{"report_id":"6186aac0-1cdd-4ec1-ac34-4142cb81a9d0","version":6,"status":"done","tags":[],"date":"2026-05-01T12:53:25Z","url":{"schema":"http","addr":"vip555qrish5.lat/","fqdn":"vip555qrish5.lat","domain":"vip555qrish5.lat","tld":"lat"},"ip":{"addr":"172.67.219.195","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"vip555qrish5.lat/","fqdn":"vip555qrish5.lat","domain":"vip555qrish5.lat","tld":"lat"},"title":"VIP555QRISH5 : Link Alternatif Slot Gacor Proses QRIS Kilat Gampang JP Penuhin Layar Utama","dom":{"size":58217,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (40550)","md5":"9dc1c4597b05809c197167af1543894d","sha1":"41e98c166e01bd6b6a340b6db52ab4c6af0923b9","sha256":"b4266a8a20d7539124ac9bab7ab801761ffb2fd23c4531bac95cec30e098d8e5","sha512":"b5b01f30a7b5fd630ae590c61cce151c2a0ee9b6b5041deb48939084d1c20f8315c8413b3a823f1dd02f69375eeab8e3959d99dfa7bab492c232c22c2fc3ce2a","ssdeep":"768:TWAMvCdaMK64GWdMupzyq84tCLrvddzU7VqroMtJ:TVap64G7yyq84tCLr1wKoMtJ","tlshash":"e743b4b19501222de013d71794d1ebae3638dd03d2230c6eb7262bd5df926efa372a15","dom_hash":"domhashe1c3fab456930541d45677d95d606387","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"vip555qrish5.lat/","fqdn":"vip555qrish5.lat","domain":"vip555qrish5.lat","tld":"lat"},"ip":{"addr":"172.67.219.195","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-05T12:53:25Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"miyanice.edgeone.dev","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"miyanice.edgeone.dev","ip":{"addr":"43.174.247.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"domain_registered":"2025-06-09","domain_rank":0,"first_seen":"2026-01-12T07:56:07.655705Z","last_seen":"2026-05-01T01:55:11.258066Z","alert_count":3,"request_count":3,"received_data":42004,"sent_data":1215,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.ampproject.org","ip":{"addr":"216.58.201.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2015-08-31","domain_rank":3289,"first_seen":"2015-10-09T04:27:01Z","last_seen":"2026-04-27T12:44:49.975768Z","alert_count":0,"request_count":2,"received_data":295609,"sent_data":827,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"vip555qrish5.lat","ip":{"addr":"104.21.24.171","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-03-19","domain_rank":0,"first_seen":"2026-05-01T12:53:25.865917Z","last_seen":"2026-05-01T12:53:25.865917Z","alert_count":0,"request_count":2,"received_data":1856904,"sent_data":923,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012603032146000/v0/amp-auto-lightbox-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"216.58.201.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"dfd43df9e3425f6077d3bd69d5928cfd","sha1":"d5b1138d94904e2ab07092a86614976e1c2f543c","sha256":"94922d1f912dea5b7dd68a1a62d746f58d44a0c8305607aca116d6f08ba46708","sha512":"1f42867fd9dce4ae9a17c2a13be535196920068b4ca5b52b256baa92c48150b0f725a5f977ac59bafe6187e06e25aa2ff2787c37e23485bb943cd05fd126b6f5","ssdeep":"96:jKoAosPGpV3yMDc0jGAM+G0mj1hVXxSZ4tqSKN0OV0TjLRkiGj0ldmq43bDjHI:jKqswV3yv0jGAFCPX/tqKyWp4M0rDTI","tlshash":"d7f196dc7ac2b83a5757b4b780af414fa63ba94624ad9120d120f0d83cb995ed633e5c","size":7798,"data":"","first_seen":"2026-03-17T22:15:38.806244Z","last_seen":"2026-05-25T13:50:56.000747Z","times_seen":2806,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"216.58.201.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c54252d732bff78217cfbeff950b3476","sha1":"960deb0b579fba259aa9865d3b1deadff0538bff","sha256":"852bb88969e8e21c5f7403b97cdb69b072a54f60214690cee9f1dad4db2d6740","sha512":"e75fc0cc5405ac64ddce8e210062fda91bf50d668d8cbef548f54b22b311082da8d3830d9092375ab69a6d8def15d9889f195f03269ecc9f570ba7afbf77f7e2","ssdeep":"6144:ixUXfTWCOu6qiieuIbno1uzRePNS+7HYo:yqftp/0RENS+74o","tlshash":"e754949db286b0724793b075803f150aa33ba859244a812cf56de9d67cbcd89b137f7c","size":284617,"data":"","first_seen":"2026-03-17T22:15:38.805176Z","last_seen":"2026-05-25T13:50:55.996675Z","times_seen":2915,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"miyanice.edgeone.dev/favicon.png","fqdn":"miyanice.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.247.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vip555qrish5.lat/","date":"2026-05-01T12:53:03.363Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /favicon.png HTTP/1.1\r\nHost: miyanice.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Mon, 06 Apr 2026 04:01:46 GMT\r\nEtag: \"24d7ddb5c7aa53b8c7ee52120a734171\"\r\nContent-Type: image/png\r\nCache-Control: public, must-revalidate, max-age=0\r\nAge: 2191819\r\nContent-Length: 3728\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nDate: Fri, 01 May 2026 12:53:03 GMT\r\nEO-LOG-UUID: 9877000319024278841\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3728,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"24d7ddb5c7aa53b8c7ee52120a734171","sha1":"645ae0a128802031ff0240848be6b777fb66d162","sha256":"97613356e02585ed3ce2c878ffc75556a97e6e33d6c96bc7bfddba267dd9dd0e","sha512":"5d15f1a456c4beb0874e6ccdc97407cf85ad3ddca909e58381f2d295fce13863f34b0a06101eea4bf2f4fb2cdf34be70cf39cdacf52ad6dc704e2d76ac45e16d","ssdeep":"","tlshash":"d9713b1ffd512e613399716374f1892b24221e8216e8521de49ec9290db61e758382df","first_seen":"2026-01-20T06:40:19.396642Z","last_seen":"2026-06-01T06:24:24.0151Z","times_seen":63,"resource_available":false,"data":null}},"time_used":465,"timings":{"blocked":-1,"dns":155,"connect":19,"send":0,"wait":24,"receive":1,"ssl":264},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"miyanice.edgeone.dev","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012603032146000/v0/amp-auto-lightbox-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"216.58.201.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vip555qrish5.lat/","date":"2026-05-01T12:53:03.786Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:35:49 GMT","end":"Mon, 22 Jun 2026 08:35:48 GMT"},"fingerprint":{"sha1":"64:36:03:BA:E6:36:1D:72:CB:98:C7:11:D9:8E:7C:1F:6A:03:40:33","sha256":"76:A3:36:B6:E9:D6:FC:48:B6:5F:E5:E8:12:BA:E2:18:57:74:80:40:92:BD:73:3F:C0:FA:D2:FF:77:5C:20:44"}}},"request":{"raw":"GET /rtv/012603032146000/v0/amp-auto-lightbox-0.1.js HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vip555qrish5.lat\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 2972\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 30 Apr 2026 11:22:02 GMT\r\nexpires: Fri, 30 Apr 2027 11:22:02 GMT\r\ncache-control: public, max-age=31536000\r\nage: 91861\r\netag: \"74a8e6f749d364bb\"\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7798,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (7676)","md5":"dfd43df9e3425f6077d3bd69d5928cfd","sha1":"d5b1138d94904e2ab07092a86614976e1c2f543c","sha256":"94922d1f912dea5b7dd68a1a62d746f58d44a0c8305607aca116d6f08ba46708","sha512":"1f42867fd9dce4ae9a17c2a13be535196920068b4ca5b52b256baa92c48150b0f725a5f977ac59bafe6187e06e25aa2ff2787c37e23485bb943cd05fd126b6f5","ssdeep":"96:jKoAosPGpV3yMDc0jGAM+G0mj1hVXxSZ4tqSKN0OV0TjLRkiGj0ldmq43bDjHI:jKqswV3yv0jGAFCPX/tqKyWp4M0rDTI","tlshash":"d7f196dc7ac2b83a5757b4b780af414fa63ba94624ad9120d120f0d83cb995ed633e5c","first_seen":"2026-03-17T22:15:38.806244Z","last_seen":"2026-05-25T13:50:56.000747Z","times_seen":2806,"resource_available":true,"data":null}},"time_used":77,"timings":{"blocked":51,"dns":1,"connect":0,"send":0,"wait":24,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"miyanice.edgeone.dev/logo.png","fqdn":"miyanice.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vip555qrish5.lat/","date":"2026-05-01T12:53:03.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: miyanice.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Mon, 06 Apr 2026 04:01:46 GMT\r\nEtag: \"9ce85d7cecfccceb6f7c255ccf5b03cd\"\r\nContent-Type: image/png\r\nCache-Control: public, must-revalidate, max-age=0\r\nAge: 2191819\r\nContent-Length: 33386\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nDate: Fri, 01 May 2026 12:53:03 GMT\r\nEO-LOG-UUID: 3830488152202777816\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":33386,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 540 x 135, 8-bit/color RGBA, non-interlaced","md5":"9ce85d7cecfccceb6f7c255ccf5b03cd","sha1":"ac4cb2b634eb2bca52330ae88dcce0a22249ba70","sha256":"3244b38f2b29f5c5febd1121b39e312fb8658e13e118bf551d52fe573e727e56","sha512":"247fd344a794ada594573e1dbbd6b8af645815730aaee5e4c73d320bb410676769ce820acee361ff9bcf847217d6ef729b7c2d2a47adbdc2eaaaf34202866fda","ssdeep":"768:GCw9NM35+sORVnXttoLpolWRNGPiRfiEnGWOUGYElPoRG+N:Lw3E5Mt6KINsiRfkUSqRGC","tlshash":"4ce2e0bcde10647ad72f923f00f38e64c6b376754c9421cba79385cb8d208a35c6a61e","first_seen":"2026-04-06T06:33:44.568731Z","last_seen":"2026-06-01T06:24:24.018671Z","times_seen":20,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":47,"dns":1,"connect":20,"send":0,"wait":23,"receive":7,"ssl":23},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"miyanice.edgeone.dev","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vip555qrish5.lat/banner.png","fqdn":"vip555qrish5.lat","domain":"vip555qrish5.lat","tld":"lat"},"ip":{"addr":"104.21.24.171","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vip555qrish5.lat/","date":"2026-05-01T12:53:03.803Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vip555qrish5.lat","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 13:51:44 GMT","end":"Wed, 17 Jun 2026 13:51:43 GMT"},"fingerprint":{"sha1":"B2:B4:6E:F4:1A:1D:47:2B:BF:A4:CE:F4:5A:64:AE:8E:D3:18:6D:45","sha256":"68:1D:D3:13:B0:E6:AC:25:A8:89:79:E2:5B:1E:AF:A1:3D:16:F1:9E:C5:C0:52:72:91:A9:4D:23:FC:60:DF:C9"}}},"request":{"raw":"GET /banner.png HTTP/1.1\r\nHost: vip555qrish5.lat\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vip555qrish5.lat/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 01 May 2026 12:53:04 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 20 Mar 2026 06:33:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bcea32-1b9a1e\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\npriority: u=4,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9jCil2pNeF7inMwWj0D1QHUUM2CwvfNC6yeck20wG%2FBAqwW4NfGMF3PB4jjLfvoAcvWzoukxFtOxkHfMSMp3EnpRHo8c%2BMTVXu7pp3B20emgJFi4uRqA79FdF8yijQWiT42p\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f4eed4acd8423eb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1808926,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1080 x 1080, 8-bit/color RGB, non-interlaced","md5":"a9ea6f62799883988c6c6b46bb2fa305","sha1":"a995dda7486ded6f4c4ea063d5392c038194ea18","sha256":"71e52fdb4f67d291f7e04d69c384cd28026a4c1a504835185ab620a8e54ac4ee","sha512":"77fc7a49dd1ee3dfa938dc5d7e4a52c2705297f7cc7bf3933da22e9806d21a8225258f52bf164f0d79b8a53b2e3fcedef6b9ed7a8dbe0ad09526009ce9f78370","ssdeep":"24576:VjmWu93Z2NY8lmM/Ml6Hgc5YIhCtb+ZvP64i3ebemLr5aNTK1x+eery1G:VaD3ENFlmM/Ml6IL6sbObemxG2x6W1G","tlshash":"ec2533b1e4a30d2b0c888f6af5952f5a6c813d4ec5e434776bdc1615aadefc1a09cec4","first_seen":"2026-05-01T12:53:31.207078Z","last_seen":"2026-05-01T12:53:31.207078Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1894,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":760,"receive":1134,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vip555qrish5.lat/","fqdn":"vip555qrish5.lat","domain":"vip555qrish5.lat","tld":"lat"},"ip":{"addr":"104.21.24.171","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-01T12:53:02.394Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vip555qrish5.lat","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 13:51:44 GMT","end":"Wed, 17 Jun 2026 13:51:43 GMT"},"fingerprint":{"sha1":"B2:B4:6E:F4:1A:1D:47:2B:BF:A4:CE:F4:5A:64:AE:8E:D3:18:6D:45","sha256":"68:1D:D3:13:B0:E6:AC:25:A8:89:79:E2:5B:1E:AF:A1:3D:16:F1:9E:C5:C0:52:72:91:A9:4D:23:FC:60:DF:C9"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: vip555qrish5.lat\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 01 May 2026 12:53:03 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Fri, 20 Mar 2026 06:33:21 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: master-only\r\nreferrer-policy: same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VD5oXJVZ5dDE%2F4YOI0xzH%2Fatpi2K6hRLv4qgFAcSgKitQeiSLS4Q%2BQJykgLltwDsM2iALQ6CbWPTRoSBVfsArZoC5Yx2Hhv4xLrw7no3LGO8NTJdCryi7U5PNRe6OjDqs%2FbD\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9f4eed426e0f56a2-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":46416,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (40544), with CRLF line terminators","md5":"686d9383d7d274f73e6d64ac3bf88e84","sha1":"9e5e2cbe79932d58bda04cbf76df1cce755299e3","sha256":"829c783bc87b43e1b3e6f1913f717e3366d04a3d88aee4ef4e22ff6f5c7c69ed","sha512":"5c80467d7be7794352717af372b31bd862edf83537ccc4ecf7d1d1cf910957e14d6dc4ad04b650a8e2ac138d1ea72a102f39f2f70a36bf18abee243715c0e949","ssdeep":"768:mOlCsaMK64GWdMupzyq84tCLrvddzU7VJLo:xap64G7yyq84tCLr1wJLo","tlshash":"1723b5b045021229e053d717d9d1ae9d7278ee03e123486eb37b25d69fd26fe83b3a14","first_seen":"2026-05-01T12:53:31.209196Z","last_seen":"2026-05-01T12:53:31.209196Z","times_seen":1,"resource_available":false,"data":null}},"time_used":776,"timings":{"blocked":72,"dns":51,"connect":1,"send":0,"wait":632,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"216.58.201.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vip555qrish5.lat/","date":"2026-05-01T12:53:03.244Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:35:49 GMT","end":"Mon, 22 Jun 2026 08:35:48 GMT"},"fingerprint":{"sha1":"64:36:03:BA:E6:36:1D:72:CB:98:C7:11:D9:8E:7C:1F:6A:03:40:33","sha256":"76:A3:36:B6:E9:D6:FC:48:B6:5F:E5:E8:12:BA:E2:18:57:74:80:40:92:BD:73:3F:C0:FA:D2:FF:77:5C:20:44"}}},"request":{"raw":"GET /v0.js HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\ncontent-type: text/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 73113\r\ndate: Fri, 01 May 2026 12:53:03 GMT\r\nexpires: Fri, 01 May 2026 12:53:03 GMT\r\ncache-control: private, max-age=3000, stale-while-revalidate=1206600\r\netag: \"5b239dc189f888b8\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":284617,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (64627)","md5":"c54252d732bff78217cfbeff950b3476","sha1":"960deb0b579fba259aa9865d3b1deadff0538bff","sha256":"852bb88969e8e21c5f7403b97cdb69b072a54f60214690cee9f1dad4db2d6740","sha512":"e75fc0cc5405ac64ddce8e210062fda91bf50d668d8cbef548f54b22b311082da8d3830d9092375ab69a6d8def15d9889f195f03269ecc9f570ba7afbf77f7e2","ssdeep":"6144:ixUXfTWCOu6qiieuIbno1uzRePNS+7HYo:yqftp/0RENS+74o","tlshash":"e754949db286b0724793b075803f150aa33ba859244a812cf56de9d67cbcd89b137f7c","first_seen":"2026-03-17T22:15:38.805176Z","last_seen":"2026-05-25T13:50:55.996675Z","times_seen":2915,"resource_available":true,"data":null}},"time_used":411,"timings":{"blocked":173,"dns":83,"connect":8,"send":0,"wait":33,"receive":28,"ssl":82},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"miyanice.edgeone.dev/favicon.png","fqdn":"miyanice.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.247.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vip555qrish5.lat/","date":"2026-05-01T12:53:03.361Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /favicon.png HTTP/1.1\r\nHost: miyanice.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Mon, 06 Apr 2026 04:01:46 GMT\r\nEtag: \"24d7ddb5c7aa53b8c7ee52120a734171\"\r\nContent-Type: image/png\r\nCache-Control: public, must-revalidate, max-age=0\r\nAge: 2191820\r\nContent-Length: 3728\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nDate: Fri, 01 May 2026 12:53:04 GMT\r\nEO-LOG-UUID: 1789004031606150771\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3728,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"24d7ddb5c7aa53b8c7ee52120a734171","sha1":"645ae0a128802031ff0240848be6b777fb66d162","sha256":"97613356e02585ed3ce2c878ffc75556a97e6e33d6c96bc7bfddba267dd9dd0e","sha512":"5d15f1a456c4beb0874e6ccdc97407cf85ad3ddca909e58381f2d295fce13863f34b0a06101eea4bf2f4fb2cdf34be70cf39cdacf52ad6dc704e2d76ac45e16d","ssdeep":"","tlshash":"d9713b1ffd512e613399716374f1892b24221e8216e8521de49ec9290db61e758382df","first_seen":"2026-01-20T06:40:19.396642Z","last_seen":"2026-06-01T06:24:24.0151Z","times_seen":63,"resource_available":false,"data":null}},"time_used":1042,"timings":{"blocked":-1,"dns":156,"connect":19,"send":0,"wait":21,"receive":1,"ssl":844},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"miyanice.edgeone.dev","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}