{"report_id":"7f1d30bb-c953-49b2-a949-8df37fa14a3b","version":6,"status":"done","tags":[],"date":"2026-04-15T13:51:35Z","url":{"schema":"http","addr":"h5.higico.top","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":0,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"title":"BitGet","dom":{"size":39937,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (33480)","md5":"db20fc0f66facca4aa94a0333c4452ce","sha1":"3179d959614ea1ccea23baf3fbcf327e8725d43a","sha256":"35e34b92a21440dc5fe6f6239b4eaf20d816edc46537ae0635f5b9a308d537b5","sha512":"57b03aa0f8cd5b508b602fb300b554ae0297cb1dc6a0faca36d3882f12303655a435068b73771a85572e379e7ad2c39b89a06bc855ed21d6b6975cc5e10ad8c2","ssdeep":"384:O6sZCxq2tdboZVIKFpFGFXFTFOUFwFF2FE1S+XVYxWI:ODQxq2t1qrSVJOcciE0gYxWI","tlshash":"0f031460a04056a352b399d1f061be3b76daf30f841e86457baec1870fe3cbdbd59069","dom_hash":"domhashc865e958fbc4294bc6a8943068658035","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"h5.higico.top","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":0,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-20T13:51:35Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":13,"urlquery":0,"analyzer":2}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:13Z","timestamp":1776261073,"ip_dst":{"addr":"Client IP","port":58004,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"severity":"medium","alert":"ET DROP Spamhaus DROP Listed Traffic Inbound group 63","source":"{\"timestamp\":\"2026-04-15T13:51:13.963946+0000\",\"flow_id\":1671711192897459,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"223.26.62.92\",\"src_port\":443,\"dest_ip\":\"172.18.0.18\",\"dest_port\":58004,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.Evil\",\"ET.DROPIP\"]},\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2400062,\"rev\":4421,\"signature\":\"ET DROP Spamhaus DROP Listed Traffic Inbound group 63\",\"category\":\"Misc Attack\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Any\"],\"created_at\":[\"2010_12_30\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Dshield\"],\"updated_at\":[\"2025_08_01\"]}},\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":1,\"bytes_toserver\":74,\"bytes_toclient\":74,\"start\":\"2026-04-15T13:51:13.710579+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:18Z","timestamp":1776261078,"ip_dst":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":48030,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:18.590103+0000\",\"flow_id\":1185937507152428,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":48030,\"dest_ip\":\"47.79.64.188\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"hkex-taizi.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":753,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:18.061996+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:18Z","timestamp":1776261078,"ip_dst":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":48012,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:18.603687+0000\",\"flow_id\":1683951850025057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":48012,\"dest_ip\":\"47.79.64.188\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"hkex-taizi.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":753,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:18.061537+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:18Z","timestamp":1776261078,"ip_dst":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":48016,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:18.615704+0000\",\"flow_id\":261351307407670,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":48016,\"dest_ip\":\"47.79.64.188\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"hkex-taizi.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":753,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:18.061750+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:18Z","timestamp":1776261078,"ip_dst":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":48020,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:18.623070+0000\",\"flow_id\":1366987558547895,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":48020,\"dest_ip\":\"47.79.64.188\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"hkex-taizi.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:18.061879+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:18Z","timestamp":1776261078,"ip_dst":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":48040,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:18.631381+0000\",\"flow_id\":2111472894669476,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":48040,\"dest_ip\":\"47.79.64.188\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"hkex-taizi.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:18.062116+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:18Z","timestamp":1776261078,"ip_dst":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":48050,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:18.634299+0000\",\"flow_id\":830224020730657,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":48050,\"dest_ip\":\"47.79.64.188\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"hkex-taizi.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:18.062241+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:18Z","timestamp":1776261078,"ip_dst":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":48060,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:18.840641+0000\",\"flow_id\":1751438671136593,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":48060,\"dest_ip\":\"47.79.64.188\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"hkex-taizi.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":753,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:18.313169+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:18Z","timestamp":1776261078,"ip_dst":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":48070,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:18.843228+0000\",\"flow_id\":1436621863307331,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":48070,\"dest_ip\":\"47.79.64.188\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"hkex-taizi.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:18.313411+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:18Z","timestamp":1776261078,"ip_dst":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":48062,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:18.851461+0000\",\"flow_id\":74610424334224,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":48062,\"dest_ip\":\"47.79.64.188\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"hkex-taizi.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":753,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:18.313232+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:18Z","timestamp":1776261078,"ip_dst":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":48064,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:18.854999+0000\",\"flow_id\":332707894052858,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":48064,\"dest_ip\":\"47.79.64.188\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"hkex-taizi.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":753,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:18.313338+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:18Z","timestamp":1776261078,"ip_dst":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":48074,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:18.859541+0000\",\"flow_id\":582262673819793,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":48074,\"dest_ip\":\"47.79.64.188\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"hkex-taizi.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:18.313489+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:18Z","timestamp":1776261078,"ip_dst":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":48052,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:18.876151+0000\",\"flow_id\":67210195683053,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":48052,\"dest_ip\":\"47.79.64.188\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"hkex-taizi.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:18.313069+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"webapi.higico.top","ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":17,"request_count":17,"received_data":64209,"sent_data":8620,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"domain_registered":"2012-04-01","domain_rank":0,"first_seen":"2025-03-18T04:05:56.971819Z","last_seen":"2026-03-19T00:28:24.226146Z","alert_count":0,"request_count":34,"received_data":798754,"sent_data":15821,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"bin.bnbstatic.com","ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2018-03-27","domain_rank":229363,"first_seen":"2019-06-17T01:31:06Z","last_seen":"2026-04-05T08:18:29.147565Z","alert_count":0,"request_count":19,"received_data":112548,"sent_data":9118,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}]},{"fqdn":"h5.higico.top","ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2026-02-11","domain_rank":0,"first_seen":"2026-04-15T13:51:37.991353Z","last_seen":"2026-04-15T13:51:40.127249Z","alert_count":35,"request_count":35,"received_data":3519939,"sent_data":14477,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"h5.higico.top/charting_library/charting_library.min.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","size":10859,"data":"","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-04-25T23:17:27.986996Z","times_seen":740,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/vendor-cb847d51.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"4e15cf88953a0bdfd5a0cb3808d9c999","sha1":"a431fb53f6557db68f2ad95e50bc919f9d837031","sha256":"a71b939f3fd03a283495c7735559e7b49e9c4e808a51e298cfee043a6be421a2","sha512":"460076dd4e88bb0d78441874ee67c663b3c92b5c076ac1b19577da0ff752671bb5641d79e5afbfb88b2e2c3cd8f9390626b705e9e307e4417b94c7a1e7a71f29","ssdeep":"12288:CcFae4xeZMRVDwifTzbB9dw/Xbri8L1w672vI/+a8o2aqWl6yj4Ga2Be:CcFn4xLVUUTZ941w67viaqWl6yZa2g","tlshash":"801529c57292f06147ab24e240bb0006f3396e59744e84a4f1ad98db7d79d89e2b7f3c","size":880718,"data":"","first_seen":"2026-04-15T13:51:48.626543Z","last_seen":"2026-04-15T13:52:07.251264Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"b335940eb295aa108183265d26e8c036","sha1":"9be5815b01b9475c1d42a1303bd55ffadfabe2fa","sha256":"160355d6b307010930ed289f915a9ce9f33c7bd573871056290f03fb82c4f191","sha512":"c77df65ea39482a8d6c45c6b8e37a61ead9b2ebd5dda4a9174abe228cb796c765f2d0b0a3b37e73af13f8b6b256ed206a5fecbd2b6891ad2ab8e5f66cbc1944b","ssdeep":"","tlshash":"8011abfe292a602a6303804e976b7801742250a9001a184177ccdb9dbb9ab7dd0cfb8c","size":1048,"data":"","first_seen":"2026-04-15T13:51:48.68135Z","last_seen":"2026-04-15T13:52:07.326553Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"94cb806f13187b76d16e8079124171c5","sha1":"be4a8d1cf84b787988d13ce1525597114ffda19f","sha256":"8d842a1f950c7dae6582c415825541111a6556359dc37380452abbb9c426b1d1","sha512":"280cc32cda89db02b4cb60e620a1c175194998afeb2c4bea92194c0c4f335d00a8e35d4c1ca28c2f4201c4654493fc96a581e54175ed4ee4153af805d69c10df","ssdeep":"","tlshash":"62c08cc8a0c32d101603a92020af29e490384027b14c1b038de4d8492ea30b48233ee8","size":149,"data":"","first_seen":"2024-01-05T03:21:28Z","last_seen":"2026-04-25T23:17:28.011675Z","times_seen":194,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"83678961efc93c088d42dd78bc6ea6dd","sha1":"8007d82eec4894fa2867c628e925f1fcfa443fa3","sha256":"d6045334796ceaf006da578968c4ce319e6d4127c9c36ea88297daf6c6713026","sha512":"cd5e028a3850ceca98e01b30d338a9874404eba5a4d8fce81855dc9f8a6189c9c202e6caf3fe736b10295b4c81a1361a68fda5abeeca58d358c8fdb9c02a282d","ssdeep":"","tlshash":"13c08cc4a0c23e106602681124af24e4a0244027704c6b02cde4d8492ea34b8a233e98","size":147,"data":"","first_seen":"2023-07-28T08:36:26Z","last_seen":"2026-04-26T01:02:47.721882Z","times_seen":476,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d98acc1019303c876db914a972334937","sha1":"73807338e5295d0e4a62fbf19a5258d5cc93e72c","sha256":"864aa8328e7915cfbea7a8773cd622fbf24494c9b6019a076bef6e3f795e7d9d","sha512":"77d7c9975e811e66a77b15f141c84b12ae3aa0f991d15d2864c3c3ce082e0da5f4154d93424ae8580ebd93a1c7231752fbf22ef82ce7a01d997287d2d854d1af","ssdeep":"","tlshash":"e6c08cc8a0c32d001a13642210ff34e4d03440a6b44d1f028dd4e8493e624b09333edc","size":150,"data":"","first_seen":"2024-01-05T03:21:28Z","last_seen":"2026-04-25T23:17:28.023268Z","times_seen":337,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"cd7a34e714de94d5c29b8ac5acdde24b","sha1":"b722bccb435490630d97ef88cafeb02d92f70fd0","sha256":"312ebfdc50a0e168cff60c206811b02e944263a7d9060c2685509dacfacd7f71","sha512":"a724bc648a508c24e5bb1788e1f02b47030893bbb0b80a99e380d95480095983a35d8ec11193c53f0a67db47a289ab608fcbc9dbca846bfdd5d61a8832290f43","ssdeep":"","tlshash":"58e07d48ff28c7f316ce28ab516e770858d104d58c1b58024cebccc86935ed87291527","size":314,"data":"","first_seen":"2023-03-11T11:23:25Z","last_seen":"2026-04-26T10:10:36.911997Z","times_seen":31944,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/currencyItem-033891ba.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"5ec2d979a0cb8ce60a7a9627740fa1f6","sha1":"7b4a1e8c7803aeee6204be70c04d378c4d3cd0cd","sha256":"c293b1d923b879c88cffd79cb2f7f7bd9f2caf1a894454b6d64d05d3a2efec90","sha512":"10e23dd23c969444fd7059197dafe6d42ee2cce1697e37c70e95552e56cecebcebc445a404286c98c8c32478b1576061270743068b2ea605f8da8b9750356119","ssdeep":"","tlshash":"5021df9a9a02cbb1cabe906281bd4414130d7fda700181c1efed048a379b6fcd728a31","size":1206,"data":"","first_seen":"2026-04-15T13:51:48.615132Z","last_seen":"2026-04-15T13:52:07.244015Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5948bc3b90afab1829ab7ee61269f24e","sha1":"517e29a82521418181f702543be8ae74a3bf68b3","sha256":"14fc83a84c91770211dc352186f8e87ddc85e87c2dba0c80a159b45897b9ae2d","sha512":"05c079bbf0389ad341941c3e837aca91dc9aff681cee8da0b4560551ba13e6bbb76b01213af6514e6991e3369062870866a41e67e6d67a37038ddba3ddee7d5f","ssdeep":"","tlshash":"a5c08cc4a0c26d002606691010af24e49028802670485b028c94e8592e264b08233ea8","size":139,"data":"","first_seen":"2023-07-01T13:40:07Z","last_seen":"2026-04-25T23:17:28.023786Z","times_seen":756,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"ba78027dcfdc9eb09767e4e83301b631","sha1":"1b7e7e0f0922b9165de433222ba8cc4afd0c59b2","sha256":"3de67c074b8692e1861e1c651848411308eb4c90e96f491e9cddc2df529a5da5","sha512":"158882fe08ddcf7bd297cd25a0e7b518789ef98ffa6ba9f14d1b565993ddd00de407f5be64c5c8a819e7a01c4da5887b21ba51f65308cd238c10076951e9e499","ssdeep":"","tlshash":"8ac08cd4a0c62d009646a51116ef36e4a0248026b8486b47cce4ec482e230b08633ea8","size":152,"data":"","first_seen":"2024-01-21T00:00:16Z","last_seen":"2026-04-25T23:17:28.008674Z","times_seen":266,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a4bdcb8203f55c2a0d42fe2daeba7f94","sha1":"28d4fb637c1f7d7cfc979d90f4f388d62eb58a51","sha256":"386fe5926fc7fa712f45c79142ec5390c9082ce14bd96a609004647fb1f4d823","sha512":"09dd6e53cd308472025baff2f600acd0b5be74b4d557bf48d7402cf6147449fa01db100adc90a5ea3930e80b42a5a2a1782265620c3f940cc93f60e873363d5e","ssdeep":"","tlshash":"c6c08cc8a1c33d001602661060bf35e4a0288026714c5b128cd4e8492f230b88237e98","size":145,"data":"","first_seen":"2023-06-06T19:23:28Z","last_seen":"2026-04-25T23:17:28.024849Z","times_seen":503,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d8a0b36a3bb5359d82373fd74ab0a55b","sha1":"109fcd2e9501021577ad657d5701aa40e771b723","sha256":"26b23c11a596c1301030aaa5e72296226d0b2c601ff7b24694d413a401ac9826","sha512":"ebb5fb5d0b9ad70253bc33b31f5fab9fa0efb74a89eefd5b900d6b956970a52ef306b8e62a73b47775339624aef7daf7f4779743b84394f80591c0ea8182f9fe","ssdeep":"","tlshash":"d8c08cc4a0d22d001a02641060af34e49028442670481b028ca4d8482e620b48233e98","size":138,"data":"","first_seen":"2023-06-06T09:30:31Z","last_seen":"2026-04-25T23:17:28.013571Z","times_seen":1036,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"207820ea30e8c69ce04100e8526ac9b2","sha1":"289c2ffded67dd3ddfa4bfbbba56b6f8043610a9","sha256":"1fd71a67efe14f91b321e3f476ef6de1ac2329e77f5720cd37ae6589fb074b69","sha512":"d1237fe7e4dbcbfe699ee7e9b4b30d9963a1919d1451c928aa9af64326dfb7a7d43f8bde094fdd4dab7a65a070422f6904cdea73eaac2fb4225f0bb1c8d6df5e","ssdeep":"","tlshash":"30c08cc5b0c36e10261ba85050ef34e490248027b04c1b038da4e8892e630f08237e98","size":148,"data":"","first_seen":"2024-01-21T00:00:16Z","last_seen":"2026-04-25T23:17:28.010573Z","times_seen":248,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"528dd01eb509d1fc3c68b48e165c9d77","sha1":"8d702f33d869eb8c53cf75c17014f96385322395","sha256":"b508dff20bdbd9138e31aa48c45bc501805e509d2fd4709b39c4a60cd5c6b43a","sha512":"4c1edeec560f431005363ff5291acc80c1c42edf7c9a6d6e4fde2f7539b6a35a8e36f0bc228503263277bf5df4525dc579575faadca614c32e5dfa885a2d343b","ssdeep":"","tlshash":"78a012bb71b851710cd51ba7a40455e01c20123105052c101c8d5151c011c171d394c0","size":84,"data":"","first_seen":"2023-04-07T06:55:59Z","last_seen":"2026-04-26T10:04:48.34753Z","times_seen":35299,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-d921e416.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"7ad4f0e658bef6d953d37cc72381aafb","sha1":"c26acb4069a7c81409d9c7503fdb8b657d4391ba","sha256":"60aa3cd91d02f2160c03fb29ddca75211a6680bf5aef2e8360f370b319e3fdf2","sha512":"dc4455d38c3d47457fe8def86022b8e7f09e5b9b04c64099a5d7f0ba656daf74ff06c86f80f48d6b7c62c433c535fa5eb60e6cba16038befe29ed0e26b0f9983","ssdeep":"96:l+Cfp9YIqD+wSvxQMyntb1kiGnRbT33hvzA3X6NthIjR:l+Cf7YIqiwSyntbi39nhv0XQKR","tlshash":"87a1b799f50285bfe9671440488c041021ac7bfaf21548f5fbbead0a67b897dd758326","size":4664,"data":"","first_seen":"2026-04-15T13:51:48.621131Z","last_seen":"2026-04-15T13:52:07.204022Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/filters-6f450bfe.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"5c4e8f32261fa0efc81a74349769fd7f","sha1":"fdfa7aa0bded096caabf55a6315b798741486a70","sha256":"d01f1cd63d000f56a2c0e60cc5f67532e28ff826a7176c911fe04cddc9f6140c","sha512":"97a6a56d0c1c34227cc01f8dcb93e029b13a5b939e2fbab2d6afd848ebf42d5e274c9accd973ff9bf4c9a66036027c67b8b564c60ad7d567a9c1d8e3bc2adc81","ssdeep":"","tlshash":"fe5134fdfdd7a13356ea6af940288054728ebe20686e0a4df54bd0455a33888e07f768","size":3102,"data":"","first_seen":"2026-04-15T13:51:48.670534Z","last_seen":"2026-04-15T13:52:07.231216Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-e0a77853.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"a91c9719247ce2cbcb2e08d4f7f60944","sha1":"1a3659c74962bc788c2e504139c5b62c88daa288","sha256":"48e9d6c319375f3724a83615f6945bb0b638c58965860fd1ed1d454c28d7a237","sha512":"5870cdc32da3be1832d97cb8c867fc9aadbee0df0951ad84159de06acfc00a9be927b39c4a3920e67eafbab85e28d2d7d4eee8318df1de8a61c9c7750e7fa7cf","ssdeep":"","tlshash":"6901b8f8fd1dcebb0ea20a4141d13601140a2fddfa1419e198867e6a2be4990dbde72d","size":776,"data":"","first_seen":"2026-04-15T13:51:48.604779Z","last_seen":"2026-04-15T13:52:07.206408Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7992e31a8cccfccfc5dbb6dd2f4153ef","sha1":"63e0fd2876ed6f506cb0217361354e36808832fc","sha256":"61630eace3f2725ddede5712da2f59599ae241d0c68ab90d6bcaba03c9045d72","sha512":"7f270daca7f5dab9f451b6717ac360309e729395491fdf74e9031dab6ebc3d9a607d3d7349fb0b2ff497b412aefd3629136d2c8e6f2ceca5b483af02909e0248","ssdeep":"","tlshash":"12c08cc8a0c6ad002602661011ef24e4a034802770482b028cd8d8582ea30b08233ea8","size":141,"data":"","first_seen":"2023-07-22T08:22:39Z","last_seen":"2026-04-15T13:52:07.348733Z","times_seen":85,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f19a249a3e546a75d19b9d3f75497cdd","sha1":"4fcf8a4234dc76c37cb9415dd3c2d4820fb45a30","sha256":"8f0b9cbdf1999a03131eed312b7dc7ab85a5ddbf696e4805d240a61cdf5066b2","sha512":"7f999eee3d080218db37b9bd7ae6ca464771276ae0eb378b537d24635f5d700aede00359099b8e2197cc4f36e56162a46110fbdb85f213ed5ada51d9875a7402","ssdeep":"","tlshash":"c5c08cc9a2c22d001646641014bf28f4902480277048ab038dd4dc892e620f0823be9c","size":146,"data":"","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-04-25T09:06:34.332401Z","times_seen":347,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7746993e8adb9277ba5afa2584910974","sha1":"8e7e6d562fd56f594b40b6657156d483d7426e40","sha256":"833dc15f120cad89d5c0680edae217dbad02010e42af351959607df4170074ee","sha512":"10ee66e22fa45386057f1385e179955ad4fd4d53363c0aebe68aa9ba0547bf409a286e53ab6e678e5d0c3485d6cabcdd359f359c5258160b50a0a5a5496d6e6d","ssdeep":"","tlshash":"39c08cc5a0c22e101646641010bf28e49024402674481b028c98d8482e220b08233e9c","size":140,"data":"","first_seen":"2023-04-13T07:32:13Z","last_seen":"2026-04-26T07:44:06.156616Z","times_seen":3142,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"afd6dadb9533533d8514ac548303e331","sha1":"0b297795e161099658da59b3912482e86732e56d","sha256":"e378d3c8bb137aed4116bdd0c560231896d500f4edbb80088c14fd8fb220c3a9","sha512":"0df2fd8eb6e505ad35fff7e135feb15d50d1ae87d9990d9fa472fb834b7baf48ca73b3e8850042c74584e60de2daa8b9a4a981e5bef460ab48ad5f8ddb5d03e6","ssdeep":"","tlshash":"6cc08cc4a0c22d101602661014bf29e59024802671881b42cc94e8882e220f08233e98","size":140,"data":"","first_seen":"2023-06-06T09:30:31Z","last_seen":"2026-04-25T23:17:28.024234Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"278057704bc2f5b395a7faa3504c87fb","sha1":"e9f959def896414dbc0881b54b74e0cdb0549568","sha256":"73888a7f2ba7287a0a69f8cdb65121aeeb3c2a8dd9bd512a9246fa8322f71172","sha512":"7903e78b45dad1f4e64e7493b58494ef2b8c4284d3dbdcb79366919f1029dd4f89b24bfa74a5e11612cc146063dae3e7b682696a6cc8f1ab882056c6827b33ef","ssdeep":"","tlshash":"77c08cc8e0c62e002a02641424af24e490244026b04c1b468da5d84c2e328b49233f9c","size":145,"data":"","first_seen":"2026-04-15T13:51:48.688833Z","last_seen":"2026-04-15T13:52:07.345919Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"df55055f75e2187c0c3ffd3298e162c2","sha1":"dc0db5a52df96c5c7636f6c0aef602a6ff8d0042","sha256":"34d238e0facf0645b79ceb771e2969c69c252c99e63f22e7fcd3dcfc6d7ba0ff","sha512":"e903ff7edc9a3fe9051dacfd58d309f38e5f7689fa9749821e071171fee8dded977be371a8cfafd49c12a8e2501483f77fa64b0e732c827d0b5c0cca892cd137","ssdeep":"","tlshash":"4fc08cc4a0c33e102656641054bf25e490244027b0481b468cf4d8493e630b08233e98","size":144,"data":"","first_seen":"2024-01-05T03:21:28Z","last_seen":"2026-04-23T16:02:09.209829Z","times_seen":102,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"361e9d9b886c9f2b98f57c626c09b9d8","sha1":"01032a33013459a8de015112421c1a9e467f5d44","sha256":"b96071e372b614f6406f0b01ed200e24be43c5c21eac83934e41d7dd6f70ec38","sha512":"c3dc60f09e32481fa8a331627b2cd7911592847e3e0e82721694d14205de941a15ef18259c871c5957195b1ca8b3b63a8109390863f3f8d48e5e8a7d3f8b02dc","ssdeep":"","tlshash":"8bc08cc4a0c22e102602641010bf38e49024402774881b028cd4d8482e230b08233edc","size":140,"data":"","first_seen":"2023-12-19T15:12:13Z","last_seen":"2026-04-25T23:17:28.011116Z","times_seen":334,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c1155eee87487f5efe9634a03695b16c","sha1":"2532dae40bd8f2c93a9eb7cbb00bf21e050124b1","sha256":"41c9b4311d7a14bda7da372afb964f0bf08f0823e01617a967aa9eb2554d298b","sha512":"ae1174eea2e3597d1ecd46bea51c7948e05095c00c03cb3670e5b62dd0c14abd26e7c3643fda485610290a4426fa92d0c9d7920303a7bdbc659f735313f2ea48","ssdeep":"","tlshash":"28c08cc4b1d22e106606641010af36e490298426b08c1b028ca8e8892e260b08237fec","size":148,"data":"","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-04-25T23:17:28.014632Z","times_seen":252,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-91b009d7.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"bb3303abcce6a78521bf1317feebad8e","sha1":"8facceb7508036d3e45c2ad2752374d0beece3f6","sha256":"337c96f63aa79c547ab43f7baad42e78bbd41ccd19e78539579f438a845d9285","sha512":"a882d61c10923e03107ca40d62cebef205cb261b77870e47eeb392663c644331be02262869e3e24cca587777982c41527a7ca6bb8315ae07537a955403bb57c0","ssdeep":"384:QwkAPLwq/FcadhFVAFfiKeALcyT1Ze17rpay++BWmCiortpgxBpUuaptNG/8:QfJ0dTVAFfP/iR++BWmCiortpgxBpUuQ","tlshash":"c662b696f9069a3cf5fbb45144890410b21e7fdf500c84e2b4bdad86a753ebcb78a61c","size":14529,"data":"","first_seen":"2026-04-15T13:51:48.609158Z","last_seen":"2026-04-15T13:52:07.308444Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c0e88513b499aae066f13f6f0edfedab","sha1":"12fd9320e7be26e9257e2a1a39a698a5e2706292","sha256":"3ffd5a1fea533c35c122aeb0a36f3d4a37022e0a14c83167faeaa819b3ee8cfd","sha512":"36b57e74aa71e21ec5489637f206796e8b9097db32c59e4ffbbdd7eb11ce35c2f754178f996bd6e11abc560cdddd3af7cde3fc1847c1a455120b5c26ee4fb838","ssdeep":"","tlshash":"17c08cc8b0c6ad001602e45111bf25e4a024802770481b128d98e8483e220f48233e9c","size":139,"data":"","first_seen":"2023-08-29T11:10:58Z","last_seen":"2026-04-25T23:17:28.013059Z","times_seen":644,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/en-40741543.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"c81eff8baf5dc3cfccd1d5490e1d974d","sha1":"6859b1e93702ace736d4f425a3c59730d9723e45","sha256":"63159046984a9518c2cbc61b83bd6d6c0a9195d625f5a6614d5e46477cdb37f6","sha512":"e76edf6a8777c9ff5f6415694a9bebf12755f1b29e3bd6fd3c8659696230dff199d2e26ab15e97079cb8f2157c5f897e5e7cea3b1268e495a79c1dfe8da73392","ssdeep":"768:+GtZcEw/o7rKO8AFsiBnAMC2rAaAMywoP6+6sPG9w1mwO6fpk7aOLka:iponKO8eFE2rdywLsPWwqLka","tlshash":"d603d6897e1a889a04f3537674ce6e1120f60ac18255881f4fedc9fd93d2b67a367b34","size":40462,"data":"","first_seen":"2026-04-15T13:51:48.655137Z","last_seen":"2026-04-15T13:52:07.314074Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-f8c480aa.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"82d433ae2fafd38e6c43ad66ec0ebec9","sha1":"1f47a84a2c67cafca663224fd47bcaa57421df7c","sha256":"f1c04c0923b7dff51a457d9df32cc8625e7bbb1499072475b91f7d331bd05da9","sha512":"00eb61afd0e3cfb4ecb56301b44b0d1948c5406b23559ec7adbfd39879c3ed787c22e67002e7c208dfc3b77505264335181d0fe82dcdcf90df0b794554d9a579","ssdeep":"768:wnn6BRm/gpPk3nA/AK3etOHoK1FdL/amr9gaUe2RYpWY5T33NtantV3Ia7YJtCiU:wfmvn3dgaQyotV3n7Y3W5FEcwwXMJnYf","tlshash":"05a33989a40b1fff69bd0844a94b551030a81fd35c8dcc97b7ba6e0927fece86359718","size":100464,"data":"","first_seen":"2026-04-15T13:51:48.625262Z","last_seen":"2026-04-15T13:52:07.283781Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"9d379fc52463f2b630c6894900da5180","sha1":"b33fecceae6c1ef97518c6ad7159534d78e7b2f7","sha256":"6c3288c6af4396096b1a8a927fbfaf05ac8cc29658fc97d13cf036ba6bb38ab3","sha512":"49b43b0c253e26c135bd5009d73c537cf2e78342ef6b116ce6efbd3627152ac804449ec5cbe637a544b5557b52a50213a19dfcf33158a4f6b0a8ff91d79372d5","ssdeep":"","tlshash":"61c012c5a0da29102951595424bf28e8a024c026b55c6b169de4dda829e64fcc627d98","size":190,"data":"","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-04-25T23:17:28.026886Z","times_seen":455,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f2f5a4f08c8536ee9b64126b563cd62c","sha1":"15d57cd315463221c807ad74b0e19578dd90f7a5","sha256":"1fce7bdbc1acea81dde9287f6971529e3cc024b01b1ebcd537ce4f16e064b760","sha512":"204e680610bbc982bcb79334b0acd7f7f3c101fcd0b0d384925c0d0f1dbb4fb222d259d164c7cf5a339887dc471086b3dcb2ca246f6af92c95526c91a4ac0427","ssdeep":"","tlshash":"48c08cd8a1cb6d005682b41459bf3ae4a0344027745cab139ce4dc682e230b48233e9c","size":158,"data":"","first_seen":"2024-01-21T00:00:16Z","last_seen":"2026-04-25T23:17:28.015194Z","times_seen":263,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"ad53bdca95253da3ed0339a52f219d8e","sha1":"1acba9622b6c70c03ce56310becd1d72226538e4","sha256":"3fecdc9cf7339d52588891d5d7b0c4b4ebfd82fe813b141fd5b81fdc70694f81","sha512":"d2bf6f0a88bbc044c6aab45f1f8795b3aafcf709a0a2b294f27062c0c34e1f34ec3964286f776c55a40a412cdf01c2ace59fdf7981fd69c6d8a63a6791ff8d3e","ssdeep":"","tlshash":"61c08cc4a0c22d001a02645014bf24e4a024802770481b02dcd8d8483e220b08233e98","size":137,"data":"","first_seen":"2023-05-08T20:49:31Z","last_seen":"2026-04-25T23:17:28.022776Z","times_seen":717,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c464eee61a30b35747e8e9848e60be3e","sha1":"3b58c9c7de2dd7f0322fd7bb9947ad3a01ac8cce","sha256":"955a99d585122831f4cabbe60b7755379393349c40795ff761e7ce78b3e491d7","sha512":"d548dacba908d5bd228c19df9e45083444741e1151dc914e356f01fd7fcb666a7077df8a57af5bc72e249160aa32ce3e40c77f22dc01fb2af95a6c3d19be3e4f","ssdeep":"","tlshash":"d3e0abeb3139c16456f09f2b6cec4c1bf69b27334d8c050bf8b4a9051ebad64227c894","size":420,"data":"","first_seen":"2024-07-24T17:37:43Z","last_seen":"2026-04-23T16:06:19.347742Z","times_seen":335,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-10f47220.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"1bc6c42503fcfdd83074aca66a4a5f58","sha1":"5a3d4d064e0d65f44ecbf5583ad075f61a8404e3","sha256":"e04018fd8c792b08db7a75e0f394b0ecca543432a4123c33466047e60f3946c5","sha512":"715a6ab379fddaabd96273263491ad5a2035f852467f1e83c1d4989ae6ff3fd088a0b2a10e643fe66774a4df8a774ef3bc2028182c0be494da436bd8d3a86dcf","ssdeep":"","tlshash":"a8f0052f7a7e90721bb344e850630411b63d1b893b90c1b4d9ca1614573c8e7d16e514","size":510,"data":"","first_seen":"2026-04-15T13:51:48.66783Z","last_seen":"2026-04-15T13:52:07.246661Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"0f40806f855fc503ec7fe0e2cdc6da5f","sha1":"ad59d99993690064ee6565eea713ee4c5260f572","sha256":"954bc1931a5584c910a5391a0e2c05ba7190f3c672433a85c162ac948a74a44f","sha512":"7ea9c1cffaf640bc7083f2306a134368aa54ae775230a1f1990c43817594d950ecbf94412ea7ab6262bb8add4715ab6fffe7579f85b0a1c07f6acc4f8207cd9e","ssdeep":"","tlshash":"1fc08cc4a0c2ad001a12649010af24e49034402770481b029c94e8492e220b08237e98","size":137,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-04-26T07:44:06.191332Z","times_seen":4785,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/#/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"088a6aa95783926cdda35b9bd61df402","sha1":"6bcc7a91394c2ec7d95c5a259f70e51ffa50dc29","sha256":"5efd1243926a95339e0c10066db940873b88a24070c8c70285adfdad50e7cfa6","sha512":"ec608e74458bb6cb3e0aaa13c9b2b17d814407459c022a625fe862a385518d367444c170f2fa700db1196c2f7c94ca5b7197e27023ad87c03daa1008dc96b767","ssdeep":"","tlshash":"aec08cc4a0c22d005656641018af34e890244027b04c1b128de8d8482e620b09333ea8","size":142,"data":"","first_seen":"2024-07-07T15:46:54Z","last_seen":"2026-04-25T23:17:28.022244Z","times_seen":317,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/bicon/echo2.0bfad8d8fa6ad48cb9560fd95e2784217.jpg?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /bicon/echo2.0bfad8d8fa6ad48cb9560fd95e2784217.jpg?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 55728\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7AFAD5B3631F1A602\r\nAccept-Ranges: bytes\r\nETag: \"48384A67185DBDFEEF3AA43C99D3319C\"\r\nLast-Modified: Thu, 26 Dec 2024 11:07:21 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 3192987439189544564\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: SDhKZxhdvf7vOqQ8mdMxnA==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":55728,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"48384a67185dbdfeef3aa43c99d3319c","sha1":"23e15189bebafbbec8b23e8ed0f3392a9b7979ee","sha256":"1ceba4efa6a645fbe532e520385f37001922e14b6aa7b4ebeb19e755014feb39","sha512":"2f7a13f56ff64b874a76994d00f198c5fc2b7424181935e641eb81bcf171db54fa50b711502c0c4a7e8f5c934ed5747233d87ae0602916244947d3724eb3ce10","ssdeep":"1536:5ko5w6RHlzxqElMwBI6M3iD+oLKTn6EPwhk6g9p6uP5I:x5fR9xjlMGnMSDYLPJ6bOq","tlshash":"0d430247c0529ed2c68853aa0e3de48a84779d12358f80577ce6525a82e2df29bd770f","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-04-25T23:17:27.989555Z","times_seen":460,"resource_available":false,"data":null}},"time_used":1616,"timings":{"blocked":1292,"dns":0,"connect":0,"send":0,"wait":289,"receive":35,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/bicon/tron.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.165Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /bicon/tron.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 28273\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D78B90443032B53236\r\nAccept-Ranges: bytes\r\nETag: \"D5CA5F90C7A46CB88E5F57B2D3046BA8\"\r\nLast-Modified: Wed, 25 Dec 2024 03:19:12 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 651333452456791640\r\nx-oss-storage-class: Standard\r\nx-oss-meta-cb-modifiedtime: Wed, 25 Dec 2024 03:17:09 GMT\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 1cpfkMekbLiOX1ey0wRrqA==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":28273,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"d5ca5f90c7a46cb88e5f57b2d3046ba8","sha1":"4a46fba9e1f7e0419539519e1936e6002f99b3a8","sha256":"a584af003890eeb5d527e91031218b66fc8d429ce7d8ddc5f5ceb9efaf627a40","sha512":"60e2cb71c7155b2f51159c37f53d85c567698b9baec7ffc34ec898df057fb64e2528909f68df9e901bf5243a4ee451f0ff432e210db1635ca0c448073e7811e2","ssdeep":"768:CXuoEFXvWj4CBn04bX73fOlLiRO2lFIVmfSD:9FXvWj4CueDGlLmOuIcqD","tlshash":"b2c2d005f8f592ca744cc6104925cd97f273a15b30a53eda3ddcca6f7f9c9e916a0282","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-04-25T23:17:27.969928Z","times_seen":414,"resource_available":false,"data":null}},"time_used":1616,"timings":{"blocked":1313,"dns":0,"connect":0,"send":0,"wait":292,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/images/20191211/d2f05b7e-25c3-4403-9249-0861c221a6c9.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.221Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /images/20191211/d2f05b7e-25c3-4403-9249-0861c221a6c9.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1992\r\nlast-modified: Tue, 30 Apr 2024 05:37:54 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: pqxw8vtWm5aEwfNES0wPr0nR62xZJ8os\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 15 Apr 2026 02:08:17 GMT\r\netag: \"78cb1f9d22a4e6df711675738d5d42b8\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: _b8a4l7-jT35Y0qSUqWbI9xAhdxLh3kdXXWEWhkXyqrhJNjlwEKQhw==\r\nage: 42487\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1992,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 49 x 49, 8-bit/color RGBA, non-interlaced","md5":"78cb1f9d22a4e6df711675738d5d42b8","sha1":"fced8e50b3f6c9b98fac6dfc1df98ee5658569d9","sha256":"a4207a1d0b8d4efc7f2a4cec55bc94285ad67ea6265c3cca761668695c69ac1b","sha512":"ce08a7de56687d7aedfd6bab917865795e86e55e9f518939b00cb13cd0c049ae7d7058612414daae358f43ca6562761816f4013b1d970d5e90f507634426f957","ssdeep":"","tlshash":"e5412cfe02be11bac68d0f792c94ad4039b7c74677f6525a2c44224c2225689e6b01a7","first_seen":"2025-10-18T15:54:25.739769Z","last_seen":"2026-04-15T13:52:07.297242Z","times_seen":3,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/resource/svg/dark/mengbanzu13.svg?2.0.1775477975809","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.108Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /resource/svg/dark/mengbanzu13.svg?2.0.1775477975809 HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:18 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 10 Jun 2025 17:11:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6848672a-4a1\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1185,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3b6fc8c64fb8368c10c3da40b3359d9f","sha1":"c5874cf077b1a37d959e6bcf80396c74c347a74d","sha256":"34b3795c12635f732476bc933c46567206333d28a63ac042b7b3b2b7791da4b6","sha512":"e85237f1a02e414827f0496bc2598ab73d5e100fa0f81a430dd909927a2de301844f2d22af43db043c92c5348390db8f79dbdf90eb70ecaa7577ff784dbf678c","ssdeep":"","tlshash":"a12163b9c51152ca62814f88dbec2606623ef167f3f54d9cb39026b20e78d9f15bca31","first_seen":"2026-04-15T13:51:48.602439Z","last_seen":"2026-04-15T13:52:07.257037Z","times_seen":2,"resource_available":false,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/tttt/2.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.671Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /tttt/2.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:20 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 14636\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D8AFAD5B3631AEA702\r\nAccept-Ranges: bytes\r\nETag: \"D7A4FA5D47110E8AECF0CE51CF82FA91\"\r\nLast-Modified: Thu, 12 Jun 2025 14:36:53 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 1064363325053289647\r\nx-oss-storage-class: Standard\r\nx-oss-meta-cb-modifiedtime: Thu, 12 Jun 2025 14:30:50 GMT\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 16T6XUcRDors8M5Rz4L6kQ==\r\nx-oss-server-time: 3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":14636,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 480x250, components 3","md5":"d7a4fa5d47110e8aecf0ce51cf82fa91","sha1":"eae4fb4e93d96d36ad5063b463c9d371b8e546a2","sha256":"230388856ab954497ee2a1f058359744bc7d9996d340e3a3c4fffcab6c60416d","sha512":"c9e33ccd0f3ca42877bba3e35693a5aa40f4b2e03dc83946b0026eeeed0fbfc1a4ae6a8a972c4260517aca687bd32f5cd2cb9142480f47643f2e3ef563e8b752","ssdeep":"384:I39HO9H3QRLx0/kZ2oUOQjogZDyd09xj79GV5:0u9XQRLCkZ2Ixr09xj7IV5","tlshash":"3f62d0973a53e9cece05717407f78a01cbbab45923c5590f3c45d5d22af42684fb0ab8","first_seen":"2026-04-15T13:51:48.603316Z","last_seen":"2026-04-15T13:52:07.282885Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1686,"timings":{"blocked":1396,"dns":0,"connect":0,"send":0,"wait":289,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/platform/dev/logo_144.png?2.0.1775477975809","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.650Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /platform/dev/logo_144.png?2.0.1775477975809 HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 01 Nov 2023 21:05:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6542bd9a-b5c\"\r\nexpires: Fri, 15 May 2026 13:51:17 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2908,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced","md5":"9a5a67a3b984ab223eef25ac3f419432","sha1":"5b07513414db526d86d32c3b8f42c0dbb62a8e71","sha256":"38055609c5d61aad696e97b746489c7f886b79cc069326312c6a111062019777","sha512":"4f610ac72700d9727ff6d32567b7d71a582a8c87eb067e4f33a8a910c66968514277df68c0794d1db6ce3a94ed0111003a71afd8cab40dcb3bc062dfb9f14bad","ssdeep":"","tlshash":"0c5119e6d89d003a4dd329b7b0f03e45fe7ab5fb5ab6330480972b3065552ab84d8327","first_seen":"2024-10-20T08:32:52.883488Z","last_seen":"2026-04-23T16:04:31.251506Z","times_seen":120,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-e0a77853.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.686Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-e0a77853.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 776\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\netag: \"69d41558-308\"\r\nexpires: Thu, 16 Apr 2026 01:51:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":776,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (775)","md5":"a91c9719247ce2cbcb2e08d4f7f60944","sha1":"1a3659c74962bc788c2e504139c5b62c88daa288","sha256":"48e9d6c319375f3724a83615f6945bb0b638c58965860fd1ed1d454c28d7a237","sha512":"5870cdc32da3be1832d97cb8c867fc9aadbee0df0951ad84159de06acfc00a9be927b39c4a3920e67eafbab85e28d2d7d4eee8318df1de8a61c9c7750e7fa7cf","ssdeep":"","tlshash":"6901b8f8fd1dcebb0ea20a4141d13601140a2fddfa1419e198867e6a2be4990dbde72d","first_seen":"2026-04-15T13:51:48.604779Z","last_seen":"2026-04-15T13:52:07.206408Z","times_seen":2,"resource_available":true,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.0fe67b244d4d542a59ffb2928e46b795b.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.106Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.0fe67b244d4d542a59ffb2928e46b795b.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 9208\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D74C8B3734390ADBB2\r\nAccept-Ranges: bytes\r\nETag: \"44DED28EA7D92BBB202E7F821AA7242F\"\r\nLast-Modified: Thu, 12 Jun 2025 13:18:21 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 6063044623441955734\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: RN7SjqfZK7sgLn+CGqckLw==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":9208,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"44ded28ea7d92bbb202e7f821aa7242f","sha1":"d7ca89fd17a4e07cc582c48a814d2042c6eaa06d","sha256":"6049b81c5f00b234c80366aced0488f89e7d0900a8951c0a01ddd728c18a732f","sha512":"c51b441e6d09564f13a70aa7985cf0f5bfa157985afef7c42c52c580f8c4522940c82a31325716d0da44acb2a0334234929139d532a8e0dc5672762f499b8ab0","ssdeep":"192:VRoDOCs62EW4Gc9fCDFs5H+DzqKJK5OzHvT0h4T+91nJlpn3996:9tJFqMSH2qKdHYh4TSg","tlshash":"da12bfa0e724caba80d645511e7e6d6dde6122a64f9c76c9f3cf0c13b85465cc34c8d3","first_seen":"2026-04-15T13:51:48.605548Z","last_seen":"2026-04-15T13:52:07.291531Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1320,"timings":{"blocked":1048,"dns":0,"connect":0,"send":0,"wait":271,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/resource/svg/dark/zu29.svg?2.0.1775477975809","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.111Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /resource/svg/dark/zu29.svg?2.0.1775477975809 HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:18 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 837\r\nlast-modified: Tue, 10 Jun 2025 17:11:06 GMT\r\netag: \"6848672a-345\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":837,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"aca147bebc66382ff06c995153e7bcfa","sha1":"01171fdf13f05b4a26f21735f5128ae8da7f8186","sha256":"f1b7ede2ddb9bc551265b009fdca7d2d686a7ae5a56918f4cf5523821702735a","sha512":"6dfb33721f3dcaeb5e81fd4f00313307a8d359ad51fcbf5a4fd365c69afe71a57b0159bd42db1049ad0d539335485f0c91c4c829356366c670b6f0976cd1660f","ssdeep":"","tlshash":"750112bf073aa3fdd6544680ead426d9343de042e16404ecb3817e17bf2061a0abcd91","first_seen":"2026-04-15T13:51:48.606382Z","last_seen":"2026-04-15T13:52:07.299159Z","times_seen":2,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/images/20200810/876bb636-935c-45c6-8f93-762c65985e9a.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.195Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /images/20200810/876bb636-935c-45c6-8f93-762c65985e9a.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2056\r\nlast-modified: Tue, 30 Apr 2024 05:40:49 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: W_ttV9iHQq28ZgC1dErvwHzqXM1HJGse\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 15 Apr 2026 06:38:10 GMT\r\netag: \"5dfcf0b67e712853e6324060f8d14c70\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: iwRwV3riLBo2JZC2upDPXxJTRiUU2q5SkllWATCj6oPtHvOgBMH3LA==\r\nage: 26137\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":2056,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"5dfcf0b67e712853e6324060f8d14c70","sha1":"a1c5b8ae6c752a9d89177a19e323d4743f6f5ded","sha256":"b7042d5495a7cbe66464eddc64553c161ca31095ce1ab93bfc74027662b19a06","sha512":"ea4d7f4564ebcabcbcf77cf8feb0e31e2ea5b33a3a31a35911f072e53239ee5495bdf3d5cd75b77296550ee993672e9ed249c6e33f94a16862442b30151d54f8","ssdeep":"","tlshash":"8a411871fac1f629415c0a7e0206a04c9c19f38a72d85c91cc9bf8c881a360567eaf9e","first_seen":"2023-10-22T04:22:56Z","last_seen":"2026-04-15T13:52:07.214668Z","times_seen":60,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":-1,"dns":11,"connect":10,"send":0,"wait":58,"receive":0,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/common/getAllSetting","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.929Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:19 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14016,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"c79f5e3c6cf41ee840ed2e09e8f84782","sha1":"87c340cb722e93f8770f98fa155d9ca102889488","sha256":"5f74e8232b35094b7a80504f7c8af4d39c0b1659de9b2d50b7471f7c8372ab02","sha512":"5f2da175a84f04c14bd4fe457ece5d79acbf01791f5d104d354e662f5bf4b4d6f5f1c3ec27649716ffa6a2e63559503a11b265081725271faa84b7bc8b99d8a8","ssdeep":"192:kmtj3tzkOSgQ+oYD+RbNc2hvDSkHqtmi9WKARJn4qf1N8pmNi2F8azFI2seNqsqf:n1clqa4e1m4b+aJI2FbLAA5C5lkzO0S","tlshash":"c652340a33d4dcbd82d619c6d4a73a4eb8cc3dab95d49c45e8d6ef8c858a9b2440f10f","first_seen":"2026-04-15T13:51:48.607802Z","last_seen":"2026-04-15T13:52:07.278311Z","times_seen":2,"resource_available":false,"data":null}},"time_used":281,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":281,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/vendor-72ef657d.css","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:14.663Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/vendor-72ef657d.css HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:14 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-16997\"\r\nexpires: Thu, 16 Apr 2026 01:51:14 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":92567,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65022), with no line terminators","md5":"b40940e3efd47e3e653fe1fbec0ab363","sha1":"3911d44e1bceb07e83746e6bc68de9dbb587b11a","sha256":"72ef657df5906e9f23040a4ceb49985bf894ddcb4324d7d873a0c20b15d3e864","sha512":"f3706c9146b2091fb1a864ab4180d0a1538e801686af21bab4c7231421859a99fba7dd694632faaf1c457fb06711fcb16809e2221fe692c16390e7e98ccbf4d5","ssdeep":"1536:ZTIyNBi3MFYaQj73rx3WqyrtpqoSWEDZEnX73:ZdN0rxmNH9yDWr3","tlshash":"0193c5a5e9c4a1fc6f26f6659b4766d8f13cf661cc01daa0f109512d0fc7bf50223a2a","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-04-22T17:43:48.536888Z","times_seen":206,"resource_available":false,"data":null}},"time_used":630,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":630,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-91b009d7.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.388Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-91b009d7.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-38c1\"\r\nexpires: Thu, 16 Apr 2026 01:51:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14529,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (14520)","md5":"bb3303abcce6a78521bf1317feebad8e","sha1":"8facceb7508036d3e45c2ad2752374d0beece3f6","sha256":"337c96f63aa79c547ab43f7baad42e78bbd41ccd19e78539579f438a845d9285","sha512":"a882d61c10923e03107ca40d62cebef205cb261b77870e47eeb392663c644331be02262869e3e24cca587777982c41527a7ca6bb8315ae07537a955403bb57c0","ssdeep":"384:QwkAPLwq/FcadhFVAFfiKeALcyT1Ze17rpay++BWmCiortpgxBpUuaptNG/8:QfJ0dTVAFfP/iR++BWmCiortpgxBpUuQ","tlshash":"c662b696f9069a3cf5fbb45144890410b21e7fdf500c84e2b4bdad86a753ebcb78a61c","first_seen":"2026-04-15T13:51:48.609158Z","last_seen":"2026-04-15T13:52:07.308444Z","times_seen":2,"resource_available":true,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/common/getMt5Amount?coin=xag","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.926Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=xag HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:18 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":47,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"c1ef6ca3f68972e14c020c29a5be2c9b","sha1":"a65890be4ee067b28ded4fc1de5b6435e128426f","sha256":"8dc66d95f3bef28a7f2e409d185274b1fa782fd10e43a885bd553a57f2d56409","sha512":"f6c94b50df74454918537084d923078b2dc198ed201715612da56036452ed601f94e78228b4affe9acaf9c8fdcc3156cd7067a387e7860eb986bc3f9d0e76322","ssdeep":"","tlshash":"aa9002555c1c8252e88300a5a50a1208002431602624925c4c59512581981a3204489c","first_seen":"2026-04-15T13:51:48.610023Z","last_seen":"2026-04-15T13:51:48.610023Z","times_seen":1,"resource_available":false,"data":null}},"time_used":262,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":262,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.0151d4f65207e43f092e1f7c14da3caaf.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.0151d4f65207e43f092e1f7c14da3caaf.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 7381\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7E6135831330B6614\r\nAccept-Ranges: bytes\r\nETag: \"302651975DDE5993434367E432FBF127\"\r\nLast-Modified: Tue, 10 Jun 2025 10:40:10 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10186657491533006291\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: MCZRl13eWZNDQ2fkMvvxJw==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":7381,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"302651975dde5993434367e432fbf127","sha1":"9f2de7d92a51d7035cc7f99cd7ad0b9781c34d66","sha256":"15718377ea0115483b41beb42cdb026f71d79b0df925b72d187ca5be8bfb7284","sha512":"782974c5b18626920a692a7cfe63bd8e074dbac021aaec90df091b59e2f722373d0de146d9ce4c53c82c1568e356ed0121fc872888d4220af6dad401e301fb08","ssdeep":"192:DZ0OlTuGM8RO/QNBZT4h9H0FbD89tYEmCHdjb2:iau+O/gZT4zHO38bcCHU","tlshash":"0be1ae74c9a1d7f34ee4a0aa8122f98e55b114f4fb95c7842082cbca3c6066b59d0708","first_seen":"2026-04-15T13:51:48.610868Z","last_seen":"2026-04-15T13:52:07.322437Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1674,"timings":{"blocked":816,"dns":0,"connect":0,"send":0,"wait":288,"receive":1,"ssl":569},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/image/admin_mgs_image_upload/20210128/2db1e7c6-b866-4884-aab7-7ef569fd8b12.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.190Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /image/admin_mgs_image_upload/20210128/2db1e7c6-b866-4884-aab7-7ef569fd8b12.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 49731\r\ndate: Mon, 15 Dec 2025 11:12:47 GMT\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 28 Jan 2021 01:28:30 GMT\r\netag: \"c9698bc300ff7086c558a7dbe2719bd4\"\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: ACbelSTVPgH2uMTTLztlCuK7BV2YvQeL\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: PCkPCYQCjD-thNmNoSjo5fwUDnKx1CYN2UG2Lp1waxXbfe-yEQi4fw==\r\nage: 10463911\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":49731,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 960 x 960, 8-bit colormap, non-interlaced","md5":"c9698bc300ff7086c558a7dbe2719bd4","sha1":"25f15b645f8687444f9fdcff4e503cb70933db85","sha256":"03e35df7ec2c3787b53caa1f082e3d5f0409b662ce023b3f7e5b0d2a1744e1f5","sha512":"f23e8f81206ec01399cafedeab956fe8a3421890b4bba1fe9beb70e14913d8e320eb315ab30a7417edd321fc057ab0cb37c7f333957ffd610dcb7b60d8d874e5","ssdeep":"1536:f5rYX6uTubKMncxicNNcw3H7PPnM3SNWiAlo4gw:fR/bKh00iw3DPnM3+WV9","tlshash":"ef2302b60ccd19f2d21a3ee874f5d81cf67e927e694ecf03435b2a5a1054c1a1b5c21a","first_seen":"2025-07-06T22:01:43.393068Z","last_seen":"2026-04-15T13:52:07.293194Z","times_seen":12,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":28,"dns":0,"connect":0,"send":0,"wait":46,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/images/20200424/47687ce7-57a6-4965-96ae-b5592cb609a8.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.186Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /images/20200424/47687ce7-57a6-4965-96ae-b5592cb609a8.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3944\r\nlast-modified: Tue, 30 Apr 2024 05:39:23 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 72S5eI50cluZ3kQMhH1eVOhPTBA0MT7x\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 15 Apr 2026 08:57:16 GMT\r\netag: \"6ed2f60e93443938723cb19850f3a810\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: JS3OV6yWNt7gunl09z8vd9z5e87BlXFn8ZfJnk4VgY_GBiWhtWtTFw==\r\nage: 17643\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":3944,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 4-bit colormap, non-interlaced","md5":"6ed2f60e93443938723cb19850f3a810","sha1":"084c0617960a9ee8c044aa3b7e7f5b33041bc3d5","sha256":"ae194621779010061ac29b2f7a54e1d6e37658ab190acbfcf8d46f5391c2c0b8","sha512":"256606e0422409a67fb5cea2b7b35c205712885b4b180861887aa205321ad9135a114095e163cd0fb0f9ec18742680cd35467d4e37e5439cf24185e351effaf4","ssdeep":"","tlshash":"e1816d28744e7d7b4bf3d9131b8555d105d5e630883b42be1dc742cdd3f9e884a8e848","first_seen":"2025-07-06T22:01:43.355571Z","last_seen":"2026-04-15T13:52:07.212619Z","times_seen":10,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":32,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/common/getAllSetting","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.240Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T10:03:08.222447Z","times_seen":14220713,"resource_available":true,"data":null}},"time_used":1760,"timings":{"blocked":751,"dns":236,"connect":252,"send":0,"wait":257,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/currencyItem-652d9ee1.css","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/currencyItem-652d9ee1.css HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:16 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-6d2\"\r\nexpires: Thu, 16 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1746,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1745)","md5":"61b7c4c89b661d21b6db4a9f815d290f","sha1":"a1e0e05c67de229a761b04693379243d1b0f2d35","sha256":"652d9ee19204cb66d66ea5c0ad1f87efc32716d7e1e4384341fcca11cbdc5722","sha512":"c37c8150132e7b51916fe3512a03f1ec3f849182ce038fc7b2017215f2c0c5c376f4132cf56c2f07acb201d8700e37f96e90fcb1672500fbbef703145c0db16d","ssdeep":"","tlshash":"85318c8453160374d937c8867eac815bd0583f82904b57c9e88f9a271defaa72e7096d","first_seen":"2026-04-15T13:51:48.61436Z","last_seen":"2026-04-15T13:52:07.325322Z","times_seen":2,"resource_available":false,"data":null}},"time_used":942,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":942,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/currencyItem-033891ba.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.305Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/currencyItem-033891ba.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:16 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-4b6\"\r\nexpires: Thu, 16 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1206,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1205)","md5":"5ec2d979a0cb8ce60a7a9627740fa1f6","sha1":"7b4a1e8c7803aeee6204be70c04d378c4d3cd0cd","sha256":"c293b1d923b879c88cffd79cb2f7f7bd9f2caf1a894454b6d64d05d3a2efec90","sha512":"10e23dd23c969444fd7059197dafe6d42ee2cce1697e37c70e95552e56cecebcebc445a404286c98c8c32478b1576061270743068b2ea605f8da8b9750356119","ssdeep":"","tlshash":"5021df9a9a02cbb1cabe906281bd4414130d7fda700181c1efed048a379b6fcd728a31","first_seen":"2026-04-15T13:51:48.615132Z","last_seen":"2026-04-15T13:52:07.244015Z","times_seen":2,"resource_available":true,"data":null}},"time_used":944,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":944,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/platform/dev/favicon.ico?2.0.1775477975809","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.653Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /platform/dev/favicon.ico?2.0.1775477975809 HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 836\r\nlast-modified: Tue, 10 Jun 2025 18:56:12 GMT\r\netag: \"68487fcc-344\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":836,"size_decoded":0,"mime_type":"image/x-icon","magic":"PNG image data, 144 x 144, 8-bit colormap, non-interlaced","md5":"423084691598a88bd2a268d0686096bf","sha1":"842912805dc79d328d33e022f1e0c769b5690937","sha256":"0f6b3da5e84e0fc448608de5898cab1d63f43f49ea4ab8db3fd76f4fef3bdbd7","sha512":"d71546a03698f6a95ab8e2568e1dedb03df26099125b8274b54b6b5fed52ca7dfbe54309d46f2916a480a53e06c38ecf257aea753c0032f432ef437d1644a897","ssdeep":"","tlshash":"150186ae2bd0e0504ebc2abfd8c44eaed1913c90651701f578b70265866e43ab54518b","first_seen":"2024-04-05T15:11:14Z","last_seen":"2026-04-22T03:52:58.373959Z","times_seen":52,"resource_available":false,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/common/getMt5Amount?coin=xag","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"OPTIONS /api/common/getMt5Amount?coin=xag HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T10:03:08.222447Z","times_seen":14220713,"resource_available":true,"data":null}},"time_used":252,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.0ff892203b1724c19a405b17fca0d47b7.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.054Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.0ff892203b1724c19a405b17fca0d47b7.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:20 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 18096\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D8AFAD5B363103A802\r\nAccept-Ranges: bytes\r\nETag: \"62F40F5F42ECB71234D8386E09588329\"\r\nLast-Modified: Tue, 10 Jun 2025 10:51:09 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 11600078306083100771\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: YvQPX0LstxI02DhuCViDKQ==\r\nx-oss-server-time: 3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":18096,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"62f40f5f42ecb71234d8386e09588329","sha1":"ad7133d1d330062c3fa0dc8d027b0707fd8305f2","sha256":"ced7260b0e735c5dd14df0d2a65021060e16e70500ea9cd743c0d4169cd1e480","sha512":"8f188ae236b8e50db53e5f931fddfebc625dfca9df583e6765aa6a8c1de0f438d5ab040e33f488df0330ec952d9beee096e4edcb97604bbd63a208d7ea377ebc","ssdeep":"384:pmjTGdtqR0C6wW+YY2+3QqGNGDpWK5u1e8RXkBI7QsURMAT0osbINGT2:pmmPqR0C6h+rBDpfMz4O8NGT2","tlshash":"2882d10593f5e25818728ffcca7c147774b29aa8694fd23d3314b6d635e5a01a1f087b","first_seen":"2026-04-15T13:51:48.617228Z","last_seen":"2026-04-15T13:52:07.277201Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2595,"timings":{"blocked":2303,"dns":0,"connect":0,"send":0,"wait":289,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.026201b285d0340d99e93c0a4d48b55d3.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.026201b285d0340d99e93c0a4d48b55d3.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 11669\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7AFAD5B363164A602\r\nAccept-Ranges: bytes\r\nETag: \"50B850E2736BEC9DFC70ADDAA3C8F01C\"\r\nLast-Modified: Tue, 10 Jun 2025 10:38:31 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10339770409053134586\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: ULhQ4nNr7J38cK3ao8jwHA==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":11669,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"50b850e2736bec9dfc70addaa3c8f01c","sha1":"e121c8254f942546709dead2f9c40252c72ef1ca","sha256":"d731eb2e53d1cb65211767c029f6da37cfe998e6963af0d5bafaec465481d408","sha512":"859f4af9100a9b24b9ec3bdadfc612f492b73194607982c144ec800c195b686490f951d4be190ed9ba6c037b514bbc942e09ceed3db73c3256de6fc84d391afe","ssdeep":"192:FEwzVv0Kkg7cFgw3kFZKgCrKwTeNY2SRVMoV7i0aQ/yrQP2ZH9jfOdlz4shrNPrE:Fvh6g7UgwWKLrbeNNU9WQK6eHcdF7Y","tlshash":"5c32b0ea20a869a8df69969015c6059bca318ff5803f378d9c02cb4c9c7b70ce565235","first_seen":"2026-04-15T13:51:48.618009Z","last_seen":"2026-04-15T13:52:07.254077Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1632,"timings":{"blocked":798,"dns":0,"connect":0,"send":0,"wait":280,"receive":0,"ssl":554},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/image/admin_mgs_image_upload/20220126/d80197d1-07bf-4357-a0ff-55c63edacae4.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.183Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /image/admin_mgs_image_upload/20220126/d80197d1-07bf-4357-a0ff-55c63edacae4.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1118\r\ndate: Thu, 18 Dec 2025 02:33:47 GMT\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Wed, 26 Jan 2022 14:26:11 GMT\r\netag: \"a4ecbedf7a1a8b18fb32bcdb4b09dc2f\"\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: 1gGj4b1AbmqsP0NZg_vQY99rteWEykMW\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: _gJdKD2O7yXmmMrcnVZwz3qepcxEj34HgbQaHEsGl6GbOxAHZcVHkA==\r\nage: 10235851\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1118,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 97 x 96, 8-bit colormap, non-interlaced","md5":"a4ecbedf7a1a8b18fb32bcdb4b09dc2f","sha1":"a2fc467f105509ef119b6a5eba5f58bae6f369f3","sha256":"cbf25f3bd38e43206d9c9869b1e9831515cdc2c8b40ab119f5a25bc77eafd9d2","sha512":"229784bdab4d6aa47ffd344924bf0a1e2b93fd5d1a910b15e06a751a5e8097abacb390c9234b972d9d14fb7dfa3d8c78bd6b3c901465aeb5612268a804301e13","ssdeep":"","tlshash":"7d21c6d39d0cbbbec1a2249fd48e5c6e55fce8f65a903506ca1aed0f052518ab411be3","first_seen":"2026-04-15T13:51:48.619126Z","last_seen":"2026-04-15T13:52:07.324218Z","times_seen":2,"resource_available":false,"data":null}},"time_used":61,"timings":{"blocked":34,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/common/getCoinList","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.242Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"OPTIONS /api/common/getCoinList HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T10:03:08.222447Z","times_seen":14220713,"resource_available":true,"data":null}},"time_used":1768,"timings":{"blocked":756,"dns":238,"connect":255,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-f3bf908b.css","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.271Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-f3bf908b.css HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:16 GMT\r\ncontent-type: text/css\r\ncontent-length: 43\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\netag: \"69d41558-2b\"\r\nexpires: Thu, 16 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"fd00abaa876a64d0735d4b0b161060b1","sha1":"1fa95a469ac3d00f8a5f731f4ecf665637901243","sha256":"f3bf908b6a50e2f08740188fcb6a100aac87627d2ff3b684c14b32c8115ad0c4","sha512":"2c942c866bd08270967fa7705ed65b1b01b26d90133acd67fbb92c61dd1baec60445bb10d6b950ee454d74d80c27d372bcf3b5bc61f9b2a43bb106174c65d899","ssdeep":"","tlshash":"0f9002a9616d24a1d22641c144220d075522a5415843595146816801264f4093641419","first_seen":"2026-04-15T13:51:48.619845Z","last_seen":"2026-04-15T13:52:07.307263Z","times_seen":2,"resource_available":false,"data":null}},"time_used":956,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":956,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-d921e416.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.681Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-d921e416.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-1238\"\r\nexpires: Thu, 16 Apr 2026 01:51:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4664,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (4657)","md5":"7ad4f0e658bef6d953d37cc72381aafb","sha1":"c26acb4069a7c81409d9c7503fdb8b657d4391ba","sha256":"60aa3cd91d02f2160c03fb29ddca75211a6680bf5aef2e8360f370b319e3fdf2","sha512":"dc4455d38c3d47457fe8def86022b8e7f09e5b9b04c64099a5d7f0ba656daf74ff06c86f80f48d6b7c62c433c535fa5eb60e6cba16038befe29ed0e26b0f9983","ssdeep":"96:l+Cfp9YIqD+wSvxQMyntb1kiGnRbT33hvzA3X6NthIjR:l+Cf7YIqiwSyntbi39nhv0XQKR","tlshash":"87a1b799f50285bfe9671440488c041021ac7bfaf21548f5fbbead0a67b897dd758326","first_seen":"2026-04-15T13:51:48.621131Z","last_seen":"2026-04-15T13:52:07.204022Z","times_seen":2,"resource_available":true,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.079bda3f1e477421eaf646148dec4d8d7.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.097Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.079bda3f1e477421eaf646148dec4d8d7.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 10463\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D78B90443032E83136\r\nAccept-Ranges: bytes\r\nETag: \"F1AF892D79AA3424A76582762A8AC4A1\"\r\nLast-Modified: Tue, 10 Jun 2025 10:39:39 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 3927600850211833248\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 8a+JLXmqNCSnZYJ2KorEoQ==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":10463,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"f1af892d79aa3424a76582762a8ac4a1","sha1":"a8c34a64ebbcc3acd7aaae1902e46178ab9371fa","sha256":"cf70feba4789c55f901cddcde989aa7f59a179fa3d39ba7ec5f207814617dfaf","sha512":"367207d1b154dbcb07f50d6bb77c896f4a6f33447db1c9ed9524f66fe4e27215a616cadbf4ecc6c85a0336d74a0f925f30e8105debdb6aa90122f5706913edc4","ssdeep":"192:j6rEKZVCWNTlvCRhPW0kBLOeV0+LuvX7nr7H18rCUaTk1bBKgkBr3:er9iWd8/gBhevX/7x3T2bQgkF","tlshash":"9022c051cbd8a56c32bf0d7aca55d4ccba0dcccf2c4ae253290ee64b145264b825b363","first_seen":"2026-04-15T13:51:48.623131Z","last_seen":"2026-04-15T13:52:07.25545Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1647,"timings":{"blocked":806,"dns":0,"connect":0,"send":0,"wait":281,"receive":1,"ssl":559},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/bicon/solana.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.151Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /bicon/solana.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 25649\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7AB4B813837A8FD44\r\nAccept-Ranges: bytes\r\nETag: \"670C723ABC22056BC5368CA2A97DD6A2\"\r\nLast-Modified: Wed, 25 Dec 2024 03:19:12 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10769821075161595358\r\nx-oss-storage-class: Standard\r\nx-oss-meta-cb-modifiedtime: Wed, 25 Dec 2024 03:17:01 GMT\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: ZwxyOrwiBWvFNoyiqX3Wog==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":25649,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 201, 8-bit/color RGBA, non-interlaced","md5":"670c723abc22056bc5368ca2a97dd6a2","sha1":"5ba69b915180c31e4d35a524a9de7b3409ef80a8","sha256":"11192935f626fdb37ddfd8418d754feee326fc6f0a3ce7aa6e61283a820d8b09","sha512":"546901ff0dd66b4768e7560c2ccdceedc3bdac577eea114e600613d98319bde07a84d4fd8a303f4c34c05b3a26c73f03602ba38aaa5436dfcdac6712e0868652","ssdeep":"768:9SDR4lelsfdJTM1JiB+mP9LsYKPlAgezlYWXu23fgiqs:9Alsfd9MqBZ1L5MGgQuW+2vLqs","tlshash":"feb2d076137254ea4442115b97364e812c39f4e3adea6e2c7507a40c7d4a33b30db6bf","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-04-25T23:17:28.003535Z","times_seen":489,"resource_available":false,"data":null}},"time_used":1579,"timings":{"blocked":1287,"dns":0,"connect":0,"send":0,"wait":282,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/image/admin_mgs_image_upload/20201110/bbe7fb63-5b85-4f5a-9c7f-450a8cec116b.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.222Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /image/admin_mgs_image_upload/20201110/bbe7fb63-5b85-4f5a-9c7f-450a8cec116b.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1062\r\ndate: Tue, 23 Dec 2025 03:52:58 GMT\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Tue, 10 Nov 2020 08:03:00 GMT\r\netag: \"dfa375c1d3d65f925c4ba813f6d8d335\"\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: MBFX6f4c_b.q0bkHGiD04.fm9w7KYsTg\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: 3TJyAw2JpRCDlXXwiO8BgOQb2yc_dJiDt6IPETR8S1AqoTP7YhLviQ==\r\nage: 9799101\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1062,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"dfa375c1d3d65f925c4ba813f6d8d335","sha1":"8eca87fc95c671717ad0458aabe2c929c83e1a69","sha256":"1feb818d8d02799c91ed1d5435fddbe39ed4ee0009602cde132671644225a301","sha512":"1b32aaa7a7e733afeb9e6be5ff6e9137902dd215725710dabbbc08990b017f3a0b51dfe691837c3b28a7c0e9935135488975c183edc53481addff77390893f80","ssdeep":"","tlshash":"3011b58ecd35e2bacdb08a7b45231e1d0632bb4ae3124d7cc6e1b3b5e0240e7851a100","first_seen":"2025-07-06T22:01:43.326346Z","last_seen":"2026-04-15T13:52:07.262327Z","times_seen":25,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/notice/list?key=ROLL_NOTICE","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.709Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"OPTIONS /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:18 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T10:03:08.222447Z","times_seen":14220713,"resource_available":true,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-f8c480aa.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:14.644Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-f8c480aa.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:14 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-18870\"\r\nexpires: Thu, 16 Apr 2026 01:51:14 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":100464,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65526), with no line terminators","md5":"82d433ae2fafd38e6c43ad66ec0ebec9","sha1":"1f47a84a2c67cafca663224fd47bcaa57421df7c","sha256":"f1c04c0923b7dff51a457d9df32cc8625e7bbb1499072475b91f7d331bd05da9","sha512":"00eb61afd0e3cfb4ecb56301b44b0d1948c5406b23559ec7adbfd39879c3ed787c22e67002e7c208dfc3b77505264335181d0fe82dcdcf90df0b794554d9a579","ssdeep":"768:wnn6BRm/gpPk3nA/AK3etOHoK1FdL/amr9gaUe2RYpWY5T33NtantV3Ia7YJtCiU:wfmvn3dgaQyotV3n7Y3W5FEcwwXMJnYf","tlshash":"05a33989a40b1fff69bd0844a94b551030a81fd35c8dcc97b7ba6e0927fece86359718","first_seen":"2026-04-15T13:51:48.625262Z","last_seen":"2026-04-15T13:52:07.283781Z","times_seen":2,"resource_available":true,"data":null}},"time_used":363,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":363,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/vendor-cb847d51.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.189Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/vendor-cb847d51.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:16 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-d704e\"\r\nexpires: Thu, 16 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":880718,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"4e15cf88953a0bdfd5a0cb3808d9c999","sha1":"a431fb53f6557db68f2ad95e50bc919f9d837031","sha256":"a71b939f3fd03a283495c7735559e7b49e9c4e808a51e298cfee043a6be421a2","sha512":"460076dd4e88bb0d78441874ee67c663b3c92b5c076ac1b19577da0ff752671bb5641d79e5afbfb88b2e2c3cd8f9390626b705e9e307e4417b94c7a1e7a71f29","ssdeep":"12288:CcFae4xeZMRVDwifTzbB9dw/Xbri8L1w672vI/+a8o2aqWl6yj4Ga2Be:CcFn4xLVUUTZ941w67viaqWl6yZa2g","tlshash":"801529c57292f06147ab24e240bb0006f3396e59744e84a4f1ad98db7d79d89e2b7f3c","first_seen":"2026-04-15T13:51:48.626543Z","last_seen":"2026-04-15T13:52:07.251264Z","times_seen":2,"resource_available":true,"data":null}},"time_used":925,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":925,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/platform/dev/config.js?1776261076221","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.230Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /platform/dev/config.js?1776261076221 HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:16 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 394\r\nlast-modified: Wed, 01 Nov 2023 21:05:30 GMT\r\netag: \"6542bd9a-18a\"\r\nexpires: Thu, 16 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":394,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"4bc52b1aa6813b98e0af16a138354c00","sha1":"91ee6accefe6f24544627bdd1ae2aba499d5016c","sha256":"bf904efa24cb62a824547b6df3a7bbade81bfa77cc27124d7766ae502e5d6231","sha512":"22c852a633d0c36ccf7d549fd1c6a800698e42994d993a47f534b92c8ff8430c14d668c72d2bf8eb79e8b4459f83116bc75ff5f5269f36bc3b8cf2cb9ae886ae","ssdeep":"","tlshash":"f5e0abab3138c16451b08f2b6cec4817f68b2733494c010bf8b469041e79d542178890","first_seen":"2024-07-24T17:37:43Z","last_seen":"2026-04-23T16:06:19.292132Z","times_seen":335,"resource_available":false,"data":null}},"time_used":995,"timings":{"blocked":3,"dns":0,"connect":0,"send":0,"wait":992,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.0e0ca1a0dd9f14db2b91f599f3f3714e8.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.058Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.0e0ca1a0dd9f14db2b91f599f3f3714e8.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:20 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 18236\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D88B90443032F73336\r\nAccept-Ranges: bytes\r\nETag: \"42B445144A9311FED798551907C88C74\"\r\nLast-Modified: Tue, 10 Jun 2025 10:52:37 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 2785013490297647875\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: QrRFFEqTEf7XmFUZB8iMdA==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":18236,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"42b445144a9311fed798551907c88c74","sha1":"6253154690ef2fd79110e6cc0626f95cd760b5c8","sha256":"a7358abaa4b06e52f0a1f201014803bc77edbaca1acc81a3a08ca9fa2330dc3a","sha512":"3e48bfdac811bf3737e08226bc515dff0ac1aa4b4db0f01e6775efc5b98188a9e3edcee2e10c9eb47c76a6a194a890617f140dedd9c6ea690bdaf3c2af8347d8","ssdeep":"384:MgN72LcGPxX6SAu/hPFSElCtlC8MwE07R5XY7I2J/MYiuKtGC+:v72LB6SAu/zCtlC8nBa5J3iy","tlshash":"4282d11495f1ee9e0c12dc35eea8b9381e2e0ac5cb79e5c91502d0849adaf0ecf14ef5","first_seen":"2026-04-15T13:51:48.628008Z","last_seen":"2026-04-15T13:52:07.268068Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2652,"timings":{"blocked":2357,"dns":0,"connect":0,"send":0,"wait":292,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/resource/svg/dark/mengbanzu12.svg?2.0.1775477975809","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.070Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /resource/svg/dark/mengbanzu12.svg?2.0.1775477975809 HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:18 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 774\r\nlast-modified: Wed, 01 Nov 2023 21:05:32 GMT\r\netag: \"6542bd9c-306\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":774,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9a8fdb5cde40e8ebcb2b7fddbe19943e","sha1":"c1560502d0305ec2f9973a5857c7cdd9b56caee7","sha256":"3ab8082b5d02f0e40827f2520fe7d423877d2f8d78c6f41cc11fed84b276a0ee","sha512":"8791e15406186847e2527fae5de31e11f9820322947716a0b54d235607efaae19370d66d1864a78b5f65f84ddb778b46df2474860ae9176d828c6cf958d9aac1","ssdeep":"","tlshash":"4d01f17a5221c15da2434b80c6e93f4092bda29ba2d00448b3a32da54d74f7f55bc996","first_seen":"2025-06-01T04:11:58.700896Z","last_seen":"2026-04-25T09:06:34.301602Z","times_seen":107,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/bicon/ethereum.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.130Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /bicon/ethereum.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 9807\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D78B904430324F3236\r\nAccept-Ranges: bytes\r\nETag: \"12D9722461759CEFFF02D9076A3D2718\"\r\nLast-Modified: Wed, 25 Dec 2024 03:19:11 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 9445008190181339835\r\nx-oss-storage-class: Standard\r\nx-oss-meta-cb-modifiedtime: Wed, 25 Dec 2024 03:16:36 GMT\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: EtlyJGF1nO//AtkHaj0nGA==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":9807,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"12d9722461759cefff02d9076a3d2718","sha1":"6b763fea0b17257a36b90c465593e1629aee0564","sha256":"af89450e1873196692af0d9d4d0c03218b4be8091171b9d8f7349298d4e82586","sha512":"8eb0f616162be914a3945fb383250796e1134da22e8ae612f403f28804ac04b7fd0f607e132403dc28505d80377c9281601cb23ef1f0814e08584428f3efa05f","ssdeep":"192:4V3ZO9Gxo9H+wp5qh6BKfMPaB2kXTfwoVqO2Rzhj7TfhBcHEhaI9yLKKD:4V4GxoYwp5wQKfMP6LXT7V+RzhzncpLb","tlshash":"7112bf66ab39a301d66d2bbe5cc59302db15ad10dfe14a3fcb840980370c6f9de5a6c4","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-04-23T16:06:19.337137Z","times_seen":427,"resource_available":false,"data":null}},"time_used":1349,"timings":{"blocked":1055,"dns":0,"connect":0,"send":0,"wait":293,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/images/20191212/050e8aeb-2c87-4c50-9b45-d3b21455f7b0.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.202Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /images/20191212/050e8aeb-2c87-4c50-9b45-d3b21455f7b0.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 8372\r\nlast-modified: Tue, 30 Apr 2024 05:37:55 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: ervC949ZHVqZz9e_xSPUUxfb9K5Yokbx\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 15 Apr 2026 03:58:23 GMT\r\netag: \"693912b78268230ddfd7072324bf4ee6\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: vik_iRO0YY_ACEQTtjZp8zo5IfZF9u-v4z7d5Qc4PELDl30JX4fx5g==\r\nage: 41838\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":8372,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"693912b78268230ddfd7072324bf4ee6","sha1":"1534f33e0c77fee6e7cdd4d04907da871328f36b","sha256":"df1be03d9b5fe0f459ab23558db9de1d43513fb7dca1fa4ad527fb7e80ec910c","sha512":"294af0d71d21ef3f7f79dd0ce4ffcee54c48f5f77e490810821c86f950f8f12b865d46764b49c63519229cc7120619ab9991fd0f2a4e582296c4c59f46afea3d","ssdeep":"192:CSHMccJhE9/5f3557/4ORXEfYvGMrqIgpA2ebvJKaArw2I:dHcU/5f/dcKqjrW4BI","tlshash":"be029fcb5f612de249a8b022a9c653fdc87f206b45d14bd363c069f201617143edf76a","first_seen":"2024-11-06T16:41:01.094987Z","last_seen":"2026-04-15T13:52:07.213432Z","times_seen":8,"resource_available":false,"data":null}},"time_used":47,"timings":{"blocked":-1,"dns":5,"connect":13,"send":0,"wait":24,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/image/admin_mgs_image_upload/20220329/eaefbbb0-ea69-4791-ae36-b9346aecb300.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.204Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /image/admin_mgs_image_upload/20220329/eaefbbb0-ea69-4791-ae36-b9346aecb300.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1331\r\ndate: Thu, 18 Dec 2025 02:35:06 GMT\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Tue, 29 Mar 2022 06:16:06 GMT\r\netag: \"39b3bdabd667d9d505f7d0f4d594e9cd\"\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: T_uqW7SrLk50aZm7qpaaVuzcdUGmNm8L\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: -img-lbC4YHcR9WkC_gBYPFSK4DnmbL7UhCczjdzAczNcXV1mKTwlA==\r\nage: 10235773\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1331,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"39b3bdabd667d9d505f7d0f4d594e9cd","sha1":"dc18ec8ca075976a2c648cc92fb81422f49c3909","sha256":"c76d05874360458293dc6342aba494dbdd131653b58638fd54084654bc24c7c1","sha512":"a5eef809f99e971e99cc73340561544b4481d60d5ee57a0b5b23acf96f6876b78cc3b9b68f21399f80c1641d690cde2dcf05d08469e1582d3615fe1171e49e2b","ssdeep":"","tlshash":"4021d8e23299dec5f00c61fae5aa44df439d5d730537d4094e0a3725517c612f249a05","first_seen":"2026-04-15T13:51:48.630724Z","last_seen":"2026-04-15T13:52:07.241321Z","times_seen":2,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":14,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.0a699a84db7a64a019c4c3af3ce118f79.png","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.064Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.0a699a84db7a64a019c4c3af3ce118f79.png HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 76229\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7E613583133166714\r\nAccept-Ranges: bytes\r\nETag: \"EB383CD92113437B288EFE681FD9CFE8\"\r\nLast-Modified: Tue, 10 Jun 2025 09:00:31 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 13905177626812433552\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 6zg82SETQ3sojv5oH9nP6A==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":76229,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 4563 x 1376, 8-bit/color RGBA, non-interlaced","md5":"eb383cd92113437b288efe681fd9cfe8","sha1":"ccf3181a74a51f2a2308602e7f1ee74d6abfd4bb","sha256":"b5f96b3ed8dafbcf586cccfa9e5a424330dd1271c60249d7db5d692aef06603c","sha512":"7d8286bd6fe79d8f68621cdccbf7278377c2c03fbdceb62c842a7c4f83ebb4dd4c21e43bbffeb04f9716cc411883479ebcc661e6ec61c2940749d31d53d029d4","ssdeep":"1536:FVK87//YHS735BBTZQQJW/XIuFD0bum2Eca+vYIeKbEb6A62:Foi/1ZQQcJDsbca+voK52","tlshash":"5a73afa29c9b4de6e19b1b78d2ab4f0a3f1306311e16431f0f72faa25c6271b7d57484","first_seen":"2026-04-15T13:51:48.631664Z","last_seen":"2026-04-15T13:52:07.237399Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2310,"timings":{"blocked":1728,"dns":0,"connect":0,"send":0,"wait":299,"receive":283,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.0aaa7317bbfe641a9a22678661ee34c2b.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.091Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.0aaa7317bbfe641a9a22678661ee34c2b.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 23748\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D6AB4B81383705FD44\r\nAccept-Ranges: bytes\r\nETag: \"3B2B9F3217C2626E66B973B6C03CDE0F\"\r\nLast-Modified: Thu, 12 Jun 2025 13:19:47 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 14127440689296939526\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: OyufMhfCYm5muXO2wDzeDw==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":23748,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"3b2b9f3217c2626e66b973b6c03cde0f","sha1":"b82434f71962a6f8ebd5aee1d45c5fd506706f84","sha256":"6c57ca86b34596beb790df19c7a0721203a6878f4295cc90145568dbd460740a","sha512":"a4ff9d29c3607a6efaa8afc56b2a9ba83a7e4b2d4144cb274d9523301fdd57f6d61697cc42fc93c22830b84e7f906fae37acf45c802f55d7287c30f96a3b0b8f","ssdeep":"384:7lT2uZfVUr0ZVwmRrRz57dfWSuA6TQdPXRx5PgE36qpv823HZESWQ9GWO6PcaCcj:V2uW7mVRz57ZcS7OKEIgQ9GWj0rTO","tlshash":"b5b2e0aa3e4bf0aaf9716d0a22e13505856b3a51012f30bc05affdd1dd0daa61600a8f","first_seen":"2026-04-15T13:51:48.632439Z","last_seen":"2026-04-15T13:52:07.280919Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1610,"timings":{"blocked":784,"dns":0,"connect":0,"send":0,"wait":277,"receive":7,"ssl":542},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.0dbe651ec0d6345339a4b1047b23184a1.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.107Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.0dbe651ec0d6345339a4b1047b23184a1.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 10935\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7AB4B81383757FD44\r\nAccept-Ranges: bytes\r\nETag: \"123B10A55C78F2EBF42C9E6A6073D472\"\r\nLast-Modified: Fri, 13 Jun 2025 12:51:03 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4822776221177039304\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: EjsQpVx48uv0LJ5qYHPUcg==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":10935,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 344 x 256, 8-bit/color RGBA, non-interlaced","md5":"123b10a55c78f2ebf42c9e6a6073d472","sha1":"179153f785c15eefa41f782d3605703cc72b3103","sha256":"547bd9120065d1060e244ff1e6044b862678070a9d5349293afc6c0afbb07fca","sha512":"e40c91d5dc3fdb4cf265214115ee3984a81ac675b425e684bbf1a9c1fbaa1f46746604444da9cb327fc706f57e2299f6efaa468c4de423cadb2403282fd6fa2a","ssdeep":"192:mHgoUBZsR7EXGtk4qKcVIJg7OygDepqeeH+e/NhwEtjI4vhrSMSgsJmZtJoHpoY:mA3/a0Gtkl0opqeeH+e/vwMIWugs9KY","tlshash":"b8329fc963cca2f1a656cca7c0111e71818dfe5cec64e70476ffa3a90923a7934c3a56","first_seen":"2026-04-15T13:51:48.633322Z","last_seen":"2026-04-15T13:52:07.302498Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1331,"timings":{"blocked":1052,"dns":0,"connect":0,"send":0,"wait":278,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/bicon/bitcoin.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.127Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /bicon/bitcoin.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 2691\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7AFAD5B3631A7A602\r\nAccept-Ranges: bytes\r\nETag: \"2EDF1EF8B333C40979976D1A49BC234C\"\r\nLast-Modified: Wed, 25 Dec 2024 03:19:10 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 1939274224005843766\r\nx-oss-storage-class: Standard\r\nx-oss-meta-cb-modifiedtime: Wed, 25 Dec 2024 03:16:31 GMT\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: Lt8e+LMzxAl5l20aSbwjTA==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2691,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"2edf1ef8b333c40979976d1a49bc234c","sha1":"d75ac12795b4a9575c874e1b190712cd62a87afc","sha256":"50a1901684f223bf26594dd3415b1e50f184820a16daa810cc5452911e9117a9","sha512":"f697a1fa0786316fc01003f72621920932e2657e4acf5a471e35d02717c42c9db5a12df311895a776a563dcae9b8fc0b6721833529a054b9dbfff4c52fc564d3","ssdeep":"","tlshash":"2b515ee60252267980d32438616db1e178beabb2c3021ded6c1444954acc4b62555cfa","first_seen":"2023-05-01T18:49:36Z","last_seen":"2026-04-26T05:18:11.291214Z","times_seen":21118,"resource_available":false,"data":null}},"time_used":1326,"timings":{"blocked":1046,"dns":0,"connect":0,"send":0,"wait":279,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/tttt/3.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:21.217Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /tttt/3.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:21 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 105266\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D98B90443032093536\r\nAccept-Ranges: bytes\r\nETag: \"02E75DE79CC617669248E7089A415376\"\r\nLast-Modified: Thu, 12 Jun 2025 14:37:02 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 250421217771697085\r\nx-oss-storage-class: Standard\r\nx-oss-meta-cb-modifiedtime: Thu, 12 Jun 2025 14:30:43 GMT\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: Audd55zGF2aSSOcImkFTdg==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":105266,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1280x720, components 3","md5":"02e75de79cc617669248e7089a415376","sha1":"65a5e538c9ff21ddfebf570f3060671ff63d3133","sha256":"888e4a031dc3aa036435ac17673db5216e2b964b40b2b8d277cbe385adceb524","sha512":"0f3e2a5cc60c5b1290b41ddee68e04226307f5c5c92c48ca6ee69a272edb495f8562620a82f44bd2584bfb9779a63ae867a88da53f02565997dd74c3abbd62fd","ssdeep":"3072:LRk18k7SiFdR0kFl5fpMCyRtc8f83vKrd:m18YZltyfcI83v2","tlshash":"b8a3121f63d34b44da7a0b74cfeb9248eeb5a4326c53c607720f2b1425b7574da846b8","first_seen":"2026-04-15T13:51:48.634519Z","last_seen":"2026-04-15T13:52:07.279442Z","times_seen":2,"resource_available":false,"data":null}},"time_used":371,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":292,"receive":79,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-bc011be9.css","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.280Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-bc011be9.css HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:16 GMT\r\ncontent-type: text/css\r\ncontent-length: 397\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\netag: \"69d41558-18d\"\r\nexpires: Thu, 16 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":397,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (396)","md5":"5353ff252ee4a5e7a3d0176de6a6c712","sha1":"c83942b5dfdb4aa8be53f26b39e53b0b257595e0","sha256":"bc011be90fd6cd33a399912151a5f69ba0d8e394563c71c4c1bea7a4ec032516","sha512":"9a17506817918ef0c9a5d0caebaed8f603641dc1015a726bdf247645a7e0a988b543756d7254abafa18dd4cd9d27c9a198300632156faf59f05c1e27f0a5e30a","ssdeep":"","tlshash":"5ae092c890d6927fb62b607d267c931ad425ac88d8007bb8e67fabb146c7ac53172215","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-04-25T23:17:27.981724Z","times_seen":470,"resource_available":false,"data":null}},"time_used":951,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":951,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.091fba79f15b84e93bbdb15a7d993eeff.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.040Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.091fba79f15b84e93bbdb15a7d993eeff.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 11254\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7E6135831339C6614\r\nAccept-Ranges: bytes\r\nETag: \"CD7CDF03DE7C07C0C77DDF26DA2895CB\"\r\nLast-Modified: Tue, 10 Jun 2025 10:49:55 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 18107888071787899833\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: zXzfA958B8DHfd8m2iiVyw==\r\nx-oss-server-time: 5\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":11254,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 282 x 256, 8-bit/color RGBA, non-interlaced","md5":"cd7cdf03de7c07c0c77ddf26da2895cb","sha1":"6a436f5f6aa3df3dde1114ddd5a9dc2ce69a8a2a","sha256":"6fd02074205811b7a49144c352a5b3bd9fd8bedfd971f76329ffd0f58d14ece7","sha512":"f94c293e5e2040ece42640be9c08328d48e1eb88793cf63ea3fbcff0741e79856e87823f59131de3a45eb977bcfd1b7f286fef24a645ba336717f51616b7c693","ssdeep":"192:LFfOb5WMSkmi7mvyrU0ZBSH29SsWrJvcirHXrlpAxlSJg15Hw94FEwFWAGJaei:LJ5zE7mvyxBSHFsWrlHXkfSJCQKCw0u","tlshash":"6232c0889aa17f8166303cc2ce01f898a757c5358d1f208f8d3a65e262ed119815f767","first_seen":"2026-04-15T13:51:48.635924Z","last_seen":"2026-04-15T13:52:07.263677Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1753,"timings":{"blocked":1454,"dns":0,"connect":0,"send":0,"wait":298,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.058ba9ff0f51042bea6290cab99572ff2.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.055Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.058ba9ff0f51042bea6290cab99572ff2.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 12047\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D74C8B373439B5DBB2\r\nAccept-Ranges: bytes\r\nETag: \"D6B8B9EF3BCC67789E60764B883A866C\"\r\nLast-Modified: Tue, 10 Jun 2025 10:51:05 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 5212433939263755060\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 1ri57zvMZ3ieYHZLiDqGbA==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":12047,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"d6b8b9ef3bcc67789e60764b883a866c","sha1":"ccaae8beb533643475aa2d20c4e93627799f1486","sha256":"4c825574dc4a7f4be59e42e325e5b6509869d4ba46eda2e5c9e58fdfe9fad280","sha512":"d2104cf5861f0ddb46863a9bd03f06b2dc7110ca7ca3e7dbb0b84f52c9bb7e17e57d586b50d6b5e484e519a1a31ed5737583e5562ae761954f3a16b712492ee7","ssdeep":"192:xls30DaZhUQrrjnBli4ldxO+jqJozHMVv7rxiqJEJyzh+ktFRZ6UZQ:3DaHdrrzZtmJozsVfxTqyP6r","tlshash":"6742d0f8f41841d7171f285b19c1a33be85b203ffcdafc80d4619123aa629ea015717d","first_seen":"2026-04-15T13:51:48.636986Z","last_seen":"2026-04-15T13:52:07.286081Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1927,"timings":{"blocked":1644,"dns":0,"connect":0,"send":0,"wait":273,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/image/admin_mgs_image_upload/20250205/1d6b6c08-8129-48de-a6f7-931379e2a7f4.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.216Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /image/admin_mgs_image_upload/20250205/1d6b6c08-8129-48de-a6f7-931379e2a7f4.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3931\r\ndate: Thu, 18 Dec 2025 02:41:51 GMT\r\nlast-modified: Wed, 05 Feb 2025 09:20:42 GMT\r\netag: \"5da546ee4a1c47deab61b696b47a0996\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: D2HDA3W_F3pbUtj_a8eM86EkR25BfYIZ\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: wj9cE_R8FVRHYROIKDJ1TXa-Yqj_ENTpgw0PeA_nf-kc3xINb7R3Aw==\r\nage: 10235368\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":3931,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit colormap, non-interlaced","md5":"5da546ee4a1c47deab61b696b47a0996","sha1":"6246ede507f32d3d24700784ce7e8dc25a9eccd5","sha256":"63baf71b67e17d0b454f733b6188f4207ec7646a66ca0a45cca6491c9858ef59","sha512":"d06e62f502713b0fe21c2cde045f5c461d61135c990fdfb4fb9f8e8d87e6bd5511e67783c734533f7fce49b2f17571fce3bbc7fa3e979aad6427d28eed6067a3","ssdeep":"","tlshash":"cd817da5c841bc2c0c8bd6627293f533e63c2e1b88615d031555373e247a6add8c18b6","first_seen":"2026-02-11T17:37:49.718123Z","last_seen":"2026-04-15T13:52:07.216276Z","times_seen":3,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":4,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-509f9149.css","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:14.665Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-509f9149.css HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:14 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-4a3bc\"\r\nexpires: Thu, 16 Apr 2026 01:51:14 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":304060,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65022), with no line terminators","md5":"362f5016c089890cac00083a3d76f55d","sha1":"7b1363f6900dc0a16076fb4c3cc2c6fef0eab4c8","sha256":"509f9149a3b13b82a63b893dce7dd68633ca67f2a0bd11a78132858073ad913c","sha512":"581556533b007425ce734bfe2a93bccafa486f96393ba934c16f2fe87c36b1ca4036483167e843897e71adbdddb0e721462d00c44f1dbd9ffa6453d49ebd22dd","ssdeep":"6144:nHB/9S/Jk4UkZ8w71ZACkFDS3vyf58rBeV05TG:HB/54NZ8w71ZACkFDS3vyf58rBeV05TG","tlshash":"d654d6a9a59011bc6f27aa7597ce5ad8f23ce6719c118de8f20160094fc3ff92363617","first_seen":"2026-04-15T13:51:48.639211Z","last_seen":"2026-04-15T13:52:07.301088Z","times_seen":2,"resource_available":false,"data":null}},"time_used":815,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":815,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"webapi.higico.top/ws/e09a202b-5b7f-43f8-9b89-a25ad9edd5d8","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.476Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"GET /ws/e09a202b-5b7f-43f8-9b89-a25ad9edd5d8 HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://h5.higico.top\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: RGILgJTahsRXRPV98xjkug==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 \r\nServer: nginx\r\nDate: Wed, 15 Apr 2026 13:51:17 GMT\r\nConnection: upgrade\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://h5.higico.top\r\nAccess-Control-Allow-Credentials: true\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: kncIQwsc70yynvIX9cZ5fdS4znU=\r\nSec-WebSocket-Extensions: permessage-deflate\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T10:03:08.222447Z","times_seen":14220713,"resource_available":true,"data":null}},"time_used":2337,"timings":{"blocked":0,"dns":784,"connect":1036,"send":0,"wait":255,"receive":0,"ssl":1037},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.0c2bffa966a21450a89580e4ac1355618.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.051Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.0c2bffa966a21450a89580e4ac1355618.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 2493\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7C390C332343A1068\r\nAccept-Ranges: bytes\r\nETag: \"8E880B6CBBAFDBB11E3CEF7E5C768396\"\r\nLast-Modified: Tue, 10 Jun 2025 10:50:28 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 6550376367341362446\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: jogLbLuv27EePO9+XHaDlg==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2493,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"8e880b6cbbafdbb11e3cef7e5c768396","sha1":"7b1d7469e3e867f9caee87c9161171c202570fb8","sha256":"dd2bf2b7e1006c96bb5a43eeffc9eef862c19ad8cf7af725aad607256c798db2","sha512":"cf0604605010a86a06fbccdc6845ed4ccd16fb92df3fe49fc6304e37014bd9eb19c6c459f6018faf1bda19c103954e73ea2f80b4829f31bb747b3124e4ddae7e","ssdeep":"","tlshash":"3951e9a7f2d4427ad0e0b088d4ecbd245462cab9dcd8ee2853a22d2deac5b2505755f2","first_seen":"2026-04-15T13:51:48.640048Z","last_seen":"2026-04-15T13:52:07.31516Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1761,"timings":{"blocked":1474,"dns":0,"connect":0,"send":0,"wait":286,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/resource/svg/dark/user.svg?2.0.1775477975809","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.067Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /resource/svg/dark/user.svg?2.0.1775477975809 HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:18 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 551\r\nlast-modified: Tue, 10 Jun 2025 17:11:06 GMT\r\netag: \"6848672a-227\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":551,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2ef7009ef047c2952ee53ab0cac3050c","sha1":"2d063f82ec51098db180e842f3a2ec042ccea1ed","sha256":"ef9d7a74e3af6f09e1242cf0ca26cd6d8baead213865aa32e9aee3e430b53a7a","sha512":"d388b1281a757639ccb03cf35cde6c7ae83dd3476e5fed6b4eb0bd104cc27f2d599052d178f047281f056629d2686ad61a11877656782356983c367963fbe201","ssdeep":"","tlshash":"e7f046f7501c989a50014290c9ee3a85973df233a3868d5eb3a218f68b1494b217caa5","first_seen":"2026-04-15T13:51:48.649994Z","last_seen":"2026-04-15T13:52:07.290332Z","times_seen":2,"resource_available":false,"data":null}},"time_used":254,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/image/admin_mgs_image_upload/20221017/f3dff438-2cc0-4d32-b419-935ab660b3ea.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /image/admin_mgs_image_upload/20221017/f3dff438-2cc0-4d32-b419-935ab660b3ea.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 408\r\ndate: Tue, 23 Dec 2025 03:52:58 GMT\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Mon, 17 Oct 2022 02:40:28 GMT\r\netag: \"3c07397ad2014312444d8a402995631c\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: ZzK5BuTaC32pwoLduWEmT4D_tpPZ705M\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: doFntfYCFsO7KMVxK7naaVm3I9ssYnH1lg1nLRn9Vp6a_2BqIaRWdA==\r\nage: 9799101\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":408,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 4-bit colormap, non-interlaced","md5":"3c07397ad2014312444d8a402995631c","sha1":"9d903a8915cdfeb05c33204895797405ef9fd41b","sha256":"dfda2661a90b8e069d912859a3af3b1b95129ce98540164a766354b3440d8b73","sha512":"116d35bbb9af0edf457cc5cfdd5335960a55008127a997b1496c1daae1a51861a8f63575afc5ecb2359ab1530cffe06d074a5c110d48b9218f50329d58fd1701","ssdeep":"","tlshash":"f6e0f1d0f32c0a1ac3fdc29244e90cd05d63d2e5da21642e74c7a84d8a0c365c6fd037","first_seen":"2024-08-03T18:47:50Z","last_seen":"2026-04-15T18:25:34.105696Z","times_seen":110,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":7,"connect":12,"send":0,"wait":40,"receive":0,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/image/admin_mgs_image_upload/20220126/3d0a3cb6-4ebf-417f-adef-694ab90c19ff.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.218Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /image/admin_mgs_image_upload/20220126/3d0a3cb6-4ebf-417f-adef-694ab90c19ff.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1391\r\ndate: Thu, 18 Dec 2025 02:33:33 GMT\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Wed, 26 Jan 2022 14:24:37 GMT\r\netag: \"6d4203350c1a563cc454b03b9be3dce1\"\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: imiE0CbAqAgtvqitMOiq5E7Q05BwYyev\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: sL1SiQFytzzNTz8PWfoH8pkZVEnXVoBzamNIwSwD-Z1Y6kI5KKJZMg==\r\nage: 10235866\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1391,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 97 x 97, 8-bit colormap, non-interlaced","md5":"6d4203350c1a563cc454b03b9be3dce1","sha1":"38f1ee7c934f3612607b8ccaeb4243ea5e3cc619","sha256":"392904871821a7bc52f29c440aeeee8bfba796a6cbd48b5b2cec88e3ef2d952c","sha512":"f1b97676a5ca5f123425493feb4a44bff5b3c37f56a2d9d74812aefab892a2fca26a2a1e85b229b32d8d4cdd7d80d2a5b75d72994fd1d8af92405d56472bd2aa","ssdeep":"","tlshash":"6a21d8770d578c16a330107e063f50f1865637d7ea5c4fef89051995460b2916701e9d","first_seen":"2025-10-18T15:54:25.777434Z","last_seen":"2026-04-15T13:52:07.243043Z","times_seen":9,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":3,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/bicon/XAUUSD.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.228Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /bicon/XAUUSD.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:20 GMT\r\nContent-Type: image/png\r\nContent-Length: 957\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D84C8B37343906DCB2\r\nAccept-Ranges: bytes\r\nETag: \"4CF7FEBCDE802774E860280F72473B4C\"\r\nLast-Modified: Thu, 26 Dec 2024 11:36:37 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 15843907226721346241\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: TPf+vN6AJ3ToYCgPckc7TA==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":957,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced","md5":"4cf7febcde802774e860280f72473b4c","sha1":"349c9060813d3c6cd535d6d8e7469adebf51f03a","sha256":"6ba1d900f5edeb32b50a7f5ca28347bc3fd7495a2032ff4d9c9b6a518a609f3c","sha512":"f10fe7221a8ff89eac50b17244fce40b9c07963db44ba1a8a5b6fe0c47dcb6fe1abd474fd8a2cd559e0b6da74d231bd161254e4ebf8227a8b74b3a0915cf7ac8","ssdeep":"","tlshash":"a41150ea1108aa13c4850e602aa261585cbf81f976e7942f3bf68495da3a16c210927f","first_seen":"2024-07-08T21:52:53Z","last_seen":"2026-04-15T13:52:07.288394Z","times_seen":30,"resource_available":false,"data":null}},"time_used":2018,"timings":{"blocked":1754,"dns":0,"connect":0,"send":0,"wait":264,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/bicon/XAUCNH.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.230Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /bicon/XAUCNH.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:20 GMT\r\nContent-Type: image/png\r\nContent-Length: 4972\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D8AB4B8138374CFE44\r\nAccept-Ranges: bytes\r\nETag: \"690ED41A878294CF2081D0C0944DA5A5\"\r\nLast-Modified: Thu, 26 Dec 2024 11:36:37 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 16189952574740406944\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: aQ7UGoeClM8ggdDAlE2lpQ==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":4972,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 200x200, components 3","md5":"690ed41a878294cf2081d0c0944da5a5","sha1":"4a2550ba3609ef2e0f9ae7220cb4683cbc5d523e","sha256":"f19e60783a07cc170a18a044e36e488a5abb9330b9dfc1ccaa1dc215d51626d1","sha512":"5c5f2ab8c460b1acfc297d179ff23e01e59e8db098c838f0875f28f84ceb0cb2f53dd0c1ff617f92eb426e50211031fb57f02c2236dc20c4fb604f414630d199","ssdeep":"96:IYcEOpHFsJsh1t3aKMmMR2DvsIMizF42wE4k8g66N+/FqvyfzIGB:ID9pDxkmxsAC2Z4k8M+/LUGB","tlshash":"2fa17c2d3f0a6e179c887f350bd69a52d0993a998a8328c23c3f6339ff5c502800b126","first_seen":"2026-04-15T13:51:48.652927Z","last_seen":"2026-04-15T13:52:07.305272Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2057,"timings":{"blocked":1783,"dns":0,"connect":0,"send":0,"wait":273,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/vendor-cb847d51.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:15.201Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/vendor-cb847d51.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:15 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-d704e\"\r\nexpires: Thu, 16 Apr 2026 01:51:15 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":880718,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"4e15cf88953a0bdfd5a0cb3808d9c999","sha1":"a431fb53f6557db68f2ad95e50bc919f9d837031","sha256":"a71b939f3fd03a283495c7735559e7b49e9c4e808a51e298cfee043a6be421a2","sha512":"460076dd4e88bb0d78441874ee67c663b3c92b5c076ac1b19577da0ff752671bb5641d79e5afbfb88b2e2c3cd8f9390626b705e9e307e4417b94c7a1e7a71f29","ssdeep":"12288:CcFae4xeZMRVDwifTzbB9dw/Xbri8L1w672vI/+a8o2aqWl6yj4Ga2Be:CcFn4xLVUUTZ941w67viaqWl6yZa2g","tlshash":"801529c57292f06147ab24e240bb0006f3396e59744e84a4f1ad98db7d79d89e2b7f3c","first_seen":"2026-04-15T13:51:48.626543Z","last_seen":"2026-04-15T13:52:07.251264Z","times_seen":2,"resource_available":true,"data":null}},"time_used":457,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":457,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/common/getCoinList","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.378Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"POST /api/common/getCoinList HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25299,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (25283), with no line terminators","md5":"e2bf99e3631ecfe839acdcf8dc18ec27","sha1":"c9d149ab39d590c58e8513fccdbbfca25c76b624","sha256":"44cce0ecdada020495f86d902903aaeb613b6e91dc8e049626c991d556060241","sha512":"7c29ee2197056f0ea0c3152a837f7c1a9f45d384576dd3c2ca6b9258c4ba3a3065643fa15f9c30e15965d996a1e15eb63bd436ce7a56655fa42eab60b9611485","ssdeep":"192:VXVsXSJGXG7SXXbcXloX9S0XXEXeA+XcQSEguSwXiwYxK7sYfICKARmnjDVMpyS9:lv+RdtlhA9onn","tlshash":"79b230156268d4bec57dc1d21ebf3917908d313fa8c6ca1b96ce8dc84ed8ab5160bf02","first_seen":"2026-04-15T13:51:48.654207Z","last_seen":"2026-04-15T13:51:48.654207Z","times_seen":1,"resource_available":false,"data":null}},"time_used":280,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":280,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/en-40741543.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/en-40741543.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 12 Apr 2026 11:47:26 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69db864e-9e10\"\r\nexpires: Thu, 16 Apr 2026 01:51:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":40464,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (40441)","md5":"c81eff8baf5dc3cfccd1d5490e1d974d","sha1":"6859b1e93702ace736d4f425a3c59730d9723e45","sha256":"63159046984a9518c2cbc61b83bd6d6c0a9195d625f5a6614d5e46477cdb37f6","sha512":"e76edf6a8777c9ff5f6415694a9bebf12755f1b29e3bd6fd3c8659696230dff199d2e26ab15e97079cb8f2157c5f897e5e7cea3b1268e495a79c1dfe8da73392","ssdeep":"768:+GtZcEw/o7rKO8AFsiBnAMC2rAaAMywoP6+6sPG9w1mwO6fpk7aOLka:iponKO8eFE2rdywLsPWwqLka","tlshash":"d603d6897e1a889a04f3537674ce6e1120f60ac18255881f4fedc9fd93d2b67a367b34","first_seen":"2026-04-15T13:51:48.655137Z","last_seen":"2026-04-15T13:52:07.314074Z","times_seen":2,"resource_available":true,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/image/admin_mgs_image_upload/20240711/51935450-ab9e-452c-a50a-550f8b977c6c.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.177Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /image/admin_mgs_image_upload/20240711/51935450-ab9e-452c-a50a-550f8b977c6c.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2502\r\ndate: Tue, 23 Dec 2025 03:51:05 GMT\r\nlast-modified: Thu, 11 Jul 2024 03:14:28 GMT\r\netag: \"44c03ea0839cf3e68e8bcf919a91ead8\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: Krev4mYRP3SlFu2hr_Pyb9GXhe3Ddxd8\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: C8Ks6_nE_SuAXxDzc3mZXNk7s9gj5Z6jhBulqs_VC-23z8kh4T3E8w==\r\nage: 9799214\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2502,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit colormap, non-interlaced","md5":"44c03ea0839cf3e68e8bcf919a91ead8","sha1":"b382fe47204f644dcb4895979076e46856b9c63e","sha256":"b491fbeac1334279bed1e0dbbae2348e2758549d1c8832a2f44ade7318a907b8","sha512":"4cec7b4132eb19c31e1216228614bcb0b50e9f1cbce9174af6abb0f6565b7a99b2e5b2f1d4ca207e14edadabc2cbc6f40b03128139c5ff94950e7b20459cdfa4","ssdeep":"","tlshash":"1c515aa2d28f279100e0ad332888c970e414bcd86570052d28da3fcfacf85fda8033d2","first_seen":"2024-10-18T13:48:19.587163Z","last_seen":"2026-04-15T13:52:07.259174Z","times_seen":35,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":-1,"dns":3,"connect":12,"send":0,"wait":27,"receive":0,"ssl":41},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/image/admin_mgs_image_upload/20211110/41e21941-ce24-460f-a6bc-ef9beb66e711.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.213Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /image/admin_mgs_image_upload/20211110/41e21941-ce24-460f-a6bc-ef9beb66e711.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1363\r\ndate: Thu, 18 Dec 2025 02:33:33 GMT\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Wed, 10 Nov 2021 03:25:28 GMT\r\netag: \"0a10e1d22fae250089bd04fe6888152f\"\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: 4PAZatNcUCgxCjS_N1ftPI5uWjd6OnHT\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: RNJlA49Z2Jn0t5MBpnFnsMcV-8izo6UFDGMmyp8xRcTcjYTjRbFINw==\r\nage: 10235866\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1363,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"0a10e1d22fae250089bd04fe6888152f","sha1":"78b9c2ab6cd91e6f372d9aecd41c54c83201942e","sha256":"68d2a6718f3437d0748af718c9aa41360e81e05ea51abdd468a1a85cebff2ca5","sha512":"2a9c741b55f2742464acd2a084d53b7e9d8b3a1c934ce3bd58e8f250d359ff292b6d637adf8c88f416001d678008a9f88b3c0aa55018b45af8e1c086906e83d0","ssdeep":"","tlshash":"142108c80f8659bf5356f07ad72703c6e01f63e8c346464155e60d421bc8994ac8c981","first_seen":"2025-04-01T12:16:01.565792Z","last_seen":"2026-04-15T18:25:34.15034Z","times_seen":65,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":5,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/common/type/defi_activity_type","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.681Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"POST /api/common/type/defi_activity_type HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:18 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":635,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"e130ef081a895b58b23f40697d62b981","sha1":"104ae9620e350d25efddb742e5e8667ae2542173","sha256":"3728283697cc57f809188f0790f709e312c4e529113f289bed5ea1af8c94e343","sha512":"df389bc30f1c586a30e76e943f397b133cb3002c3cad9e10294340490eee1a6614a4625b614c814a4178144cfbb6392d609e7ceb2787e4daeb2a93ebafd1f304","ssdeep":"","tlshash":"03f028143d3dceff098f65e745ecb818299c052794e0fca058ab4f3c5ae4171048920c","first_seen":"2025-09-12T15:54:17.323167Z","last_seen":"2026-04-15T13:52:07.287699Z","times_seen":4,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/notice/list?key=ROLL_NOTICE","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.708Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"OPTIONS /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:18 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T10:03:08.222447Z","times_seen":14220713,"resource_available":true,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/charting_library/charting_library.min.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:14.642Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /charting_library/charting_library.min.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:14 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 01 Nov 2023 21:05:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6542bd9a-2a6b\"\r\nexpires: Thu, 16 Apr 2026 01:51:14 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10859,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10857), with CRLF line terminators","md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-04-25T23:17:27.986996Z","times_seen":740,"resource_available":true,"data":null}},"time_used":272,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/resource/fonts/Arial.ttf","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:15.665Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /resource/fonts/Arial.ttf HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://h5.higico.top/assets/index-509f9149.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:15 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 1047012\r\nlast-modified: Wed, 01 Nov 2023 21:05:30 GMT\r\netag: \"6542bd9a-ff9e4\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1047012,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, digitally signed, 25 tables, 1st \"DSIG\", 58 names, Unicode, � 2017 The Monotype Corporation. All Rights Reserved. ","md5":"ffe66dbfc4b07f36ef38dd621ad2c7cc","sha1":"e032b102cfc37c3226d17e1b462edea5fbf8fe1c","sha256":"c1216a01b3cc4e94df72577a6f618154058a1d8999ed58fa31ab7e54c7e4be4b","sha512":"3c7952b71c8117938c5284efca0e0b3e8c20d7b84c74a4890f76a72af3b26295786b0f7c33d9b6c980527b4c4c8dad628d1f5e7e5f202d11076367f082349bb3","ssdeep":"24576:NoQIQRjo/Y7wjgTmKJ4WxA7EAD4OBfDamXKE6AMra:NHIQJo/Y7wjgTm0PxAwJHE6hG","tlshash":"f125be0bf3929f0fe3902b38c9a5d761939b76189b2743b73d8c5858ecc85a45e487d2","first_seen":"2023-07-29T15:16:45Z","last_seen":"2026-04-25T23:17:27.964819Z","times_seen":1037,"resource_available":false,"data":null}},"time_used":1449,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":379,"receive":1070,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/currencyItem-033891ba.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.684Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/currencyItem-033891ba.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-4b6\"\r\nexpires: Thu, 16 Apr 2026 01:51:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1206,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1205)","md5":"5ec2d979a0cb8ce60a7a9627740fa1f6","sha1":"7b4a1e8c7803aeee6204be70c04d378c4d3cd0cd","sha256":"c293b1d923b879c88cffd79cb2f7f7bd9f2caf1a894454b6d64d05d3a2efec90","sha512":"10e23dd23c969444fd7059197dafe6d42ee2cce1697e37c70e95552e56cecebcebc445a404286c98c8c32478b1576061270743068b2ea605f8da8b9750356119","ssdeep":"","tlshash":"5021df9a9a02cbb1cabe906281bd4414130d7fda700181c1efed048a379b6fcd728a31","first_seen":"2026-04-15T13:51:48.615132Z","last_seen":"2026-04-15T13:52:07.244015Z","times_seen":2,"resource_available":true,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/common/type/defi_activity_type","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.007Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"OPTIONS /api/common/type/defi_activity_type HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:18 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T10:03:08.222447Z","times_seen":14220713,"resource_available":true,"data":null}},"time_used":253,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.08edbec3beb90496691f4b296e57af7b7.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.048Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.08edbec3beb90496691f4b296e57af7b7.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:20 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 2532\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D8AB4B813837ABFE44\r\nAccept-Ranges: bytes\r\nETag: \"0C999450F7EAC0E94D338D5F3B99ADF1\"\r\nLast-Modified: Tue, 10 Jun 2025 10:50:32 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4203513654598678339\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: DJmUUPfqwOlNM41fO5mt8Q==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2532,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"0c999450f7eac0e94d338d5f3b99adf1","sha1":"1274b32bb03497c79875a726381962d554b24336","sha256":"8dc44ecfb73d0dbef52e0a9bc30ce4e1bbcc2bdabf6797f05e2b6ac28fbf31e4","sha512":"0f037dea3efeab8467455cb4e8069efeefba344c3da0789f0cced579ead598a90ff7f16b4470331b5d32febabd17e968840191395724c37c6bf2fca021b5acfc","ssdeep":"","tlshash":"89511ab5b18c5735c116734cc0fde0502124ca6a9cdcfd6eab756e79d689b2e01a0eb1","first_seen":"2026-04-15T13:51:48.659166Z","last_seen":"2026-04-15T13:52:07.265892Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2510,"timings":{"blocked":2238,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/bicon/echo2.0c4db271f6f6247fea51238936a1cb75f%20%281%29.jpg?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.142Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /bicon/echo2.0c4db271f6f6247fea51238936a1cb75f%20%281%29.jpg?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 34858\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7C390C33234E50F68\r\nAccept-Ranges: bytes\r\nETag: \"BB27C369A3AA54D9C1F8E59E1706DA48\"\r\nLast-Modified: Thu, 26 Dec 2024 11:10:02 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 2593469271640333430\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: uyfDaaOqVNnB+OWeFwbaSA==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":34858,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"bb27c369a3aa54d9c1f8e59e1706da48","sha1":"7e1b9677305cad40b686a5a1077da57c4f6cf07f","sha256":"e691621963c6de60c05c0e91cf7c65cba4191df054a3b1bd5becbef3a426f9ee","sha512":"4ff3058897ecbcee5464eb954955cc40bad7f411ee86f21dcbebe3d02ee45410b42f68c8e3a22537ef530c65c9bc9960fb36134aeced2dd36688a21c0cb02415","ssdeep":"768:FAbT/SSUokJQD9Wvnwoo2hzabJIqRw/VH3+WFxL1nHLy:G/RU4yni2kKl53+WbBLy","tlshash":"3df2f155ed69527406b90571846e302ca4669a7ebdceb11bffbd67302b3246f008e06e","first_seen":"2023-11-19T03:02:17Z","last_seen":"2026-04-25T23:17:28.002775Z","times_seen":446,"resource_available":false,"data":null}},"time_used":1384,"timings":{"blocked":1066,"dns":0,"connect":0,"send":0,"wait":299,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/image/admin_mgs_image_upload/20250205/887cec99-9d90-4604-9024-f9003673ee08.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.174Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /image/admin_mgs_image_upload/20250205/887cec99-9d90-4604-9024-f9003673ee08.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 5004\r\ndate: Mon, 15 Dec 2025 10:42:03 GMT\r\nlast-modified: Wed, 05 Feb 2025 09:12:35 GMT\r\netag: \"33b22789611ec507e1d49414dbe3a7fe\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: VAav6kBI9Q1Ai5fDIL1oaQWJkkln89FC\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: swIulk9D-XiQ2d156scOv6HQwzt4PkgCq_CSKZfsiGIuByI6CJvyVQ==\r\nage: 10465756\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":5004,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit colormap, non-interlaced","md5":"33b22789611ec507e1d49414dbe3a7fe","sha1":"9c1bb93b752a9cafd212c2f3e028ffed65a7fb00","sha256":"f98f6b7e4c0c23e8a1dbd95fe3ce40b71d326673ed0d683f5d117ee30000a1f5","sha512":"987a85de90eef5e78922669d920e0eb0c2cd9516eea3bc6d498548374fd427f4bb00ad93cfa8650b4ef163e65bb7281ce78d9c674d505e30591b4a3243bd01f2","ssdeep":"96:KFf/FMUBIuP50YMUTfomAGd8iKV2UruQcct98LDaddzsY9QjPgFHAJPTce:mlpN4XV2296mdKbcVkP5","tlshash":"00a17d6e327125e7ed17853e630a84efd78d1e564e62330f809335c898f410e1e2b661","first_seen":"2025-08-06T15:03:07.030795Z","last_seen":"2026-04-15T13:52:07.311213Z","times_seen":12,"resource_available":false,"data":null}},"time_used":102,"timings":{"blocked":-1,"dns":5,"connect":12,"send":0,"wait":39,"receive":0,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/image/admin_mgs_image_upload/20220819/85387f43-c66f-4e83-a443-483fb330fd7c.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.206Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /image/admin_mgs_image_upload/20220819/85387f43-c66f-4e83-a443-483fb330fd7c.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 651\r\ndate: Thu, 18 Dec 2025 02:33:49 GMT\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Fri, 19 Aug 2022 06:34:21 GMT\r\netag: \"031d09ff8d0294fb0ec013b757c577fa\"\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: RFWFN_QnMXmFjySKz5NpmrBP5YC4SSXJ\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: Y8xnLu7HGpuot8vzzczEu1x2iTq7JPZTjv7jJ3aFpZLhaQfi2Vt9SQ==\r\nage: 10235850\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":651,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"031d09ff8d0294fb0ec013b757c577fa","sha1":"89a9307648479326c547df9d31f9712db2583e40","sha256":"498eabc2e61322d48cd1b6c4355c30588c58f8820b3b8ea8e053fa73bbd11cca","sha512":"9d843a97cdd80ebbc204ee2f6b801e68a6e00c1a73b85d996ca1f11b3faaa07268d7c2bb15aa5d1e61dc314794dfe79fead18e9c8a2347b3576943568dfc53c8","ssdeep":"","tlshash":"85f028f6d23669b167ce32b53d701571546b8c4dee61d521109ecc188142a0b3bc5649","first_seen":"2024-11-06T16:41:01.142235Z","last_seen":"2026-04-15T13:52:07.281993Z","times_seen":7,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":12,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-91b009d7.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.298Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-91b009d7.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:16 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-38c1\"\r\nexpires: Thu, 16 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14529,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (14520)","md5":"bb3303abcce6a78521bf1317feebad8e","sha1":"8facceb7508036d3e45c2ad2752374d0beece3f6","sha256":"337c96f63aa79c547ab43f7baad42e78bbd41ccd19e78539579f438a845d9285","sha512":"a882d61c10923e03107ca40d62cebef205cb261b77870e47eeb392663c644331be02262869e3e24cca587777982c41527a7ca6bb8315ae07537a955403bb57c0","ssdeep":"384:QwkAPLwq/FcadhFVAFfiKeALcyT1Ze17rpay++BWmCiortpgxBpUuaptNG/8:QfJ0dTVAFfP/iR++BWmCiortpgxBpUuQ","tlshash":"c662b696f9069a3cf5fbb45144890410b21e7fdf500c84e2b4bdad86a753ebcb78a61c","first_seen":"2026-04-15T13:51:48.609158Z","last_seen":"2026-04-15T13:52:07.308444Z","times_seen":2,"resource_available":true,"data":null}},"time_used":945,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":945,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.0f9ce5c2dd502415bb95321ec0895dc53.jfif?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.056Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.0f9ce5c2dd502415bb95321ec0895dc53.jfif?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:20 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 16854\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D8E613583133276814\r\nAccept-Ranges: bytes\r\nETag: \"687600D4F726494EC18F6BB780464C8B\"\r\nLast-Modified: Mon, 06 Apr 2026 07:10:05 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10723346588767454220\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: aHYA1PcmSU7Bj2u3gEZMiw==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":16854,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"687600d4f726494ec18f6bb780464c8b","sha1":"233c06bf01e890ab6636fb4e84fe4362ff6c3cdc","sha256":"625f5be841c085ef4bdef180f3a2a11c14df91c812f400d894100887e263f406","sha512":"71e05ade8ffa771a9b7a09b0576557cf7697b8a725c7b5fd54aa3d083547b38d23f950c438c162c0a811630e4029b7c4a0e8169a63dfe64be2ba4205266e8738","ssdeep":"384:l7d3sXT+kgJQQ18Z3dEl76FBKBy5yS8enDecrWCGAS:VSXTD+Q1Ne7CABy0S5ycHGV","tlshash":"3272e1a6bce27d71fd7140cfd54e949b24a4ae9f4098044f067c4f28a22771e3a79d2c","first_seen":"2026-04-15T13:51:48.662322Z","last_seen":"2026-04-15T13:52:07.208256Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2619,"timings":{"blocked":2319,"dns":0,"connect":0,"send":0,"wait":299,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.0df022c38eb9542dca91b975d74e6ee0a.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.084Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.0df022c38eb9542dca91b975d74e6ee0a.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:18 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 7964\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D64C8B373439B6DAB2\r\nAccept-Ranges: bytes\r\nETag: \"C6C486F94BADC721CB597ADA8944DA37\"\r\nLast-Modified: Tue, 10 Jun 2025 10:36:53 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 2795139252907363502\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: xsSG+UutxyHLWXraiUTaNw==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":7964,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"c6c486f94badc721cb597ada8944da37","sha1":"bd242cf2aed3415c3a8212b787ee6a9ec770cde7","sha256":"ed18fec9c462bd6d41567210a1ec98186869db6a262174082e14e6394baa07e0","sha512":"5c49804f7cdc62a1a20e8c76fad63224d8abee1a49d6c7919c8b8ec1bd37daa989555d0933b410d285c6b8fef115a2fd1dbaa85d9e2d34801c29e9d210e5ad19","ssdeep":"192:ZDQbCz6RPdQtKf/BvOFRhM0zaDxk6gcKne3sYuZha7lo:ZYCuRPmtCBGDh7+8cPsYQaJo","tlshash":"0df19d48c3015aa927942709b884abe94087a56ce43b6941527b9d20cacaab8f01b4de","first_seen":"2026-04-15T13:51:48.663172Z","last_seen":"2026-04-15T13:52:07.321278Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1568,"timings":{"blocked":773,"dns":0,"connect":0,"send":0,"wait":265,"receive":0,"ssl":530},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/images/20191211/f9198c3e-089d-442b-a8ce-0f09aa3a7ea7.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.219Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /images/20191211/f9198c3e-089d-442b-a8ce-0f09aa3a7ea7.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3085\r\nlast-modified: Tue, 30 Apr 2024 05:37:55 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 7lb0Ki6je2Z7M8QlRyfE8xjNZDzrluFn\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 15 Apr 2026 04:16:47 GMT\r\netag: \"5df5d2dd7c50029fe8f9e5d735da5023\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: IbSnSTyKXxPW6sWw4pcQc3dgLzWsiMmNp8qGU4BqgycwxZQimtP_8A==\r\nage: 43551\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":3085,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"5df5d2dd7c50029fe8f9e5d735da5023","sha1":"905d205cb385c5b70b74b47dcd00a380b85f0271","sha256":"585239e7c425cd10100869bfef58294a4103d05715e44fac922ee29635571417","sha512":"2029830a0e19badd60767a3b70ef5ff456b0a6c7458ac06691decfb93604407da5c74992b070d6622d494248e97dd4120829f8f396fff5afe24caddb32b54d89","ssdeep":"","tlshash":"b0513cd12c6e2c6841220d56dccf5ce3b47b34fc9688cc15b48928165276322a27c5c1","first_seen":"2024-11-06T16:41:01.038691Z","last_seen":"2026-04-15T13:52:07.304547Z","times_seen":10,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/bicon/lever.jpeg?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.223Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /bicon/lever.jpeg?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 5326\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7C390C332349B1068\r\nAccept-Ranges: bytes\r\nETag: \"C58F4C5B071E5912836E45C01AFA9E03\"\r\nLast-Modified: Wed, 25 Dec 2024 03:19:11 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 15115948942539943788\r\nx-oss-storage-class: Standard\r\nx-oss-meta-cb-modifiedtime: Wed, 25 Dec 2024 03:17:17 GMT\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: xY9MWwceWRKDbkXAGvqeAw==\r\nx-oss-server-time: 18\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":5326,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 250x250, components 3","md5":"c58f4c5b071e5912836e45c01afa9e03","sha1":"b6f7e2a28f9041fac42acd69b8713fd811ea9ea5","sha256":"ea10356f413860e7186404344d50b9516f8e0fe1317df7d53fc81ce81c8e7bb3","sha512":"d61e62b7171e37d01a1453feaf4685f922dad6afe642d687afd248eda211886d2b75d3afe06dbe9fc5bcd483a28cfe3f4541f0a1af9325c0a3c0163bb74a29dc","ssdeep":"96:emHUsasfObCPgp0gc3oj3OSj6rTvdv6OzmrzobXdslboM65PHMZ1:uJO1Yp0gtjhjIvdv6OKrzobN465MD","tlshash":"c3b16d72b762d9d8c519e1f1da024ba2600d6e7b01bf9cc95f6d1d9119f4081cb813cc","first_seen":"2024-06-11T12:53:28Z","last_seen":"2026-04-15T13:52:07.311967Z","times_seen":131,"resource_available":false,"data":null}},"time_used":1894,"timings":{"blocked":1589,"dns":0,"connect":0,"send":0,"wait":304,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/resource/fonts/DINOT-Medium.otf","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /resource/fonts/DINOT-Medium.otf HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://h5.higico.top/assets/index-509f9149.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:18 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 73096\r\nlast-modified: Wed, 01 Nov 2023 21:05:30 GMT\r\netag: \"6542bd9a-11d88\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":73096,"size_decoded":0,"mime_type":"application/octet-stream","magic":"OpenType font data","md5":"ab876400560626fbe045633dc44f0748","sha1":"85bbfb1729e86f40ddc9af7197b5f54ed6136226","sha256":"5888b24f6b65ff7c989b4a258dbeb5d997320d61417371210da0258be21d854d","sha512":"82e96ade51b0570c1f691ba45d1a3c0802015dad7598954675c4abe2fa8a9fc705adbe6eb5e677aa5cc03b6704e594cfe99279c678855ebbbcbade6d5028dbd6","ssdeep":"1536:TlK/cP2D2oV7otQjBG1+acfZZHHDEdom1hvd5JItkB7k3Z:TKQQtG1yZSdomrvpIqcZ","tlshash":"0b636f031d4fb9548de4513a52de4ea34bb39ecc1ca493c30ae12d938fece6657152ae","first_seen":"2023-08-16T00:37:20Z","last_seen":"2026-04-25T23:17:27.970459Z","times_seen":730,"resource_available":false,"data":null}},"time_used":315,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":265,"receive":50,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/tttt/1.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.670Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /tttt/1.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 150872\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D78B90443032243336\r\nAccept-Ranges: bytes\r\nETag: \"1ADD2EFAEA53C24C7B50C58E8D66DA9D\"\r\nLast-Modified: Thu, 12 Jun 2025 14:36:42 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10951242625505429836\r\nx-oss-storage-class: Standard\r\nx-oss-meta-cb-modifiedtime: Tue, 10 Jun 2025 09:36:24 GMT\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: Gt0u+upTwkx7UMWOjWbanQ==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":150872,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x900, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"1add2efaea53c24c7b50c58e8d66da9d","sha1":"f2284ffcb62285c39b0f6b566cf99f31a62c1bcf","sha256":"9ddf10214e7f88720aa852af3384d232d722bac34e1df0991afbf57003db9779","sha512":"d28884844f631286bc0232c81d8b0f1bd5bff6994950da70bc82bd741324645ad18ac682825d6862fb56abb4d18a2ac90aa139626dea7e0406af4273f2416865","ssdeep":"3072:p0cBG2NrD9PyzjTTZ1WafOostlQ0n8EMuzPUQZbr7Qm:pHVl5MWs7KbzPUYb9","tlshash":"d3e313bb3cd10d1d477a4e84145938338f312d9dbd5a4b6a7ceacb61744a3eac208d97","first_seen":"2026-04-15T13:51:48.665991Z","last_seen":"2026-04-15T13:52:07.217022Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1744,"timings":{"blocked":1112,"dns":0,"connect":0,"send":0,"wait":292,"receive":340,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/tttt/4.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.672Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /tttt/4.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:20 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 37582\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D8C390C33234FA1068\r\nAccept-Ranges: bytes\r\nETag: \"50E6BC877597B0CDE5EB8169DFF2E118\"\r\nLast-Modified: Thu, 12 Jun 2025 14:37:11 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 16121446741799857009\r\nx-oss-storage-class: Standard\r\nx-oss-meta-cb-modifiedtime: Thu, 12 Jun 2025 14:30:54 GMT\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: UOa8h3WXsM3l64Fp3/LhGA==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":37582,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1200x630, components 3","md5":"50e6bc877597b0cde5eb8169dff2e118","sha1":"7f171eea68f97af7c0fee6396c5c542ce9c31969","sha256":"887224277462f2fba0b289046e0bc86805de26cbcc5efad14436713f792139e3","sha512":"54e3de244875e13e1396cac379c0197b510aaaee5a4cab28951b24810a4228b0f028aa897b362c3e1243299f4b66a9cb4272b349f4f891e89fe2022d7911917c","ssdeep":"768:4AXguBMuLti0NN1rQx6marz+jKJnaqLBW5bg5W473MXZMn:42Bj5RhQ8dK6nVO/O","tlshash":"d8f2c0032fef0ed6c85d5e7d0dd41715e6401bd90280b42e8a9a3d7321bca43adb9de9","first_seen":"2026-04-15T13:51:48.666915Z","last_seen":"2026-04-15T13:52:07.298052Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1761,"timings":{"blocked":1445,"dns":0,"connect":0,"send":0,"wait":298,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-10f47220.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.300Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-10f47220.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:16 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 510\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\netag: \"69d41558-1fe\"\r\nexpires: Thu, 16 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":510,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (509)","md5":"1bc6c42503fcfdd83074aca66a4a5f58","sha1":"5a3d4d064e0d65f44ecbf5583ad075f61a8404e3","sha256":"e04018fd8c792b08db7a75e0f394b0ecca543432a4123c33466047e60f3946c5","sha512":"715a6ab379fddaabd96273263491ad5a2035f852467f1e83c1d4989ae6ff3fd088a0b2a10e643fe66774a4df8a774ef3bc2028182c0be494da436bd8d3a86dcf","ssdeep":"","tlshash":"a8f0052f7a7e90721bb344e850630411b63d1b893b90c1b4d9ca1614573c8e7d16e514","first_seen":"2026-04-15T13:51:48.66783Z","last_seen":"2026-04-15T13:52:07.246661Z","times_seen":2,"resource_available":true,"data":null}},"time_used":945,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":945,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-e0a77853.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.302Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-e0a77853.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:16 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 776\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\netag: \"69d41558-308\"\r\nexpires: Thu, 16 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":776,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (775)","md5":"a91c9719247ce2cbcb2e08d4f7f60944","sha1":"1a3659c74962bc788c2e504139c5b62c88daa288","sha256":"48e9d6c319375f3724a83615f6945bb0b638c58965860fd1ed1d454c28d7a237","sha512":"5870cdc32da3be1832d97cb8c867fc9aadbee0df0951ad84159de06acfc00a9be927b39c4a3920e67eafbab85e28d2d7d4eee8318df1de8a61c9c7750e7fa7cf","ssdeep":"","tlshash":"6901b8f8fd1dcebb0ea20a4141d13601140a2fddfa1419e198867e6a2be4990dbde72d","first_seen":"2026-04-15T13:51:48.604779Z","last_seen":"2026-04-15T13:52:07.206408Z","times_seen":2,"resource_available":true,"data":null}},"time_used":945,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":945,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/common/getAllSetting","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.375Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14016,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"c79f5e3c6cf41ee840ed2e09e8f84782","sha1":"87c340cb722e93f8770f98fa155d9ca102889488","sha256":"5f74e8232b35094b7a80504f7c8af4d39c0b1659de9b2d50b7471f7c8372ab02","sha512":"5f2da175a84f04c14bd4fe457ece5d79acbf01791f5d104d354e662f5bf4b4d6f5f1c3ec27649716ffa6a2e63559503a11b265081725271faa84b7bc8b99d8a8","ssdeep":"192:kmtj3tzkOSgQ+oYD+RbNc2hvDSkHqtmi9WKARJn4qf1N8pmNi2F8azFI2seNqsqf:n1clqa4e1m4b+aJI2FbLAA5C5lkzO0S","tlshash":"c652340a33d4dcbd82d619c6d4a73a4eb8cc3dab95d49c45e8d6ef8c858a9b2440f10f","first_seen":"2026-04-15T13:51:48.607802Z","last_seen":"2026-04-15T13:52:07.278311Z","times_seen":2,"resource_available":false,"data":null}},"time_used":277,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":277,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.02a2a0229b86e41a4a9c951479ff6cfa2.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.102Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.02a2a0229b86e41a4a9c951479ff6cfa2.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 6949\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7C390C33234920F68\r\nAccept-Ranges: bytes\r\nETag: \"CD67365BC6265C48B512CDFC031E28E7\"\r\nLast-Modified: Tue, 10 Jun 2025 10:40:44 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4531835030545829863\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: zWc2W8YmXEi1Es38Ax4o5w==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":6949,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"cd67365bc6265c48b512cdfc031e28e7","sha1":"cf9afcf1ddb9c1bd5da5a29cc3c7f0ec7bc39c56","sha256":"6bed19056c111e651b94e652b799b5202e9f5069cda0a3f0cbef6f7771383400","sha512":"e9a4b14a17b12a41d7fe5348f82906db2bfea6d75e6899f65530d917190ee4a3d96ecc6db1c99da7d0150555f02bef8ed04f984bd1640c73a53a4621c745b90f","ssdeep":"192:YvFk36MRzq19xYOJxgMgBkPKNx+tD3MfqDxSWQ5pccJZH:G0wgjgKNkrxSJ/ccJZH","tlshash":"26e1aebfb30c4d41c62510a0ee3bd8bced372b543919c8ca4af2810be67ea58e557745","first_seen":"2026-04-15T13:51:48.668628Z","last_seen":"2026-04-15T13:52:07.316342Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1674,"timings":{"blocked":817,"dns":0,"connect":0,"send":0,"wait":287,"receive":0,"ssl":570},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/common/getAllSetting","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.712Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:18 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T10:03:08.222447Z","times_seen":14220713,"resource_available":true,"data":null}},"time_used":252,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-15T13:51:13.166Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:14 GMT\r\ncontent-type: text/html\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-14af\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5295,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1094), with CRLF, LF line terminators","md5":"9f28610c30e26d22925d5e70b1dec2a1","sha1":"658f70588c73e3bcaa64ab4cfb50919734fffee4","sha256":"388840a5cccacb00879a38bfecc1f10553ea3ac45561c8b16cedcef4512ce2f3","sha512":"3566036c057ba3cf3abe1bebbb6398234e8f9121f39803dbb52c35c1d92c942342753a244c397b2216ec57c3df6778f849f69aa003452ca5f31819faee89f625","ssdeep":"96:+r82bVVf53uSPE+Vy05VpVtt/VBVyr6TCZydHRH/gBa2mUsGKAiowGwuB1niHEiH:+Ff9PEWOZCxfF2nfD3bwuB1nikiWf2","tlshash":"0fb141b3ada0882b23b1062aeed7b41cef611193852d4850b0cc84ee8fe5fd584d7765","first_seen":"2026-04-15T13:51:48.669808Z","last_seen":"2026-04-15T13:52:07.312639Z","times_seen":2,"resource_available":true,"data":null}},"time_used":2371,"timings":{"blocked":1059,"dns":544,"connect":254,"send":0,"wait":253,"receive":0,"ssl":258},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/filters-6f450bfe.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.304Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/filters-6f450bfe.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:16 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-c1e\"\r\nexpires: Thu, 16 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3102,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3101)","md5":"5c4e8f32261fa0efc81a74349769fd7f","sha1":"fdfa7aa0bded096caabf55a6315b798741486a70","sha256":"d01f1cd63d000f56a2c0e60cc5f67532e28ff826a7176c911fe04cddc9f6140c","sha512":"97a6a56d0c1c34227cc01f8dcb93e029b13a5b939e2fbab2d6afd848ebf42d5e274c9accd973ff9bf4c9a66036027c67b8b564c60ad7d567a9c1d8e3bc2adc81","ssdeep":"","tlshash":"fe5134fdfdd7a13356ea6af940288054728ebe20686e0a4df54bd0455a33888e07f768","first_seen":"2026-04-15T13:51:48.670534Z","last_seen":"2026-04-15T13:52:07.231216Z","times_seen":2,"resource_available":true,"data":null}},"time_used":944,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":944,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/common/getMt5Amount?coin=xau","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.663Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"OPTIONS /api/common/getMt5Amount?coin=xau HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T10:03:08.222447Z","times_seen":14220713,"resource_available":true,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/filters-6f450bfe.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.683Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/filters-6f450bfe.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-c1e\"\r\nexpires: Thu, 16 Apr 2026 01:51:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3102,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3101)","md5":"5c4e8f32261fa0efc81a74349769fd7f","sha1":"fdfa7aa0bded096caabf55a6315b798741486a70","sha256":"d01f1cd63d000f56a2c0e60cc5f67532e28ff826a7176c911fe04cddc9f6140c","sha512":"97a6a56d0c1c34227cc01f8dcb93e029b13a5b939e2fbab2d6afd848ebf42d5e274c9accd973ff9bf4c9a66036027c67b8b564c60ad7d567a9c1d8e3bc2adc81","ssdeep":"","tlshash":"fe5134fdfdd7a13356ea6af940288054728ebe20686e0a4df54bd0455a33888e07f768","first_seen":"2026-04-15T13:51:48.670534Z","last_seen":"2026-04-15T13:52:07.231216Z","times_seen":2,"resource_available":true,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/common/getMt5Amount?coin=xau","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.921Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=xau HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:18 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":47,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"b4fbc3a42a2576391759ded61242fc79","sha1":"8610ce535995e916958c49d3eb12ad0cd767f10d","sha256":"0c11e0e9ec2c90fd53b93eb980b6494b591e4d3ff74e374e10caae849d0afb4f","sha512":"a0af75e52164117272b589da7c9bfd63f44404d9de0a515e2403265ea65fa25a1c965b5e5f8675232c4d2e32a58e7b05bf3f85cb7eea944c81b2428fe8efb190","ssdeep":"","tlshash":"509002565c2c8246ac8300b5950a120400283161262492484c59512591c82e22044c98","first_seen":"2026-04-15T13:51:48.67137Z","last_seen":"2026-04-15T13:51:48.67137Z","times_seen":1,"resource_available":false,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.01154591d70f04b709a846426a82bb70b.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.046Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.01154591d70f04b709a846426a82bb70b.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:20 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 9307\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D84C8B37343960DCB2\r\nAccept-Ranges: bytes\r\nETag: \"621AE36162A55DDDEC00C53F0A21965B\"\r\nLast-Modified: Tue, 10 Jun 2025 10:49:22 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 1437824452966632135\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: YhrjYWKlXd3sAMU/CiGWWw==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":9307,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 282 x 256, 8-bit/color RGBA, non-interlaced","md5":"621ae36162a55dddec00c53f0a21965b","sha1":"71de32cdcc441159396c6d79b2dcf7c81c97a8e7","sha256":"d357d5513161f8404a219ffcd9346920a04f1c3bb760e22ca3680f79c618e939","sha512":"a02c063a7f10674aff49d3eb91bf179201d486e3e25a4032cacae47bd673e420572f55cf13b95d1e0daf07be7c904595845a7588bdc2a4616c861e3dbe457dfc","ssdeep":"192:15SOxNM2TZn7u4gCuiiMn4p6/NVPsDarGCoR/AMqhSZPXrX/G0AlclB:1bu2TZy435ie4pOVPRr6XqQBDEmr","tlshash":"cd129dbfc0406c55f696916ce60b59eb082863e63c2947403347c0fa9b99b968ede4a7","first_seen":"2026-04-15T13:51:48.67222Z","last_seen":"2026-04-15T13:52:07.234463Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2471,"timings":{"blocked":2201,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.0a3bc10d8d3fe491c971dd079557f4b1a.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.059Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.0a3bc10d8d3fe491c971dd079557f4b1a.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 15017\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7AFAD5B36315FA702\r\nAccept-Ranges: bytes\r\nETag: \"2324F72E3F8F429888CDD86A906DA1F5\"\r\nLast-Modified: Tue, 10 Jun 2025 10:52:33 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 928159984584978604\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: IyT3Lj+PQpiIzdhqkG2h9Q==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":15017,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"2324f72e3f8f429888cdd86a906da1f5","sha1":"7e105d1f1d0c14f08ea774f1589893bb4f1c25b2","sha256":"8a128331c0a0c855b1862cf05a9588e2390503cfd8d925d02ce44d5b38dcc6f7","sha512":"ccdfc880bbdb9a9d9fb8df63c4a4a6bd0da5064d2814756f0c611f7b058b8b862833b6af2ee64ce58c84aaf4aa44454f1f9395ab3456f4343eca4cd1dd3dbfdf","ssdeep":"384:PQW76JqA1zoujpLVHMmDofzdXTYUmQYxw5J3Chpz6Gjnvl:P3OJ31sujMmsfzdDYUmQ0wryrh","tlshash":"5a62c06e5c45aa3567a18161cffde932dc805cccda2582a4c88ef933457731e7a8a4e8","first_seen":"2026-04-15T13:51:48.67329Z","last_seen":"2026-04-15T13:52:07.210009Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2009,"timings":{"blocked":1719,"dns":0,"connect":0,"send":0,"wait":289,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/bicon/echo2.0ccf8db7d860a4509bcd994fe192dc0f1.jpg?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /bicon/echo2.0ccf8db7d860a4509bcd994fe192dc0f1.jpg?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 2274\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7E613583133546614\r\nAccept-Ranges: bytes\r\nETag: \"674B0999F6083084A2A4B1D8B20F3BC1\"\r\nLast-Modified: Thu, 26 Dec 2024 11:02:47 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 2919851811578833622\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: Z0sJmfYIMISipLHYsg87wQ==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2274,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"674b0999f6083084a2a4b1d8b20f3bc1","sha1":"8d14a526e83604e323723b4d25f8f8066f1ede70","sha256":"632f9cacb6b3fbedece774a8d27c436f37dc359de3bb0872ea19603b70347708","sha512":"4c04d137c2448c0d52a4298c858f95c58116c1d77e75899f5acdf6bb61ed839dbdc99fd5556eb63793b81258de40e515540acaeab007da76664476c9be2e514f","ssdeep":"","tlshash":"cd414bd7c53300ed9128e735b8c3ee819c00628d183bb46b89f5ec60b2346d31a53a98","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-04-25T23:17:27.959548Z","times_seen":460,"resource_available":false,"data":null}},"time_used":1359,"timings":{"blocked":1071,"dns":0,"connect":0,"send":0,"wait":288,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-07f82546.css","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.288Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-07f82546.css HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:16 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-a01\"\r\nexpires: Thu, 16 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2561,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2560)","md5":"502568bc62172098802bbfbe8a0f82d4","sha1":"f126410d21304c04b2550e42e771a6c586263b46","sha256":"07f82546f4a1e6bb1fd3bb33e82374b3925bb29a390ce05fc2f10584eded0197","sha512":"365b21b4615223565b5203f2394b20aed98c4a6296c0ded7770c7ef0eac538c4b182c2bbf5a03077dff737c3e999ded5d11c4671b77d6257a0e614f0c635562e","ssdeep":"","tlshash":"ac513f9cfa9451314d37c5cf6f989b8c80243f82f44b9ee9f643871609df6932a2432a","first_seen":"2026-04-15T13:51:48.674611Z","last_seen":"2026-04-15T13:52:07.318526Z","times_seen":2,"resource_available":false,"data":null}},"time_used":947,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":947,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-fa231284.css","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-fa231284.css HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:16 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-2a04\"\r\nexpires: Thu, 16 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10756,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (10755)","md5":"de466a25694ace7e55059e4dffe58f40","sha1":"b571ffce32b6bf0a5a6a6774b86cd5cbe502fccf","sha256":"fa2312844cc712e4e1b0a22dc5e7979622a5a29c8e63f2c8b329c8dff24d5c8e","sha512":"c86e216481634c22f5ccb196e6d3ea8165e31bc51fd695df751e5e27fc0dbe2d2030a796eace2f6242e6eaaf33376ab130d17d0cb00bac4a5bcb6191964ba490","ssdeep":"96:pXMp5mXUVM2tL5Kq62rH974nGvezOETjHa5OoQic62rNTtZU/ao4brDSLwtD3E+W:OYY7TvePfHuOpg+rDSLwtDm","tlshash":"8522612df2d92638ac37e1a5bbc84dcce10efa11e2a39de8e557d5260dcb5e71630049","first_seen":"2026-04-15T13:51:48.67542Z","last_seen":"2026-04-15T13:52:07.252593Z","times_seen":2,"resource_available":false,"data":null}},"time_used":940,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":940,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/echo2.04dfd6953572645c79c4dae39441e96ae.jfif?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.056Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.04dfd6953572645c79c4dae39441e96ae.jfif?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 16854\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D7AB4B81383704FE44\r\nAccept-Ranges: bytes\r\nETag: \"687600D4F726494EC18F6BB780464C8B\"\r\nLast-Modified: Mon, 06 Apr 2026 07:10:01 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10723346588767454220\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: aHYA1PcmSU7Bj2u3gEZMiw==\r\nx-oss-server-time: 0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":16854,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"687600d4f726494ec18f6bb780464c8b","sha1":"233c06bf01e890ab6636fb4e84fe4362ff6c3cdc","sha256":"625f5be841c085ef4bdef180f3a2a11c14df91c812f400d894100887e263f406","sha512":"71e05ade8ffa771a9b7a09b0576557cf7697b8a725c7b5fd54aa3d083547b38d23f950c438c162c0a811630e4029b7c4a0e8169a63dfe64be2ba4205266e8738","ssdeep":"384:l7d3sXT+kgJQQ18Z3dEl76FBKBy5yS8enDecrWCGAS:VSXTD+Q1Ne7CABy0S5ycHGV","tlshash":"3272e1a6bce27d71fd7140cfd54e949b24a4ae9f4098044f067c4f28a22771e3a79d2c","first_seen":"2026-04-15T13:51:48.662322Z","last_seen":"2026-04-15T13:52:07.208256Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1956,"timings":{"blocked":1673,"dns":0,"connect":0,"send":0,"wait":281,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/images/20191211/ac3c4be1-e585-4923-bd1d-d8e19a8c4a6c.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /images/20191211/ac3c4be1-e585-4923-bd1d-d8e19a8c4a6c.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2115\r\nlast-modified: Tue, 30 Apr 2024 05:37:52 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: C2tvhcB6VGkh0PRVvmdxZFeRWh.LPcQ3\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 15 Apr 2026 04:01:13 GMT\r\netag: \"fc238d411ec4aa036cd1d0d5ce7076f2\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: UaVP2Ag9b3cLmjcRoNbq8wPsmAzgXlE_GAxrohWo8YKcNkENJ9SyPQ==\r\nage: 35518\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":2115,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"fc238d411ec4aa036cd1d0d5ce7076f2","sha1":"1e765f45751aca68c5a2071dee30886ff11a7264","sha256":"66b630e95567fcbd09f4ca48d63a7d3a4c77d4513ac1997aa95052758a844f27","sha512":"2f9d1e1733cf8f2274172ae4cfd1cfc93ea80f96e41acf91190f79c2286b1b1fdadab470a9e8bac9577203f1b37577f6f7410688b4a43b2200a31d22ce55b325","ssdeep":"","tlshash":"f7413cb99fbf429dd409be21f59d6c4cf063125e86a500285d17486d31468eccc5e5a2","first_seen":"2024-11-06T16:41:01.05553Z","last_seen":"2026-04-15T13:52:07.296456Z","times_seen":7,"resource_available":false,"data":null}},"time_used":94,"timings":{"blocked":-1,"dns":12,"connect":8,"send":0,"wait":28,"receive":0,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/image/admin_mgs_image_upload/20250426/29b2a289-c671-4a28-ba59-4b57bb748900.jpg?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.197Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /image/admin_mgs_image_upload/20250426/29b2a289-c671-4a28-ba59-4b57bb748900.jpg?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/jpeg\r\ncontent-length: 9367\r\ndate: Thu, 18 Dec 2025 02:33:00 GMT\r\nlast-modified: Sat, 26 Apr 2025 20:05:03 GMT\r\netag: \"5e2c4cb6628ac0945c84792899a261a3\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: JH6Skz1Uxtm.nh.AiuLCD.h43RhYMvB4\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: c7JKyyUvN6fOXkv84WWTv6f2B1KXLu6bN_Osp200yHrK32iR4cJR7g==\r\nage: 10235899\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":9367,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit colormap, non-interlaced","md5":"5e2c4cb6628ac0945c84792899a261a3","sha1":"eb239ab97ec3c5d1c21ad2c00d62f0eed805a22c","sha256":"af11319b872c131fd8d7b6a8617439ded1080fec862b5582932058859788ecbe","sha512":"6a5b63d65464e8a798e5fdd499c27bef84d7754af0e47c65ecd1a7e5df391b1b74476f9be21ef534b3fd001aa26ed961e90e52b3d601b5ac556a469a4c325d0b","ssdeep":"192:xW1yLHH7lP6qjPcYS3TPhBDKl1pk7aTl1/edFsz:Q187lTPcYQFpKbq7aT+do","tlshash":"5b12b051e5a3ff53ed44aadd77c83a152134a6d0bf41a99f6f40c8b20385d08915847c","first_seen":"2025-10-12T23:56:14.928042Z","last_seen":"2026-04-15T13:52:07.239891Z","times_seen":8,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":21,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/images/20200908/7578b4e5-2192-4f38-a74f-f1e9843f8a99.png?2.0.1775477975809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.215Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /images/20200908/7578b4e5-2192-4f38-a74f-f1e9843f8a99.png?2.0.1775477975809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1050\r\nlast-modified: Tue, 30 Apr 2024 05:41:30 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: cNCr7d9zBkMbdy5eZqTmRhzx0wZb9tnt\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 15 Apr 2026 01:50:03 GMT\r\netag: \"34eec9adcb18518ce25fffe4bc60faa4\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fc54020ff2087bf01c6a8bc97e7fe89a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: sZ-IK_9k84GzNzsPidUpe9hzWIcHhDTvNRZMPSiTOYjm37Gx9EaEeA==\r\nage: 43894\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1050,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"34eec9adcb18518ce25fffe4bc60faa4","sha1":"2917fa1dbfa704e8a9320adeb8f0fc32f9d08119","sha256":"894da0630c0cafc6cddb9caad4a72419e9e1537d612e91dbe4a3a8f577adad23","sha512":"79204fc8854da56b9556dfe674107a539aa187bf1ef237393de4ffa80cca55c2205a919041ce90481320833e224ab0f7bffda5b87a48d0ca25e09ce6951b63c8","ssdeep":"","tlshash":"6e11c83e278c7c5d1a910f2e47b18542b7171d6c150e6a1f6d4c7b683377086e422bdc","first_seen":"2025-10-18T15:54:26.01605Z","last_seen":"2026-04-15T13:52:07.294038Z","times_seen":4,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":4,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/notice/list?key=ROLL_NOTICE","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.925Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"POST /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:19 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1105,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"f3c7e97f7ee535b12b85c39deac5a700","sha1":"d205b02fcf778e368ed8aca156ad48c83747ab52","sha256":"209ef6e85cb4e5f585ee8a02fa00a59e6ecac532bb1bb1144d2ddbc7f258a5db","sha512":"23743a619c557e70b6ada0a9089b4faaec908483aef7b6cc9052c74a1d92841ca5c9d9651f3a1601bdc88fa0a829cdbfcc1bb47459556b177db10409a7ee7cb7","ssdeep":"","tlshash":"5a11004a223c8e71441611b373ccfdc9a2be1697d6a28d38855ecf2c03f14b9172b581","first_seen":"2026-04-15T13:51:48.67932Z","last_seen":"2026-04-15T13:52:07.271232Z","times_seen":2,"resource_available":false,"data":null}},"time_used":258,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":258,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.higico.top/api/notice/list?key=ROLL_NOTICE","fqdn":"webapi.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.928Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.higico.top","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:57 GMT","end":"Sat, 11 Jul 2026 01:19:56 GMT"},"fingerprint":{"sha1":"9A:F6:5E:81:32:5D:A0:6E:EF:0C:F8:34:0E:8F:3C:6E:D3:20:91:34","sha256":"DC:B3:AA:A5:A0:E6:A6:95:9D:E8:A1:0C:62:0A:F6:09:F8:EE:4B:34:68:14:47:AA:40:AE:44:A6:CE:B9:90:33"}}},"request":{"raw":"POST /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: webapi.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://h5.higico.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:19 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://h5.higico.top\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1105,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"f3c7e97f7ee535b12b85c39deac5a700","sha1":"d205b02fcf778e368ed8aca156ad48c83747ab52","sha256":"209ef6e85cb4e5f585ee8a02fa00a59e6ecac532bb1bb1144d2ddbc7f258a5db","sha512":"23743a619c557e70b6ada0a9089b4faaec908483aef7b6cc9052c74a1d92841ca5c9d9651f3a1601bdc88fa0a829cdbfcc1bb47459556b177db10409a7ee7cb7","ssdeep":"","tlshash":"5a11004a223c8e71441611b373ccfdc9a2be1697d6a28d38855ecf2c03f14b9172b581","first_seen":"2026-04-15T13:51:48.67932Z","last_seen":"2026-04-15T13:52:07.271232Z","times_seen":2,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"webapi.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-d921e416.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:16.301Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-d921e416.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:16 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d41558-1238\"\r\nexpires: Thu, 16 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4664,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (4657)","md5":"7ad4f0e658bef6d953d37cc72381aafb","sha1":"c26acb4069a7c81409d9c7503fdb8b657d4391ba","sha256":"60aa3cd91d02f2160c03fb29ddca75211a6680bf5aef2e8360f370b319e3fdf2","sha512":"dc4455d38c3d47457fe8def86022b8e7f09e5b9b04c64099a5d7f0ba656daf74ff06c86f80f48d6b7c62c433c535fa5eb60e6cba16038befe29ed0e26b0f9983","ssdeep":"96:l+Cfp9YIqD+wSvxQMyntb1kiGnRbT33hvzA3X6NthIjR:l+Cf7YIqiwSyntbi39nhv0XQKR","tlshash":"87a1b799f50285bfe9671440488c041021ac7bfaf21548f5fbbead0a67b897dd758326","first_seen":"2026-04-15T13:51:48.621131Z","last_seen":"2026-04-15T13:52:07.204022Z","times_seen":2,"resource_available":true,"data":null}},"time_used":945,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":945,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/assets/index-10f47220.js","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:17.679Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /assets/index-10f47220.js HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:17 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 510\r\nlast-modified: Mon, 06 Apr 2026 20:19:36 GMT\r\netag: \"69d41558-1fe\"\r\nexpires: Thu, 16 Apr 2026 01:51:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":510,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (509)","md5":"1bc6c42503fcfdd83074aca66a4a5f58","sha1":"5a3d4d064e0d65f44ecbf5583ad075f61a8404e3","sha256":"e04018fd8c792b08db7a75e0f394b0ecca543432a4123c33466047e60f3946c5","sha512":"715a6ab379fddaabd96273263491ad5a2035f852467f1e83c1d4989ae6ff3fd088a0b2a10e643fe66774a4df8a774ef3bc2028182c0be494da436bd8d3a86dcf","ssdeep":"","tlshash":"a8f0052f7a7e90721bb344e850630411b63d1b893b90c1b4d9ca1614573c8e7d16e514","first_seen":"2026-04-15T13:51:48.66783Z","last_seen":"2026-04-15T13:52:07.246661Z","times_seen":2,"resource_available":true,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5.higico.top/resource/svg/dark/zu447.svg?2.0.1775477975809","fqdn":"h5.higico.top","domain":"higico.top","tld":"top"},"ip":{"addr":"223.26.62.92","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.112Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.bgnaotc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Apr 2026 01:19:11 GMT","end":"Sat, 11 Jul 2026 01:19:10 GMT"},"fingerprint":{"sha1":"FB:5D:CE:CD:07:F5:0F:66:AE:14:B7:7F:C9:91:C1:56:E1:D5:58:FD","sha256":"84:22:36:83:CB:4F:66:68:CF:B2:05:BE:D8:27:50:52:AC:25:EA:38:82:7F:E3:3F:E6:7F:CC:93:CC:57:17:1A"}}},"request":{"raw":"GET /resource/svg/dark/zu447.svg?2.0.1775477975809 HTTP/1.1\r\nHost: h5.higico.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:18 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 420\r\nlast-modified: Tue, 10 Jun 2025 17:11:06 GMT\r\netag: \"6848672a-1a4\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":420,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5f5e5315f64d78287b828d642e387e97","sha1":"bd3ab631a21cf7172778a61d7e3145b44beabb6a","sha256":"22fa8ba0ed5db0f2c56072f27926fdc334f40c6ca7474e14a3ef691dc0cc4dfa","sha512":"97d8f36851fe72e58b4ec676db919ec7c07a1d71462552345c1702aa2863fa2a1f5aed4b598d762fed4a575b4e5b14a47a398fec621f3324fcf5d31e3b4e9471","ssdeep":"","tlshash":"cae05c17cc15100e91010e95c7d51fa8a47ff183c2a508aefbe0227b4af5c0a2cbc32a","first_seen":"2026-04-15T13:51:48.680164Z","last_seen":"2026-04-15T13:52:07.317466Z","times_seen":2,"resource_available":false,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"h5.higico.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hkex-taizi.oss-cn-hongkong.aliyuncs.com/bicon/binance-coin.png?2.0.1775477975809","fqdn":"hkex-taizi.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.188","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://h5.higico.top/","date":"2026-04-15T13:51:18.147Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /bicon/binance-coin.png?2.0.1775477975809 HTTP/1.1\r\nHost: hkex-taizi.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 12869\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97D74C8B3734395ADBB2\r\nAccept-Ranges: bytes\r\nETag: \"A533EECDEE5A789E7D94F8F79F95D588\"\r\nLast-Modified: Wed, 25 Dec 2024 03:19:10 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 18158548296662870332\r\nx-oss-storage-class: Standard\r\nx-oss-meta-cb-modifiedtime: Wed, 25 Dec 2024 03:16:54 GMT\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: pTPuze5aeJ59lPj3n5XViA==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":12869,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"a533eecdee5a789e7d94f8f79f95d588","sha1":"f1ae6df3a9baf6dbec969c6d1ab622850a282895","sha256":"ea257fac91d01858b7dfd0361f8b480caeb3d57b080570ef4b4f41d5d7e68c90","sha512":"e46ca5c2239c89c783805b1f4e17664118e57e95dff6513b8ff917aaaa763b922c6286b48d0e6daca644ae30c3e821674dade74a056837865353b451c50d074b","ssdeep":"192:3GSu8nGgOCcrSaheqQThcTrOcOAasSqXzcxfuZWfWOKJ6mVgCd7mOOwRB0IG:5/POzrSTThcTaPAaFqXzcqG6ekvP0IG","tlshash":"1442bfd83898c3e455233e69d56e4c138122251a66588517f22a2b7dbf03af27fcf1e6","first_seen":"2023-11-19T03:02:17Z","last_seen":"2026-04-25T23:17:28.00527Z","times_seen":491,"resource_available":false,"data":null}},"time_used":1552,"timings":{"blocked":1279,"dns":0,"connect":0,"send":0,"wait":272,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}