c57791ed05b0.jpg?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:12 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 130062\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8564FDD7993237EAD986\r\nAccept-Ranges: bytes\r\nETag: \"1E13BB13BE0AECDDBAF66F87E29E0312\"\r\nLast-Modified: Tue, 23 Sep 2025 05:23:22 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 8631927320013593982\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: HhO7E74K7N269m+H4p4DEg==\r\nx-oss-server-time: 7\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":130062,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=美图秀秀, datetime=2018:10:29 23:10:36], baseline, precision 8, 700x350, components 3","md5":"1e13bb13be0aecddbaf66f87e29e0312","sha1":"75fb9cc9af1cfb162aec3b4ace67f3e7872e44b3","sha256":"b16526c3aed6ea1aff709d2fd515b6d5c1243574c333c2ace0bec3c6be620eb9","sha512":"d466c2abb508a77be26a587abc92a82f7e8503cd3f307610f0c5a94a00f54362ab2ed7108a86741de8efa0de087063d0719740279be879723e4a603ada6242ad","ssdeep":"1536:4XMQAd3gzKPQsLbjLn6E7iFulU7ymEUwFChNFazMjJoRID1etDc3kz56F6jP5yH0:lQtzKDLTwulEyjFC3ozCiorsYHgUIb6Q","tlshash":"c7d313359e179fd538781a3233892f5a3649a5eb1cc64e0a33ff0dd9d39bad8c649090","first_seen":"2026-01-07T16:10:47.134787Z","last_seen":"2026-02-24T15:52:23.092006Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2603,"timings":{"blocked":2004,"dns":0,"connect":0,"send":0,"wait":280,"receive":319,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/vendor-72ef657d.css","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:04.084Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/vendor-72ef657d.css HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:04 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953dd86-16997\"\r\nexpires: Thu, 08 Jan 2026 04:10:04 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":92567,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65022), with no line terminators","md5":"b40940e3efd47e3e653fe1fbec0ab363","sha1":"3911d44e1bceb07e83746e6bc68de9dbb587b11a","sha256":"72ef657df5906e9f23040a4ceb49985bf894ddcb4324d7d873a0c20b15d3e864","sha512":"f3706c9146b2091fb1a864ab4180d0a1538e801686af21bab4c7231421859a99fba7dd694632faaf1c457fb06711fcb16809e2221fe692c16390e7e98ccbf4d5","ssdeep":"1536:ZTIyNBi3MFYaQj73rx3WqyrtpqoSWEDZEnX73:ZdN0rxmNH9yDWr3","tlshash":"0193c5a5e9c4a1fc6f26f6659b4766d8f13cf661cc01daa0f109512d0fc7bf50223a2a","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-06-01T14:27:44.8802Z","times_seen":233,"resource_available":false,"data":null}},"time_used":964,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":964,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-bc011be9.css","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:06.148Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-bc011be9.css HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:06 GMT\r\ncontent-type: text/css\r\ncontent-length: 397\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\netag: \"6953dd86-18d\"\r\nexpires: Thu, 08 Jan 2026 04:10:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":397,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (396)","md5":"5353ff252ee4a5e7a3d0176de6a6c712","sha1":"c83942b5dfdb4aa8be53f26b39e53b0b257595e0","sha256":"bc011be90fd6cd33a399912151a5f69ba0d8e394563c71c4c1bea7a4ec032516","sha512":"9a17506817918ef0c9a5d0caebaed8f603641dc1015a726bdf247645a7e0a988b543756d7254abafa18dd4cd9d27c9a198300632156faf59f05c1e27f0a5e30a","ssdeep":"","tlshash":"5ae092c890d6927fb62b607d267c931ad425ac88d8007bb8e67fabb146c7ac53172215","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-06-08T05:16:21.625968Z","times_seen":707,"resource_available":false,"data":null}},"time_used":1332,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1325,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"btc-uss.top/assets/index-c044fd7c.js","fqdn":"btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:07.873Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:01:58 GMT","end":"Mon, 30 Mar 2026 13:01:57 GMT"},"fingerprint":{"sha1":"12:73:99:FE:C3:95:A8:88:2C:11:16:AD:B3:4B:85:57:A0:21:60:3E","sha256":"2F:BA:0B:84:04:AA:59:78:E1:11:63:9A:54:69:DF:6B:D6:7F:F3:96:5E:99:51:37:36:3A:04:4F:FF:3E:86:5D"}}},"request":{"raw":"GET /assets/index-c044fd7c.js HTTP/1.1\r\nHost: btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:08 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 776\r\nlast-modified: Tue, 30 Dec 2025 14:11:18 GMT\r\netag: \"6953dd86-308\"\r\nexpires: Thu, 08 Jan 2026 04:10:08 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":776,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (775)","md5":"106e03d988cbdb024e676f31e28dcfd2","sha1":"eec891557691e23af85eb96d84e442c5c5886184","sha256":"207a8f7075e64c3b1bda85e1eb4d5b0367a90d892ae0da24b7a76de10b218b36","sha512":"d2f075141f3e02a3b8a113d575898402473eca149ff47fcc8f6beddf3dc1eaa3824e9dd44605cab7c48d7f660f7737c8495365c56ad9f99b3e370fd38f4ccb2e","ssdeep":"","tlshash":"fc01bdf9fd1d8ebb0ea20a4142912601140a1fddfa1419f198867d661be4950d7de72d","first_seen":"2025-12-12T09:10:54.116685Z","last_seen":"2026-04-21T18:12:28.868359Z","times_seen":9,"resource_available":true,"data":null}},"time_used":318,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":318,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/5fc9aa08-0c69-4091-85ff-404849c3aca1echo-pro4bbbb465ae704739bda9de3d92331ccf.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:08.957Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/5fc9aa08-0c69-4091-85ff-404849c3aca1echo-pro4bbbb465ae704739bda9de3d92331ccf.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: AtwxdocozW27Bs3hQudVqo9wxVxdVQamsi3h0YxMkUSKz8GNt2AWB11EdXKiEtsV0bfPQkuXpzNVrjXbQdqn4yH8aSYV8kngM4rKnqOG/g4=\r\nx-amz-request-id: H7PCXVZ00EJGSXDG\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:36:23 GMT\r\nETag: \"c7bfed8b9abf571aff4f7cdf282458d2\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1442\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1442,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"c7bfed8b9abf571aff4f7cdf282458d2","sha1":"e2d63fb55659de66230d9b7ada2fd63bea2269ba","sha256":"c6504bd01f0a6c713a478be3f44a24b2f552e0f193ad7f002935390224428352","sha512":"59aa3a0c48ec5c12b8ee5d31c3eb46a147ff81b5d28d2c2cd08bc1ca033fe81559388abe00b466393c3abcac7078473e4d81880f820afee21b0f07d0c3af24e4","ssdeep":"","tlshash":"9121a74ff29069815289ec4204e6512398910890cbe0f1a1b9cac8262a703ff89099df","first_seen":"2024-12-08T15:39:09.735261Z","last_seen":"2026-04-30T14:42:23.622353Z","times_seen":59,"resource_available":false,"data":null}},"time_used":945,"timings":{"blocked":413,"dns":34,"connect":92,"send":0,"wait":122,"receive":1,"ssl":280},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo3.oss-cn-beijing.aliyuncs.com/logo/slogo/cardano.png?2.0.1767103878282","fqdn":"echo3.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.137","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.083Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /logo/slogo/cardano.png?2.0.1767103878282 HTTP/1.1\r\nHost: echo3.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 07 Jan 2026 16:10:11 GMT\r\nContent-Type: image/png\r\nContent-Length: 23166\r\nConnection: keep-alive\r\nx-oss-request-id: 695E8563FDD799323768D886\r\nAccept-Ranges: bytes\r\nETag: \"83B2FE60E5B65B9E92331440776EA605\"\r\nLast-Modified: Tue, 10 Jun 2025 11:20:03 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 9590626862748286241\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: g7L+YOW2W56SMxRAd26mBQ==\r\nx-oss-server-time: 15\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":23166,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"83b2fe60e5b65b9e92331440776ea605","sha1":"f5f113490b4ce9dc667703240500e29c84609b10","sha256":"185e2acd9eeb3ee6b97d9e8c656e627122d5c5cbdcd56f280ca1a5bd75c53020","sha512":"e85dbd4c82d0f0f431315bcdddbf564381c716f030ec269b6277e7f6fe65d165121e8b535df685a778134567078fed071adcf3a8fe99cf3f64f87c2be2b910d0","ssdeep":"384:rxXBar3ylDFlzCKvRdiT4ujQ76RyasEf6zkApG9d53kBat+nm:FAbyFFJCKvRd+UGy06oApG9d5Ftym","tlshash":"61a2d0b07f558a230c2ac4618d9b76561d97dc1379c81de2b128ea8f6d6dfeac04231a","first_seen":"2023-09-05T00:28:36Z","last_seen":"2026-05-22T19:23:47.173013Z","times_seen":128,"resource_available":false,"data":null}},"time_used":2847,"timings":{"blocked":2558,"dns":0,"connect":0,"send":0,"wait":286,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/f2420693-7447-462a-9c56-6680565dd883echo2.00d809560220c45909f5577edc669617f.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.164Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/f2420693-7447-462a-9c56-6680565dd883echo2.00d809560220c45909f5577edc669617f.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: SDWFDGXx+bl0trU4iINN/WX38ofgq29qoICJpQPqxeDFhBsJNNLdVR1YgNryvU9bRhbcAZC7VujB4yhuSbtdZw==\r\nx-amz-request-id: H7P1H165RHHCBFVQ\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:43:31 GMT\r\nETag: \"9221e774d8ace4f4acfdd46c1636f65f\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1868\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1868,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"9221e774d8ace4f4acfdd46c1636f65f","sha1":"821d92ba08c11b759068bd4d5e7982df937fe201","sha256":"a3fbde991df1d86ba4040d287a6e1a3d7de48bc72a82c08403faf48dc67d41c0","sha512":"9dd9a578f3636a27de204d6ea0ae2c3d59780bb2107ddb8674fe6b0da9b33ec718e6263c367d9feef554b51a29ce7ca90fa3b2926e7d6d689fdcd3165c12bd17","ssdeep":"","tlshash":"bc31d719ba7175c196c89e9214e6c85218a349408754e5e578cfc4a38a213ff476d0df","first_seen":"2024-12-08T15:39:09.785686Z","last_seen":"2026-06-01T14:24:52.319161Z","times_seen":60,"resource_available":false,"data":null}},"time_used":492,"timings":{"blocked":379,"dns":0,"connect":0,"send":0,"wait":112,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/a38871da-60a9-4392-b023-ad5606526808echo-proe1d51526e87940209947c30c32fa05e5.png?2.0.1767103878282","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.6.116","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.174Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Sun, 23 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"48:FD:CD:50:85:6A:51:E7:71:E4:CB:E0:03:81:E1:EC:4E:AD:9E:C7","sha256":"D7:11:81:F4:91:03:0D:C6:A5:DE:8A:EF:AA:58:14:BA:AD:33:B5:11:8B:D5:F0:33:53:8B:AF:49:82:E9:4B:A4"}}},"request":{"raw":"GET /echo-res/2024-12-28/a38871da-60a9-4392-b023-ad5606526808echo-proe1d51526e87940209947c30c32fa05e5.png?2.0.1767103878282 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: tCjpoAbEtuv8a5MZ7wP34h9HfyZdGFWLo0Af39whOCZsu2v82yMily/ZZR3guu5j31loh4odE/NBCf7rZ05rQN16SNpztRIL5IUwlQexdjU=\r\nx-amz-request-id: H7PDZ51PV9QBMJR2\r\nDate: Wed, 07 Jan 2026 16:10:10 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:46:30 GMT\r\nETag: \"339c6f06112912dfec4082cf192541c8\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 2314\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2314,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"339c6f06112912dfec4082cf192541c8","sha1":"e54f413a9f97256501ea21cb6df1dae60556c1fc","sha256":"fbdf7c741403b5d3e7a381293773fe48f296f52735321922f372a58702f6eb14","sha512":"5330142859855547ec32c626f8de088e213fc75fd88ef5c95e34724e2cd7c6b1c4019037ef3f77f7951eac67e111f2bf2dbc431ea7894860c8ea4cb0b6ed74fb","ssdeep":"","tlshash":"1741e80abac06d90479deda068f5846b4d5b48c48e80f67976cfd4265a713e28f481eb","first_seen":"2024-12-08T15:39:09.779663Z","last_seen":"2026-06-01T14:33:57.935786Z","times_seen":78,"resource_available":false,"data":null}},"time_used":439,"timings":{"blocked":320,"dns":0,"connect":0,"send":0,"wait":116,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.btc-uss.top/api/notice/list?key=ACTIVITY_NOTICE\u0026modelKey=HOME_ACTIVITY","fqdn":"webapi.btc-uss.top","domain":"btc-uss.top","tld":"top"},"ip":{"addr":"103.12.149.252","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://btc-uss.top/#/","date":"2026-01-07T16:10:09.232Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.btc-uss.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 13:02:49 GMT","end":"Mon, 30 Mar 2026 13:02:48 GMT"},"fingerprint":{"sha1":"A1:D4:E3:C2:D8:CF:77:F9:28:03:D3:E2:FB:26:4D:30:84:4F:D2:4A","sha256":"9B:6C:8A:A1:89:4A:F7:61:EC:33:50:1F:8A:3B:67:96:16:D4:03:80:F3:43:5A:63:65:6A:25:F6:CC:D7:1D:F8"}}},"request":{"raw":"OPTIONS /api/notice/list?key=ACTIVITY_NOTICE\u0026modelKey=HOME_ACTIVITY HTTP/1.1\r\nHost: webapi.btc-uss.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://btc-uss.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 07 Jan 2026 16:10:09 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://btc-uss.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T06:33:57.473216Z","times_seen":16232170,"resource_available":true,"data":null}},"time_used":336,"timings":{"blocked":7,"dns":0,"connect":0,"send":0,"wait":328,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"webapi.btc-uss.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}