{"report_id":"7a787426-584c-46c9-9dcd-6c8b12b5298c","version":6,"status":"done","tags":[],"date":"2026-03-23T14:50:45Z","url":{"schema":"http","addr":"testweb.btsutodk.top","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":0,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"final":{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"title":"CoinEx","dom":{"size":23714,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (16970)","md5":"8b00fb275879531e53d5bb3e16b4a2a7","sha1":"7068228b98b586084ae1b5f292fcc7bb17f4ea00","sha256":"acdedd42261b40b45076ae0eab31961f343216e45bc04dc78d5bf99deac6e70f","sha512":"84efc15dd346e8c5c7f82d7dff78df64110775f7c18e92f7f9ddb4b5c4bebbe624e4421d2aa52262186bc8c74447c9e0840103132c41f07e3ea1e20268da3aa2","ssdeep":"384:VWsZCxW2IgXqCF0FEFMF/1FpFKFJFFmqQoUBYsKI:VzQxW2r8sEXreLFN2YsKI","tlshash":"9fb2e0327144846312e796c4e872bf1a73b2f30fc44b8848baed82925fc3cb4fa55965","dom_hash":"domhash1314f6f4b6f301b1df3b821e82040037","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"testweb.btsutodk.top","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":0,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-27T14:50:45Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"trading-order-roseccc.s3.amazonaws.com","ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2005-08-18","domain_rank":0,"first_seen":"2025-06-03T12:45:54.189968Z","last_seen":"2026-02-24T15:50:39.717146Z","alert_count":0,"request_count":18,"received_data":59296,"sent_data":9556,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}]},{"fqdn":"testweb.btsutodk.top","ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"domain_registered":"2026-03-05","domain_rank":0,"first_seen":"2026-03-23T14:50:47.848906Z","last_seen":"2026-03-23T14:50:47.848907Z","alert_count":35,"request_count":35,"received_data":3569713,"sent_data":14736,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"newapi.btsutodk.top","ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"domain_registered":"2026-03-05","domain_rank":0,"first_seen":"2026-03-23T14:50:47.849899Z","last_seen":"2026-03-23T14:50:47.849899Z","alert_count":13,"request_count":13,"received_data":55558,"sent_data":6791,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7746d006e46a239a1cc285b1258cb89b","sha1":"106cc8e7803882091dbf88ccfb0ff1749cf783c5","sha256":"f5547d547d5c875cb5cdc9a2fabc160dac1896c419ab4c26f17101e011e0a4ab","sha512":"dcc1e9e2e8ad494db1c897fbea2e441431f43f8ea90cafafb295acd21ff186ad268c54a652cd7ed665fb1ca5d132071cf052b0eccebab3844f3d97aa038e6525","ssdeep":"","tlshash":"0cc08cc4b0c22d006606b42150af64e49035402a75482b428e98e8483e260b09237ed8","size":146,"data":"","first_seen":"2025-09-27T05:00:10.572396Z","last_seen":"2026-04-28T19:23:46.32866Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f3de45722edb9a9e8c3e6bd127b92fe7","sha1":"ec7ec51db78d7c871ab7e064d5321665dab42ebf","sha256":"65b126ac4f07d022b90cb8cd4519fb643ee140ba17dbba7103311c8f25cda727","sha512":"11b335ca47beecf95284ea8095def5cf112dafc28ee84dc352b25186308828ea20f3e6876b5b5d379b258bfa25549431bf2259b5601677f32cc4647e5ac83cc0","ssdeep":"","tlshash":"67c08cc4b0c32e001603651110af35e49034c066f0481b028c94dc492e230f48233e98","size":145,"data":"","first_seen":"2025-09-27T05:00:10.581706Z","last_seen":"2026-05-11T12:41:38.575873Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f3d0d529b4c3fac2c94f47c5ceef7a8d","sha1":"f9d79348df9022eeba2b2bec0845ccc8e33670e6","sha256":"b1c9612234af8fd96a32d140852b4fccbf1726eaca209d960096e40c0f2eb8d8","sha512":"5ba91a3e356034e1f143a7af96d06a283acbe426cb3362de2878df074f2a627ba3b67be736aad45f15b516e0707b1cdf7518f10d374b4926b75e90ad739b5bea","ssdeep":"","tlshash":"bac08ccaa0c26d601a06651010af28e49024802770485b239cd4e8482e620b08233ed8","size":145,"data":"","first_seen":"2023-05-23T14:47:18Z","last_seen":"2026-06-16T11:26:59.221195Z","times_seen":7259,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"cb0024a141d820b14f417d71dff50639","sha1":"dbe8e483f72be637712343df2ceb3d5c72f3e178","sha256":"64142350d82d76d517d19b5c4470f76264c5717b3dd313da5fc5118b354cac74","sha512":"27802f8ab379567efd52186754ff5f08e5f3c5739ac9e443f14c3123b544300517aff97aebb3f4489c14d77d3e12ca8fd5ebc4b24a08c7617c251aeee6e1cc63","ssdeep":"","tlshash":"f1c08cc9f1d22d001a06655050af38e4a024802b744a1b428ca4d8482e220b08333ea8","size":145,"data":"","first_seen":"2025-07-13T15:45:44.61234Z","last_seen":"2026-05-11T12:41:38.574669Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-192d99ec.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"2b0e4d6bfba53cfd957d8899725512b9","sha1":"ca114f93f8794759aa221daab6a222d275735d61","sha256":"ddc11968ef431bdda247bf8ae76fe77c0c927abab3f08c5dea23215187508ab1","sha512":"d8c53b3750a65805f532b0ecb5efe70c9fc457313f567fe8e6c780febe5fcdd35837047b1990e5ed3ca3328628fc1a587a96429bac5ffc859680fb7bdb1dbf7a","ssdeep":"384:AZzqBT7hRf0xuF0FtAfU2w6KImMuEFuZ36kXMMzprhQhdCUSD:mCsUKtAfUnwbAprhQhdCUA","tlshash":"8552e866f902993ef6ffa04140980050766a7ffb411a49e1b9bc6d4b3353eb8f789708","size":14022,"data":"","first_seen":"2026-03-23T14:50:53.563957Z","last_seen":"2026-03-23T15:17:52.171444Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/charting_library/charting_library.min.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"8573e89d9ec535663d75f21b1f08109c","sha1":"a8d9eea0b157ceeffc38d4254e6f6abc9d697d10","sha256":"cb0c6c9f1771d252eee7caa043bdd7cfffbd52c2cc4b18b7be7c4554ed069151","sha512":"55d728fa1e0682725f94b17387c6790792d3d34b43652a00097876118575bd6cefa20916d80674519005d72f20ecbb745e9645516c056e6f9bb6691d5efbcb33","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffam:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvu","tlshash":"6e224f58ed2478720acb54f0427f180f8239e278d84944ed3cc4e6ec59fd44a6a6fbb8","size":10858,"data":"","first_seen":"2023-08-16T00:37:19Z","last_seen":"2026-06-14T20:39:40.871772Z","times_seen":1224,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":true,"md5":"fc9760c7f79f4c6cf4532fbc08ae0c5e","sha1":"7bab00ce19746d189935fabe803f21b98c100a19","sha256":"2c7121c69ba38161eed882acda89b2508ce8562cc1bb8218e972337dcb07e40d","sha512":"2457be320a1f03165d599b4dfbb5691781ce50e2382dbd50b89301121c9b8691d64dc6c0ba95e47df2db0aa200449d94e6d77f05f0905d35ae51bc078d91c15a","ssdeep":"","tlshash":"0811abfe295a602a6303404e976b7901642250a9000a184177cc9e9dbb9abbdd0cfb8c","size":1048,"data":"","first_seen":"2026-03-23T14:50:53.61966Z","last_seen":"2026-03-23T15:17:52.20254Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"66f3832186e63f9e6dc840695647afd7","sha1":"c88b5b4a0ad23b5e63454693716ea7e6e9b37a4c","sha256":"11c1c2b458ec629dcc74c85cd672bb7708e34ffb7efbb68aeaeb6ac913255b71","sha512":"5424db2d753294f6a8a6c4034187ad5b9d12787552d9c5e70b8eac316ab99076b4c3710935cc347d80726007276d9b75887bd352641dae8529f2e95695256eb1","ssdeep":"","tlshash":"efc08cc4a0c36d001a06641010bf28e49034402674881b03ac94e8482e220b08233e98","size":139,"data":"","first_seen":"2024-07-02T13:45:50Z","last_seen":"2026-06-16T14:23:35.656913Z","times_seen":4327,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-e0fedcd3.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"importedModule","is_inline":false,"md5":"4caa27b7aeb237d500b28fc4f4fe9b9d","sha1":"080c1d65a69d634b5562485fcc84ad00936616db","sha256":"3c54bfb9faa59b0802882d0ccca0a0a95242a2245ca38d24f36b95adc7483c8b","sha512":"12d563c3cb84b8e2e58066320651513a5afb76cdf8cb457803ea0d2efe8f83ca55253f855465a0a3b962d68061b251d28a18ea34acd2b9d57905654cbdb008ec","ssdeep":"","tlshash":"ae01f8f8fc0c8ebb0fa20a4001903600140a2fddfa1419e198967e6a1be5980dbde32d","size":776,"data":"","first_seen":"2026-03-23T14:50:53.495556Z","last_seen":"2026-03-23T15:17:52.129899Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c2a59594b7c750c554d59b777cf7e0a5","sha1":"cc0ac4dbb49aff978ff3ee7d7c1a27f761ba6a20","sha256":"505695da350a211f6c8dbebc42f4bdc2bd8e287e4f5611c8eaf94c81f8951468","sha512":"8fdf9120a742f4fb36ebe9f4bd7684db839a87a5773a496dc5a6e6a8403cfe7562e67463995d588160f8fe75170f338034d8676b7708873d3c0b5c84a0da3b51","ssdeep":"","tlshash":"eec08cc8a0c22d041702641011af24e890244026704c5b02cca4d8683e220b48233e98","size":139,"data":"","first_seen":"2023-05-10T15:08:47Z","last_seen":"2026-06-16T11:26:59.010862Z","times_seen":6746,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"2b72232ed380a528eeb3a552d77ae9c7","sha1":"6dc118004f8c5dcbcb571446e544948e5884cd56","sha256":"b7d4991a24ab4ba72ab4e3cfa67e51ed181d0f21335bd7adb062d024a1564c4a","sha512":"9a7cba48645dd78c7a719297ffad44b3da7263835e444e0fde947908fd4345a1cbb1d672b3e53338231cd6a11b38c7d45e5395f1387d368b0e8f93beea4d6347","ssdeep":"","tlshash":"77c08cc4a0c26d001602649010af34e890244027b0485b028c94d8482e220b08233e98","size":139,"data":"","first_seen":"2024-09-19T22:02:28.519141Z","last_seen":"2026-06-14T01:03:30.685347Z","times_seen":213,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d55002998b039fdc913293d1fcd91bbf","sha1":"e6c337149369f3cd12337821a4a89aafe10cee72","sha256":"c7e61fa8367c2b28106e5a37cbb2ebf713733d1c6d171401d87bbab54d905de7","sha512":"3884a3a09a3fbda76f02799bacf213983272a16cae6a113dfa5095192cf85dfd140f5cb83a3a211f724fe258f5f34eef0f62e07e229e6115d55eeacb756dc518","ssdeep":"","tlshash":"dec08cc8a0e22d001612652050bf35e4a0248426b04c1b42add4ec582e220b08237e98","size":145,"data":"","first_seen":"2026-03-23T14:50:53.623923Z","last_seen":"2026-03-23T15:17:52.199083Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"fba0ee7ae4592ea85cd034e3a0880b6a","sha1":"bc8903ce273e24296e904ed4649b0dbe555bb80e","sha256":"ca9bec056a2ab66f969f3a8db147ceaeaa0e521ee58a111c301d23b7cac397c3","sha512":"7e91cf496f5110e2c7c77e795120b6847f8f63e39b1e8a0cc155c5bde26bf2c12340df517db0421bdb986ce605bae72d5ea8ebc97f3c63dad5025996084cd0a9","ssdeep":"","tlshash":"28c08cc4a0c63d001a02aa1410af24e89024802b704c1b439ca4d8493e224f18237e9c","size":145,"data":"","first_seen":"2025-09-27T05:00:10.573775Z","last_seen":"2026-06-01T14:38:08.613493Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a6c5d65e551430b1950331879b14a51d","sha1":"34d6767dc2fd9f9f5b161f4af7d580a75850105a","sha256":"1837fcfd5443eedd4b56189cae3a113e0d9701ff0c043d5fb1c1692262674880","sha512":"2b1477e3636c1c537ad7b2f376c9834ac9b30f810529053220f39695e05465cac05bbbbd0cd1886917ad9ea8ed1b28fd5ba75304c18168e05a15b32c2fc465e4","ssdeep":"","tlshash":"66c08cc8a0c22d001602641020af24e49024402670482b03cca4d8d82e220b08233e98","size":139,"data":"","first_seen":"2025-01-03T15:55:01.034291Z","last_seen":"2026-06-14T01:03:30.725451Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":true,"md5":"cd7a34e714de94d5c29b8ac5acdde24b","sha1":"b722bccb435490630d97ef88cafeb02d92f70fd0","sha256":"312ebfdc50a0e168cff60c206811b02e944263a7d9060c2685509dacfacd7f71","sha512":"a724bc648a508c24e5bb1788e1f02b47030893bbb0b80a99e380d95480095983a35d8ec11193c53f0a67db47a289ab608fcbc9dbca846bfdd5d61a8832290f43","ssdeep":"","tlshash":"58e07d48ff28c7f316ce28ab516e770858d104d58c1b58024cebccc86935ed87291527","size":314,"data":"","first_seen":"2023-03-11T11:23:25Z","last_seen":"2026-06-17T09:23:13.67132Z","times_seen":37743,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"21738b5e0f5c65b6c7c7629b894fda1a","sha1":"953e5f38a32d3dfba6889cf2628473f02ee2a133","sha256":"8444b60d4c9ba298b0d231ac5f88fb4b6ddf792dffec974e73ffab3cf4e891ca","sha512":"badcd90261fac837fc4e50079498d9cba45edc18a29c34a221174a835faa92fa3ea76dd0080f7071974f2d8850c29eb8984b40c4b6f5ae0521b034b449d8ba59","ssdeep":"","tlshash":"88e0abb63279c030548586291dfc1827f2a7a6724d9c0e2eb0c0ea095e4dd2820b8092","size":408,"data":"","first_seen":"2026-03-23T14:50:53.629157Z","last_seen":"2026-03-23T15:17:52.203974Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6bfc68ca673adf29592b7f1080026574","sha1":"ea31642ffe2af1436592801a8899f159ccd82a3b","sha256":"90a28f86c845a175ad683b18ffe710f17fd7d92bdbcc4fa194446639d200cc69","sha512":"146399870300bb6b8d0aeb1a95741d9b1af123290b182c325d40837fd50efb35a9916ad72294989e0ef4ab1537e6a9bb79e033c0349f641ce5f82baeb22611c6","ssdeep":"","tlshash":"2fc080cca5f37d0516167561146f35d4d0289017704c5b02ddd4dc483f531f48237d98","size":172,"data":"","first_seen":"2025-09-27T05:00:10.576574Z","last_seen":"2026-06-01T14:38:08.61542Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/filters-e7549461.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"importedModule","is_inline":false,"md5":"ffbac57480e6d75002cc0a951022fd32","sha1":"576671cc2014502502b985be8ea2cc6474ae257e","sha256":"34ce7d4dc6ad7a313d0036ed182d9f06f551209dfb5720c91e6595c4645b282e","sha512":"d9f2ba74f05a2e2e811b055ad392a7bb7afebe809c958d0cc4d57ff52dee9f821ed259fe974f6e391750c688cd93a1055743f904a5d4e0b9aa4684f093a087e3","ssdeep":"","tlshash":"bd5134fdfcc7613356ea6ef940288010728ebe20686e0a4df54bd0455933888e07f768","size":3102,"data":"","first_seen":"2026-03-23T14:50:53.512427Z","last_seen":"2026-03-23T15:17:52.136231Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-cac53aad.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"importedModule","is_inline":false,"md5":"9dae9d53bf3f8365b690d0f8bf0d655a","sha1":"0b4e84ed204cb5ca4a417d120294fce7936ca0c3","sha256":"532f5d476a1ccf0a09a0828434e30efbf07ff52b6800afac1bd47220c6d56943","sha512":"1aa9b777e08ae4a275e0beac0daff9c44f80c3920b9f0b19bb548fbede2f2dc02daac601fd119d64aa12c800bfa22ff246e3e1097736e529e99e035817e8f830","ssdeep":"96:2+CY/9YYqD+wSQxkrFqPyAtb6kirQP+jn3hv7b3XfWarXjt:2+CYFYYqiwSHYqAtbdqR3hvfXust","tlshash":"fea1e999f80285beb967144008980010319c7bfbb10948f1fbfdad0d77b5879d354366","size":4663,"data":"","first_seen":"2026-03-23T14:50:53.55588Z","last_seen":"2026-03-23T15:17:52.128588Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"9cbeee43eb9396cc6f22ceb11a068a8b","sha1":"855c2b8e594a001965664c3dac645d713e2c239d","sha256":"4748c61b3b46c6d4621d9fe0f60dd4899f2041684946b1434ba9656cfd8db04e","sha512":"13e27d58dd059ba27341cca34d9fd559187d1a26e28aed067fb26d0a35b3e4fb6d9f0a8f9ea8f4d3d207dfda8ae35c0ce573288498bc2c56472beade7926ee80","ssdeep":"","tlshash":"bbc02bc4b0c73d001606641050bf34e8a034402bb04c1b03ccd4dc483e230f08233edc","size":139,"data":"","first_seen":"2025-03-06T21:41:52.844247Z","last_seen":"2026-06-14T01:03:30.711793Z","times_seen":137,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-2723a6f0.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"5ab1037aadeac481fa35dbb462011e90","sha1":"b8d5ed16c43651dfb2b7d5c3630aa66c80102895","sha256":"856914a0e2ab5eddf808a14aa8c855d7d1d7afd41ca2d34df12b7b10c760f441","sha512":"65dacbf969daeca618b9a63a0585e36ee90ff8c9df4d80db86e9fe0f0117209a63618b3e4db76380b615d767f5d195b1b893406d76aa206c58dff11d653a4211","ssdeep":"1536:IdgQMnLNKngHzSEjCDhmLktniSSOnOsBu:ICjCDhljbu","tlshash":"cfa33bdaa5071fbf68bd0845a55b4a10206d1fd35888ccd3b3ba6e052bfbcd8639971c","size":102778,"data":"","first_seen":"2026-03-23T14:50:53.631705Z","last_seen":"2026-03-23T15:17:52.21274Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/currencyItem-bec107ee.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"importedModule","is_inline":false,"md5":"0ccfbb8b3b92fd5f43cdb99d9e3c3f32","sha1":"77a0ed7b9ddfe520e71d82befd96ea85f970607c","sha256":"bd188d1b14c022e93d47c0888903661a78949168554a1a0cddb0598403e9889b","sha512":"23e622bc35fe9ac1114767e38ea6386ed4615b5d108d5371b81a33d4d43bd16a405cecde1b664d63396373718cd90a942cd7a79ddc36e986fd5361ded809ebf6","ssdeep":"","tlshash":"38319c9aa901cbb5c7bd9162c1b80415135dbfdb70064682fafa254a3bc75fce724a31","size":1643,"data":"","first_seen":"2026-03-23T14:50:53.501926Z","last_seen":"2026-03-23T15:17:52.173717Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"e21a880dd4e3258951787a42857bfaea","sha1":"d69092393af4e813929289ea3c5a180c722ed227","sha256":"b409d8c03eaa683dc7ddd1fdd40df4dccb80954fd3ee28ccd07d14415c28944e","sha512":"e340b50c449986a72c671e9f082b62ba21b40061c898e7d11b24a908efd7755559b88ced0fc5ce1002aeeb69f90b86eaf58edba7f1716ba5b7376a387ed22aee","ssdeep":"","tlshash":"45c08cc4b0d22d001602642060af24e49025442670481b028cd4d85c2e220b08233e98","size":139,"data":"","first_seen":"2025-01-03T15:55:01.306059Z","last_seen":"2026-06-01T14:38:08.625742Z","times_seen":29,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"2f969fe61d71086d64241e008822c95b","sha1":"7c121891f6d174559530d20dd6f7d2b872a09114","sha256":"5ee69ad538ecfae124e4ce08280c36ea1327deb66961c2679763782dc5869a07","sha512":"5b772945a59f16e93d1f0a6b2c87661c1fbdf691fcabb4f1393a2cc3f4cce6bb2e64b821a3f273c05c70f5f10cdb7ee6e32c1dbdc69f934713ae48c132d4599b","ssdeep":"","tlshash":"4cc08cc9f0c62d001a03655110af34e89034802e70491b428ca4dc682e220b08233e98","size":145,"data":"","first_seen":"2026-03-09T14:06:56.278282Z","last_seen":"2026-04-28T19:23:46.307574Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":true,"md5":"528dd01eb509d1fc3c68b48e165c9d77","sha1":"8d702f33d869eb8c53cf75c17014f96385322395","sha256":"b508dff20bdbd9138e31aa48c45bc501805e509d2fd4709b39c4a60cd5c6b43a","sha512":"4c1edeec560f431005363ff5291acc80c1c42edf7c9a6d6e4fde2f7539b6a35a8e36f0bc228503263277bf5df4525dc579575faadca614c32e5dfa885a2d343b","ssdeep":"","tlshash":"78a012bb71b851710cd51ba7a40455e01c20123105052c101c8d5151c011c171d394c0","size":84,"data":"","first_seen":"2023-04-07T06:55:59Z","last_seen":"2026-06-17T09:23:13.670577Z","times_seen":39945,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"1f3ceea3ade5c5d92fafe0df8b30a96b","sha1":"10318b097421ceb861adcc53f736fc46af28744b","sha256":"e902d621211f0e1a8ee939f6289b3171030228d04ffee58d036646c40f651b54","sha512":"863a05d0b5c865693238b7809595f20ad28f4a0e317914f7962b9ff22ba06fb4a643f42b46119b1b0260d4f5e94555eb2378f61aeb9e3316e008970c22a6d941","ssdeep":"","tlshash":"4fc08cc4a0c22d001606642064af24e890284026b0482b028ca4dc482e220f08233ed8","size":139,"data":"","first_seen":"2025-01-03T15:55:01.158536Z","last_seen":"2026-06-14T01:03:30.723378Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/zh-c614b94e.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"60830f98781d79e9704c552912dab27f","sha1":"ee98884889c5468c4cca88d451ee044a031ea13e","sha256":"ea538397f8763f3c00f311cda313285b02f70c3f33ef6e0242982008ed4aa07f","sha512":"603f005c56e7a0bcd611d7e5ea81aff058343b5d3542234166745a47ff5c7efcb9559dbd84fed444d0155029e380bc4c6545789486706fd16afe9b53ce78a6a8","ssdeep":"768:D9sgcXP8yBU/fLS5LW06so/mgrUYxP7ePR:DzcXlyetW06uR","tlshash":"5903f7d47daedd9a40e3a627b04f990120b75ec6c626c4091fe99ef562d8f039783b34","size":37879,"data":"","first_seen":"2026-03-23T14:50:53.498102Z","last_seen":"2026-03-23T15:17:52.184473Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"b1e6506abda1ffa5b9ab2721a0fee13f","sha1":"cc64d89d747a4c6f5293b262055d3cb8e175b738","sha256":"848a05dd565ed4ad22c665530b61473e4437ca86f8bd027a8c952177f73b5269","sha512":"ac564a39d053f7c5f6e636296207458bae1d069f50356ee85ac23a8045617ebbe8cb5f26870d5a19f2d3cf834bc578918ad2b9f46bb68e3d0961c68841bb6e17","ssdeep":"","tlshash":"ecc08cc4a0c32d001643641050af34e490348026b0481b428c94d8492e230b08233e98","size":139,"data":"","first_seen":"2023-06-07T05:45:46Z","last_seen":"2026-06-14T01:03:30.79596Z","times_seen":254,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"9f73ae2f6a98b3a7c455fb46db3db35a","sha1":"a7797ef652b5ca85197143072639a89c92629e64","sha256":"b54f1adb588258baf4995088e9b9ba2b9256acc1b90f5dc4b114b35c59e55f85","sha512":"e65943e1f66069c83f92a1c6619dcbfb4f15e85b500c7b22779f94821934381d4afef99f6992704f8b65cd8b80ad92e6b1cba460fe050c2f9fada3b9fa2fe6b5","ssdeep":"","tlshash":"eec08cc4b0c22d001602a41010af24e49034502a78481b428dd4dc482e320b0d233e98","size":142,"data":"","first_seen":"2025-09-27T05:00:10.58257Z","last_seen":"2026-05-11T12:41:38.578143Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a04b380d06b9ce499c1012ded51272a9","sha1":"662f119bafade00a0f12381158605d357a0318b4","sha256":"49c17516b62d933b5224cde8a219fbbaa445c2b6d5dbed4940e099bfe3c26eca","sha512":"014016ce8551fbcb68a9bac87a17b967a8d326fee7eccf4fadb8f458a0b40b945d99c2fdd1bc2f1e9d5c455702f9676efb3edc68f9030742b82e6dff4d5d31b7","ssdeep":"","tlshash":"04c08cc8b0c22d101a06691020af24e8a0258026b04a1b428ca8dc492e620f08237ea8","size":145,"data":"","first_seen":"2025-09-27T05:00:10.589985Z","last_seen":"2026-04-28T19:23:46.33075Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"714231e8680b0901712126baa0ab762a","sha1":"e296b3fed658372af6910a3e5d318a4aeea1359a","sha256":"4adc91f500bbe01f880978b8c96db1afc98bb09c4f8929a265922c0b71b4d7c4","sha512":"1badd0c5ba89e8944cb4097f2ad3adfa84552a2408e72106ae19c649a2b9eb7148d76faae6f6d64c74865f3662a33bb6a1715ebbd6098a6f1a8c89f3349e6921","ssdeep":"","tlshash":"4bc08cc4b0c36e001602656060af68e8a024802ab0881b029c94eca83e220b08233e98","size":145,"data":"","first_seen":"2026-03-09T14:06:56.283897Z","last_seen":"2026-04-28T19:23:46.322078Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/vendor-a9b5399d.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"importedModule","is_inline":false,"md5":"a906a657808217ac2774ba6970f480a5","sha1":"2b6a26a00606f75099b1aa9ef1d20b89ca3f8f89","sha256":"f5e0b57d496649b2fd244e0e8a9afa0dc45dff69fa25c7fcc7287cd484d9ffbe","sha512":"bb4eb7930d21b37f8c22306ecc90cb1a54b5b0c0379942a5c3115821e9ee03d0282a7b9578834103a1e4d20443e4f134e899ed7ff3dee2aa77231e2422b77d33","ssdeep":"12288:Mv6NLEg6h1uVDwbV7VPY+L668W/LGDV2e8qwnWkOukK4a2Vz:Mv65Eg1VUh7a+J/LGD8ownWkOusa2V","tlshash":"6e1529c97292f06147ab24e240bb0006f3396e59744e84a4f16d98db7d7ad89e277f3c","size":879067,"data":"","first_seen":"2026-03-23T14:50:53.490031Z","last_seen":"2026-03-23T15:17:52.124954Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-1b8edc1b.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"importedModule","is_inline":false,"md5":"13f6f2825d4122e7b7afec26ae2cae33","sha1":"15dd29f5bba7059b759f4b0215dc16b00fb60b5b","sha256":"116a53d92b92c1c69c673beaf5666bbbc2550b34900c266092222c1f1cfc461e","sha512":"c900f1bcc95435ae4882b72174d9c734a4ec9dd8ab529f5e83f171fbec75fc1660974af7a8e483f36adc03739a84989394bf1ba6cc2dfd407f1c170ddc951c2b","ssdeep":"","tlshash":"62e0f15f1959c6f367e38cfce1330861610826040300d1d0e5030a08a2780d3611f368","size":388,"data":"","first_seen":"2026-03-23T14:50:53.542052Z","last_seen":"2026-03-23T15:17:52.127302Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6ad1de43a179edb86c8a59616f0bbb3e","sha1":"297000177cf28dae0c4b519d0b4ed485a943e29d","sha256":"f79a609bba025ca87664a6e904e36ea1fb8725b9bfb307a9339aa46364617439","sha512":"c79345d3262380fe5036bba72fdf15c3299b0fb1c1b778d96b9ab9a903719cf77a1773cfbb9a8a8806be9a66ebf20add9f7dc5d1cfd8aaa48e81ba4716e9ab63","ssdeep":"","tlshash":"03c08cc4a0c26d101602651021bf24e49024402eb08c1b038ca4d8493e220b09233e98","size":139,"data":"","first_seen":"2024-08-20T17:29:46.839424Z","last_seen":"2026-06-01T14:38:08.626582Z","times_seen":76,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"44bfd921e9543c2f43861ff2ed742d1d","sha1":"a6639d2c6815b027fe890f5e3829c4010591683c","sha256":"3ac1b7a6639f6e4bc683976b2127cfcdf8845314148579ac3aa8f989c146461a","sha512":"e9fc564c4d2700d6be82f054d1fc3d2d23d38e806e9f5eefc94b3ea49b8e6d1f2a637eca669953a8311dbdfa301aa63cefbf2c13bc6eec9dde9bf9442a8fe3d6","ssdeep":"","tlshash":"a9c08cc5b0c22d009a02641110af28f49024402670482b52dce4dc483e220b08237e98","size":142,"data":"","first_seen":"2025-03-06T21:41:52.819585Z","last_seen":"2026-06-01T14:38:08.617204Z","times_seen":126,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"83c3e2adf3a6b14111458849e2f1e4d5","sha1":"562013729ba02b66b570492fb0a0f2b61280ec93","sha256":"ae599c2b6f2d946ba47f1d3f8bde555c91f3be80698db0c4e265bbef72849628","sha512":"a7332aa69feaa155fb0fc097e71f9908dbcf2ec5391d734e50b88281b9fd98c6d3666d741b514bc46ee9f8a3472efc3cd15b487e4090492071818822435364f4","ssdeep":"","tlshash":"abc08cc8a0e32d001602741410af24e49025802774481b168c98ec983e220b09237ea8","size":142,"data":"","first_seen":"2025-03-06T21:41:52.808608Z","last_seen":"2026-06-01T14:38:08.619398Z","times_seen":145,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"65cc32c48c6ca2b8b2fd44c1670ae667","sha1":"f2a116897b02c9bf0bb31247024703d913d0cd13","sha256":"83e989e9718ddc6751b336792e962c10faa616a9f3feaffc90f9c430e4c6d221","sha512":"bd8ce0e0a56f50ef5d499026d682702cf4fc60698a0152097cad28c8b889fcd4bdad15f87af7f14437f9cba7bac5e26d80af6bbc49249f7efbdc468ef39be9f4","ssdeep":"","tlshash":"11c08cc4a0c22d001602681110bf24e890244427704c5b028c98dc583e220b49237ed8","size":139,"data":"","first_seen":"2024-12-08T15:39:09.862859Z","last_seen":"2026-06-01T14:38:29.851322Z","times_seen":146,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"9b98749731034aaba9fb845914d83532","sha1":"2e36c9a8179de4de6ef87327916fa75126c66ff7","sha256":"d1212f82305d25fa22c422f0adc2a765775b3d2f71e9d5b28315b01605100255","sha512":"8a9d7ba6917344b244a4ca43a609cd4902dc158f2553ced83a7b8f76c989986d7e8d57dd9b78eab5f43348a2186ecf4e6efd2fea435a27ffb8ae82024302566d","ssdeep":"","tlshash":"86c08cc4a0c23d202602652050bf24e490244427b04c1b829d94e8483e230b08233ed8","size":143,"data":"","first_seen":"2025-09-27T05:00:10.580569Z","last_seen":"2026-03-23T15:17:52.207384Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/#/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"3e86ffeda6c89b0836abeb566917ff1d","sha1":"02d846cc62b742118eab61049e6570d28c879c67","sha256":"33e9e24548966a16328e2fc04cdff21ad3d60c6677729c97d617b821b29600ae","sha512":"3b0ec26a02ba4da1485b397e4ba6ef228841630eaa4b7859c3f76659b0de6df8a280adf49d0f9f966631c6e2d300a8f30d9d3b8d66a850e2b04a42f6cf68857b","ssdeep":"","tlshash":"84c08cc4a0d22d101a02a91010af34e490249026b44c1b52cca4d8592e622f08237e98","size":145,"data":"","first_seen":"2023-06-08T19:07:02Z","last_seen":"2026-05-23T18:11:27.149799Z","times_seen":47,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/57c0cfa5-b945-476a-8cdc-3a5b58c5ff85echo-proe36d00e58a654af7a67ef5c241ef5be6.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.794Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/57c0cfa5-b945-476a-8cdc-3a5b58c5ff85echo-proe36d00e58a654af7a67ef5c241ef5be6.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: ozS86V0ho97xMfP5K0nTqDhgtBXkrUJNzYA9QBd/DPeG9rTpI3T7onjwEdcVxqv7FXl0R9EFgS8=\r\nx-amz-request-id: W15ZZA2SD5KXG6C2\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:46:39 GMT\r\nETag: \"886dd2e9e7acf01ce99935135129da70\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 4132\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":4132,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"886dd2e9e7acf01ce99935135129da70","sha1":"a6b6378cdee4595bae45cf5236f301b316c4f4bc","sha256":"e39d56e54bce5eb62b4e911c72a527671cb0954aa49f8f17714c3def94c04acc","sha512":"91ed05a28d3f739ec9e31a94eaa6ac29f1f27b7a72ee25dd9759e73c41fcabb960452b014fbb40ac50f02d283eea1310764a4a659da639aff4bbbdb7d4274143","ssdeep":"96:3qrYVFKsDwGqu4cYipLzIEhsRrZ4xkzC4:hF4cfLz50rZ4QF","tlshash":"a8814c06f9c55483e368e00a51df31ab0d468c80ded2d15abbcbc6a642787ba572f09f","first_seen":"2024-12-08T15:39:09.777158Z","last_seen":"2026-06-10T12:22:18.887265Z","times_seen":65,"resource_available":false,"data":null}},"time_used":640,"timings":{"blocked":523,"dns":0,"connect":0,"send":0,"wait":117,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/5337e9cd-6ac7-4572-a0cf-c8879e576c59echo-procce93ff8b98f4b7fb737b629efeb7d5b.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.829Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/5337e9cd-6ac7-4572-a0cf-c8879e576c59echo-procce93ff8b98f4b7fb737b629efeb7d5b.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: h7kBnF9ikQbTRm3zBDlnUdltYrgxHfUloz3zDgGnKCFc0JXEPTNlUI1aqw2AByHBHKDsL1rItvE=\r\nx-amz-request-id: W15GMN1VP1E8CEQ0\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:36:12 GMT\r\nETag: \"52622a415647774ba3681c0e049e6800\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1712\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1712,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"52622a415647774ba3681c0e049e6800","sha1":"add4e37d5a7c33344b2a276395cf2f6b247837e9","sha256":"24eda54bc218b21a61b5539a111bbcfc26344f35a0165246b2938bade4a992a8","sha512":"8b6135dc16338c92d3723e72c4ab833794bb2219e328a8177661213c2b98a7ddebdc9fc6348aba722d5304e0eb49944af32acbac0ccf175ed72a1cfab76fb469","ssdeep":"","tlshash":"3731fa497250be419289991110fba0a74da74e90c9e4f261e4cfc9272c313fed97d8cf","first_seen":"2024-12-08T15:39:09.82287Z","last_seen":"2026-06-14T07:12:41.104323Z","times_seen":72,"resource_available":false,"data":null}},"time_used":531,"timings":{"blocked":249,"dns":0,"connect":0,"send":0,"wait":118,"receive":0,"ssl":164},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/vendor-a9b5399d.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:24.993Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/vendor-a9b5399d.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-d69db\"\r\nexpires: Tue, 24 Mar 2026 02:50:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":879067,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"a906a657808217ac2774ba6970f480a5","sha1":"2b6a26a00606f75099b1aa9ef1d20b89ca3f8f89","sha256":"f5e0b57d496649b2fd244e0e8a9afa0dc45dff69fa25c7fcc7287cd484d9ffbe","sha512":"bb4eb7930d21b37f8c22306ecc90cb1a54b5b0c0379942a5c3115821e9ee03d0282a7b9578834103a1e4d20443e4f134e899ed7ff3dee2aa77231e2422b77d33","ssdeep":"12288:Mv6NLEg6h1uVDwbV7VPY+L668W/LGDV2e8qwnWkOukK4a2Vz:Mv65Eg1VUh7a+J/LGD8ownWkOusa2V","tlshash":"6e1529c97292f06147ab24e240bb0006f3396e59744e84a4f16d98db7d7ad89e277f3c","first_seen":"2026-03-23T14:50:53.490031Z","last_seen":"2026-03-23T15:17:52.124954Z","times_seen":2,"resource_available":true,"data":null}},"time_used":2034,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2034,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"newapi.btsutodk.top/api/common/getAllSetting","fqdn":"newapi.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.798Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newapi.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 14:27:20 GMT","end":"Mon, 08 Jun 2026 14:27:19 GMT"},"fingerprint":{"sha1":"52:38:43:63:F0:47:5A:DA:0B:DA:92:96:F1:2B:5E:B5:CC:0D:A2:E0","sha256":"0E:5B:D3:43:1D:BE:39:06:44:27:E1:66:5B:58:25:76:03:A1:CB:9C:91:89:57:88:22:60:2B:59:00:3E:39:41"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: newapi.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://testweb.btsutodk.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://testweb.btsutodk.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14396,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (14062), with no line terminators","md5":"959788e827895c9b1e91d755f93a2538","sha1":"e9c05e9bc48aa0b1d5cb390701bb3f40bf7420a7","sha256":"d56fc457ebfd0fb7fb5a52565ad75eaa93fc51d432b7122cbfa251f04a133673","sha512":"d20927a86a431b4698e0400367c49dd8db4e29259b5c40ee9a29466191dac6521c786cfc05b48ae3f03ecb8748733ed69d237f46ffe8612a1f2399dfe9d84adc","ssdeep":"192:N0alafId3MwaOSpQ+o3XCD+RbJuc2hzwvHg76hv3kLxA0uXGqRDSo2smXfMNk1BJ:K2Mu3Tump3YE2HM2OhX00YKw","tlshash":"575252ca33ec9c7da58612c250eb7e9e247835b7e8e4ec45e5b7ff4899919308c0b149","first_seen":"2026-03-23T14:50:53.492982Z","last_seen":"2026-03-23T15:17:52.167912Z","times_seen":2,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-e0fedcd3.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.497Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-e0fedcd3.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 776\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\netag: \"69bebb1f-308\"\r\nexpires: Tue, 24 Mar 2026 02:50:28 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":776,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (775)","md5":"4caa27b7aeb237d500b28fc4f4fe9b9d","sha1":"080c1d65a69d634b5562485fcc84ad00936616db","sha256":"3c54bfb9faa59b0802882d0ccca0a0a95242a2245ca38d24f36b95adc7483c8b","sha512":"12d563c3cb84b8e2e58066320651513a5afb76cdf8cb457803ea0d2efe8f83ca55253f855465a0a3b962d68061b251d28a18ea34acd2b9d57905654cbdb008ec","ssdeep":"","tlshash":"ae01f8f8fc0c8ebb0fa20a4001903600140a2fddfa1419e198967e6a1be5980dbde32d","first_seen":"2026-03-23T14:50:53.495556Z","last_seen":"2026-03-23T15:17:52.129899Z","times_seen":2,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/vendor-a9b5399d.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:23.680Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/vendor-a9b5399d.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:23 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-d69db\"\r\nexpires: Tue, 24 Mar 2026 02:50:23 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":879067,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"a906a657808217ac2774ba6970f480a5","sha1":"2b6a26a00606f75099b1aa9ef1d20b89ca3f8f89","sha256":"f5e0b57d496649b2fd244e0e8a9afa0dc45dff69fa25c7fcc7287cd484d9ffbe","sha512":"bb4eb7930d21b37f8c22306ecc90cb1a54b5b0c0379942a5c3115821e9ee03d0282a7b9578834103a1e4d20443e4f134e899ed7ff3dee2aa77231e2422b77d33","ssdeep":"12288:Mv6NLEg6h1uVDwbV7VPY+L668W/LGDV2e8qwnWkOukK4a2Vz:Mv65Eg1VUh7a+J/LGD8ownWkOusa2V","tlshash":"6e1529c97292f06147ab24e240bb0006f3396e59744e84a4f16d98db7d7ad89e277f3c","first_seen":"2026-03-23T14:50:53.490031Z","last_seen":"2026-03-23T15:17:52.124954Z","times_seen":2,"resource_available":true,"data":null}},"time_used":459,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":459,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/zh-c614b94e.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:27.058Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/zh-c614b94e.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-9587\"\r\nexpires: Tue, 24 Mar 2026 02:50:27 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":38279,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (28230)","md5":"60830f98781d79e9704c552912dab27f","sha1":"ee98884889c5468c4cca88d451ee044a031ea13e","sha256":"ea538397f8763f3c00f311cda313285b02f70c3f33ef6e0242982008ed4aa07f","sha512":"603f005c56e7a0bcd611d7e5ea81aff058343b5d3542234166745a47ff5c7efcb9559dbd84fed444d0155029e380bc4c6545789486706fd16afe9b53ce78a6a8","ssdeep":"768:D9sgcXP8yBU/fLS5LW06so/mgrUYxP7ePR:DzcXlyetW06uR","tlshash":"5903f7d47daedd9a40e3a627b04f990120b75ec6c626c4091fe99ef562d8f039783b34","first_seen":"2026-03-23T14:50:53.498102Z","last_seen":"2026-03-23T15:17:52.184473Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1488,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1488,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/b56bd2a8-e265-460d-9247-47bf5fda1d41echo-pro2683d70c66f04bd69b16b70beccf8432.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.799Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/b56bd2a8-e265-460d-9247-47bf5fda1d41echo-pro2683d70c66f04bd69b16b70beccf8432.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: b2dNmT04Plhi3haeZV5xIPbb4eo07XtQ9JA2IsSuzUDvsVUUbvtSwE2vsrqeaOyOdyJIFq6TMnM=\r\nx-amz-request-id: W15WYN1YY5APC7SM\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:55:33 GMT\r\nETag: \"81bd25a049373bb3701e0af2f67eaec0\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 4880\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":4880,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"81bd25a049373bb3701e0af2f67eaec0","sha1":"b7072242a195bda21543d26f07a31ba57c3bfaff","sha256":"b462d924da8a93ed02eb0b016c39443d0eb18bc0d13627c035e14fd9013eb9d3","sha512":"e17d1ac2c5f87616e88b1f51ef169b72a3a85f67266f2dbad95582a30e860aefeabb1bd78e99a266273cbada7c33df40753a38c1299347b1f88eca09196c3b00","ssdeep":"96:HYZfdrzSH+OLwrLsWFEctwgIZmXNCmlFDBgHzGjGttb:HYZfdrzSH+IWFEcNkaCmlFDiHqyttb","tlshash":"75a13b6772d60c41c628369b3ea1b3fc159cdfab2f4adeb9c8618192435267d59c9380","first_seen":"2024-08-19T15:53:11.186024Z","last_seen":"2026-06-14T07:12:41.098949Z","times_seen":43,"resource_available":false,"data":null}},"time_used":642,"timings":{"blocked":522,"dns":0,"connect":0,"send":0,"wait":120,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/currencyItem-bec107ee.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/currencyItem-bec107ee.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-66b\"\r\nexpires: Tue, 24 Mar 2026 02:50:28 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1643,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1642)","md5":"0ccfbb8b3b92fd5f43cdb99d9e3c3f32","sha1":"77a0ed7b9ddfe520e71d82befd96ea85f970607c","sha256":"bd188d1b14c022e93d47c0888903661a78949168554a1a0cddb0598403e9889b","sha512":"23e622bc35fe9ac1114767e38ea6386ed4615b5d108d5371b81a33d4d43bd16a405cecde1b664d63396373718cd90a942cd7a79ddc36e986fd5361ded809ebf6","ssdeep":"","tlshash":"38319c9aa901cbb5c7bd9162c1b80415135dbfdb70064682fafa254a3bc75fce724a31","first_seen":"2026-03-23T14:50:53.501926Z","last_seen":"2026-03-23T15:17:52.173717Z","times_seen":2,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/37bf66d5-b9e3-412c-b823-bb37770cef10echo-proc689bd081e994bc7ae23260a3e5c9eb5.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.833Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/37bf66d5-b9e3-412c-b823-bb37770cef10echo-proc689bd081e994bc7ae23260a3e5c9eb5.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: d+dsYd2FCUGQg/i0mXSdVlcKkv3cUy+3Cifv+j4lfxCwj2N17bVRu2ty0+wP1sy0ZMPViUIC6RM=\r\nx-amz-request-id: W15M9E3ANE5F360H\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:38:48 GMT\r\nETag: \"122aa57dd9538429059cbd42ee99a59e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1437\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1437,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"122aa57dd9538429059cbd42ee99a59e","sha1":"e6d44defdb86a01caa67f663529aa0d70f7b6065","sha256":"4344191b60975b2acbac5c8168e581a89a2104d0b8ec789f63dbe67a600b172f","sha512":"94910eff5eb6449954b7dec9903e3b779201bed8b71dce794245f4810337f05348205209a5a26b4849256cbadc6f89b9c09a016baed9b09b1fc3b7feb4e4d148","ssdeep":"","tlshash":"0c217606faa57881528c9d5324f291634d670544dfd4f5ea78cfc52e1d203f687994cb","first_seen":"2024-12-08T15:39:09.743393Z","last_seen":"2026-06-14T07:12:41.084571Z","times_seen":85,"resource_available":false,"data":null}},"time_used":530,"timings":{"blocked":247,"dns":0,"connect":0,"send":0,"wait":124,"receive":0,"ssl":159},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-2723a6f0.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:23.177Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-2723a6f0.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:23 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-1917a\"\r\nexpires: Tue, 24 Mar 2026 02:50:23 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":102778,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65526), with no line terminators","md5":"85aa3dc161b93af57fc240b9a2052fc0","sha1":"3189a239732af3c2231af8d7f15087ced7275dfc","sha256":"5e0ff1c1f85de01bed65d6674ea522c31abffce2ab4dc6147a56cfc27403933b","sha512":"64ffeeecca47222bd3f1540aacc765d27b7afb3967315da24bc9aada413a7e6a346ffb56e5f02a74e40cf538714e3a5893b8f49ebd5c1f30e44ff0544009c51d","ssdeep":"1536:IdgQMnLNKngHzSEjCDhmLktniScOnusBu:ICjCDhll7u","tlshash":"b4a33bdaa5071fbf68bd0845a55b4a10206d1fd35888ccd3b3ba6e052bfbcd8639971c","first_seen":"2026-03-23T14:50:53.510013Z","last_seen":"2026-03-23T15:17:52.146552Z","times_seen":2,"resource_available":false,"data":null}},"time_used":481,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":481,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/filters-e7549461.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.075Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/filters-e7549461.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-c1e\"\r\nexpires: Tue, 24 Mar 2026 02:50:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3102,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3101)","md5":"ffbac57480e6d75002cc0a951022fd32","sha1":"576671cc2014502502b985be8ea2cc6474ae257e","sha256":"34ce7d4dc6ad7a313d0036ed182d9f06f551209dfb5720c91e6595c4645b282e","sha512":"d9f2ba74f05a2e2e811b055ad392a7bb7afebe809c958d0cc4d57ff52dee9f821ed259fe974f6e391750c688cd93a1055743f904a5d4e0b9aa4684f093a087e3","ssdeep":"","tlshash":"bd5134fdfcc7613356ea6ef940288010728ebe20686e0a4df54bd0455933888e07f768","first_seen":"2026-03-23T14:50:53.512427Z","last_seen":"2026-03-23T15:17:52.136231Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1961,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1961,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/platform/dev/logo_144.png?2.0.1774107423402","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:27.677Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /platform/dev/logo_144.png?2.0.1774107423402 HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:27 GMT\r\ncontent-type: image/png\r\nlast-modified: Sat, 21 Mar 2026 15:36:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb0a-650f\"\r\nexpires: Wed, 22 Apr 2026 14:50:27 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25871,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced","md5":"e3647298ed17654e424e41d27b08170b","sha1":"6428ddc3ed3b0587a6dd8ddfa614301663b7d2b4","sha256":"7aaf20df416596c067ae7587a4120fdc010725a0b889663837c529eca297f29a","sha512":"2784205d2974000f2fc547ccf440931b78a34cc04324d40b9600311f4a905039a7f67f7e90bc0effd961fc943e9d29628e0e8cfa678494c1a22f150bee8db193","ssdeep":"384:h6DbRkfbP3iHuGoEQSDVnm45Gk0U+Cc+VKtgcQcXL9:h6XHqEnDVnr5Gk5+Cxzc3XB","tlshash":"9ec2afa1fcd531942c01953225e3a41e48b2898bef43dd82bbdd40aaef12f559c9f58e","first_seen":"2025-09-12T08:50:03.430349Z","last_seen":"2026-04-30T14:42:23.584349Z","times_seen":11,"resource_available":false,"data":null}},"time_used":1031,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1031,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/filters-e7549461.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.494Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/filters-e7549461.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-c1e\"\r\nexpires: Tue, 24 Mar 2026 02:50:28 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3102,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3101)","md5":"ffbac57480e6d75002cc0a951022fd32","sha1":"576671cc2014502502b985be8ea2cc6474ae257e","sha256":"34ce7d4dc6ad7a313d0036ed182d9f06f551209dfb5720c91e6595c4645b282e","sha512":"d9f2ba74f05a2e2e811b055ad392a7bb7afebe809c958d0cc4d57ff52dee9f821ed259fe974f6e391750c688cd93a1055743f904a5d4e0b9aa4684f093a087e3","ssdeep":"","tlshash":"bd5134fdfcc7613356ea6ef940288010728ebe20686e0a4df54bd0455933888e07f768","first_seen":"2026-03-23T14:50:53.512427Z","last_seen":"2026-03-23T15:17:52.136231Z","times_seen":2,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/b3977889-2f00-4b0f-8d60-743707c4bb5eecho-pro84a01d03db064de8a955c0845688a326.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.785Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/b3977889-2f00-4b0f-8d60-743707c4bb5eecho-pro84a01d03db064de8a955c0845688a326.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 7enjxYds8tj1Xgd+F+pdRkcJtCVsY8nzLrY+QRx/TX9jI98ssA19iu0c9ou/zgUUYTJkS92M40M=\r\nx-amz-request-id: W15TQQ3RVSTXTA7T\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:44:45 GMT\r\nETag: \"391fbd89746f7f45b2c39a932d284ab4\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 4876\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":4876,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"391fbd89746f7f45b2c39a932d284ab4","sha1":"c2655150e8bdf70659f0a8d12f2c1f09ab4d8c99","sha256":"844b60fb0e6702e21e24a697b162acf9ee771047ee306478940055e7abe4a047","sha512":"f67d627b7633bd785807c3c0558da2452f20d47a0b1b8fd9dedabcb0de0627fa5a7ca186843cebe2eafabb553c7bcd8478348026c2e64ce680f097ece25dab91","ssdeep":"96:TBBcGKmpoCXAcsguA7Kvs8dLAF63C/5SiDN979i7kkp:BKmv798daN/DN9RkkW","tlshash":"9fa18def22c1c9f816d5ab315ccef74132b268a689d4c508e3d34900a7b4a0a63f156a","first_seen":"2024-08-19T15:53:11.186752Z","last_seen":"2026-06-14T07:12:41.064927Z","times_seen":55,"resource_available":false,"data":null}},"time_used":644,"timings":{"blocked":518,"dns":0,"connect":0,"send":0,"wait":125,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/749037b4-3352-4393-91a6-aadb07473f35echo-prob7feaf60da6e4db8a6b05f645326673d.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.800Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/749037b4-3352-4393-91a6-aadb07473f35echo-prob7feaf60da6e4db8a6b05f645326673d.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: hGXQHFwQrtAMDHNyEicdKyGvQTxfZ1pQGmQ9pHV4yDNlfq+U1cXCZy11yTJxdoLPzEyep5HHpoc=\r\nx-amz-request-id: W15RRPEYFF2DY0WK\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:55:28 GMT\r\nETag: \"60fd6e9c61f672d9e2466e09d6561b0d\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 3194\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":3194,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"60fd6e9c61f672d9e2466e09d6561b0d","sha1":"39696cf55a63b60c1195890f18c216ee09f85b82","sha256":"ee6f2bbfb09b098a0aeea698b66ea9ea5ef905d62c17685f154edf3dfa6e984e","sha512":"d64e80e7cba570818fb5978b7d62d2f8750eddbc9111d100743c6886a222286314e66ea63f5ed4e4585eb0f6cfa27d6b59204ff83cd9caf80ae5eb483c77f39f","ssdeep":"","tlshash":"ba6117aff061463dca840c76d27a430ffe77a6577240bb527e82323a59719e62126cc2","first_seen":"2024-08-19T15:53:11.185086Z","last_seen":"2026-06-14T07:12:41.046602Z","times_seen":28,"resource_available":false,"data":null}},"time_used":524,"timings":{"blocked":406,"dns":0,"connect":0,"send":0,"wait":118,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-7d4bfad5.css","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.065Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-7d4bfad5.css HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-a01\"\r\nexpires: Tue, 24 Mar 2026 02:50:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2561,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2560)","md5":"85838485dbb48b6c0fd21a4b7cb05ae1","sha1":"23522fbc988251ad13175307434686f3c84522c4","sha256":"7d4bfad539ab4f6c71f1e9f0b3d34b67827da77970f2519be4de6b55f7041c63","sha512":"7f75886b8b3421c8c4d00b071a8243e319d5b83786ae85d024c6cbdf8675d896792b6ffb203b208ab072efb8e8c45c0ce620afd2601889b40b670d10bc005468","ssdeep":"","tlshash":"2e51504dfaa412355d37d9cbbe545a9cd0207e82e08a9ec1f10b961609cfea71d2031e","first_seen":"2026-03-23T14:50:53.519656Z","last_seen":"2026-03-23T15:17:52.156686Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1968,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1968,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"newapi.btsutodk.top/api/common/type/defi_activity_type","fqdn":"newapi.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.617Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newapi.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 14:27:20 GMT","end":"Mon, 08 Jun 2026 14:27:19 GMT"},"fingerprint":{"sha1":"52:38:43:63:F0:47:5A:DA:0B:DA:92:96:F1:2B:5E:B5:CC:0D:A2:E0","sha256":"0E:5B:D3:43:1D:BE:39:06:44:27:E1:66:5B:58:25:76:03:A1:CB:9C:91:89:57:88:22:60:2B:59:00:3E:39:41"}}},"request":{"raw":"OPTIONS /api/common/type/defi_activity_type HTTP/1.1\r\nHost: newapi.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://testweb.btsutodk.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://testweb.btsutodk.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-17T09:31:00.786811Z","times_seen":16480402,"resource_available":true,"data":null}},"time_used":242,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":242,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/c78e2787-8db4-47b4-a4f4-4899c3927a5becho-pro140ce76eee2e495682516529a8adf274.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.802Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/c78e2787-8db4-47b4-a4f4-4899c3927a5becho-pro140ce76eee2e495682516529a8adf274.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: z7ttMO6begXxnGh2gWu5B8MNAti5yBF9guwQrxgna6vM+aNSoB0UF4VAbtmWeKrDZNvK+ZgzrIo=\r\nx-amz-request-id: W15ZQ3WNEEJZMNAA\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:47:25 GMT\r\nETag: \"c9201d51bf4a685443c119177dcdda52\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1428\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1428,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"c9201d51bf4a685443c119177dcdda52","sha1":"cabb5ee298f65e78718b60bbb9f393d51c315273","sha256":"0d4a8d66fcc758267650dc6c039aaffdb405ee2c73e09e0e924ecbfee808d129","sha512":"ab4fd563189616fb5e1efcdc1c4af66e5396f5cb68bf43a98f76647fe592b40221772db7e4aa7a175bb5174471fd2112423b7c5e81c7ba7ff764cda86b0b8ff4","ssdeep":"","tlshash":"0c21748cd5c17c429389fdc130f7a0bb9b620a80dac1f475baeec41145202fe4a6a4cb","first_seen":"2024-12-08T15:39:09.783612Z","last_seen":"2026-06-10T12:22:18.888005Z","times_seen":73,"resource_available":false,"data":null}},"time_used":616,"timings":{"blocked":494,"dns":0,"connect":0,"send":0,"wait":122,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newapi.btsutodk.top/api/common/getAllSetting","fqdn":"newapi.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:29.163Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newapi.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 14:27:20 GMT","end":"Mon, 08 Jun 2026 14:27:19 GMT"},"fingerprint":{"sha1":"52:38:43:63:F0:47:5A:DA:0B:DA:92:96:F1:2B:5E:B5:CC:0D:A2:E0","sha256":"0E:5B:D3:43:1D:BE:39:06:44:27:E1:66:5B:58:25:76:03:A1:CB:9C:91:89:57:88:22:60:2B:59:00:3E:39:41"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: newapi.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: zh\r\nlang: zh\r\nOrigin: https://testweb.btsutodk.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:29 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://testweb.btsutodk.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14396,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (14062), with no line terminators","md5":"959788e827895c9b1e91d755f93a2538","sha1":"e9c05e9bc48aa0b1d5cb390701bb3f40bf7420a7","sha256":"d56fc457ebfd0fb7fb5a52565ad75eaa93fc51d432b7122cbfa251f04a133673","sha512":"d20927a86a431b4698e0400367c49dd8db4e29259b5c40ee9a29466191dac6521c786cfc05b48ae3f03ecb8748733ed69d237f46ffe8612a1f2399dfe9d84adc","ssdeep":"192:N0alafId3MwaOSpQ+o3XCD+RbJuc2hzwvHg76hv3kLxA0uXGqRDSo2smXfMNk1BJ:K2Mu3Tump3YE2HM2OhX00YKw","tlshash":"575252ca33ec9c7da58612c250eb7e9e247835b7e8e4ec45e5b7ff4899919308c0b149","first_seen":"2026-03-23T14:50:53.492982Z","last_seen":"2026-03-23T15:17:52.167912Z","times_seen":2,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/vendor-72ef657d.css","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:23.178Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/vendor-72ef657d.css HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:23 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-16997\"\r\nexpires: Tue, 24 Mar 2026 02:50:23 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":92567,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65022), with no line terminators","md5":"b40940e3efd47e3e653fe1fbec0ab363","sha1":"3911d44e1bceb07e83746e6bc68de9dbb587b11a","sha256":"72ef657df5906e9f23040a4ceb49985bf894ddcb4324d7d873a0c20b15d3e864","sha512":"f3706c9146b2091fb1a864ab4180d0a1538e801686af21bab4c7231421859a99fba7dd694632faaf1c457fb06711fcb16809e2221fe692c16390e7e98ccbf4d5","ssdeep":"1536:ZTIyNBi3MFYaQj73rx3WqyrtpqoSWEDZEnX73:ZdN0rxmNH9yDWr3","tlshash":"0193c5a5e9c4a1fc6f26f6659b4766d8f13cf661cc01daa0f109512d0fc7bf50223a2a","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-06-14T07:12:41.080945Z","times_seen":235,"resource_available":false,"data":null}},"time_used":721,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":721,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/platform/dev/config.js?1774277425013","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.019Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /platform/dev/config.js?1774277425013 HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 382\r\nlast-modified: Sat, 21 Mar 2026 15:36:42 GMT\r\netag: \"69bebb0a-17e\"\r\nexpires: Tue, 24 Mar 2026 02:50:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":382,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"501cd21a6e6f56aa118515f9a73195cb","sha1":"5769feb45ddf1b4aef74de35790a2523364c2f87","sha256":"690e8c5f3e3d29086390ed4d44617d05f539d8026ce72ebdf453a38605e1961a","sha512":"18926d24488999f6c2b44439d2216a45c276e7466201c2e0147d8b8efd4e655e9b43d9037049bcea5cd181b133ad447f8e2a87a2df0e0f2d220e5d67aa4ae37e","ssdeep":"","tlshash":"52e068b6327cc0745484862a6dfc1427f6dba6738d9c1e2eb4c4aa096e4dd6820b8092","first_seen":"2026-03-23T14:50:53.523647Z","last_seen":"2026-03-23T15:17:52.142745Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2010,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2008,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"newapi.btsutodk.top/ws/1b6c17ae-588f-4ee6-9cb2-cf5428c27e98","fqdn":"newapi.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.022Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newapi.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 14:27:20 GMT","end":"Mon, 08 Jun 2026 14:27:19 GMT"},"fingerprint":{"sha1":"52:38:43:63:F0:47:5A:DA:0B:DA:92:96:F1:2B:5E:B5:CC:0D:A2:E0","sha256":"0E:5B:D3:43:1D:BE:39:06:44:27:E1:66:5B:58:25:76:03:A1:CB:9C:91:89:57:88:22:60:2B:59:00:3E:39:41"}}},"request":{"raw":"GET /ws/1b6c17ae-588f-4ee6-9cb2-cf5428c27e98 HTTP/1.1\r\nHost: newapi.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://testweb.btsutodk.top\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: CsUe2DC3Vofh09Qz63kwtA==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 \r\nServer: nginx\r\nDate: Mon, 23 Mar 2026 14:50:26 GMT\r\nConnection: upgrade\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://testweb.btsutodk.top\r\nAccess-Control-Allow-Credentials: true\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: /REbOXM22QKV0IVDR0J7bygmmrQ=\r\nSec-WebSocket-Extensions: permessage-deflate\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-17T09:31:00.786811Z","times_seen":16480402,"resource_available":true,"data":null}},"time_used":2193,"timings":{"blocked":0,"dns":731,"connect":971,"send":0,"wait":243,"receive":0,"ssl":978},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/currencyItem-01e3ae48.css","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.068Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/currencyItem-01e3ae48.css HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-6d6\"\r\nexpires: Tue, 24 Mar 2026 02:50:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1750,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1749)","md5":"8b9574763e66b950142f8a22fde428ba","sha1":"358e7d63fd21b93a980f7ccfdea432c273706adb","sha256":"01e3ae4806b84a1f7ae0def6021b0fdf64039d735035d997e09ccb697730ab0a","sha512":"c20cde8312f587c548914fd60564f0b9fce90978ea36ec189431ff015eca930ff463e44e58c7e8e629c8ab173a4932522fb49cbd1b5500500ac6143e39a0b9da","ssdeep":"","tlshash":"b3319c8463150774f93ac4ce6ea8094c91643f82900796cde8cb0b272dcbee36b70d6b","first_seen":"2026-03-23T14:50:53.525351Z","last_seen":"2026-03-23T15:17:52.140679Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1965,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1965,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/3f47bd81-e2e4-45b2-9cdf-c839bc5ba4f7echo-prob1dd369e88f84bbbb5403ae1f583871a.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/3f47bd81-e2e4-45b2-9cdf-c839bc5ba4f7echo-prob1dd369e88f84bbbb5403ae1f583871a.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: Erqe27iXX36PZZQvDIsCigz90WUgpv6Wwz9k1tDatIQ4dJ+blxjaE4PV6JuWI8bG8oDQVl4uNxg=\r\nx-amz-request-id: W15YYKGF4VVNCWXH\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:47:42 GMT\r\nETag: \"29e13d8e4019a00e982e57ef7489ef07\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1962\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1962,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"29e13d8e4019a00e982e57ef7489ef07","sha1":"7d6d22ad2b6239016dfa816b6cbb882669c35812","sha256":"068208afea55acd5b734b27889300a913b381c1aecb2d3f7a7b737a4b0b3b8d1","sha512":"86ccce1ff50162734c2110da2546b122d49c7dc214ad5d68fbc8c1de4bfa1a4539720b4704ca8a020fb87e011976045e1b9a6b7f3ee83065c8fc72266284760e","ssdeep":"","tlshash":"ac41ea05e9c16e83828c9a6510ef90a2cf6742c0dee0f925aacec51506353b5456d4db","first_seen":"2024-12-08T15:39:09.787655Z","last_seen":"2026-06-10T12:22:18.830008Z","times_seen":60,"resource_available":false,"data":null}},"time_used":641,"timings":{"blocked":523,"dns":0,"connect":0,"send":0,"wait":118,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/489ad0c0-8cca-4674-b1de-7e831332df6becho-pro6c57acf5e15c4a38bec2f69a37c99c16.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.837Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/489ad0c0-8cca-4674-b1de-7e831332df6becho-pro6c57acf5e15c4a38bec2f69a37c99c16.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: TetPf0LDoNJzrcaE+MclRQSyeKOptFOTVUEpIaw3S6oGdpLx4Pehj0vTBrzyrbmnXarNeDtELp4=\r\nx-amz-request-id: W15HSWEJ5JAK7K4G\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:52:17 GMT\r\nETag: \"cd9639c040f59589fcb5d6ed983201f1\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 4196\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4196,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"cd9639c040f59589fcb5d6ed983201f1","sha1":"dbdb74d71fb5cb16b7b8da75f94823dd95fc9d5e","sha256":"e1a782a8916940e24b67ef01c954ac6f353f2ec32825445e34a14fed70411b92","sha512":"2dd972fb315d7ed8bf431ddc91f62d14d2d9be2c1e993aa88f35f8db85ad59df74c93a3192c1f8b15e15e4f5ef4b32c08af2273065b068dee92f77cbc44f75e8","ssdeep":"96:YZCFp42ks3eAyPPPeWmWqK617l2WsRWsRWsRWsnu19TLOJYdRGYgcyTEs:YZ6p42ksryPPPzmx1h2WsRWsRWsRWsW+","tlshash":"0c815c66ce0136dd8c50a03c0b6401fe7df816e8be22ef65999477b56a9f6340814bf7","first_seen":"2025-06-06T01:26:06.899814Z","last_seen":"2026-04-28T19:33:35.962083Z","times_seen":41,"resource_available":false,"data":null}},"time_used":460,"timings":{"blocked":344,"dns":0,"connect":0,"send":0,"wait":115,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/resource/svg/dark/zu29.svg?2.0.1774107423402","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.848Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /resource/svg/dark/zu29.svg?2.0.1774107423402 HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 837\r\nlast-modified: Sat, 21 Mar 2026 15:36:42 GMT\r\netag: \"69bebb0a-345\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":837,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"357e9e22a01768dc0a074a8cd1556131","sha1":"2d45da133bcf125352b92ac22ce445819d6de392","sha256":"16f5917f9b8a87e02921ef6461afe3b3b1d1d529715cbf184ec1de62f0d2259f","sha512":"777463938489448aa26f2721b2e395769f0915cec5f794ffde8414555a24101646a28535f9021a5595fe027a814eae081d8c33fd6f1f851f0d74fc49118c2048","ssdeep":"","tlshash":"d60112be4736a3fdd5544a80aad42699343de042e16404ecb3817e17be2062a0abcd91","first_seen":"2025-06-01T04:11:58.667223Z","last_seen":"2026-06-10T17:53:50.503483Z","times_seen":89,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":242,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/resource/svg/dark/mengbanzu13.svg?2.0.1774107423402","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.844Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /resource/svg/dark/mengbanzu13.svg?2.0.1774107423402 HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Sat, 21 Mar 2026 15:36:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb0a-4a1\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1185,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3ed9f9b6d12bd8c03bbd38cb6734207b","sha1":"ae379a9b431428b493abbd53c1a5d3db643bdf5d","sha256":"4459f6b2e766c434b3cf0746ee2939f7c05b588bf5ab4901f6d9427e602f4d91","sha512":"43b0c19361ca45562e501bc37a4ae4424f578dfe49b1fea83507052d085c72b01ec712aa7bcd9e5aefb743a9fd835f882afa8a7c335fc95bf6934ea8d5a3d9a7","ssdeep":"","tlshash":"172163b8c51152ca62814f88dbe82606623ef167f3f54d9cf39016b20e78d9f15bca21","first_seen":"2025-06-01T04:11:58.699477Z","last_seen":"2026-06-10T17:53:50.470658Z","times_seen":92,"resource_available":false,"data":null}},"time_used":242,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":242,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"newapi.btsutodk.top/api/common/type/defi_activity_type","fqdn":"newapi.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.872Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newapi.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 14:27:20 GMT","end":"Mon, 08 Jun 2026 14:27:19 GMT"},"fingerprint":{"sha1":"52:38:43:63:F0:47:5A:DA:0B:DA:92:96:F1:2B:5E:B5:CC:0D:A2:E0","sha256":"0E:5B:D3:43:1D:BE:39:06:44:27:E1:66:5B:58:25:76:03:A1:CB:9C:91:89:57:88:22:60:2B:59:00:3E:39:41"}}},"request":{"raw":"POST /api/common/type/defi_activity_type HTTP/1.1\r\nHost: newapi.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: zh\r\nlang: zh\r\nOrigin: https://testweb.btsutodk.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://testweb.btsutodk.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":635,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7a423e3451e474878191a0a7f1d323b9","sha1":"13312f533f380295131f6a1540f425d0c98a16ba","sha256":"49c938e0bb3a834cab9319575489cf6c1694cace3f1ceb9671570024328e2a35","sha512":"0522e47fc06c4329cee21e354b264c90ae4b0725941d75cf63af54bee4a307fbe91e7078a412bd9750f3856657159ffe5efff139a652ec0443368f7c146bfdbf","ssdeep":"","tlshash":"5af028143d3dcebf098f65e745ec7818399c152794a0fca058ab0f3c5ae4171088921c","first_seen":"2025-04-07T11:28:26.961944Z","last_seen":"2026-06-12T12:16:48.401727Z","times_seen":701,"resource_available":false,"data":null}},"time_used":244,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":244,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/charting_library/charting_library.min.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:23.175Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /charting_library/charting_library.min.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:23 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 21 Mar 2026 15:36:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb0a-2a6a\"\r\nexpires: Tue, 24 Mar 2026 02:50:23 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10858,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10857)","md5":"8573e89d9ec535663d75f21b1f08109c","sha1":"a8d9eea0b157ceeffc38d4254e6f6abc9d697d10","sha256":"cb0c6c9f1771d252eee7caa043bdd7cfffbd52c2cc4b18b7be7c4554ed069151","sha512":"55d728fa1e0682725f94b17387c6790792d3d34b43652a00097876118575bd6cefa20916d80674519005d72f20ecbb745e9645516c056e6f9bb6691d5efbcb33","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffam:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvu","tlshash":"6e224f58ed2478720acb54f0427f180f8239e278d84944ed3cc4e6ec59fd44a6a6fbb8","first_seen":"2023-08-16T00:37:19Z","last_seen":"2026-06-14T20:39:40.871772Z","times_seen":1224,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/resource/fonts/Arial.ttf","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:24.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /resource/fonts/Arial.ttf HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://testweb.btsutodk.top/assets/index-8787946a.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:24 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 1047012\r\nlast-modified: Sat, 21 Mar 2026 15:36:42 GMT\r\netag: \"69bebb0a-ff9e4\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1047012,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, digitally signed, 25 tables, 1st \"DSIG\", 58 names, Unicode, � 2017 The Monotype Corporation. All Rights Reserved. ","md5":"ffe66dbfc4b07f36ef38dd621ad2c7cc","sha1":"e032b102cfc37c3226d17e1b462edea5fbf8fe1c","sha256":"c1216a01b3cc4e94df72577a6f618154058a1d8999ed58fa31ab7e54c7e4be4b","sha512":"3c7952b71c8117938c5284efca0e0b3e8c20d7b84c74a4890f76a72af3b26295786b0f7c33d9b6c980527b4c4c8dad628d1f5e7e5f202d11076367f082349bb3","ssdeep":"24576:NoQIQRjo/Y7wjgTmKJ4WxA7EAD4OBfDamXKE6AMra:NHIQJo/Y7wjgTm0PxAwJHE6hG","tlshash":"f125be0bf3929f0fe3902b38c9a5d761939b76189b2743b73d8c5858ecc85a45e487d2","first_seen":"2023-07-29T15:16:45Z","last_seen":"2026-06-14T20:39:40.865962Z","times_seen":1893,"resource_available":false,"data":null}},"time_used":3673,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":680,"receive":2993,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"newapi.btsutodk.top/api/common/getCoinList","fqdn":"newapi.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.031Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newapi.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 14:27:20 GMT","end":"Mon, 08 Jun 2026 14:27:19 GMT"},"fingerprint":{"sha1":"52:38:43:63:F0:47:5A:DA:0B:DA:92:96:F1:2B:5E:B5:CC:0D:A2:E0","sha256":"0E:5B:D3:43:1D:BE:39:06:44:27:E1:66:5B:58:25:76:03:A1:CB:9C:91:89:57:88:22:60:2B:59:00:3E:39:41"}}},"request":{"raw":"OPTIONS /api/common/getCoinList HTTP/1.1\r\nHost: newapi.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://testweb.btsutodk.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://testweb.btsutodk.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-17T09:31:00.786811Z","times_seen":16480402,"resource_available":true,"data":null}},"time_used":1218,"timings":{"blocked":485,"dns":0,"connect":242,"send":0,"wait":242,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-1b8edc1b.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.490Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-1b8edc1b.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 388\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\netag: \"69bebb1f-184\"\r\nexpires: Tue, 24 Mar 2026 02:50:28 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":388,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (387)","md5":"13f6f2825d4122e7b7afec26ae2cae33","sha1":"15dd29f5bba7059b759f4b0215dc16b00fb60b5b","sha256":"116a53d92b92c1c69c673beaf5666bbbc2550b34900c266092222c1f1cfc461e","sha512":"c900f1bcc95435ae4882b72174d9c734a4ec9dd8ab529f5e83f171fbec75fc1660974af7a8e483f36adc03739a84989394bf1ba6cc2dfd407f1c170ddc951c2b","ssdeep":"","tlshash":"62e0f15f1959c6f367e38cfce1330861610826040300d1d0e5030a08a2780d3611f368","first_seen":"2026-03-23T14:50:53.542052Z","last_seen":"2026-03-23T15:17:52.127302Z","times_seen":2,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/f2420693-7447-462a-9c56-6680565dd883echo2.00d809560220c45909f5577edc669617f.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.789Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/f2420693-7447-462a-9c56-6680565dd883echo2.00d809560220c45909f5577edc669617f.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: dRy5EVsywFbJIeL4RpSFmLEnC14BNCVxQ3xdEwSnSqR/6yiSy48UVxXNNZ2ECPikX/hwUJCM0MA=\r\nx-amz-request-id: W15PD6KT7GZ7145W\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:43:31 GMT\r\nETag: \"9221e774d8ace4f4acfdd46c1636f65f\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1868\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1868,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"9221e774d8ace4f4acfdd46c1636f65f","sha1":"821d92ba08c11b759068bd4d5e7982df937fe201","sha256":"a3fbde991df1d86ba4040d287a6e1a3d7de48bc72a82c08403faf48dc67d41c0","sha512":"9dd9a578f3636a27de204d6ea0ae2c3d59780bb2107ddb8674fe6b0da9b33ec718e6263c367d9feef554b51a29ce7ca90fa3b2926e7d6d689fdcd3165c12bd17","ssdeep":"","tlshash":"bc31d719ba7175c196c89e9214e6c85218a349408754e5e578cfc4a38a213ff476d0df","first_seen":"2024-12-08T15:39:09.785686Z","last_seen":"2026-06-10T12:22:18.838449Z","times_seen":61,"resource_available":false,"data":null}},"time_used":642,"timings":{"blocked":519,"dns":0,"connect":0,"send":0,"wait":123,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/fac01627-6f55-4ff0-bcf8-b7666ecf0402echo-pro4e8405e5b84a4168b6783ea22b62c4e8.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.824Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/fac01627-6f55-4ff0-bcf8-b7666ecf0402echo-pro4e8405e5b84a4168b6783ea22b62c4e8.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 6rBYE23wTYqY63T2xZiU6Pahzu2HgLU/NgPWUC3CrwnItMQdSZNGt8VpMFRytQq6+Q89BaRFyqA=\r\nx-amz-request-id: W15JFY3TW6K8ECXR\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:35:06 GMT\r\nETag: \"b35a18e38905abe1d3d3b871e2759272\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 2135\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2135,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"b35a18e38905abe1d3d3b871e2759272","sha1":"ade27caf3a03b2845a8562838950e7013fde61c8","sha256":"3827072abc60359bed56aff5596ad0fa608b105eb3903a5046ba32fef54e1547","sha512":"19d4ae86ebf2efcfcc84884fd3cbc6add9e24496d13bf2fdf2286c9a1e647f8f549563fd462d077da41ee5a0db7fc6c2e70d25309f57f82c7024e214c1474749","ssdeep":"","tlshash":"d641e94a77915882631d255a05d742634f230dc0e9d4f07478cfd4290e203fa489facf","first_seen":"2025-07-19T12:16:33.429496Z","last_seen":"2026-06-14T07:12:41.083946Z","times_seen":43,"resource_available":false,"data":null}},"time_used":505,"timings":{"blocked":232,"dns":0,"connect":0,"send":0,"wait":124,"receive":0,"ssl":149},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/resource/svg/dark/zu447.svg?2.0.1774107423402","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.849Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /resource/svg/dark/zu447.svg?2.0.1774107423402 HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 420\r\nlast-modified: Sat, 21 Mar 2026 15:36:42 GMT\r\netag: \"69bebb0a-1a4\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":420,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"23b51e86174e8f6920f0afedc42bb423","sha1":"cdd01b04898627077aff5bfcfe4c8d1729d89397","sha256":"3a30987fe9e27f43c0c43f5aea739a13a599a6f633131b6f042f039f15de83e7","sha512":"4c3eae2304dc9d458aac7064d93cfc502fca1543b29bd5490adb51fb806dd0596a2c854b560f605d99a78243e8cd1fe60cbd6b09b663594d4333beda3820533c","ssdeep":"","tlshash":"fee05c16cc15100e51010e95c3d11f68a47ff183c2a508aefbe0127b4ab5c0a6cbc32a","first_seen":"2024-08-19T15:53:11.170684Z","last_seen":"2026-06-14T07:12:41.118867Z","times_seen":395,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-cac53aad.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.074Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-cac53aad.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-1237\"\r\nexpires: Tue, 24 Mar 2026 02:50:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4663,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (4658)","md5":"9dae9d53bf3f8365b690d0f8bf0d655a","sha1":"0b4e84ed204cb5ca4a417d120294fce7936ca0c3","sha256":"532f5d476a1ccf0a09a0828434e30efbf07ff52b6800afac1bd47220c6d56943","sha512":"1aa9b777e08ae4a275e0beac0daff9c44f80c3920b9f0b19bb548fbede2f2dc02daac601fd119d64aa12c800bfa22ff246e3e1097736e529e99e035817e8f830","ssdeep":"96:2+CY/9YYqD+wSQxkrFqPyAtb6kirQP+jn3hv7b3XfWarXjt:2+CYFYYqiwSHYqAtbdqR3hvfXust","tlshash":"fea1e999f80285beb967144008980010319c7bfbb10948f1fbfdad0d77b5879d354366","first_seen":"2026-03-23T14:50:53.55588Z","last_seen":"2026-03-23T15:17:52.128588Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1963,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1963,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-e0fedcd3.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.075Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-e0fedcd3.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 776\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\netag: \"69bebb1f-308\"\r\nexpires: Tue, 24 Mar 2026 02:50:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":776,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (775)","md5":"4caa27b7aeb237d500b28fc4f4fe9b9d","sha1":"080c1d65a69d634b5562485fcc84ad00936616db","sha256":"3c54bfb9faa59b0802882d0ccca0a0a95242a2245ca38d24f36b95adc7483c8b","sha512":"12d563c3cb84b8e2e58066320651513a5afb76cdf8cb457803ea0d2efe8f83ca55253f855465a0a3b962d68061b251d28a18ea34acd2b9d57905654cbdb008ec","ssdeep":"","tlshash":"ae01f8f8fc0c8ebb0fa20a4001903600140a2fddfa1419e198967e6a1be5980dbde32d","first_seen":"2026-03-23T14:50:53.495556Z","last_seen":"2026-03-23T15:17:52.129899Z","times_seen":2,"resource_available":true,"data":null}},"time_used":2202,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1962,"receive":240,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/resource/fonts/DINOT-Medium.otf","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.887Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /resource/fonts/DINOT-Medium.otf HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://testweb.btsutodk.top/assets/index-8787946a.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 73096\r\nlast-modified: Sat, 21 Mar 2026 15:36:42 GMT\r\netag: \"69bebb0a-11d88\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":73096,"size_decoded":0,"mime_type":"application/octet-stream","magic":"OpenType font data","md5":"ab876400560626fbe045633dc44f0748","sha1":"85bbfb1729e86f40ddc9af7197b5f54ed6136226","sha256":"5888b24f6b65ff7c989b4a258dbeb5d997320d61417371210da0258be21d854d","sha512":"82e96ade51b0570c1f691ba45d1a3c0802015dad7598954675c4abe2fa8a9fc705adbe6eb5e677aa5cc03b6704e594cfe99279c678855ebbbcbade6d5028dbd6","ssdeep":"1536:TlK/cP2D2oV7otQjBG1+acfZZHHDEdom1hvd5JItkB7k3Z:TKQQtG1yZSdomrvpIqcZ","tlshash":"0b636f031d4fb9548de4513a52de4ea34bb39ecc1ca493c30ae12d938fece6657152ae","first_seen":"2023-08-16T00:37:20Z","last_seen":"2026-06-14T07:12:41.118043Z","times_seen":1503,"resource_available":false,"data":null}},"time_used":1206,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":241,"receive":965,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"newapi.btsutodk.top/api/notice/list?key=ROLL_NOTICE","fqdn":"newapi.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.914Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newapi.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 14:27:20 GMT","end":"Mon, 08 Jun 2026 14:27:19 GMT"},"fingerprint":{"sha1":"52:38:43:63:F0:47:5A:DA:0B:DA:92:96:F1:2B:5E:B5:CC:0D:A2:E0","sha256":"0E:5B:D3:43:1D:BE:39:06:44:27:E1:66:5B:58:25:76:03:A1:CB:9C:91:89:57:88:22:60:2B:59:00:3E:39:41"}}},"request":{"raw":"OPTIONS /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: newapi.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://testweb.btsutodk.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://testweb.btsutodk.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-17T09:31:00.786811Z","times_seen":16480402,"resource_available":true,"data":null}},"time_used":242,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":242,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-48c7a672.css","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.070Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-48c7a672.css HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-27a7\"\r\nexpires: Tue, 24 Mar 2026 02:50:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10151,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (10150)","md5":"842a9d0c045944e2237e265693c8c3e2","sha1":"ac649cbcb2e9f9a3fe6fc4cdeafd8005c4f0dbb5","sha256":"48c7a672b1a608855a293b4f385a14d35be7ca358ef0de4c02c00663424779d7","sha512":"a8d1b5bbd74766c07380600105a7419df374778755dac2c701f63bd213156205148d0237177a9820a7e0d3818e1e8b694463a9416c4469a25a1de29f1dbfab80","ssdeep":"192:EXXvx4kh3mqOyI5cL4IVeYDd+5Y6LHmLkBfW:EvDZWW","tlshash":"0e22563df6a62238ac7be199bad44ecce51eb901e693dda4f61785264cc76e3173004c","first_seen":"2026-03-23T14:50:53.560119Z","last_seen":"2026-03-23T15:17:52.160783Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1965,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1965,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/currencyItem-bec107ee.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/currencyItem-bec107ee.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-66b\"\r\nexpires: Tue, 24 Mar 2026 02:50:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1643,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1642)","md5":"0ccfbb8b3b92fd5f43cdb99d9e3c3f32","sha1":"77a0ed7b9ddfe520e71d82befd96ea85f970607c","sha256":"bd188d1b14c022e93d47c0888903661a78949168554a1a0cddb0598403e9889b","sha512":"23e622bc35fe9ac1114767e38ea6386ed4615b5d108d5371b81a33d4d43bd16a405cecde1b664d63396373718cd90a942cd7a79ddc36e986fd5361ded809ebf6","ssdeep":"","tlshash":"38319c9aa901cbb5c7bd9162c1b80415135dbfdb70064682fafa254a3bc75fce724a31","first_seen":"2026-03-23T14:50:53.501926Z","last_seen":"2026-03-23T15:17:52.173717Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1961,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1961,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/platform/dev/favicon.ico?2.0.1774107423402","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:27.679Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /platform/dev/favicon.ico?2.0.1774107423402 HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:27 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 25871\r\nlast-modified: Sat, 21 Mar 2026 15:36:42 GMT\r\netag: \"69bebb0a-650f\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25871,"size_decoded":0,"mime_type":"image/x-icon","magic":"PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced","md5":"e3647298ed17654e424e41d27b08170b","sha1":"6428ddc3ed3b0587a6dd8ddfa614301663b7d2b4","sha256":"7aaf20df416596c067ae7587a4120fdc010725a0b889663837c529eca297f29a","sha512":"2784205d2974000f2fc547ccf440931b78a34cc04324d40b9600311f4a905039a7f67f7e90bc0effd961fc943e9d29628e0e8cfa678494c1a22f150bee8db193","ssdeep":"384:h6DbRkfbP3iHuGoEQSDVnm45Gk0U+Cc+VKtgcQcXL9:h6XHqEnDVnr5Gk5+Cxzc3XB","tlshash":"9ec2afa1fcd531942c01953225e3a41e48b2898bef43dd82bbdd40aaef12f559c9f58e","first_seen":"2025-09-12T08:50:03.430349Z","last_seen":"2026-04-30T14:42:23.584349Z","times_seen":11,"resource_available":false,"data":null}},"time_used":1035,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1033,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-1b8edc1b.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-1b8edc1b.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 388\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\netag: \"69bebb1f-184\"\r\nexpires: Tue, 24 Mar 2026 02:50:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":388,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (387)","md5":"13f6f2825d4122e7b7afec26ae2cae33","sha1":"15dd29f5bba7059b759f4b0215dc16b00fb60b5b","sha256":"116a53d92b92c1c69c673beaf5666bbbc2550b34900c266092222c1f1cfc461e","sha512":"c900f1bcc95435ae4882b72174d9c734a4ec9dd8ab529f5e83f171fbec75fc1660974af7a8e483f36adc03739a84989394bf1ba6cc2dfd407f1c170ddc951c2b","ssdeep":"","tlshash":"62e0f15f1959c6f367e38cfce1330861610826040300d1d0e5030a08a2780d3611f368","first_seen":"2026-03-23T14:50:53.542052Z","last_seen":"2026-03-23T15:17:52.127302Z","times_seen":2,"resource_available":true,"data":null}},"time_used":2204,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1964,"receive":240,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"newapi.btsutodk.top/api/common/getCoinList","fqdn":"newapi.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.781Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newapi.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 14:27:20 GMT","end":"Mon, 08 Jun 2026 14:27:19 GMT"},"fingerprint":{"sha1":"52:38:43:63:F0:47:5A:DA:0B:DA:92:96:F1:2B:5E:B5:CC:0D:A2:E0","sha256":"0E:5B:D3:43:1D:BE:39:06:44:27:E1:66:5B:58:25:76:03:A1:CB:9C:91:89:57:88:22:60:2B:59:00:3E:39:41"}}},"request":{"raw":"POST /api/common/getCoinList HTTP/1.1\r\nHost: newapi.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://testweb.btsutodk.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://testweb.btsutodk.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19518,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"5567d6c853e45752d987c965e0c69c59","sha1":"2fab8a3d9875651274a09b834175b2f0a735f5f0","sha256":"b337db1bff9415119fbbb851b041eb661370f05acc357b7aeeda7027e3b400c0","sha512":"a1c9967870c56ab3d3b45edff628e9cca5b4fa81cf45eea371f4bb06543250c6ebb0b5d94ff3f9b79ee62d88b813487b48d014b24796da3bbe4f37e9ce5134af","ssdeep":"192:vXHzFXCjXbcXnfJXlWXC6RX0vJXdsHX+L8XduX4mSQUguFwXdwYRK7JYfR3CKLf/:r5ztir3rY+Bz+n","tlshash":"76921d55612c54fdc579c0e02ebf7a13528d356fecca8e1e93ce49988ee4eb0560af06","first_seen":"2026-03-23T14:50:53.562255Z","last_seen":"2026-03-23T14:50:53.562255Z","times_seen":1,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":265,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-192d99ec.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:27.051Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-192d99ec.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-36c6\"\r\nexpires: Tue, 24 Mar 2026 02:50:27 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14022,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (14021)","md5":"2b0e4d6bfba53cfd957d8899725512b9","sha1":"ca114f93f8794759aa221daab6a222d275735d61","sha256":"ddc11968ef431bdda247bf8ae76fe77c0c927abab3f08c5dea23215187508ab1","sha512":"d8c53b3750a65805f532b0ecb5efe70c9fc457313f567fe8e6c780febe5fcdd35837047b1990e5ed3ca3328628fc1a587a96429bac5ffc859680fb7bdb1dbf7a","ssdeep":"384:AZzqBT7hRf0xuF0FtAfU2w6KImMuEFuZ36kXMMzprhQhdCUSD:mCsUKtAfUnwbAprhQhdCUA","tlshash":"8552e866f902993ef6ffa04140980050766a7ffb411a49e1b9bc6d4b3353eb8f789708","first_seen":"2026-03-23T14:50:53.563957Z","last_seen":"2026-03-23T15:17:52.171444Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1422,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1422,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/d14e7108-82cd-49ee-8c82-45b448f0cd19echo2.052f8627951f94c28a147ef1a57083863.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.792Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/d14e7108-82cd-49ee-8c82-45b448f0cd19echo2.052f8627951f94c28a147ef1a57083863.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: Q4DqCAPSOrhXBFVrgGyQ+Cl++E6IqX94sWrr4+7EeF9e+IL1/FCdl1pZ7Zd7QhtvOl25Z0OLV68=\r\nx-amz-request-id: W15HBEX1CKSZGN7V\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:43:27 GMT\r\nETag: \"b61f1ca72c14930cc6204ceda9d4a1a8\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1476\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1476,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"b61f1ca72c14930cc6204ceda9d4a1a8","sha1":"d4fc6e900b4f0491c9e21b5bd87abb3a5774d197","sha256":"177ef0c77ae4e4dc8e7ecadcd84bb6e7532cb427ec8d1354cf1128521cfa8af2","sha512":"7cd45adb9967aa94bbe9b31e192eec3de548262312428e260296eb69cf49a68e5aa120ea96733d90c5b7d32bab97e2329d469aaeb260e151b6216686e8128aa2","ssdeep":"","tlshash":"8d31855ce3209852e205ee9320e6506b985304c0dbe2f0aae0cbd9925a303f745cd9cb","first_seen":"2024-12-08T15:39:09.775069Z","last_seen":"2026-06-10T12:22:18.818517Z","times_seen":78,"resource_available":false,"data":null}},"time_used":524,"timings":{"blocked":405,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newapi.btsutodk.top/api/notice/list?key=ACTIVITY_NOTICE\u0026modelKey=HOME_ACTIVITY","fqdn":"newapi.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:29.160Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newapi.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 14:27:20 GMT","end":"Mon, 08 Jun 2026 14:27:19 GMT"},"fingerprint":{"sha1":"52:38:43:63:F0:47:5A:DA:0B:DA:92:96:F1:2B:5E:B5:CC:0D:A2:E0","sha256":"0E:5B:D3:43:1D:BE:39:06:44:27:E1:66:5B:58:25:76:03:A1:CB:9C:91:89:57:88:22:60:2B:59:00:3E:39:41"}}},"request":{"raw":"POST /api/notice/list?key=ACTIVITY_NOTICE\u0026modelKey=HOME_ACTIVITY HTTP/1.1\r\nHost: newapi.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: zh\r\nlang: zh\r\nOrigin: https://testweb.btsutodk.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:29 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://testweb.btsutodk.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":501,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"611f913eb1d61e7b880e2b203faff691","sha1":"368679399e24b77417af26c5d7e1541981112d5d","sha256":"9c68194219c6b126c59f728cf0a03c34980edc10414e1f1060df3f68a9cff15a","sha512":"3c77c199eafde333135f17b429600b0f3b1fa649d88ba5b2a9c117f6cab3f5ab354e4f1eddfcf798a79d037ee41c3750eeeb111d1fb17e17012c7b377e3b203c","ssdeep":"","tlshash":"70f0970f19bc8ea90d0949cb69ccbcc9821f1643c760ce30d56acf2c01f01b71b1a608","first_seen":"2026-03-23T14:50:53.581255Z","last_seen":"2026-03-23T15:17:52.15454Z","times_seen":2,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/resource/svg/dark/mengbanzu12.svg?2.0.1774107423402","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.843Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /resource/svg/dark/mengbanzu12.svg?2.0.1774107423402 HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 774\r\nlast-modified: Sat, 21 Mar 2026 15:36:42 GMT\r\netag: \"69bebb0a-306\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":774,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9a8fdb5cde40e8ebcb2b7fddbe19943e","sha1":"c1560502d0305ec2f9973a5857c7cdd9b56caee7","sha256":"3ab8082b5d02f0e40827f2520fe7d423877d2f8d78c6f41cc11fed84b276a0ee","sha512":"8791e15406186847e2527fae5de31e11f9820322947716a0b54d235607efaae19370d66d1864a78b5f65f84ddb778b46df2474860ae9176d828c6cf958d9aac1","ssdeep":"","tlshash":"4d01f17a5221c15da2434b80c6e93f4092bda29ba2d00448b3a32da54d74f7f55bc996","first_seen":"2025-06-01T04:11:58.700896Z","last_seen":"2026-06-10T17:53:50.494597Z","times_seen":257,"resource_available":false,"data":null}},"time_used":242,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":242,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-23T14:50:22.253Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:22 GMT\r\ncontent-type: text/html\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-14be\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5310,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1094)","md5":"7b39c64a77b645969ce00ed909e9bbfd","sha1":"2a08ea05c20b3e6dfc304cdaf9344af485e108e9","sha256":"4f4c71e5d1fcaa02b5023869e333098e880de0b50b598e4a3a65cad105ed9c29","sha512":"1bf797958e7068d640bb6645b073c0b6869e0e10f21507ae988d49dd16276f528edbc576c1cb9ad1ee0ccd906d1f2bcaa5a949621bc40a7791fac4f9644241ed","ssdeep":"96:Tr82N25yKuX67U4ouSuct/u8uBr6TCZydHRH/g42mUsGKAiowGpuB1niHriHqH/w:TFcu67UXeZCxfZ2nfD3bpuB1niLiKfw","tlshash":"7ab182b36df0c81a2395162aeedbf1089e601293851e4858b0cd54ec8fd5fd5c4ebbb0","first_seen":"2026-03-23T14:50:53.591537Z","last_seen":"2026-03-23T15:17:52.158735Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1336,"timings":{"blocked":547,"dns":57,"connect":241,"send":0,"wait":241,"receive":0,"ssl":247},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-8f252d21.css","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.049Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-8f252d21.css HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: text/css\r\ncontent-length: 61\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\netag: \"69bebb1f-3d\"\r\nexpires: Tue, 24 Mar 2026 02:50:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":61,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"64a6e0c70d0734eb067de41025695c61","sha1":"3daf9734bdfc9e560f098cda9e73c926ff417cc0","sha256":"8f252d21da9b1d0151bbe1db628bfea000d4a662b1ea0a42047e42c696b4bed7","sha512":"ccd349b7fcc9f5202a6ce9516c4d66b482140a85df80d9777b3957d0cf5380689fc17877be168c95b526f3b74d36fca4ff9aaba796421f900f9f27255e403ff7","ssdeep":"","tlshash":"54a002ad115a3914b2224341ff0ae90dce6869739a91520567021da135cba4e655920b","first_seen":"2026-03-23T14:50:53.594382Z","last_seen":"2026-03-23T15:17:52.180056Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1980,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1979,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-192d99ec.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.071Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-192d99ec.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-36c6\"\r\nexpires: Tue, 24 Mar 2026 02:50:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14022,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (14021)","md5":"2b0e4d6bfba53cfd957d8899725512b9","sha1":"ca114f93f8794759aa221daab6a222d275735d61","sha256":"ddc11968ef431bdda247bf8ae76fe77c0c927abab3f08c5dea23215187508ab1","sha512":"d8c53b3750a65805f532b0ecb5efe70c9fc457313f567fe8e6c780febe5fcdd35837047b1990e5ed3ca3328628fc1a587a96429bac5ffc859680fb7bdb1dbf7a","ssdeep":"384:AZzqBT7hRf0xuF0FtAfU2w6KImMuEFuZ36kXMMzprhQhdCUSD:mCsUKtAfUnwbAprhQhdCUA","tlshash":"8552e866f902993ef6ffa04140980050766a7ffb411a49e1b9bc6d4b3353eb8f789708","first_seen":"2026-03-23T14:50:53.563957Z","last_seen":"2026-03-23T15:17:52.171444Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1964,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1964,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-cac53aad.js","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.493Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-cac53aad.js HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-1237\"\r\nexpires: Tue, 24 Mar 2026 02:50:28 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4663,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (4658)","md5":"9dae9d53bf3f8365b690d0f8bf0d655a","sha1":"0b4e84ed204cb5ca4a417d120294fce7936ca0c3","sha256":"532f5d476a1ccf0a09a0828434e30efbf07ff52b6800afac1bd47220c6d56943","sha512":"1aa9b777e08ae4a275e0beac0daff9c44f80c3920b9f0b19bb548fbede2f2dc02daac601fd119d64aa12c800bfa22ff246e3e1097736e529e99e035817e8f830","ssdeep":"96:2+CY/9YYqD+wSQxkrFqPyAtb6kirQP+jn3hv7b3XfWarXjt:2+CYFYYqiwSHYqAtbdqR3hvfXust","tlshash":"fea1e999f80285beb967144008980010319c7bfbb10948f1fbfdad0d77b5879d354366","first_seen":"2026-03-23T14:50:53.55588Z","last_seen":"2026-03-23T15:17:52.128588Z","times_seen":2,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/5fc9aa08-0c69-4091-85ff-404849c3aca1echo-pro4bbbb465ae704739bda9de3d92331ccf.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.831Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/5fc9aa08-0c69-4091-85ff-404849c3aca1echo-pro4bbbb465ae704739bda9de3d92331ccf.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: ZTmH50uYkBMSUfOa08mfRcYO3wkszDUVJ8HU8TmnoDevL7Mo5cAs0TJYi3bAoF/eZLYZcP+4Mmo=\r\nx-amz-request-id: W15XJDASTQGQJFG1\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:36:23 GMT\r\nETag: \"c7bfed8b9abf571aff4f7cdf282458d2\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1442\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1442,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"c7bfed8b9abf571aff4f7cdf282458d2","sha1":"e2d63fb55659de66230d9b7ada2fd63bea2269ba","sha256":"c6504bd01f0a6c713a478be3f44a24b2f552e0f193ad7f002935390224428352","sha512":"59aa3a0c48ec5c12b8ee5d31c3eb46a147ff81b5d28d2c2cd08bc1ca033fe81559388abe00b466393c3abcac7078473e4d81880f820afee21b0f07d0c3af24e4","ssdeep":"","tlshash":"9121a74ff29069815289ec4204e6512398910890cbe0f1a1b9cac8262a703ff89099df","first_seen":"2024-12-08T15:39:09.735261Z","last_seen":"2026-04-30T14:42:23.622353Z","times_seen":59,"resource_available":false,"data":null}},"time_used":538,"timings":{"blocked":249,"dns":0,"connect":0,"send":0,"wait":126,"receive":0,"ssl":163},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newapi.btsutodk.top/api/notice/list?key=ACTIVITY_NOTICE\u0026modelKey=HOME_ACTIVITY","fqdn":"newapi.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.907Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newapi.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 14:27:20 GMT","end":"Mon, 08 Jun 2026 14:27:19 GMT"},"fingerprint":{"sha1":"52:38:43:63:F0:47:5A:DA:0B:DA:92:96:F1:2B:5E:B5:CC:0D:A2:E0","sha256":"0E:5B:D3:43:1D:BE:39:06:44:27:E1:66:5B:58:25:76:03:A1:CB:9C:91:89:57:88:22:60:2B:59:00:3E:39:41"}}},"request":{"raw":"OPTIONS /api/notice/list?key=ACTIVITY_NOTICE\u0026modelKey=HOME_ACTIVITY HTTP/1.1\r\nHost: newapi.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://testweb.btsutodk.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://testweb.btsutodk.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-17T09:31:00.786811Z","times_seen":16480402,"resource_available":true,"data":null}},"time_used":242,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":242,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/6b346742-c5d5-4790-98bc-e2c9667a7baeecho-pro8422233c16ba42c98345a8c575247c62.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.840Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/6b346742-c5d5-4790-98bc-e2c9667a7baeecho-pro8422233c16ba42c98345a8c575247c62.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: VHJ5QXutmYdrwWwyc5FxQZw8fvKsba9dfKTtjnhSwVYZs5HAgjEW8LoF4a/rdtn4jNGcu+eGVAg=\r\nx-amz-request-id: W15ZDXKB48Y6Z6TR\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:52:39 GMT\r\nETag: \"7868e135f4fb3e4ad89ee43b86db40c1\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 5649\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":5649,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"7868e135f4fb3e4ad89ee43b86db40c1","sha1":"67c9d8637f62dabae0f08f457b005d79a3eaa9b6","sha256":"d655384e170d34b37bf41e68f739eb6ae1c4c91d7990e108461e04581e0b30d5","sha512":"410bec54fd333bbe3875f1c8160651e68c4cb387c4756427d4e1186ef9b901be323c1fec497da7f5883be9ce12a58112174aceb4c7225bef06d9ff47569f495e","ssdeep":"96:97dhTVFvKPGSUZIxRn+yk+N6MXUoMeFgpsSvQnwMwaE1Jksxn596dqAAjXq0W5+V:97dhJYiexR+WUCMjvQna1r8MAz5+FZG8","tlshash":"84c18dbd0ab97a3cfc1bc6ef6caa4cb353149625bc84fdcea560d41040fc84649d55a7","first_seen":"2025-09-14T16:18:45.711993Z","last_seen":"2026-04-27T17:21:18.581622Z","times_seen":16,"resource_available":false,"data":null}},"time_used":462,"timings":{"blocked":344,"dns":0,"connect":0,"send":0,"wait":118,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/a38871da-60a9-4392-b023-ad5606526808echo-proe1d51526e87940209947c30c32fa05e5.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.798Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/a38871da-60a9-4392-b023-ad5606526808echo-proe1d51526e87940209947c30c32fa05e5.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: yXYMRwpLnC7oywbpFyv0RBRDfoJFXVn2b173Q0Ecd26vCagr7HJztIIjr6+bETWLt4KMUiqFNJo=\r\nx-amz-request-id: W15Z0PJJQ5PCV490\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:46:30 GMT\r\nETag: \"339c6f06112912dfec4082cf192541c8\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 2314\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2314,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"339c6f06112912dfec4082cf192541c8","sha1":"e54f413a9f97256501ea21cb6df1dae60556c1fc","sha256":"fbdf7c741403b5d3e7a381293773fe48f296f52735321922f372a58702f6eb14","sha512":"5330142859855547ec32c626f8de088e213fc75fd88ef5c95e34724e2cd7c6b1c4019037ef3f77f7951eac67e111f2bf2dbc431ea7894860c8ea4cb0b6ed74fb","ssdeep":"","tlshash":"1741e80abac06d90479deda068f5846b4d5b48c48e80f67976cfd4265a713e28f481eb","first_seen":"2024-12-08T15:39:09.779663Z","last_seen":"2026-06-10T12:22:18.876757Z","times_seen":79,"resource_available":false,"data":null}},"time_used":523,"timings":{"blocked":406,"dns":0,"connect":0,"send":0,"wait":117,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/resource/svg/dark/user.svg?2.0.1774107423402","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.805Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /resource/svg/dark/user.svg?2.0.1774107423402 HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 551\r\nlast-modified: Sat, 21 Mar 2026 15:36:42 GMT\r\netag: \"69bebb0a-227\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":551,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"cbadb23520ecde3a8d7488fc19e95980","sha1":"b10897e06fe244e246e8542b0d1b6d695317576c","sha256":"7217fe0095fa190b95295278d273242aafd0ce4944095f55a3a2a6554d428e46","sha512":"9223a7055472f242d2a4494d80c4c546578663054b494dfd7d3c668157c598c91d6a5e9cfcb1835746b16b02abda7dd674a57b7313011f2a961a87e0cf68a3a9","ssdeep":"","tlshash":"70f04cf7501c949950014550c9de3a85973df133a3468d5eb3a208e68a1454b217c555","first_seen":"2024-07-24T17:37:44Z","last_seen":"2026-06-14T07:12:41.090337Z","times_seen":349,"resource_available":false,"data":null}},"time_used":243,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":242,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/53abf262-8f41-4829-886a-692dd0330abfecho-proc867f38c2e5647cd850d77b91059d1aa.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.826Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/53abf262-8f41-4829-886a-692dd0330abfecho-proc867f38c2e5647cd850d77b91059d1aa.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: mLoZz0ce2suUuLI3nP3JysBE7QsxMqcihodWxp8nJS6rhxoMtEKZ9SPLbHtS/yscbNHTKT+9BMI=\r\nx-amz-request-id: W15V74QS40S9XM54\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:35:44 GMT\r\nETag: \"d5976ba8379b358e534ace5a52b53242\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1997\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1997,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"d5976ba8379b358e534ace5a52b53242","sha1":"5edc63b7d064ba413750aa1fb041ec51de5e198c","sha256":"4210321132295a31f6710115146adadc92f74bcb1004c6a8a1b3a271597f5838","sha512":"9ce9ee37f060c4e73a8ec179e16fdd68673df3c6bb43ee34919090a3562cb2a892f8ceed20b43134580238db597481bcf8a3a5d69b37401ae0d8d25dfd7c7b8d","ssdeep":"","tlshash":"0f41c8ccaa657f51c304d91290fac167a9530a80c9d0b07a78ced61b09722fb641ebc7","first_seen":"2024-12-08T15:39:09.801273Z","last_seen":"2026-06-10T12:22:18.822516Z","times_seen":80,"resource_available":false,"data":null}},"time_used":507,"timings":{"blocked":234,"dns":0,"connect":0,"send":0,"wait":124,"receive":0,"ssl":149},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"newapi.btsutodk.top/api/common/getAllSetting","fqdn":"newapi.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.915Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newapi.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 14:27:20 GMT","end":"Mon, 08 Jun 2026 14:27:19 GMT"},"fingerprint":{"sha1":"52:38:43:63:F0:47:5A:DA:0B:DA:92:96:F1:2B:5E:B5:CC:0D:A2:E0","sha256":"0E:5B:D3:43:1D:BE:39:06:44:27:E1:66:5B:58:25:76:03:A1:CB:9C:91:89:57:88:22:60:2B:59:00:3E:39:41"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: newapi.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://testweb.btsutodk.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:28 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://testweb.btsutodk.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-17T09:31:00.786811Z","times_seen":16480402,"resource_available":true,"data":null}},"time_used":242,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":242,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"newapi.btsutodk.top/api/notice/list?key=ROLL_NOTICE","fqdn":"newapi.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:29.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newapi.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 14:27:20 GMT","end":"Mon, 08 Jun 2026 14:27:19 GMT"},"fingerprint":{"sha1":"52:38:43:63:F0:47:5A:DA:0B:DA:92:96:F1:2B:5E:B5:CC:0D:A2:E0","sha256":"0E:5B:D3:43:1D:BE:39:06:44:27:E1:66:5B:58:25:76:03:A1:CB:9C:91:89:57:88:22:60:2B:59:00:3E:39:41"}}},"request":{"raw":"POST /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: newapi.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: zh\r\nlang: zh\r\nOrigin: https://testweb.btsutodk.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:29 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://testweb.btsutodk.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":486,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"50d15cfbd8900944f5340b5c5b114c95","sha1":"a60e39cc35e0c00f8407cc1f0b328ffdd4a4780a","sha256":"aa203edebb89d21d49c5732c3eaf9eb216ca5248e7e46f8206a980f5da1dc1fb","sha512":"536cb08600cbb5c8a55c626e807627784210a68d5d69b338d48cb40597bfae40a74ece892f00e0d7eaeacbb5cf36af678c53206324066dc19f9191aa19d59877","ssdeep":"","tlshash":"05f0271e25b8cea90d0684c711ccbcc8821f2793c660cd30966acf5d45f11f6171a908","first_seen":"2026-03-23T14:50:53.605233Z","last_seen":"2026-03-23T15:17:52.130738Z","times_seen":2,"resource_available":false,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-8787946a.css","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:23.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-8787946a.css HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:23 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69bebb1f-4a3dc\"\r\nexpires: Tue, 24 Mar 2026 02:50:23 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":304092,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65022), with no line terminators","md5":"365fc4bf15e2c882f16cb9616f626dc3","sha1":"658f3b6e3844c5940d2b8333a6096b7f03e403bf","sha256":"8787946ac2c17cc0173ed37fc717079af183ddf3333d7367394e626e5c2452ae","sha512":"3be70963e88089771b0c482ea0f22d556af211f0cbb38c256e71293519fb5f0e85e1d2803b53a7478b7d8297aaa8183eda7ec8bb66f1b4abe673ec27dd7b4aee","ssdeep":"6144:n+B/9S/Jk4UkZ8w71ZACkFDS3vyf58rBeV05TN:+B/54NZ8w71ZACkFDS3vyf58rBeV05TN","tlshash":"d554c6a9a590117c6f27aa7597ce9ad8f23ce6719c118de8f20160094fc3ff92363617","first_seen":"2026-03-23T14:50:53.608765Z","last_seen":"2026-03-23T15:17:52.13995Z","times_seen":2,"resource_available":false,"data":null}},"time_used":726,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":726,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"newapi.btsutodk.top/api/common/getAllSetting","fqdn":"newapi.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.029Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"newapi.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 14:27:20 GMT","end":"Mon, 08 Jun 2026 14:27:19 GMT"},"fingerprint":{"sha1":"52:38:43:63:F0:47:5A:DA:0B:DA:92:96:F1:2B:5E:B5:CC:0D:A2:E0","sha256":"0E:5B:D3:43:1D:BE:39:06:44:27:E1:66:5B:58:25:76:03:A1:CB:9C:91:89:57:88:22:60:2B:59:00:3E:39:41"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: newapi.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://testweb.btsutodk.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://testweb.btsutodk.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-17T09:31:00.786811Z","times_seen":16480402,"resource_available":true,"data":null}},"time_used":1226,"timings":{"blocked":491,"dns":0,"connect":243,"send":0,"wait":242,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"newapi.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/96b67bad-1693-4a2f-aed4-90e1ef9d401fecho-pro81d1e34081af4a2f916e0baf80689886.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.778Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/96b67bad-1693-4a2f-aed4-90e1ef9d401fecho-pro81d1e34081af4a2f916e0baf80689886.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: uVdO5xqlPwvnKgchz0DmUn0y9lGnBhYNtUMXpcXqi/wIgDRTm+pPAFx4r2/Gv0Qo+XtMMRVIZPg=\r\nx-amz-request-id: W15TFFPR18HN4HXA\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:44:55 GMT\r\nETag: \"cd69d086565731bb66ffaacb11d86880\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 4956\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4956,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"cd69d086565731bb66ffaacb11d86880","sha1":"dd2e292dbdd462e496c9196f7386eb1e32951881","sha256":"53ee26bfd5089ed42c23c844e72a29962458cccdcc603ede272c9cf3acb83b0f","sha512":"c4bbcf7159ffdfa53b971b822c4bc0fd208480eb638562b67e29ac6da5702c3b0942431a625c24b2c0a8c8ff086f737da49fad00c441a48da1ef6c4e40f6a273","ssdeep":"96:2Krhf9rmJ1zMJb8/DopC8b06jJYVl+Wj7hQNyFPXz:2KrhNWzMJbeud0CaVfjfj","tlshash":"9ea17f0ca9beb91d4ef46565137209bf8d531e0088def181fc695dc7e3690a8bb306e5","first_seen":"2024-08-19T15:53:11.181904Z","last_seen":"2026-06-14T07:12:41.051644Z","times_seen":62,"resource_available":false,"data":null}},"time_used":530,"timings":{"blocked":410,"dns":0,"connect":0,"send":0,"wait":120,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trading-order-roseccc.s3.amazonaws.com/echo-res/2024-12-28/0b1cafde-7164-4e24-975a-43c04a2791ddecho-proc5bbc55628ed4e069f8b6652eefa50b4.png?2.0.1774107423402","fqdn":"trading-order-roseccc.s3.amazonaws.com","domain":"trading-order-roseccc.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.217.236.105","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:28.834Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s3.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D4:87:03:14:FE:12:27:46:E3:63:CC:7B:43:A1:D0:D8:B9:17:AF:7D","sha256":"7E:BF:42:63:5D:C3:2B:CB:97:F6:0E:38:3E:E1:F8:63:39:AA:CE:A2:39:E1:56:B9:8D:74:1C:79:12:67:14:36"}}},"request":{"raw":"GET /echo-res/2024-12-28/0b1cafde-7164-4e24-975a-43c04a2791ddecho-proc5bbc55628ed4e069f8b6652eefa50b4.png?2.0.1774107423402 HTTP/1.1\r\nHost: trading-order-roseccc.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: e/Ctgrkyy56xjKmThOjrmDLO/ejuP9j0iogSmdvekKHtHMvf5rDdTCWx/ypdPQCzkXGuMlC6fRg=\r\nx-amz-request-id: W15ND553BQSJV5VS\r\nDate: Mon, 23 Mar 2026 14:50:30 GMT\r\nLast-Modified: Sat, 28 Dec 2024 13:38:57 GMT\r\nETag: \"4b3ef8c62b99a5c2073e57dcfbfacf29\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-myval: test\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream\r\nContent-Length: 1830\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1830,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"4b3ef8c62b99a5c2073e57dcfbfacf29","sha1":"edb4b395b6adc8d884777339788e59f75da00d08","sha256":"ddd504d154b598383eb31999c85e0d678ee28004f2db2138fe4731db99daa6dd","sha512":"f4d13b854ae3139a998768426be833c8149851ce1227b120abcf87fc75d41bd75015554677cdddec9683d4a4e78d683973d3be2e7eb561b353890eb5bc3bbc7d","ssdeep":"","tlshash":"6231d50aea40bac1538d850270fb41675e6314888ee8f579a88fc12c3c353bf55998df","first_seen":"2024-12-08T15:39:09.749558Z","last_seen":"2026-06-10T12:22:18.863502Z","times_seen":123,"resource_available":false,"data":null}},"time_used":491,"timings":{"blocked":225,"dns":0,"connect":0,"send":0,"wait":128,"receive":0,"ssl":138},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"testweb.btsutodk.top/assets/index-bc011be9.css","fqdn":"testweb.btsutodk.top","domain":"btsutodk.top","tld":"top"},"ip":{"addr":"137.220.153.131","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://testweb.btsutodk.top/","date":"2026-03-23T14:50:25.059Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"testweb.btsutodk.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 12:41:39 GMT","end":"Thu, 11 Jun 2026 12:41:38 GMT"},"fingerprint":{"sha1":"AD:F4:4C:B0:EE:5D:FE:B1:CB:66:6D:AA:16:0B:64:08:B7:1D:F8:63","sha256":"F5:8D:A4:EE:B2:40:12:16:F0:20:5B:E8:4D:38:57:F6:1A:2F:31:4E:25:94:5D:B9:D5:FD:2D:CF:16:53:24:3D"}}},"request":{"raw":"GET /assets/index-bc011be9.css HTTP/1.1\r\nHost: testweb.btsutodk.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 23 Mar 2026 14:50:25 GMT\r\ncontent-type: text/css\r\ncontent-length: 397\r\nlast-modified: Sat, 21 Mar 2026 15:37:03 GMT\r\netag: \"69bebb1f-18d\"\r\nexpires: Tue, 24 Mar 2026 02:50:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":397,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (396)","md5":"5353ff252ee4a5e7a3d0176de6a6c712","sha1":"c83942b5dfdb4aa8be53f26b39e53b0b257595e0","sha256":"bc011be90fd6cd33a399912151a5f69ba0d8e394563c71c4c1bea7a4ec032516","sha512":"9a17506817918ef0c9a5d0caebaed8f603641dc1015a726bdf247645a7e0a988b543756d7254abafa18dd4cd9d27c9a198300632156faf59f05c1e27f0a5e30a","ssdeep":"","tlshash":"5ae092c890d6927fb62b607d267c931ad425ac88d8007bb8e67fabb146c7ac53172215","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-06-14T07:12:41.050159Z","times_seen":1271,"resource_available":false,"data":null}},"time_used":1971,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1970,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-23","alert":"Sinkholed","trigger":"testweb.btsutodk.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}