{"report_id":"a8b7c521-4a4f-4774-a58a-28ce14c8e15c","version":6,"status":"done","tags":[],"date":"2026-02-24T14:24:35Z","url":{"schema":"http","addr":"pol-usdc.skydao.click","fqdn":"pol-usdc.skydao.click","domain":"skydao.click","tld":"click"},"ip":{"addr":"143.92.51.118","port":0,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"final":{"url":{"schema":"https","addr":"pol-usdc.skydao.click/","fqdn":"pol-usdc.skydao.click","domain":"skydao.click","tld":"click"},"title":"USDC一键批量操作","dom":{"size":12000,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (376)","md5":"d1f3aee09058d18bca047468e64fa30b","sha1":"4097c9837ce207c214206f4fe8c6119d1bc20fc4","sha256":"91ece6aadc30a3294c7b9e50508d1b6252c0be3f99bd954152902e46d3493d33","sha512":"9246ab1a7eded040f3dc328109af184aacbe8ee5f3b8ea3fe535218fbfa65525a4f788018faf8ca20b81f8da6b7ca0f6d904285afcad900f970a22df64812b9a","ssdeep":"192:BvEoRteBm7OlbqLKd9iE12gzGKIVyJhhHHPjJ873k3NPTcqWClP2pnSjeeEovO6Q:BKmiDbDrcsP2p/VoWXx","tlshash":"1242a79a69f3043149df28e92baf17413615e203e948dda83f8cd250cf9cc5989b7b9d","dom_hash":"domhashc63154f5c1f136595e51c3334baea856","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"pol-usdc.skydao.click","fqdn":"pol-usdc.skydao.click","domain":"skydao.click","tld":"click"},"ip":{"addr":"143.92.51.118","port":0,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-31T14:24:35Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":0}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-24T14:24:32Z","timestamp":1771943072,"ip_dst":{"addr":"143.92.51.118","port":80,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"Client IP","port":38532,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.click domain","source":"{\"timestamp\":\"2026-02-24T14:24:32.708093+0000\",\"flow_id\":1592400809110023,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":38532,\"dest_ip\":\"143.92.51.118\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858675,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.click domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"pol-usdc.skydao.click\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://pol-usdc.skydao.click/\",\"length\":162},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":12,\"pkts_toclient\":6,\"bytes_toserver\":2516,\"bytes_toclient\":932,\"start\":\"2026-02-24T14:24:17.207367+0000\"}}"}],"analyzer":null,"urlquery":null},"summary":[{"fqdn":"pol-usdc.skydao.click","ip":{"addr":"143.92.51.118","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"domain_registered":"2026-02-24","domain_rank":0,"first_seen":"2026-02-24T14:24:36.626258Z","last_seen":"2026-02-24T14:24:36.626258Z","alert_count":1,"request_count":2,"received_data":11777,"sent_data":1001,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-02-22T22:32:51.303032Z","alert_count":0,"request_count":1,"received_data":1359066,"sent_data":443,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"pol-usdc.skydao.click/","fqdn":"pol-usdc.skydao.click","domain":"skydao.click","tld":"click"},"ip":{"addr":"143.92.51.118","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"5fa4110303d2641110976d0bbd16272b","sha1":"f085bf05efd46faf57a57f5304ebfd9766a211bf","sha256":"e2614c7eeabb35c160a58980fdd290072fa64d6d409dc180a6e7abd91814da56","sha512":"b0d3eb051a83e28dc9d2a3c7c7a98e2aed53e42e42c8eb0766a39582e8d30fc0cb099cc8126e94433ce5fc35f96849847ef00f2193216e18010e47f876d87bbd","ssdeep":"96:EjHCCmRzX3TYB18MHXNPTedLv7Ui6Bx0CW3QHPHWp2ISjP3GtjwEoUWDSBc4YSgt:S873k3NPTcqWClP2pnSjeeEovO6SgmM","tlshash":"6be1229664f7053286db28db2b5f1b013514e143bc88dc597b9cc7418fa8c1a85bbbed","size":7095,"data":"","first_seen":"2026-02-24T14:24:39.684302Z","last_seen":"2026-02-24T14:24:39.684302Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-24T14:24:32Z","timestamp":1771943072,"ip_dst":{"addr":"143.92.51.118","port":80,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.35","port":38532,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.click domain","source":"{\"timestamp\":\"2026-02-24T14:24:32.708093+0000\",\"flow_id\":1592400809110023,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":38532,\"dest_ip\":\"143.92.51.118\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858675,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.click domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"pol-usdc.skydao.click\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://pol-usdc.skydao.click/\",\"length\":162},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":12,\"pkts_toclient\":6,\"bytes_toserver\":2516,\"bytes_toclient\":932,\"start\":\"2026-02-24T14:24:17.207367+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/web3@1.10.3/dist/web3.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7ea77bf4a2a1ca14319d6f4608e8eba6","sha1":"296c0cb7f67a238a136b2680b4d15c2a89dcb4bc","sha256":"b697e6ef37cf813bf5b6baf7d73eb9ba74cee9fa0e8c439800ae6885d531a5e2","sha512":"2690b626c4d0f77307c09249ad3a73a24327b30416d32614895ae1c0ba21ef78ba2f6f9a6d8b35f6d7b8e0bfae428baedce2483624feb93103d2ed43d5c62ff7","ssdeep":"6144:s0MRy1rFupb5lk2yxJVEH2gVCNvmsJEQ0kazkgQPTpRedM4sjDkLN7QmYhHhXo5j:sZy1rMklvCvVamsJNfckg+it7jIuRuCl","tlshash":"7155fac47291b095c3a26ad5406f900be33dfd646c8c4569bb57ecf32ca8a895137f3a","size":1358271,"data":"","first_seen":"2023-12-03T05:59:08Z","last_seen":"2026-02-24T14:24:39.687552Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"pol-usdc.skydao.click/","fqdn":"pol-usdc.skydao.click","domain":"skydao.click","tld":"click"},"ip":{"addr":"143.92.51.118","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-24T14:24:13.969Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pol-usdc.skydao.click","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Feb 2026 08:38:28 GMT","end":"Mon, 25 May 2026 08:38:27 GMT"},"fingerprint":{"sha1":"27:22:FC:29:C7:5A:BF:CE:5B:C4:08:7B:39:06:24:43:5A:22:19:74","sha256":"96:63:61:3C:89:CD:FE:A0:40:44:5F:C8:C0:C6:D0:43:E2:8C:8F:C7:92:FA:AF:95:3C:9E:99:98:7D:D4:57:E8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: pol-usdc.skydao.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Feb 2026 14:24:17 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nset-cookie: server_name_session=1eee379687129ec11a601690526083de; Max-Age=86400; httponly; path=/\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]}],"data":{"size":11169,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"ebb79142c58d8743ba4b18bd2baa751f","sha1":"24568707280617077f781f1bfcccb37da4958a51","sha256":"a9396e80a71abe2e7e0175b0d1bfff183618718feff14b43e13b7330378f265a","sha512":"e51a9a9a39f66f2dc17f766aff5095bfa7e9853dde7e4fcce0ea02fb1d741482b565dae81094cce6acb9a95490f5cf1b7777abf3678443084a474337924fd839","ssdeep":"192:lvEoRte6f7OlbqLKd9iE12gzGKIVyJhh7J873k3NPTcqWClP2pESeeeEovEnDVCn:lK4ifDrcsP2p/VosnDVI","tlshash":"2c32759b69f30a3146c718a92baf57413224e103e849dc593f9cd390cfe8c5a85b7b9d","first_seen":"2026-02-24T14:24:39.678398Z","last_seen":"2026-02-24T14:24:39.678398Z","times_seen":1,"resource_available":false,"data":null}},"time_used":4378,"timings":{"blocked":652,"dns":78,"connect":283,"send":0,"wait":3073,"receive":0,"ssl":289},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-24T14:24:32Z","timestamp":1771943072,"ip_dst":{"addr":"143.92.51.118","port":80,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.35","port":38532,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.click domain","source":"{\"timestamp\":\"2026-02-24T14:24:32.708093+0000\",\"flow_id\":1592400809110023,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":38532,\"dest_ip\":\"143.92.51.118\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858675,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.click domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"pol-usdc.skydao.click\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://pol-usdc.skydao.click/\",\"length\":162},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":12,\"pkts_toclient\":6,\"bytes_toserver\":2516,\"bytes_toclient\":932,\"start\":\"2026-02-24T14:24:17.207367+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/web3@1.10.3/dist/web3.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pol-usdc.skydao.click/","date":"2026-02-24T14:24:17.871Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/web3@1.10.3/dist/web3.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pol-usdc.skydao.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: application/javascript; charset=utf-8\r\nx-jsd-version: 1.10.3\r\nx-jsd-version-type: version\r\netag: W/\"14b9bf-KWwMt/Z6I4oTayaAtNFcKonctLw\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nage: 191759\r\ndate: Tue, 24 Feb 2026 14:24:17 GMT\r\nx-served-by: cache-fra-eddf8230041-FRA, cache-hel1410023-HEL\r\nx-cache: HIT, MISS\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 353059\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1358271,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65470)","md5":"6837c8dad24e9dd8fa3cfe69ddcc76c2","sha1":"9cc7f1f06b71390bb4142c074a93ead0e17bc2ef","sha256":"114098d1c0fc2ecd3297a74ce206ece93fccad3bc4873e634ebbcc4813581292","sha512":"dec98e4507b1ffea7eceef980cb8cc77c1a360fc05701379d46a7025ce6c43b3b6f1f78ac3851be46d54b5cb1533741263805b5e55c2ef6d8b08a03ae0b79350","ssdeep":"6144:s0MRy1rFupb5lk2yxJVEH2gVCNvmsJEQ0kazkgQPTpRedM4sjDkLS:sZy1rMklvCvVamsJNfckg+iy","tlshash":"f925e8d47291b065c2a25ed5402fd00be33dfd647c8c5169bb17ecf72ca4a89912af3a","first_seen":"2026-01-10T19:25:45.641539Z","last_seen":"2026-02-24T14:24:39.6815Z","times_seen":6,"resource_available":false,"data":null}},"time_used":275,"timings":{"blocked":62,"dns":1,"connect":26,"send":0,"wait":57,"receive":93,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pol-usdc.skydao.click/favicon.ico","fqdn":"pol-usdc.skydao.click","domain":"skydao.click","tld":"click"},"ip":{"addr":"143.92.51.118","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pol-usdc.skydao.click/","date":"2026-02-24T14:24:18.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pol-usdc.skydao.click","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Feb 2026 08:38:28 GMT","end":"Mon, 25 May 2026 08:38:27 GMT"},"fingerprint":{"sha1":"27:22:FC:29:C7:5A:BF:CE:5B:C4:08:7B:39:06:24:43:5A:22:19:74","sha256":"96:63:61:3C:89:CD:FE:A0:40:44:5F:C8:C0:C6:D0:43:E2:8C:8F:C7:92:FA:AF:95:3C:9E:99:98:7D:D4:57:E8"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: pol-usdc.skydao.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pol-usdc.skydao.click/\r\nCookie: server_name_session=1eee379687129ec11a601690526083de\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Tue, 24 Feb 2026 14:24:29 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-08T23:16:33.1981Z","times_seen":524286,"resource_available":true,"data":null}},"time_used":11650,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":11649,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}