{"report_id":"7ebf8c70-ac48-4c29-a620-6797a0232273","version":6,"status":"done","tags":[],"date":"2026-01-11T07:53:29Z","url":{"schema":"http","addr":"situsrajadewa138menang.online/","fqdn":"situsrajadewa138menang.online","domain":"situsrajadewa138menang.online","tld":"online"},"ip":{"addr":"104.21.27.202","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"situsrajadewa138menang.online/","fqdn":"situsrajadewa138menang.online","domain":"situsrajadewa138menang.online","tld":"online"},"title":"Rajadewa138 - Situs Game Slot Gampang Menang Di Link Gacor 138 Cuan Besar","dom":{"size":104593,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (6883)","md5":"76b0e588e9cfe47dd1b738b58f9ad14c","sha1":"123ed8d856389b64394e6f82fb3c73b9c475c624","sha256":"7aa7ce2c29134064d6a4f6b178321c13e505271197bb987f983954925c8fa825","sha512":"ef650a99db70563bc412a4db7dddcf8ede648a430d54774f6f1ac0a63bea979f1fbaa52e6dc0f712393e4032277c642f599ab6dc4c6714eabd7cc56107c3bbb3","ssdeep":"1536:EZ5F4g5A4WR2vkfmTwfA/D29Bg/+iaBCSsJ:PmEfACXBCSsJ","tlshash":"a9a3a62b9652204d5807d23827e86b573338d413c62afdb5bddea780cf49681dde278e","dom_hash":"domhash6de594c89e3b473602c483580dac1038","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"situsrajadewa138menang.online/","fqdn":"situsrajadewa138menang.online","domain":"situsrajadewa138menang.online","tld":"online"},"ip":{"addr":"104.21.27.202","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-15T07:53:29Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"i.postimg.cc","ip":{"addr":"46.105.222.161","port":443,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"domain_registered":"2016-06-11","domain_rank":103883,"first_seen":"2018-04-11T10:01:12Z","last_seen":"2026-01-05T12:13:47.217929Z","alert_count":0,"request_count":5,"received_data":717498,"sent_data":2289,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"baubauindex.edgeone.dev","ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"domain_registered":"2025-06-09","domain_rank":0,"first_seen":"2025-12-27T00:37:01.586479Z","last_seen":"2026-01-08T14:04:30.236873Z","alert_count":14,"request_count":14,"received_data":1381044,"sent_data":6397,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.ampproject.org","ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2015-08-31","domain_rank":3289,"first_seen":"2015-10-09T04:27:01Z","last_seen":"2026-01-05T04:25:09.345605Z","alert_count":0,"request_count":4,"received_data":345874,"sent_data":1886,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"situsrajadewa138menang.online","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":83171,"sent_data":498,"comment":"","tags":null,"fingerprints":[{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdn.ampproject.org/v0.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"662e520d9941ad3541029cd61e3f2679","sha1":"ebff76fd0b9f7bfba23ad25165da309db6f0cf32","sha256":"1ed415cc7ef4a58b6d522ec6f5557dba25f9a62136ddc9265a1fc99cc5941cf8","sha512":"afc01f20b03f55999c00ca85a90cdc29e946d9d90326c288ca222ae627f7790b1fd5242de3d8a945499c37a5228b9015fe7beb3ab86f610e0f4da2e6056007e8","ssdeep":"3072:JSUdveOu6Pn+DJwPLtKSXI9pamwykP9bzR938ogQ:JSUdveOu6P+1wxKSXI9paxy89bzR9386","tlshash":"da54839db296b0714793b074803f150ae33ba959644a802cf56de9d67cbcd8aa037f7c","size":284617,"data":"","first_seen":"2026-01-08T17:09:59.7543Z","last_seen":"2026-01-13T06:42:20.918575Z","times_seen":91,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012512172008001/v0/amp-auto-lightbox-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"848010c9db4fed6d01c3c30fd14eff47","sha1":"a8cb8080b2bd50018114fa4cfb3cf3764b0ee8e9","sha256":"ffa696a5b8e75015bcf519415091e240bde44682ed8c1478c7da16eeb74636b4","sha512":"c16859ba1ac70f241899152d9f3ff8421ffb6e8fa0535d587c58106b2f05e6bcacfb3573b43eebb5ba38cb7cf695c4be6134af259706ef01e35b8db9ed993aa0","ssdeep":"96:JKoAosPGpV3yMDc0jGAM+G0mj1hVXxSZ4tqSKN0OV0TjLRkiGj0ldmq43bDjHI:JKqswV3yv0jGAFCPX/tqKyWp4M0rDTI","tlshash":"75f197dc7ac2b83a5753b4b780af414fa33ba94620ad9120d120f0d83cb995ed633e5c","size":7798,"data":"","first_seen":"2026-01-08T20:02:31.597502Z","last_seen":"2026-01-13T06:42:20.908693Z","times_seen":86,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0/amp-carousel-0.2.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0663f93636afeca2bdb0ddb9decde5b3","sha1":"f7528706352b399c1838741ff930d63edd62ced1","sha256":"a8e0360df377c577dd259bd936d197da7cb3b2746ca6578389a910a338f4bb2a","sha512":"f792da44d65ab37cc216f259003d5810d4eea765c0de28a4ede02927d41c9cb278ddf569978406bb37dd5d26fcdace143723a4d11059067054308caac81eca65","ssdeep":"768:MZPxRg03ktuoD+zH81cTiGPtnMejq7yxSINwJmNT7:M/XguoDCHAWignMeWelwsB7","tlshash":"f4f2a76eb24270b90657f230402f550ea63ab45954890d2cb0aaddd2ed78e8df17bf3c","size":34316,"data":"","first_seen":"2026-01-09T05:26:05.803157Z","last_seen":"2026-01-13T06:42:20.902054Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012512172008001/v0/amp-loader-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"3c12b2dacd12a5520accf09092aa1ce9","sha1":"4edeeec1a527899467169d2815d31d175e048e41","sha256":"15f154d4ac29e4d2404df6f33f7b3452c73d484eb4a7e892b691ba82edbfecb0","sha512":"d7d01447f1c898d548df60e219f89019b85963f82d76c7eb492c290471d0270fa7891fab597804cbb9d4aa181c7e7798d823b5bedded122ceeea6554dc18f151","ssdeep":"192:XfQHMOgzKBbnnRrVGXoPqTbrO2tHZ0vHzMb5F4g5A4WR2vN:v0g2BbnnHs0PzMb5F4g5A4WR2vN","tlshash":"0142a364a54ba2ac530341b484fab906757ecd4fb8504035f0118edecf99f48bd3ba6e","size":12715,"data":"","first_seen":"2026-01-08T17:09:59.744158Z","last_seen":"2026-01-13T06:42:20.911111Z","times_seen":68,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"i.postimg.cc/SNwBWhGB/banner2.jpg","fqdn":"i.postimg.cc","domain":"postimg.cc","tld":"cc"},"ip":{"addr":"46.105.222.161","port":443,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.842Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"postimg.cc","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 15 Dec 2025 06:59:00 GMT","end":"Sun, 15 Mar 2026 06:58:59 GMT"},"fingerprint":{"sha1":"C3:A1:A1:CF:B5:C2:F8:46:61:8F:2F:50:69:51:66:5C:B7:40:74:B0","sha256":"0D:77:24:2B:B5:24:E5:20:5F:99:9A:4F:51:93:65:79:E2:FF:1E:BA:9E:BF:E4:28:BA:34:F3:C4:83:0C:CF:21"}}},"request":{"raw":"GET /SNwBWhGB/banner2.jpg HTTP/1.1\r\nHost: i.postimg.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 11 Jan 2026 07:53:06 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 250485\r\nlast-modified: Wed, 07 Jan 2026 05:06:30 GMT\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000, public\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":250485,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, progressive, precision 8, 800x800, components 3","md5":"307d52f7149bcc6ca40f386da56dacb6","sha1":"fd38973917d0e9c77b40d027b85742c6e4bc8395","sha256":"42ef5602cba4a4795a9c6c87fdd8c9e16cd3096a42d558eff4133e600fdf42c1","sha512":"d468582c6700d69232ff0484b234f778c4374611d5c02a616e9fbd0340ec7899a797e73d44367ed0e32d816d95a1a4de4d53bd430af2d54992df05e852fdc059","ssdeep":"6144:57ochlSPG9cpkjIWVUdx+Xb6QUdNdeVRrtJQIKb:BlSPGyWRUdoX+QWD+9tKI6","tlshash":"2a3423e3b737bc10d38646bc869a3b7212dd1fe009fb9a8824f132d5754733e9a59468","first_seen":"2026-01-11T07:53:35.325719Z","last_seen":"2026-01-11T07:53:35.325719Z","times_seen":1,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":23,"receive":70,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"i.postimg.cc/QNBwtkqF/icon-raw.png","fqdn":"i.postimg.cc","domain":"postimg.cc","tld":"cc"},"ip":{"addr":"46.105.222.161","port":443,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:07.446Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"postimg.cc","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 15 Dec 2025 06:59:00 GMT","end":"Sun, 15 Mar 2026 06:58:59 GMT"},"fingerprint":{"sha1":"C3:A1:A1:CF:B5:C2:F8:46:61:8F:2F:50:69:51:66:5C:B7:40:74:B0","sha256":"0D:77:24:2B:B5:24:E5:20:5F:99:9A:4F:51:93:65:79:E2:FF:1E:BA:9E:BF:E4:28:BA:34:F3:C4:83:0C:CF:21"}}},"request":{"raw":"GET /QNBwtkqF/icon-raw.png HTTP/1.1\r\nHost: i.postimg.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 11 Jan 2026 07:53:07 GMT\r\ncontent-type: image/png\r\ncontent-length: 202159\r\nlast-modified: Mon, 05 Jan 2026 05:51:38 GMT\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000, public\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":202159,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"706144f6907a805d7a4de543a542ee1d","sha1":"40fc9f9bcd1f08fc1b38cc7ce95856ea4daaa836","sha256":"0480f22ad1e1be432577ab541e418b9340e5fa2403653c361b170ca5f65f28f6","sha512":"4ae41d62f8c5ada92e141d2f885d42dc40b316384406d6635c7f59fe2c83334a3635919771128fd587aec9cbc26f94763cca9f37ead2ac9dacf6715f33adfecc","ssdeep":"6144:7Vq/e+I2EO6ijNilCwwvZiQj8Siz8rOiy/nifP4:7Vq/XEONElJSEJiyPM4","tlshash":"a41423c7a941872294d1fd19276ff8ec3b379b681e0e56eae6d38812a0871f18f505f4","first_seen":"2025-06-08T12:46:22.973904Z","last_seen":"2026-01-11T07:53:35.328803Z","times_seen":6,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"i.postimg.cc/WpDC367F/lograwnano.png","fqdn":"i.postimg.cc","domain":"postimg.cc","tld":"cc"},"ip":{"addr":"46.105.222.161","port":443,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.125Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"postimg.cc","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 15 Dec 2025 06:59:00 GMT","end":"Sun, 15 Mar 2026 06:58:59 GMT"},"fingerprint":{"sha1":"C3:A1:A1:CF:B5:C2:F8:46:61:8F:2F:50:69:51:66:5C:B7:40:74:B0","sha256":"0D:77:24:2B:B5:24:E5:20:5F:99:9A:4F:51:93:65:79:E2:FF:1E:BA:9E:BF:E4:28:BA:34:F3:C4:83:0C:CF:21"}}},"request":{"raw":"GET /WpDC367F/lograwnano.png HTTP/1.1\r\nHost: i.postimg.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 11 Jan 2026 07:53:06 GMT\r\ncontent-type: image/png\r\ncontent-length: 37744\r\nlast-modified: Mon, 05 Jan 2026 05:51:38 GMT\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000, public\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":37744,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1000 x 220, 8-bit colormap, non-interlaced","md5":"c1eb3486f7d7c076700889b0443f3292","sha1":"b8799cab2acd008b60f83680a4b5d38a11ac9087","sha256":"9775326c92ccc14eb6cca8eef4e507145b35c85a8ab2affc86180e937d538530","sha512":"ee7b507d4d269044349efc16b67587b3ce4deddd1044b3c34a20433fe6b164465670368b70c02d4d239cb8581b41e05d1e790b038eef4555c2ec7b1b852a95e6","ssdeep":"768:V6WHS/c32Z4OMYLxHv95svIo/zA9jGdvgXpgruwhZ+kWE7khgS:MAwcGZ4OnLx15sN/zuqdvgpLsahgS","tlshash":"cd03f12228887253682e4f7c46a4bdc080c666d7d209a8637fd8ee452ff55d7b8ec359","first_seen":"2025-05-30T06:44:17.964244Z","last_seen":"2026-01-11T07:53:35.33009Z","times_seen":8,"resource_available":false,"data":null}},"time_used":334,"timings":{"blocked":127,"dns":68,"connect":30,"send":0,"wait":42,"receive":23,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/bca.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.127Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /bca.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"ee1167ca6ddce43dea19fea9640c6545\"\r\nContent-Type: image/webp\r\nAge: 1305407\r\nContent-Length: 4466\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:07 GMT\r\nEO-LOG-UUID: 7213857541733096288\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4466,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ee1167ca6ddce43dea19fea9640c6545","sha1":"6bf012a30f9a0f1e6881400325563066d1f523ab","sha256":"d72eeb6806fca9c3e5da7be04a602648740f1a375e5299092fa83acd556f9816","sha512":"9f5362f20df56bd4ea0481f64bc37c680674c2ae8121f3a55a9498ab3f3107514f9f6e213182ba75859f2fbc6f95951ed3305954da9708dc1e72428c4d711531","ssdeep":"96:qkoSbIJ2nlNhb1d0sZZeGcFnRAcv/U+mjiNn2VoentSAZK5aIat:toSbIJ2lfhkZFScvcTtg5aIe","tlshash":"fd913b48c3a853ecd1a8147f57625aa99389e00d91876656142bb8bf4cf533df72aa30","first_seen":"2025-11-24T05:06:28.112695Z","last_seen":"2026-04-06T05:47:32.687909Z","times_seen":91,"resource_available":false,"data":null}},"time_used":2140,"timings":{"blocked":1052,"dns":424,"connect":17,"send":0,"wait":19,"receive":1,"ssl":622},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/bri.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.129Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /bri.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"4788eced74e3ecb7806f276a3e84e32c\"\r\nContent-Type: image/webp\r\nAge: 1305408\r\nContent-Length: 1106\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:07 GMT\r\nEO-LOG-UUID: 14797558603974023635\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1106,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4788eced74e3ecb7806f276a3e84e32c","sha1":"e981510ea34f911ec7f5948a3071ccd7b1853df1","sha256":"2c772494e4192fa239b915c42296c62caed0ef06a1761905496a861fcb7574d6","sha512":"e1feac80720cfc985829c9e0e824a27ebf3d8e2017f92300806f20c95fafafe90f17f0dc3a54081fab90cbbfa7317420c61e701309190bcb84767fa928324de8","ssdeep":"","tlshash":"fd11c6daad8503dae990fff39a7060006f827a26c9a8a542701729b20017963c00afc4","first_seen":"2025-11-24T05:06:28.078302Z","last_seen":"2026-04-06T05:47:32.710979Z","times_seen":89,"resource_available":false,"data":null}},"time_used":1691,"timings":{"blocked":-1,"dns":422,"connect":19,"send":0,"wait":20,"receive":0,"ssl":1220},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/ovo.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.136Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /ovo.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"140dc185a3b57a3b1f4b5c4d0f1724a7\"\r\nContent-Type: image/webp\r\nAge: 1305405\r\nContent-Length: 3012\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:06 GMT\r\nEO-LOG-UUID: 4446190714683559985\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3012,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"140dc185a3b57a3b1f4b5c4d0f1724a7","sha1":"95835539e5afdf4ca5f55f167fdf9ef1bb1e4bad","sha256":"719b2382d06def41ed7eaee82bd3d37dbd43551fed4f9e89236ff2477aa67565","sha512":"decf75546046b537a52c75da1818b38cd7e9fe0f6c82e192f6c50b3729ec707508e42e71420b09f08325ad8b06868cf1d36fd84520f320d0ac22343dd75f0f9b","ssdeep":"","tlshash":"e9513b4bdac0056cebf07476d8d3c93bf882a0f886563a29494a31fd64d8a1d7d49f70","first_seen":"2025-11-24T05:06:28.088012Z","last_seen":"2026-04-06T05:47:32.692826Z","times_seen":93,"resource_available":false,"data":null}},"time_used":801,"timings":{"blocked":780,"dns":0,"connect":0,"send":0,"wait":20,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"i.postimg.cc/JzDjHxhT/istockphoto.jpg","fqdn":"i.postimg.cc","domain":"postimg.cc","tld":"cc"},"ip":{"addr":"46.105.222.161","port":443,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.164Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"postimg.cc","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 15 Dec 2025 06:59:00 GMT","end":"Sun, 15 Mar 2026 06:58:59 GMT"},"fingerprint":{"sha1":"C3:A1:A1:CF:B5:C2:F8:46:61:8F:2F:50:69:51:66:5C:B7:40:74:B0","sha256":"0D:77:24:2B:B5:24:E5:20:5F:99:9A:4F:51:93:65:79:E2:FF:1E:BA:9E:BF:E4:28:BA:34:F3:C4:83:0C:CF:21"}}},"request":{"raw":"GET /JzDjHxhT/istockphoto.jpg HTTP/1.1\r\nHost: i.postimg.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 11 Jan 2026 07:53:06 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 23131\r\nlast-modified: Mon, 05 Jan 2026 06:38:02 GMT\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000, public\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23131,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, description=Falling golden poker chips on dark background with lights, sparkles and bokeh. Vector illustration for casino, game design, fly, xresolution=214, yresolution=222], progressive, precision 8, 612x408, components 3","md5":"07f175bacaae1589955d30dab55718cf","sha1":"f4230cac9d4a8ddde2a7caf886dca4fd12af1265","sha256":"3f24d5198307dd492854e823a23d195816e438cad029a00e8c70f684369f0ffe","sha512":"a8b154ba6425188d820dd20bb6938da0f9f2c4e8b2029461823bfd1cd768b7206e591fe708619eb1142220c44e50d45ee9df0d4ecb882b66d1e09602e1ed6193","ssdeep":"384:HcKUnwOOAENC5bG4NcqiK3QmzEgNN+Hlww5vKD+6Ny0mGiktM9qUrQc8p7Rh5d:HmEmbG4aqiyQmF+OUUlIWM9KcCNXd","tlshash":"1ea2af3e1d086e05e1a2cf7479f7f3ab125a6ef4a1cf072ee4d952305421ab21eb1751","first_seen":"2026-01-11T07:53:35.335795Z","last_seen":"2026-01-11T07:53:35.335795Z","times_seen":1,"resource_available":false,"data":null}},"time_used":153,"timings":{"blocked":-1,"dns":37,"connect":23,"send":0,"wait":24,"receive":27,"ssl":42},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/mandiri.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.128Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /mandiri.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"29a381e77775da1aa9d177a24b8f1d25\"\r\nContent-Type: image/webp\r\nAge: 1305406\r\nContent-Length: 1338\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:06 GMT\r\nEO-LOG-UUID: 5847698043317485069\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1338,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"29a381e77775da1aa9d177a24b8f1d25","sha1":"53bcf555779129c6daf585c1fe4b85826bcd732f","sha256":"c5aeb819dccdde5bbbf612ddc8d1e62228f21f23cc172769e4770341b938e741","sha512":"23a5d37b64a81b6c0d8b69e03eb0351d53a42913a10b5203b3a9cd09029e6a28989169fc181279f7b6595cc57fa8c2be63e24cb6d15deceb63adcec50b4b2749","ssdeep":"","tlshash":"3321c88799f753509a88e45ab839ffdd8ed1724d9004d73c99eaa50d2c788102be465c","first_seen":"2025-11-24T05:06:28.103178Z","last_seen":"2026-04-06T05:47:32.702535Z","times_seen":90,"resource_available":false,"data":null}},"time_used":1523,"timings":{"blocked":739,"dns":423,"connect":19,"send":0,"wait":26,"receive":2,"ssl":299},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/bni.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.130Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /bni.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"2ad18c61adc3ace6d770bffb7bea94c2\"\r\nContent-Type: image/webp\r\nAge: 1305408\r\nContent-Length: 3972\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:07 GMT\r\nEO-LOG-UUID: 10351742850440874600\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3972,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"2ad18c61adc3ace6d770bffb7bea94c2","sha1":"1264ecf2f46f3334d9f451d588fd6ecee1114871","sha256":"b40e52388437db707197dd122d363c4fd50887a9fa8576170917f33a71f32f8b","sha512":"3f4ef6e9785cbd27430e00acd72663ee6424ed1865a18b4465eb9413b8cacc1781104aaf1d6ec019705597bf429333e92d77e24f9ffacc14c5dd4ca914e8d094","ssdeep":"","tlshash":"3e814a0cc354560ce281313fb291b316f5d0ce36564526a9ab8e3aef82e65889563e63","first_seen":"2025-11-24T05:06:28.108625Z","last_seen":"2026-04-06T05:47:32.677844Z","times_seen":89,"resource_available":false,"data":null}},"time_used":894,"timings":{"blocked":-1,"dns":422,"connect":19,"send":0,"wait":19,"receive":0,"ssl":428},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/permata.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /permata.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"fe365f932db522c4cb39463485d7b375\"\r\nContent-Type: image/webp\r\nAge: 639487\r\nContent-Length: 3696\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:06 GMT\r\nEO-LOG-UUID: 9949414526423741103\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3696,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"fe365f932db522c4cb39463485d7b375","sha1":"54b3d144204ebd0bb0133745a29baee5ba11d9b1","sha256":"38effacbbb361c62550afbc25b090d66a7d1def4aec8393b62760e664d5ed585","sha512":"f5ab4a12e74076d1560d3f3bea41d2ae712a70883a6ba784e544319170ad2d74dfa2677ecc87e0d80ef1738201f2e93685a3bd93b167f2e79fa2042030f7b341","ssdeep":"","tlshash":"60712c00d7a5c808e1d5093afdd14704fba2da95db5387e1c82b777b12b2308a7db315","first_seen":"2025-11-24T05:06:28.098318Z","last_seen":"2026-04-06T05:47:32.679866Z","times_seen":92,"resource_available":false,"data":null}},"time_used":802,"timings":{"blocked":772,"dns":0,"connect":0,"send":0,"wait":29,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/gopay.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.137Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /gopay.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"b7c788bd4f1a0c742c8660f0501d4550\"\r\nContent-Type: image/webp\r\nAge: 1305407\r\nContent-Length: 3828\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:06 GMT\r\nEO-LOG-UUID: 6198194358809211291\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3828,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"b7c788bd4f1a0c742c8660f0501d4550","sha1":"abd516bd75aa9a0281bf1dac435fe08a754f879d","sha256":"7c76abe7cca74ad6ba675e2ef5ab3078b9b4541c3481a5c7b7a1e93e2e08e333","sha512":"4963144930555c59dd4674e92696c71911b09aacc32667d6ee06f695a3a6de9b398b7ae94b8f51c34eac86c5ca4ab3ed2c94be55a08b6580732efecb59e0ba1f","ssdeep":"","tlshash":"14815c74eb525901d09419f268018b595d0bd0c8dfc023fa5ee6b0be2c38585f157af6","first_seen":"2025-11-24T05:06:28.068089Z","last_seen":"2026-04-06T05:47:32.695174Z","times_seen":91,"resource_available":false,"data":null}},"time_used":821,"timings":{"blocked":801,"dns":0,"connect":0,"send":0,"wait":19,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/dana.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.138Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /dana.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"405dd7c2dc996e16e679d6504410ffc0\"\r\nContent-Type: image/webp\r\nAge: 1305405\r\nContent-Length: 3362\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:06 GMT\r\nEO-LOG-UUID: 3929142904818265755\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3362,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"405dd7c2dc996e16e679d6504410ffc0","sha1":"3448c61187653f996c99c93ce0880b0d915b56d9","sha256":"0fb3722d931596b6a569533e298e86eb8bc7414457c7dedfdac361e38c6f2fe0","sha512":"557a1594cc94263cc0dd57f6a404b2ed272377860d77e6189f07a99d5c86a3baa1445fac77964f489c1ada9451f29d981709326366c27a8bcd0d08e2ef13c77d","ssdeep":"","tlshash":"99617f15d3a30d53f124997779ba9380a2c119538605d3e97103fcb6d0f14167fc77aa","first_seen":"2025-11-24T05:06:28.099711Z","last_seen":"2026-04-06T05:47:32.712557Z","times_seen":91,"resource_available":false,"data":null}},"time_used":821,"timings":{"blocked":800,"dns":0,"connect":0,"send":0,"wait":20,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/linkaja.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /linkaja.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"d3db9b229e1d8654fc1986ad479575bf\"\r\nContent-Type: image/webp\r\nAge: 1305405\r\nContent-Length: 3232\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:06 GMT\r\nEO-LOG-UUID: 4487731358066771712\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3232,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d3db9b229e1d8654fc1986ad479575bf","sha1":"ced4812448ec1cd337cfb306d008f8636b871add","sha256":"1bbf0d0b4611826d0b240473b0b4808ec3b510698dd75e7bae2d5d18d83ae3d3","sha512":"2858e4d1606636bb16b3adab39ec2823c5167330fb00fe962474b9e8a9cb2212f607d9610d083be0fb5dbb5fb38ad9c67d56e0a601fc4e9dde78762bd0eda714","ssdeep":"","tlshash":"40614bacc3615fc4fc9c98fe60e8d887b0d2d1250f5a8be72605303fa464457ea96a59","first_seen":"2025-11-24T05:06:28.070666Z","last_seen":"2026-04-06T05:47:32.704995Z","times_seen":92,"resource_available":false,"data":null}},"time_used":840,"timings":{"blocked":818,"dns":0,"connect":0,"send":0,"wait":20,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/footer.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /footer.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"8834a8fbbd13a887e31349bef87ad063\"\r\nContent-Type: image/webp\r\nAge: 1305405\r\nContent-Length: 1333998\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:06 GMT\r\nEO-LOG-UUID: 9964472070229520740\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1333998,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"617afa0e7487f69693062346aa4e693f","sha1":"324faa58d97ed7c822d184132e788b2ba2005589","sha256":"855c8b11b948dc1eb069c68ed475373b86f4c70b4c37b40c0fb7f0b5a222cdf4","sha512":"b0826f8a473a8fd6fe6f6cb5eaf12f07d81f988448158a12c2e4b9c8e5b65b3e55a6420e56d8eb2076f2a6e40b67b3384bf43b9f685ce43830ccec4ecca2d97a","ssdeep":"24576:4NYIMhlGTBsNVSwDzjsH+MelhYbQ8DnGOCQzY42y:yYIMOtsjBU0hYbnGOCQ8ly","tlshash":"64253303f6025d49d86ab2f63f8cca46c75b1e4f26de08e2b5157bd8f07a500bf91299","first_seen":"2025-09-01T16:54:13.229763Z","last_seen":"2026-04-05T19:58:23.311654Z","times_seen":89,"resource_available":false,"data":null}},"time_used":1096,"timings":{"blocked":821,"dns":0,"connect":0,"send":0,"wait":19,"receive":256,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"i.postimg.cc/QNBwtkqF/icon-raw.png","fqdn":"i.postimg.cc","domain":"postimg.cc","tld":"cc"},"ip":{"addr":"46.105.222.161","port":443,"asn":16276,"as":"OVH SAS","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:07.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"postimg.cc","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 15 Dec 2025 06:59:00 GMT","end":"Sun, 15 Mar 2026 06:58:59 GMT"},"fingerprint":{"sha1":"C3:A1:A1:CF:B5:C2:F8:46:61:8F:2F:50:69:51:66:5C:B7:40:74:B0","sha256":"0D:77:24:2B:B5:24:E5:20:5F:99:9A:4F:51:93:65:79:E2:FF:1E:BA:9E:BF:E4:28:BA:34:F3:C4:83:0C:CF:21"}}},"request":{"raw":"GET /QNBwtkqF/icon-raw.png HTTP/1.1\r\nHost: i.postimg.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 11 Jan 2026 07:53:07 GMT\r\ncontent-type: image/png\r\ncontent-length: 202159\r\nlast-modified: Mon, 05 Jan 2026 05:51:38 GMT\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000, public\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":202159,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"706144f6907a805d7a4de543a542ee1d","sha1":"40fc9f9bcd1f08fc1b38cc7ce95856ea4daaa836","sha256":"0480f22ad1e1be432577ab541e418b9340e5fa2403653c361b170ca5f65f28f6","sha512":"4ae41d62f8c5ada92e141d2f885d42dc40b316384406d6635c7f59fe2c83334a3635919771128fd587aec9cbc26f94763cca9f37ead2ac9dacf6715f33adfecc","ssdeep":"6144:7Vq/e+I2EO6ijNilCwwvZiQj8Siz8rOiy/nifP4:7Vq/XEONElJSEJiyPM4","tlshash":"a41423c7a941872294d1fd19276ff8ec3b379b681e0e56eae6d38812a0871f18f505f4","first_seen":"2025-06-08T12:46:22.973904Z","last_seen":"2026-01-11T07:53:35.328803Z","times_seen":6,"resource_available":false,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/online.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /online.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"d66b792fb15816f740777398448c4ef9\"\r\nContent-Type: image/webp\r\nAge: 1305406\r\nContent-Length: 3542\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:06 GMT\r\nEO-LOG-UUID: 17780021769868796220\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3542,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d66b792fb15816f740777398448c4ef9","sha1":"1759494726f9a2dc9f0ae18bef138f4212a804ea","sha256":"3fa7ef5746584f69cf993b1a7488c3c2c39ae29f4dd681c31c77de634ab241c1","sha512":"2e3a316a577bb8471623e533b841f7059a5106cf08e09602aaa8a9445200808d056c6954162f7790656d7c727d890d68bde0359492423ee02c8c422328611447","ssdeep":"","tlshash":"a9716c6a5540248eccf78f7e32ca8161b8932440fda50eb2b233bc77061388d7529dde","first_seen":"2025-11-24T05:06:28.096922Z","last_seen":"2026-04-06T05:47:32.676932Z","times_seen":89,"resource_available":false,"data":null}},"time_used":1536,"timings":{"blocked":740,"dns":424,"connect":17,"send":0,"wait":40,"receive":1,"ssl":311},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/danamon.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.131Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /danamon.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"34cb075b5e35d5e3c64a1360d5b4a0b0\"\r\nContent-Type: image/webp\r\nAge: 1305408\r\nContent-Length: 3856\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:07 GMT\r\nEO-LOG-UUID: 16023041778893662600\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3856,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"34cb075b5e35d5e3c64a1360d5b4a0b0","sha1":"b2b93a4360ae03efbef1bc5b40a035d651623751","sha256":"814949476ca9d0e9722f6883ccdec66c44adc0449820f58c11d89da35bbd67fc","sha512":"9ba9942bbab14c5ee1a4edd071a5782d41bf714a3e78fec32135e47b7ee06a92f1bdd898414aecfceb7918267134b4a2ffe5742e6a7b47b50e3ebcb80d3cfb49","ssdeep":"","tlshash":"85813b6ce3a03796d200727f7f11e3a43092c92eab79865b74db376a59e486c3601a24","first_seen":"2025-11-24T05:06:28.094727Z","last_seen":"2026-04-06T05:47:32.690296Z","times_seen":90,"resource_available":false,"data":null}},"time_used":1227,"timings":{"blocked":-1,"dns":421,"connect":19,"send":0,"wait":19,"receive":0,"ssl":765},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012512172008001/v0/amp-loader-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.761Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:50:23 GMT","end":"Wed, 25 Feb 2026 15:50:22 GMT"},"fingerprint":{"sha1":"8C:22:B0:36:FF:44:17:0C:D7:23:B5:FF:95:73:C9:21:89:15:5B:A8","sha256":"89:0D:D4:C7:A7:53:0B:46:DA:82:A1:15:39:BB:C8:3D:D7:5E:B7:2D:B4:21:52:28:84:00:82:ED:48:91:43:A1"}}},"request":{"raw":"GET /rtv/012512172008001/v0/amp-loader-0.1.js HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://situsrajadewa138menang.online\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 3929\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 10 Jan 2026 16:11:47 GMT\r\nexpires: Sun, 10 Jan 2027 16:11:47 GMT\r\ncache-control: public, max-age=31536000\r\netag: \"92c9d1fedaed92a6\"\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 56479\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12715,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (12600)","md5":"3c12b2dacd12a5520accf09092aa1ce9","sha1":"4edeeec1a527899467169d2815d31d175e048e41","sha256":"15f154d4ac29e4d2404df6f33f7b3452c73d484eb4a7e892b691ba82edbfecb0","sha512":"d7d01447f1c898d548df60e219f89019b85963f82d76c7eb492c290471d0270fa7891fab597804cbb9d4aa181c7e7798d823b5bedded122ceeea6554dc18f151","ssdeep":"192:XfQHMOgzKBbnnRrVGXoPqTbrO2tHZ0vHzMb5F4g5A4WR2vN:v0g2BbnnHs0PzMb5F4g5A4WR2vN","tlshash":"0142a364a54ba2ac530341b484fab906757ecd4fb8504035f0118edecf99f48bd3ba6e","first_seen":"2026-01-08T17:09:59.744158Z","last_seen":"2026-01-13T06:42:20.911111Z","times_seen":68,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"situsrajadewa138menang.online/","fqdn":"situsrajadewa138menang.online","domain":"situsrajadewa138menang.online","tld":"online"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-11T07:53:05.694Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"situsrajadewa138menang.online","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 06 Jan 2026 13:32:11 GMT","end":"Mon, 06 Apr 2026 14:30:47 GMT"},"fingerprint":{"sha1":"90:44:F3:F5:BE:D7:6B:84:FE:FA:A0:02:82:76:F0:5D:39:90:C5:ED","sha256":"B5:75:0E:3B:E6:06:BD:13:B1:71:B1:4A:9F:B5:D5:00:D0:1A:0D:FA:94:A6:8A:00:6D:28:D2:AD:78:58:71:01"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: situsrajadewa138menang.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 11 Jan 2026 07:53:05 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FJurVXQYAEFvYoZL5Pldb8BPB3W7qsPAb5hwKou0rkzC%2BBLfGfyNxBY9VoXifxS7IV5sfv0gVLcR%2Bsh0lp8f%2BmmRAaocozJGnOGl2kSZerlMnC0HFWvqTb51bnRK\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9bc2d6a309e2a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":82593,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"f02f19e6d4ed1a18e7b2528f1c7df286","sha1":"08867edf883187d2a964d96c9a908b78b0479db6","sha256":"a9dde73019bacec2bec787299e762a0585a857de16f00e4f63b2502ebfeb7ecf","sha512":"70c1e9a0c70ef689643b9025f984b0c7972b8f7e81089a3e783743f0dace55758fe71ad8fca8618e2fb1388391de98ea2ab6462939e447d54bea3c1ef428fcf6","ssdeep":"768:fF31L2QWJ5C4gV1rV4UkkfY8go0MoQEML0QV1le7MIR0qWlpVJ1RFR1JAhNAAlXM:dl9wfA/D29Bg/+iaG","tlshash":"fe83522b9663250e6803e57c37e82a463379e013d65afdb57ede9240cf49580cce27da","first_seen":"2026-01-11T07:53:35.346583Z","last_seen":"2026-01-11T07:53:35.346583Z","times_seen":1,"resource_available":false,"data":null}},"time_used":239,"timings":{"blocked":67,"dns":47,"connect":1,"send":0,"wait":106,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0/amp-carousel-0.2.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.121Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:50:23 GMT","end":"Wed, 25 Feb 2026 15:50:22 GMT"},"fingerprint":{"sha1":"8C:22:B0:36:FF:44:17:0C:D7:23:B5:FF:95:73:C9:21:89:15:5B:A8","sha256":"89:0D:D4:C7:A7:53:0B:46:DA:82:A1:15:39:BB:C8:3D:D7:5E:B7:2D:B4:21:52:28:84:00:82:ED:48:91:43:A1"}}},"request":{"raw":"GET /v0/amp-carousel-0.2.js HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\ncontent-type: text/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 9583\r\ndate: Sun, 11 Jan 2026 07:53:06 GMT\r\nexpires: Sun, 11 Jan 2026 07:53:06 GMT\r\ncache-control: private, max-age=604800, stale-while-revalidate=604800\r\netag: \"e9e369be51311d0a\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":34316,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (34199)","md5":"0663f93636afeca2bdb0ddb9decde5b3","sha1":"f7528706352b399c1838741ff930d63edd62ced1","sha256":"a8e0360df377c577dd259bd936d197da7cb3b2746ca6578389a910a338f4bb2a","sha512":"f792da44d65ab37cc216f259003d5810d4eea765c0de28a4ede02927d41c9cb278ddf569978406bb37dd5d26fcdace143723a4d11059067054308caac81eca65","ssdeep":"768:MZPxRg03ktuoD+zH81cTiGPtnMejq7yxSINwJmNT7:M/XguoDCHAWignMeWelwsB7","tlshash":"f4f2a76eb24270b90657f230402f550ea63ab45954890d2cb0aaddd2ed78e8df17bf3c","first_seen":"2026-01-09T05:26:05.803157Z","last_seen":"2026-01-13T06:42:20.902054Z","times_seen":13,"resource_available":true,"data":null}},"time_used":471,"timings":{"blocked":218,"dns":75,"connect":22,"send":0,"wait":23,"receive":1,"ssl":120},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:50:23 GMT","end":"Wed, 25 Feb 2026 15:50:22 GMT"},"fingerprint":{"sha1":"8C:22:B0:36:FF:44:17:0C:D7:23:B5:FF:95:73:C9:21:89:15:5B:A8","sha256":"89:0D:D4:C7:A7:53:0B:46:DA:82:A1:15:39:BB:C8:3D:D7:5E:B7:2D:B4:21:52:28:84:00:82:ED:48:91:43:A1"}}},"request":{"raw":"GET /v0.js HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\ncontent-type: text/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 73131\r\ndate: Sun, 11 Jan 2026 07:53:06 GMT\r\nexpires: Sun, 11 Jan 2026 07:53:06 GMT\r\ncache-control: private, max-age=3000, stale-while-revalidate=1206600\r\netag: \"99ec17f1a50230dc\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":284617,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (64627)","md5":"662e520d9941ad3541029cd61e3f2679","sha1":"ebff76fd0b9f7bfba23ad25165da309db6f0cf32","sha256":"1ed415cc7ef4a58b6d522ec6f5557dba25f9a62136ddc9265a1fc99cc5941cf8","sha512":"afc01f20b03f55999c00ca85a90cdc29e946d9d90326c288ca222ae627f7790b1fd5242de3d8a945499c37a5228b9015fe7beb3ab86f610e0f4da2e6056007e8","ssdeep":"3072:JSUdveOu6Pn+DJwPLtKSXI9pamwykP9bzR938ogQ:JSUdveOu6P+1wxKSXI9paxy89bzR9386","tlshash":"da54839db296b0714793b074803f150ae33ba959644a802cf56de9d67cbcd8aa037f7c","first_seen":"2026-01-08T17:09:59.7543Z","last_seen":"2026-01-13T06:42:20.918575Z","times_seen":91,"resource_available":true,"data":null}},"time_used":476,"timings":{"blocked":213,"dns":76,"connect":8,"send":0,"wait":19,"receive":16,"ssl":137},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/cimb.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.133Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /cimb.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"0d084b23dc239d6200bc2aa5467b1e61\"\r\nContent-Type: image/webp\r\nAge: 399053\r\nContent-Length: 3334\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:06 GMT\r\nEO-LOG-UUID: 16803916747012628826\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3334,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"0d084b23dc239d6200bc2aa5467b1e61","sha1":"5fe5a44231e4fbbbca15b6720f716a9d80890b6a","sha256":"11e57738d0ccd7aeae205991ab55a831247176b4b3c32f052154ad19e27f6da9","sha512":"1bc9ca938ddffbd41f31e23d0a10fdf5a2b5c4f7b1050f018e370d52b0fa3c4e111d9a9d8a15affcf38672f05b6454ced9d822fced5b976f5b8bddc607af3c10","ssdeep":"","tlshash":"27611905d22b5e9ceb90923728a04b64b6b42c349ed6676da24a60f38171601b384f54","first_seen":"2025-11-24T05:06:28.065564Z","last_seen":"2026-04-06T05:47:32.678917Z","times_seen":92,"resource_available":false,"data":null}},"time_used":783,"timings":{"blocked":763,"dns":0,"connect":0,"send":0,"wait":19,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"baubauindex.edgeone.dev/qris.webp","fqdn":"baubauindex.edgeone.dev","domain":"edgeone.dev","tld":"dev"},"ip":{"addr":"43.174.246.29","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.141Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.edgeone.dev","organization":"Tencent Technology (Shenzhen) Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Thu, 20 Nov 2025 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"92:CA:B6:6A:0A:FF:05:33:79:85:57:92:0C:82:B6:ED:89:51:FA:DA","sha256":"58:DE:5B:23:BF:52:57:E4:1D:9C:E5:9C:98:94:BD:03:41:42:D5:6E:F1:20:A6:40:F4:70:0C:F8:4C:F0:61:9B"}}},"request":{"raw":"GET /qris.webp HTTP/1.1\r\nHost: baubauindex.edgeone.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Sat, 27 Dec 2025 05:16:07 GMT\r\nEtag: \"116edff8080f009113cb7a21000b526f\"\r\nContent-Type: image/webp\r\nAge: 1305405\r\nContent-Length: 2850\r\nAccept-Ranges: bytes\r\nConnection: keep-alive\r\nServer: edgeone-pages\r\nCache-Control: public,max-age=3600,must-revalidate\r\nDate: Sun, 11 Jan 2026 07:53:06 GMT\r\nEO-LOG-UUID: 2740426985726226911\r\nEO-Cache-Status: Cache Hit\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2850,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"116edff8080f009113cb7a21000b526f","sha1":"54501d38a907cebbd889c290733d1aa1efdabf25","sha256":"128134d609d3adbd1d7cda184dfe653fd575646a17a4d60ac97d100d42327f02","sha512":"32d7d6b470b80a4398d246d05a09387f11f0780b6b9b0ef5f989c826216b9994470180297c7e8356d973c8092b8f65b1a82b3c30929bcfd4ed99d84f5346a600","ssdeep":"","tlshash":"ec51f90ad7191ed3c6c4b23b22e91d12b7981640cfb3d667069b35f68a293367191b54","first_seen":"2025-11-24T05:06:28.073084Z","last_seen":"2026-04-06T05:47:32.697504Z","times_seen":92,"resource_available":false,"data":null}},"time_used":840,"timings":{"blocked":818,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"baubauindex.edgeone.dev","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012512172008001/v0/amp-auto-lightbox-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.74.129","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://situsrajadewa138menang.online/","date":"2026-01-11T07:53:06.745Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:50:23 GMT","end":"Wed, 25 Feb 2026 15:50:22 GMT"},"fingerprint":{"sha1":"8C:22:B0:36:FF:44:17:0C:D7:23:B5:FF:95:73:C9:21:89:15:5B:A8","sha256":"89:0D:D4:C7:A7:53:0B:46:DA:82:A1:15:39:BB:C8:3D:D7:5E:B7:2D:B4:21:52:28:84:00:82:ED:48:91:43:A1"}}},"request":{"raw":"GET /rtv/012512172008001/v0/amp-auto-lightbox-0.1.js HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://situsrajadewa138menang.online\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://situsrajadewa138menang.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 2968\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 10 Jan 2026 18:44:41 GMT\r\nexpires: Sun, 10 Jan 2027 18:44:41 GMT\r\ncache-control: public, max-age=31536000\r\netag: \"4980d5b45ad2f221\"\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 47305\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7798,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (7676)","md5":"848010c9db4fed6d01c3c30fd14eff47","sha1":"a8cb8080b2bd50018114fa4cfb3cf3764b0ee8e9","sha256":"ffa696a5b8e75015bcf519415091e240bde44682ed8c1478c7da16eeb74636b4","sha512":"c16859ba1ac70f241899152d9f3ff8421ffb6e8fa0535d587c58106b2f05e6bcacfb3573b43eebb5ba38cb7cf695c4be6134af259706ef01e35b8db9ed993aa0","ssdeep":"96:JKoAosPGpV3yMDc0jGAM+G0mj1hVXxSZ4tqSKN0OV0TjLRkiGj0ldmq43bDjHI:JKqswV3yv0jGAFCPX/tqKyWp4M0rDTI","tlshash":"75f197dc7ac2b83a5753b4b780af414fa33ba94620ad9120d120f0d83cb995ed633e5c","first_seen":"2026-01-08T20:02:31.597502Z","last_seen":"2026-01-13T06:42:20.908693Z","times_seen":86,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}