{"report_id":"acb55d0b-eff0-437c-a1c9-b0e611b3668d","version":0,"status":"done","tags":[],"date":"2026-07-02T17:07:06Z","url":{"schema":"http","addr":"euefj.one/","fqdn":"euefj.one","domain":"euefj.one","tld":"one"},"ip":{"addr":"43.249.25.20","port":0,"asn":132839,"as":"POWER LINE DATACENTER","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"https","addr":"ntwq9p.pgyl859-58.top/?cid=1687198","fqdn":"ntwq9p.pgyl859-58.top","domain":"pgyl859-58.top","tld":"top"},"title":"PG娱乐","dom":{"size":10001,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2221)","md5":"91301448fd6013131b8b31cc193f09c8","sha1":"e7baa876638a4c507253c77ce460039045a9b756","sha256":"5d3c944ca06e53df7d951660d23ba68be345c3fd7502d7d3dd4931b8d248b1c7","sha512":"a45001249ac3c0db5aa58ef6408c9e59ed02c6a7317f873f1add4e4675f90a4469ee944ad9086d509ba439cab91be3c0e5937f167753fd72f206080980c43187","ssdeep":"192:qJcRlPy+uyWNdTzIOdSPWn3bUdB1ns+VXDxKp:kcRlPy+uyWOPW3es+VEp","tlshash":"ea22b6633994c51a0777468aeec6f90c7dbaa01f9006d950fcee03a46f90ffa85cb855","dom_hash":"domhashec51fe4b57e4250b2bc66206619e8fa9","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"euefj.one/","fqdn":"euefj.one","domain":"euefj.one","tld":"one"},"ip":{"addr":"43.249.25.20","port":0,"asn":132839,"as":"POWER LINE DATACENTER","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-06T17:07:06Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":16}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-02","alert":"Phishing Block","trigger":"h76nbgj8.pgwb859617.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"h76nbgj8.pgwb859617.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-02","alert":"Phishing Block","trigger":"s16gv6cmi.pgwb859610.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"s16gv6cmi.pgwb859610.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"8bgv34m.pgwb859599.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"8bgv34m.pgwb859599.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg385859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg388859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"w15f6h2.pgwb859611.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"ntwq9p.pgyl859-58.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"f5g6h778.pgwb859612.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-02","alert":"Phishing Block","trigger":"f5g6h778.pgwb859612.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"s34dcf5.pgwb859616.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-02","alert":"Phishing Block","trigger":"s34dcf5.pgwb859616.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"o8nb2.pgwb859601.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"o8nb2.pgwb859601.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"pg389859.top","ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-02-14","domain_rank":0,"first_seen":"2026-02-24T03:34:40.44033Z","last_seen":"2026-06-26T05:51:50.234682Z","alert_count":0,"request_count":1,"received_data":806,"sent_data":499,"comment":"","tags":null,"fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"s34dcf5.pgwb859616.top","ip":{"addr":"103.231.15.230","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2026-06-30","domain_rank":0,"first_seen":"2026-07-02T17:00:29.138554Z","last_seen":"2026-07-02T17:00:29.138554Z","alert_count":2,"request_count":1,"received_data":459,"sent_data":503,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"h76nbgj8.pgwb859617.top","ip":{"addr":"172.65.191.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-06-30","domain_rank":0,"first_seen":"2026-07-02T17:00:28.969438Z","last_seen":"2026-07-02T17:00:28.969438Z","alert_count":8,"request_count":4,"received_data":2767,"sent_data":2750,"comment":"","tags":null,"fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}]},{"fqdn":"8bgv34m.pgwb859599.top","ip":{"addr":"172.65.191.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-06-21","domain_rank":0,"first_seen":"2026-06-26T05:51:48.231784Z","last_seen":"2026-06-26T05:51:48.231784Z","alert_count":2,"request_count":1,"received_data":806,"sent_data":509,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}]},{"fqdn":"pg385859.top","ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-02-14","domain_rank":0,"first_seen":"2026-02-20T07:33:31.172892Z","last_seen":"2026-06-26T05:51:49.92879Z","alert_count":11,"request_count":11,"received_data":420471,"sent_data":6731,"comment":"","tags":null,"fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"euefj.one","ip":{"addr":"43.249.25.19","port":443,"asn":132839,"as":"POWER LINE DATACENTER","country":"Hong Kong","country_code":"HK"},"domain_registered":"2026-06-25","domain_rank":0,"first_seen":"2026-07-02T17:07:07.366032Z","last_seen":"2026-07-02T17:07:07.366032Z","alert_count":0,"request_count":1,"received_data":409,"sent_data":478,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.4.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"f5g6h778.pgwb859612.top","ip":{"addr":"137.220.139.118","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"domain_registered":"2026-06-30","domain_rank":0,"first_seen":"2026-07-02T17:00:28.954564Z","last_seen":"2026-07-02T17:00:28.954564Z","alert_count":2,"request_count":1,"received_data":538,"sent_data":504,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"o8nb2.pgwb859601.top","ip":{"addr":"137.220.139.118","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"domain_registered":"2026-06-21","domain_rank":0,"first_seen":"2026-06-28T18:18:39.617051Z","last_seen":"2026-06-28T18:18:39.617051Z","alert_count":2,"request_count":1,"received_data":785,"sent_data":507,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"domain_registered":"2012-04-01","domain_rank":0,"first_seen":"2026-06-16T13:27:44.378917Z","last_seen":"2026-06-26T05:29:06.359298Z","alert_count":0,"request_count":21,"received_data":380507,"sent_data":11947,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"s16gv6cmi.pgwb859610.top","ip":{"addr":"123.254.108.206","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2026-06-30","domain_rank":0,"first_seen":"2026-07-01T06:22:13.131288Z","last_seen":"2026-07-01T06:22:13.131288Z","alert_count":2,"request_count":1,"received_data":459,"sent_data":505,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"pg388859.top","ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-02-14","domain_rank":0,"first_seen":"2026-02-20T07:33:31.175599Z","last_seen":"2026-06-26T05:51:50.079005Z","alert_count":1,"request_count":1,"received_data":806,"sent_data":499,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"w15f6h2.pgwb859611.top","ip":{"addr":"103.231.15.230","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2026-06-30","domain_rank":0,"first_seen":"2026-07-01T06:22:13.132128Z","last_seen":"2026-07-01T06:22:13.132128Z","alert_count":1,"request_count":1,"received_data":459,"sent_data":503,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"ntwq9p.pgyl859-58.top","ip":{"addr":"43.229.212.37","port":443,"asn":132839,"as":"POWER LINE DATACENTER","country":"Hong Kong","country_code":"HK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":2,"request_count":2,"received_data":6496,"sent_data":1067,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.4.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"ntwq9p.pgyl859-58.top/?cid=1687198","fqdn":"ntwq9p.pgyl859-58.top","domain":"pgyl859-58.top","tld":"top"},"ip":{"addr":"43.229.212.37","port":443,"asn":132839,"as":"POWER LINE DATACENTER","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"1cb0a2759262ad422004d97bf529b602","sha1":"c47f141931c133acddd876e2794372dd5ac2011a","sha256":"0663224fe9fe226c0f9819c7946c148db2c21bfcac74145f05d874a9cc55609c","sha512":"983bbaf470971c2d6552e1ff4681352b6c178529ad9d974bb9350474ce6f6a3b2ebccc6cf984309ab1c15532d938ae652b076424a1f7a24eb164a8a545b176c2","ssdeep":"","tlshash":"ee70000020800228c8b000200202a380ac20a0202f022030880c080028203030a280a0","size":22,"data":"","first_seen":"2026-05-25T19:46:07.482114Z","last_seen":"2026-07-02T19:33:05.938011Z","times_seen":239,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ntwq9p.pgyl859-58.top/?cid=1687198","fqdn":"ntwq9p.pgyl859-58.top","domain":"pgyl859-58.top","tld":"top"},"ip":{"addr":"43.229.212.37","port":443,"asn":132839,"as":"POWER LINE DATACENTER","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"ea503f237188ac1afd4e9274d045537c","sha1":"33f099d1fdd52c116504e9db797256ae2660af99","sha256":"26044c0ed090fc225bb6c3a7561a1e5b0186c50b13e5034aee1dcff14a0b4fa8","sha512":"25e2892416e02070189de1c17449dec244f4b9d355dca4572a9b9b640753c27c5a34216ae39811fb956bd312d32305d5ae85d5f6ec1a493459a2477a2f213f18","ssdeep":"","tlshash":"0fa0027d1bf5694141ab2464090f25493032606b024509107d4cca515f3952b6587fd9","size":64,"data":"","first_seen":"2026-05-25T19:46:07.484279Z","last_seen":"2026-07-02T19:33:05.938761Z","times_seen":239,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ntwq9p.pgyl859-58.top/?cid=1687198","fqdn":"ntwq9p.pgyl859-58.top","domain":"pgyl859-58.top","tld":"top"},"ip":{"addr":"43.229.212.37","port":443,"asn":132839,"as":"POWER LINE DATACENTER","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"cd7a34e714de94d5c29b8ac5acdde24b","sha1":"b722bccb435490630d97ef88cafeb02d92f70fd0","sha256":"312ebfdc50a0e168cff60c206811b02e944263a7d9060c2685509dacfacd7f71","sha512":"a724bc648a508c24e5bb1788e1f02b47030893bbb0b80a99e380d95480095983a35d8ec11193c53f0a67db47a289ab608fcbc9dbca846bfdd5d61a8832290f43","ssdeep":"","tlshash":"58e07d48ff28c7f316ce28ab516e770858d104d58c1b58024cebccc86935ed87291527","size":314,"data":"","first_seen":"2023-03-11T11:23:25Z","last_seen":"2026-07-02T19:18:54.916518Z","times_seen":38827,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ntwq9p.pgyl859-58.top/?cid=1687198","fqdn":"ntwq9p.pgyl859-58.top","domain":"pgyl859-58.top","tld":"top"},"ip":{"addr":"43.229.212.37","port":443,"asn":132839,"as":"POWER LINE DATACENTER","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"4eb788579f743c7a4d2aadfd1e5f7fce","sha1":"16499d52d4649f335ea8f379edb7f853e7b53413","sha256":"7f317e456293a1cfb3b3a6c110ffe596ea1593f96f31e237dc9c21753579a3b2","sha512":"6bef7213c9ae0a19ed4c31593f96050870f821b1a06767d18f9673b8e5d2411e739d94d6e50c7393035436d2dc4dc01498a5061619072e520ef6159978b788ac","ssdeep":"","tlshash":"9ac08ce2211086042ef9004a96a3370c75afa1ef4c18ed8098064560338876f028b9c3","size":147,"data":"","first_seen":"2026-06-21T03:33:12.912179Z","last_seen":"2026-07-02T17:07:21.728575Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ntwq9p.pgyl859-58.top/?cid=1687198","fqdn":"ntwq9p.pgyl859-58.top","domain":"pgyl859-58.top","tld":"top"},"ip":{"addr":"43.229.212.37","port":443,"asn":132839,"as":"POWER LINE DATACENTER","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"ee05412182f214ee0014559236046acd","sha1":"3410f4443a8a289ffa8f14f1e0862c1d4c5bc9f6","sha256":"2f2ac104802e81cd2185196c73b58a1a3b80ae88c471b2308da00f2581e7c165","sha512":"a85d41604b90d3924d70f835b197268c5da69d29e01b1309bcc8a4b2e463057874dcae687766ebe033ffa3c2c3674aa91596f5e0faa9dbe9279a230a312d41ba","ssdeep":"","tlshash":"2c41bede08a705714ba321b29faf7158353a506b110bda24bced87085fa471e5399fca","size":2064,"data":"","first_seen":"2026-06-08T06:18:21.228505Z","last_seen":"2026-07-02T17:07:21.729107Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/index-DLNOm8Kv.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"108bbe9a96ecc9e72925728b3cbc9f9c","sha1":"3e8ed3699b7c90e5aa70c104f5508358365cdb42","sha256":"b9cfd634419db018deac89dc96bacc6cb6374d2c31606180e853706b11c65e91","sha512":"8c898d27bb1cc3bc5cb8ba3375b789741930a658722914f9ada46c43f6ea05aca7ebb83ea43be2ce1577e23ea92bd2405562a7a65dbffa830c7c0d455e1fa966","ssdeep":"1536:WSEHRipI/N6nQzvvRPy9zBCzLjeXSwRAGw4KYBvvRTZAs1tAvhsA02bdF:7W/N6QzvZy9zTiIW4KYdj1uvhsAzF","tlshash":"e8c37dddb1a7603873e608ac517b1541b2293d467546c4e0f6be9e6427a3c08f3abf2c","size":121908,"data":"","first_seen":"2026-06-21T03:33:12.88598Z","last_seen":"2026-07-02T17:07:21.718167Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/vant-DoiDA9Rs.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"e0831d91eb604dc38bf02b7f775874b2","sha1":"4998ca3f37992f9877ada4d981891d237951b356","sha256":"1a7b5ffded39ce7f50776e984fffb8ee389fc001b33f0b291ccbf5146e601583","sha512":"cb8140860715d26a6f6e8dec72492020f99f2cd80e55189bb5ccc59521f742cee47ec185991b698b0bb2a1ad4a627b096d719768b016a09f6d2b66f3f34a384e","ssdeep":"768:woxNnhadZoeRwG5fccpM0+/uQOt8kGxrME8Eu2Oada3x70Xan9EFf97h6NGXIUxo:ioMnM0+Y8T9+J","tlshash":"dcd21ad43046b43b53f686ea40290345b3292ba5340ac4ecb13ceddbb665c16b5bbf79","size":29462,"data":"","first_seen":"2026-03-21T10:33:31.197376Z","last_seen":"2026-07-02T18:29:33.565941Z","times_seen":1381,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/index-AIHiSxan.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"1979a2c3ea33480e70c3d3ce5d515b55","sha1":"aa773aa81994aa612a7548acf97a1ecc9e4cd08a","sha256":"ffa65ccfe7a9fa54ea82537089449a8ee7b3375c9213c9ace124effc83b051a1","sha512":"7b35a2932720cdb5586ff49d27cad44134f209368095a5e614b011ea94fe1c5262c2269f418d40061a85ec193ab6833a92e40dbd2557329465429a9868337f95","ssdeep":"","tlshash":"36218a4cfc818d39c767c8a4d100809d162b1ac3a2b986dca5fdd6d807d1d34c68eb1d","size":1318,"data":"","first_seen":"2026-06-21T03:33:12.890695Z","last_seen":"2026-07-02T17:07:21.705042Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/index-DGWkjofC.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"4d60fe38280e281aedb250fed5d61162","sha1":"1a552329304315a873509796fd14eefb20c9e3db","sha256":"9f0986cbb37a7221f96ee2e950e94b059c9de92fc1c2c0d3e6a2afb00284f607","sha512":"95b65976c9257713a3e32fa029fcc129a33544afc92130973c394a90d5a0577513a5b002424e96a90bf11c4bd35a42faf291dd08ab2afa8efdbf50d8d37d4223","ssdeep":"96:pNQhqZ6uzjKHiqFtdzy+BmvRG9rdnVyNyY9CvZr4usHa+IEgbkSB1JYnSTdY7Ob/:pNQSG/++Bmv+rdoNyY0vZrz+5SPWn3C7","tlshash":"8fc1da8fb0a7643db397866851250001a31deca6f06447a4adfd8f2d6be2e64c77770d","size":6079,"data":"","first_seen":"2026-06-10T12:24:42.664779Z","last_seen":"2026-07-02T18:29:33.575578Z","times_seen":80,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/utils-DP5omx3I.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"b71c1a4fd07412d0ddd5f0006e401e75","sha1":"a3cf730602aeef3df364916f4ef42e7c0f903419","sha256":"bc8e4ca06ec494e7df32f2dbf125b9b0503a60de5991b5badbb20e5e6c043ad7","sha512":"d018e92aeb4d98a54260edbd707e088a8875010278bc8979921cbbc492281e1fb8720ced7e21cc29b33500d4221c0c403b88b31b6f70caf069f2fc4daad2b793","ssdeep":"384:KLykXfExhSMH+rq/51Raw7t2v6az5CgSpnMjEMuSI162By4iBWijdv:KLFfY1erq/51YGt2/z5C3fSI162By4ib","tlshash":"f6b2a77fe3d5b73c07ece508d63504482f271f69ea88a0746e9892a1a9747c612c7f36","size":24038,"data":"","first_seen":"2025-06-19T04:15:59.5131Z","last_seen":"2026-07-02T19:18:54.903136Z","times_seen":11232,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/vue-ecosystem-DfQjWYvs.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"eb638f110641911724b3188e3fea2a0f","sha1":"782dfe255472102506120fb73fb14d9e2e7ba075","sha256":"ff0ee7e1d3aa2e01adb457c13f318e1adc1a6dce3dda67868ca6c8b70afcf1bf","sha512":"7c24e185d6caf5d42aed6ca5dd1291c1a66b4938ae856e575d2d8615f7c735bde4fd47605e614c8451c2013668ac1ca93821691cf6a159067554245091081b77","ssdeep":"96:trJGxFiRKyxeF1NFjWtEtCEQxST3VPxt5L2kJOLUtNRCESkG6ToEuvSOpeFPTbQP:trYiRKD6tEtvQxST3bL2dUtNRRSkGCoX","tlshash":"25b1da9875937071733b4c99d07b010ab33839a4348ee4d0a42fafd53a619e293b3d9e","size":5327,"data":"","first_seen":"2026-03-21T10:33:31.202148Z","last_seen":"2026-07-02T18:29:33.565408Z","times_seen":1380,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/zh-DH7itq7n.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"introduction_type":"importedModule","is_inline":false,"md5":"59baca1efbdf677ec3b3b94bbdaab89c","sha1":"563e7c8b352946ba19f71591c15c418893c4e8a4","sha256":"a00bb24989f0c16dbc866c683b214031ba6b7119ba6d6b367e26ffc798dcba91","sha512":"e2aef417bf9efb9b9cf4594356224aedabae7f601d7f39795837e5e2d82048ac6cee93802c0e856df6dee71933354c989894d49399bb4c4be1a41723d63d6cc6","ssdeep":"192:O3FyGn/aZJd4+Ms2QmPblTe+j1iU7hQbHyuej5Ov+H:onQcfxDk+piUMyuejAv+H","tlshash":"7702e9d507ec9ef8464a02d96f1b4884b1552da7e6e6c9e41fa688f5304db0f130319b","size":8504,"data":"","first_seen":"2026-03-21T10:33:31.223435Z","last_seen":"2026-07-02T18:29:33.573276Z","times_seen":1252,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/index-DWCQFMcq.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"e3a37550bddf2c9ff44dc0fa9d8f76cb","sha1":"c5d98fd43f71e28ebfd8a04d95a63e91102e6f4c","sha256":"0e99eecd668fee92525a6b288b63d3bb82acc55890ca6ae4fc3bc22535e8af10","sha512":"34745a89f555f3eff455dd47941283b9583ff3ae09810d17d27bfb921d1e628eb2997f3cecec2ed6fad3feafb6fda67b7ca160e630bc37b893ac45f582363f01","ssdeep":"","tlshash":"9f21010af518ac74427294885085406562aa0faa83b5c6e0a6fc9bd683b2d31d56ea7d","size":1352,"data":"","first_seen":"2026-06-10T12:24:42.666893Z","last_seen":"2026-07-02T18:29:33.574989Z","times_seen":78,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/arrow-down-CbZEo1md.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"ec885a9a61bc9ffb0075ce201f1fd919","sha1":"c6867e239bea13137249f88d4df54257388e7206","sha256":"6b1b6e2af57f966ba2a9bf5968b89955c786aeff85f0094c701149cf85429ade","sha512":"d2114fcf440113d379275dcfb2e4f7ee768d12315f6165813492ec9cebcf895039c1c5a7eedfcbf4e89c2bf9cae04cc673932da7184a0e4338c9feebde86cd73","ssdeep":"","tlshash":"f8e0abbe56e551fd0907c86c0860584a872eb1fe36ad4895b28d96f1c013423a9034a5","size":415,"data":"","first_seen":"2026-03-21T10:33:31.230669Z","last_seen":"2026-07-02T18:29:33.574405Z","times_seen":1255,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/polyfills-BkzohEkc.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"e31e4afb53b47ad93f1f94c58508ff2d","sha1":"ed0a05ae7e3a1c71b9c771144279a3e67c1971d9","sha256":"7d8df769625fe98395cff2056f13f2433e0249d8e0964562518456cf48b938bf","sha512":"f2d00e0a56715d072d7017bae61687fcd283ab57807621197a3ba3df4b75acffe0e442e93ee8cb174d305811e9ed69b1ee7d6848001ff7fcd4152b530b95b9ee","ssdeep":"96:cLy4jWt/WSSCpNw0Y9mnpYf6SXl6hQvXzEY8iWu0VdX1vSjvguDdrwaH:h4jE2CpN8v1Xl6Cvqu0bgj4u7","tlshash":"99d186e87291b07042a7a2b6d02f1507f239b97252edd0d0d365ecf0acb949d4277f29","size":6749,"data":"","first_seen":"2026-02-06T16:41:27.155404Z","last_seen":"2026-07-02T19:02:33.931509Z","times_seen":2653,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/vue-core-BbiFjrsZ.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"d35d32c55efac286ba08e5c33233c05e","sha1":"de06712cff5235d39a38d51cf3cac9f3cd75a042","sha256":"237fea871343d1a14189d135fcef684ecf12c154202590c08430a9f9623365b3","sha512":"5340121a1858fd7c876cbd67f5189fec795c62f133fb841e67b05cbfa1b2b6dd0cee216153b7597656fca42f5fdeab14c833109b4c08cf9e265c7dcfb8c562ae","ssdeep":"768:sJNHhYJGVFK8wMjUXn6pt6RDazH0RXTmU9GssBg27Oo66MdAMLu9lExfqe4amDqq:g7xjSmXv/h3r/iCkv5nrfS","tlshash":"847307e83192b46253fa19e2007b0406f379295a3849d9d8f26dfddb3e7240550bbebd","size":74290,"data":"","first_seen":"2026-03-21T10:33:31.214025Z","last_seen":"2026-07-02T18:29:33.566484Z","times_seen":1379,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/crypto-CJRxg2fs.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"290fd5f82e5c65ce81bd0d98edb357d7","sha1":"e15954d96646300b17f6b35ec4bd5e252495361f","sha256":"39617d047930e2b5ead898e02803026c102ead3ddfd628bb0cc32983f4e5f01a","sha512":"8f8c77ae1db760d1c9028a7ddb7fc817f8cce280d7b9813c05307079f21f1dbd485b4347066cd894f4245886a02c21285e1a4d247f111345a5f18e444c20864c","ssdeep":"384:gNgT8ueqcZyudMUI9AKXlEBh/Z4hTL1Cr3niSs:t8XHoQMbepZ4hTpCr3niSs","tlshash":"9f92628ab9e9b58003933478193fa01bf1a7246555adc264f3a8d5ecfdb809de127d38","size":19518,"data":"","first_seen":"2026-06-04T17:45:36.945282Z","last_seen":"2026-07-02T18:29:33.570006Z","times_seen":123,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/index-CUilaoSn.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"87087a1aebe575ecb9e4bcf02acf790b","sha1":"5ce83177331ac07ea0de10703d6ca169d3d5f274","sha256":"3182b86a91ff190f373d3bff15fbb5478cb95ff4e69374ca774854cb85456d21","sha512":"28366b0e52c35d29ea86591228f7ff5dda90bc0e2d8e8abad0eb752cdd2938c5106c3f77601c389ff6443b6a4cf834ee3a1b6c53833fdafe564a1e00b3f404c0","ssdeep":"192:IZkEQLwe2cR+NQq6SkK7ZWoAR6EsAS/Ois:Iuj8eDKYIr3e","tlshash":"c1d1b60df8191db4d37298d8f285025811252b5296bcc2f1f1fe6ba81ae0c609fef4bd","size":6529,"data":"","first_seen":"2026-06-10T12:24:42.668909Z","last_seen":"2026-07-02T18:29:33.573837Z","times_seen":78,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/config.json?t=1783012","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:46.690Z","timestamp":1783012006690,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/config.json?t=1783012 HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en;q=0.9, *;q=0.5\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nlanguage: en\r\ndevice: f4d8c7addc329167c8aae8d5b200ce59\r\nx-version: 7.3.9\r\nX-Request-Id: cc1b9918-dfa4-4801-a5a8-40649233a739\r\nX-Custom-Referer: https://ntwq9p.pgyl859-58.top/?cid=1687198\r\ndomain: ntwq9p.pgyl859-58.top\r\nclienttimezone: UTC0\r\ndeviceModel: undefined-undefined\r\nnonce: cc1b9918-dfa4-4801-a5a8-40649233a739\r\ntimestamp: 1783012006\r\nsiteCode: \r\nsign: v5dFtzr6prX6BBw99gO9CzHaDIukF6s+lKxHeyMQx7nlDsRmCV8lzVjJHxFdLb4p\r\ndevicetype: 4\r\nplatformtype: 3\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:47 GMT\r\nContent-Type: application/json\r\nContent-Length: 338\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AA62599E01E3DCA7310\r\nVary: Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nAccept-Ranges: bytes\r\nETag: \"00EBA9006C377FB24A07537441B5AB14\"\r\nLast-Modified: Sun, 28 Jun 2026 13:15:10 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 7434538570263853385\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: AOupAGw3f7JKB1N0QbWrFA==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":338,"size_decoded":1025,"mime_type":"application/json","magic":"JSON text data","md5":"00eba9006c377fb24a07537441b5ab14","sha1":"0643969959a07e152a0956df3bb45c479e53ffd9","sha256":"f44f01dd9c94d6eb6306de7ccaa219f4b3c42f3b1b7aa4d213f6c1160c101af4","sha512":"2b7b478162cadbca268ce35f4ce497a87a7fca7398772b9c81a5862287a542fb57b6b36bad06aa5b803aa3f101660cb91c0aff0f32c43d149da4a52d012b5a63","ssdeep":"","tlshash":"19e086f7c240681197408beda27ffc0c85ff640fc8dd4186e299e234051d1f9519c08c","first_seen":"2026-06-28T18:19:01.583888Z","last_seen":"2026-07-02T17:07:21.704416Z","times_seen":3,"resource_available":false,"data":null}},"time_used":180,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":180,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/index-AIHiSxan.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.798Z","timestamp":1783012010798,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/js/index-AIHiSxan.js HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:50 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AAAB7D61A57DF4C871F\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:34:25 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 16636745604109294940\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: GXmiw+ozSA5ww9POXVFbVQ==\r\nx-oss-server-time: 0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1318,"size_decoded":1461,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1317)","md5":"1979a2c3ea33480e70c3d3ce5d515b55","sha1":"aa773aa81994aa612a7548acf97a1ecc9e4cd08a","sha256":"ffa65ccfe7a9fa54ea82537089449a8ee7b3375c9213c9ace124effc83b051a1","sha512":"7b35a2932720cdb5586ff49d27cad44134f209368095a5e614b011ea94fe1c5262c2269f418d40061a85ec193ab6833a92e40dbd2557329465429a9868337f95","ssdeep":"","tlshash":"36218a4cfc818d39c767c8a4d100809d162b1ac3a2b986dca5fdd6d807d1d34c68eb1d","first_seen":"2026-06-21T03:33:12.890695Z","last_seen":"2026-07-02T17:07:21.705042Z","times_seen":9,"resource_available":true,"data":null}},"time_used":180,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":180,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h76nbgj8.pgwb859617.top/hall/api/agent/promote/binding/reportViewV2","fqdn":"h76nbgj8.pgwb859617.top","domain":"pgwb859617.top","tld":"top"},"ip":{"addr":"172.65.191.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.901Z","timestamp":1783012010901,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"h76nbgj8.pgwb859617.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 01 Jul 2026 00:00:00 GMT","end":"Fri, 15 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"31:1F:49:72:D5:00:CB:F8:46:1E:7D:18:6D:E1:A1:5F:E7:14:53:5E","sha256":"80:73:F1:3D:A3:6A:25:57:57:26:E1:A8:3D:BB:F7:E4:01:72:39:61:DB:AE:9E:30:18:D5:A3:D9:72:A4:1D:58"}}},"request":{"raw":"OPTIONS /hall/api/agent/promote/binding/reportViewV2 HTTP/1.1\r\nHost: h76nbgj8.pgwb859617.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: clienttimezone,content-type,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:51 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 0\r\nset-cookie: acw_tc=0a094e6917830120110355172e2aac0a37727af7f678b3f420f62e94ed45c3;path=/;HttpOnly;Max-Age=1800\r\nx-saas-server-id: 5d4f9f5485-zsrp5|79e8cf5123441b2fdda0563ab51ea7c4\r\naccess-control-allow-methods: *\r\naccess-control-max-age: 1728000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: clienttimezone,content-type,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\naccess-control-expose-headers: X-Trace-ID, newjwt, token\r\nserver: gocache\r\nc-type: pf\r\nrid: 696513f9ea89a98bd67ab2ff48c54b6b\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}],"data":{"size":0,"size_decoded":764,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":271,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":271,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-02","alert":"Phishing Block","trigger":"h76nbgj8.pgwb859617.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"h76nbgj8.pgwb859617.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/assets/index-Dj7GhEA6.css","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.910Z","timestamp":1783012010910,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/assets/index-Dj7GhEA6.css HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:51 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AAB833185BA42F71F59\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:33:40 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 386800848803438409\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: kWXikZvHYSjjXKpJstHGuA==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":3204,"size_decoded":1476,"mime_type":"text/css","magic":"ASCII text, with very long lines (3203)","md5":"9165e2919bc76128e35caa49b2d1c6b8","sha1":"06d3d5ab843d393016f6f81646cd5f8244032edb","sha256":"db6c6eede8a0fd0ff32ec122acd96a0e2126cb91808857282bc17114e9bcfdb6","sha512":"202619fb5a5207eea42185d022f84094bf5145fb2edd71b1e672a046e5668e6893f3770bded2f327a5de8ce1e4d6cb6e573c080d76eb610d2f38151dcfbca9cd","ssdeep":"","tlshash":"a261aa19e8e81074453bca467e8c9b101e1ef363f8938ec9a6c368474d6f56e34271eb","first_seen":"2026-03-21T10:33:31.199651Z","last_seen":"2026-07-02T17:07:21.706112Z","times_seen":1216,"resource_available":false,"data":null}},"time_used":240,"timings":{"blocked":60,"dns":0,"connect":0,"send":0,"wait":180,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s16gv6cmi.pgwb859610.top/ipacdn.txt?t=1783012008431","fqdn":"s16gv6cmi.pgwb859610.top","domain":"pgwb859610.top","tld":"top"},"ip":{"addr":"123.254.108.206","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:48.445Z","timestamp":1783012008445,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s16gv6cmi.pgwb859610.top","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Jun 2026 08:28:47 GMT","end":"Mon, 28 Sep 2026 08:28:46 GMT"},"fingerprint":{"sha1":"FA:D7:A4:14:13:93:EC:FB:1F:C5:0F:9A:E0:C2:45:C4:03:7F:D3:26","sha256":"E1:BD:6B:F1:A8:CB:E7:1F:FD:7E:FA:2B:D2:5B:DA:04:BC:12:E0:FF:1F:52:FA:F1:36:90:A5:70:A5:A7:02:04"}}},"request":{"raw":"GET /ipacdn.txt?t=1783012008431 HTTP/1.1\r\nHost: s16gv6cmi.pgwb859610.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3600\r\ncache-control: s-maxage=315360000,max-age=0,public\r\ncontent-type: text/plain\r\ndate: Thu, 02 Jul 2026 17:06:49 GMT\r\nset-cookie: acw_tc=0a0ccb6b17830120097344890e74cb4b2d9fdc6ae0a40bb97db6d5dde7d9c4;path=/;HttpOnly;Max-Age=1800\r\nstrict-transport-security: max-age=31536000\r\nx-cache: BYPASS, Set-Cookie\r\ncontent-length: 2\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":459,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-07-02T19:09:50.486977Z","times_seen":338198,"resource_available":true,"data":null}},"time_used":1405,"timings":{"blocked":-1,"dns":661,"connect":213,"send":0,"wait":309,"receive":0,"ssl":221},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-02","alert":"Phishing Block","trigger":"s16gv6cmi.pgwb859610.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"s16gv6cmi.pgwb859610.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/vue-ecosystem-DfQjWYvs.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:45.684Z","timestamp":1783012005684,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/js/vue-ecosystem-DfQjWYvs.js HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:46 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AA6543572A9D69235B7\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:36:02 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 14413526318470412197\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 62OPEQZBkRcksxiOP+oqDw==\r\nx-oss-server-time: 3\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":5327,"size_decoded":3135,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5326)","md5":"eb638f110641911724b3188e3fea2a0f","sha1":"782dfe255472102506120fb73fb14d9e2e7ba075","sha256":"ff0ee7e1d3aa2e01adb457c13f318e1adc1a6dce3dda67868ca6c8b70afcf1bf","sha512":"7c24e185d6caf5d42aed6ca5dd1291c1a66b4938ae856e575d2d8615f7c735bde4fd47605e614c8451c2013668ac1ca93821691cf6a159067554245091081b77","ssdeep":"96:trJGxFiRKyxeF1NFjWtEtCEQxST3VPxt5L2kJOLUtNRCESkG6ToEuvSOpeFPTbQP:trYiRKD6tEtvQxST3bL2dUtNRRSkGCoX","tlshash":"25b1da9875937071733b4c99d07b010ab33839a4348ee4d0a42fafd53a619e293b3d9e","first_seen":"2026-03-21T10:33:31.202148Z","last_seen":"2026-07-02T18:29:33.565408Z","times_seen":1380,"resource_available":true,"data":null}},"time_used":643,"timings":{"blocked":-1,"dns":123,"connect":24,"send":0,"wait":179,"receive":0,"ssl":316},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"8bgv34m.pgwb859599.top/normal/dscdn.txt?t=1783012008433","fqdn":"8bgv34m.pgwb859599.top","domain":"pgwb859599.top","tld":"top"},"ip":{"addr":"172.65.191.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:48.454Z","timestamp":1783012008454,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"8bgv34m.pgwb859599.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 25 Jun 2026 00:00:00 GMT","end":"Sat, 09 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"6D:A2:BE:3F:27:B8:1E:87:A7:CE:48:9F:0C:E1:DB:A2:5A:E8:E1:7D","sha256":"29:87:CE:DF:76:70:F5:65:F7:4B:EE:E3:FF:26:84:6B:E4:00:59:2F:44:71:86:7E:1F:A9:27:C9:E9:6A:21:C0"}}},"request":{"raw":"GET /normal/dscdn.txt?t=1783012008433 HTTP/1.1\r\nHost: 8bgv34m.pgwb859599.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:49 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nx-oss-request-id: 6A469AA93F9B87383898F0B4\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\naccept-ranges: bytes\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Mon, 08 Jun 2026 11:30:32 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.3.9\r\ncache-control: no-cache\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 1\r\nserver: gocache\r\nc-type: pf\r\nrid: d64b81a80c44ba24117c107f276c6e1e\r\nx-cache-status: MISS\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}],"data":{"size":2,"size_decoded":806,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-07-02T19:09:50.486977Z","times_seen":338198,"resource_available":true,"data":null}},"time_used":1093,"timings":{"blocked":-1,"dns":412,"connect":1,"send":0,"wait":255,"receive":0,"ssl":424},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"8bgv34m.pgwb859599.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"8bgv34m.pgwb859599.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pg385859.top/siteadmin/upload/img/1932397120296775682.avif","fqdn":"pg385859.top","domain":"pg385859.top","tld":"top"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.994Z","timestamp":1783012010994,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pg385859.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 14 Feb 2026 00:00:00 GMT","end":"Sun, 14 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CB:E8:00:ED:93:18:7E:DE:0A:59:06:CB:25:B7:BA:31:3F:74:73:0B","sha256":"83:4C:59:CC:BB:D0:98:4A:80:9C:2F:B5:94:FF:63:0A:CD:C9:C8:C9:1B:35:FF:08:62:28:B3:E9:6C:3B:1F:F1"}}},"request":{"raw":"GET /siteadmin/upload/img/1932397120296775682.avif HTTP/1.1\r\nHost: pg385859.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:51 GMT\r\ncontent-type: image/avif\r\ncontent-length: 178750\r\nx-oss-request-id: 6A457B44D14BBC3731997E15\r\nvary: Origin\r\netag: \"435771ED7B89915E4FAB75A52CB1B00F\"\r\nlast-modified: Tue, 12 Aug 2025 10:41:48 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 6975944790254895645\r\nx-oss-storage-class: Standard\r\ncache-control: max-age=86400,stale-while-revalidate=86400,immutable,proxy-revalidate,public\r\ncontent-md5: Q1dx7XuJkV5Pq3WlLLGwDw==\r\nx-oss-server-time: 3\r\nserver: gocache\r\nc-type: pf\r\nrid: 005fdca1fb437203921187e188aa56b2\r\nx-cache-status: HIT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":178750,"size_decoded":179448,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"435771ed7b89915e4fab75a52cb1b00f","sha1":"910e732822bd658c318fe3cd15633d92fd0bf032","sha256":"e500d37da1835014170dece3f0b01165edad847fd5ce77596fc6352f9e77956c","sha512":"fae262139788b836d405abfdae30be36ec28e2142054114b1848986d4cb28e0eda52e4648581fe921d98a192cc99d0c51d0941785efb6161b29e35b3c1f1363c","ssdeep":"3072:pYy/Sz66zyQVor4/XiwEZqVGVYqjrk991sg2EvdPCKVVhMtJG9:hqtz/VESBqM9WEvdP1mtJ4","tlshash":"af041218b71bfb4ed40842b122f853809b6df7f208bdb677e75918a6e42d0a1cfd4916","first_seen":"2025-06-29T06:13:32.009472Z","last_seen":"2026-07-02T17:07:21.714285Z","times_seen":105,"resource_available":false,"data":null}},"time_used":335,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":213,"receive":122,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg385859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pg385859.top/bewcdn.txt?t=1783012007062","fqdn":"pg385859.top","domain":"pg385859.top","tld":"top"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:47.068Z","timestamp":1783012007068,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pg385859.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 14 Feb 2026 00:00:00 GMT","end":"Sun, 14 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CB:E8:00:ED:93:18:7E:DE:0A:59:06:CB:25:B7:BA:31:3F:74:73:0B","sha256":"83:4C:59:CC:BB:D0:98:4A:80:9C:2F:B5:94:FF:63:0A:CD:C9:C8:C9:1B:35:FF:08:62:28:B3:E9:6C:3B:1F:F1"}}},"request":{"raw":"GET /bewcdn.txt?t=1783012007062 HTTP/1.1\r\nHost: pg385859.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\ndate: Thu, 02 Jul 2026 17:06:47 GMT\r\ncontent-type: text/html\r\ncontent-length: 140\r\nlocation: https://pg385859.top:443/normal/bewcdn.txt?t=1783012007062\r\nserver: gocache\r\nc-type: pf\r\nrid: fd2e2af3c8c0fee4ad9d12ddc5db5c87\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":794,"timings":{"blocked":-1,"dns":146,"connect":3,"send":0,"wait":209,"receive":0,"ssl":436},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg385859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pg385859.top/cocos/config_data.json?t=1783012","fqdn":"pg385859.top","domain":"pg385859.top","tld":"top"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:48.178Z","timestamp":1783012008178,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pg385859.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 14 Feb 2026 00:00:00 GMT","end":"Sun, 14 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CB:E8:00:ED:93:18:7E:DE:0A:59:06:CB:25:B7:BA:31:3F:74:73:0B","sha256":"83:4C:59:CC:BB:D0:98:4A:80:9C:2F:B5:94:FF:63:0A:CD:C9:C8:C9:1B:35:FF:08:62:28:B3:E9:6C:3B:1F:F1"}}},"request":{"raw":"GET /cocos/config_data.json?t=1783012 HTTP/1.1\r\nHost: pg385859.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:48 GMT\r\ncontent-type: application/json\r\nx-oss-request-id: 6A469AA860F7333931921643\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\nlast-modified: Thu, 02 Jul 2026 11:22:03 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 3611234844745414550\r\nx-oss-storage-class: Standard\r\ncache-control: max-age=86400\r\ncontent-md5: cIz6Id7jwnjdavU2RWSTNw==\r\nx-oss-server-time: 1\r\ncontent-encoding: gzip\r\nserver: gocache\r\nc-type: pf\r\nrid: 6cbea4363652f135c2df483565c70db8\r\nx-cache-status: MISS\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4524,"size_decoded":3874,"mime_type":"application/json","magic":"ASCII text, with very long lines (4524), with no line terminators","md5":"708cfa21dee3c278dd6af53645649337","sha1":"2f6eccd4a3cdf8b41eb94ce75500e6808ca1776a","sha256":"e918706bd5f44ac6d019b7837718fddb4f35b12018179b9b44640dd3718fb090","sha512":"bb3c083e6261f70e7d5b9428d570a056c52aa737b1c23ae1e3ea80fb7bb8ac82f9f99ab772fd8ab66a4d1329364f962a6e68b5b5b446577a5a2df6a7df6d535f","ssdeep":"96:YwUHYGt5CrxZhf2pKf4Ch4K31eILupEx/OJ4b9YJ7XXLrUcp4EZ:YwmYGnYxZOKf4CGXIaK/nb9YpnH3","tlshash":"7b917ef76e990d89f0104093b18bd874138bc596dc58457e4832dc9aab7069f74f325f","first_seen":"2026-07-02T17:00:42.686882Z","last_seen":"2026-07-02T17:07:21.714775Z","times_seen":2,"resource_available":false,"data":null}},"time_used":241,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg385859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pg388859.top/normal/dscdn.txt?t=1783012008432","fqdn":"pg388859.top","domain":"pg388859.top","tld":"top"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:48.449Z","timestamp":1783012008449,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pg388859.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 14 Feb 2026 00:00:00 GMT","end":"Sun, 14 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"3C:97:73:73:71:21:D4:F1:D4:29:49:56:B3:81:C9:18:51:B4:88:5B","sha256":"D3:8D:A0:53:1A:1E:D5:CD:42:68:68:E8:FC:19:2B:77:AF:7D:AA:5F:E1:47:65:CF:92:5D:EB:C8:6E:B0:3A:34"}}},"request":{"raw":"GET /normal/dscdn.txt?t=1783012008432 HTTP/1.1\r\nHost: pg388859.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:49 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nx-oss-request-id: 6A469AA92E390733357FD60C\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\naccept-ranges: bytes\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Mon, 08 Jun 2026 11:30:32 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.3.9\r\ncache-control: no-cache\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 3\r\nserver: gocache\r\nc-type: pf\r\nrid: 7197a1abbb411624913c20f8dcbbe3a7\r\nx-cache-status: MISS\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2,"size_decoded":806,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-07-02T19:09:50.486977Z","times_seen":338198,"resource_available":true,"data":null}},"time_used":832,"timings":{"blocked":-1,"dns":154,"connect":1,"send":0,"wait":249,"receive":0,"ssl":427},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg388859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pg385859.top/normal/dscdn.txt?t=1783012008433","fqdn":"pg385859.top","domain":"pg385859.top","tld":"top"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:48.451Z","timestamp":1783012008451,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pg385859.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 14 Feb 2026 00:00:00 GMT","end":"Sun, 14 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CB:E8:00:ED:93:18:7E:DE:0A:59:06:CB:25:B7:BA:31:3F:74:73:0B","sha256":"83:4C:59:CC:BB:D0:98:4A:80:9C:2F:B5:94:FF:63:0A:CD:C9:C8:C9:1B:35:FF:08:62:28:B3:E9:6C:3B:1F:F1"}}},"request":{"raw":"GET /normal/dscdn.txt?t=1783012008433 HTTP/1.1\r\nHost: pg385859.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:48 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nx-oss-request-id: 6A469AA860F7333931281843\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\naccept-ranges: bytes\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Mon, 08 Jun 2026 11:30:32 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.3.9\r\ncache-control: no-cache\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 2\r\nserver: gocache\r\nc-type: pf\r\nrid: d51d3c55488d48ad69d0b6b0c8e6d9d3\r\nx-cache-status: MISS\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":806,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-07-02T19:09:50.486977Z","times_seen":338198,"resource_available":true,"data":null}},"time_used":234,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":234,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg385859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/index-DGWkjofC.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.905Z","timestamp":1783012010905,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/js/index-DGWkjofC.js HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:51 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AAAE2278439D9A7A205\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:34:51 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 14316548804021368809\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: TWD+OCgOKBrtslD+1dYRYg==\r\nx-oss-server-time: 2\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":6079,"size_decoded":3370,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (6078)","md5":"4d60fe38280e281aedb250fed5d61162","sha1":"1a552329304315a873509796fd14eefb20c9e3db","sha256":"9f0986cbb37a7221f96ee2e950e94b059c9de92fc1c2c0d3e6a2afb00284f607","sha512":"95b65976c9257713a3e32fa029fcc129a33544afc92130973c394a90d5a0577513a5b002424e96a90bf11c4bd35a42faf291dd08ab2afa8efdbf50d8d37d4223","ssdeep":"96:pNQhqZ6uzjKHiqFtdzy+BmvRG9rdnVyNyY9CvZr4usHa+IEgbkSB1JYnSTdY7Ob/:pNQSG/++Bmv+rdoNyY0vZrz+5SPWn3C7","tlshash":"8fc1da8fb0a7643db397866851250001a31deca6f06447a4adfd8f2d6be2e64c77770d","first_seen":"2026-06-10T12:24:42.664779Z","last_seen":"2026-07-02T18:29:33.575578Z","times_seen":80,"resource_available":true,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pg385859.top/normal/dscdn.txt?t=1783012007882","fqdn":"pg385859.top","domain":"pg385859.top","tld":"top"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:47.908Z","timestamp":1783012007908,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pg385859.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 14 Feb 2026 00:00:00 GMT","end":"Sun, 14 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CB:E8:00:ED:93:18:7E:DE:0A:59:06:CB:25:B7:BA:31:3F:74:73:0B","sha256":"83:4C:59:CC:BB:D0:98:4A:80:9C:2F:B5:94:FF:63:0A:CD:C9:C8:C9:1B:35:FF:08:62:28:B3:E9:6C:3B:1F:F1"}}},"request":{"raw":"GET /normal/dscdn.txt?t=1783012007882 HTTP/1.1\r\nHost: pg385859.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:48 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nx-oss-request-id: 6A469AA860F73339312E1543\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\naccept-ranges: bytes\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Mon, 08 Jun 2026 11:30:32 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.3.9\r\ncache-control: no-cache\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 2\r\nserver: gocache\r\nc-type: pf\r\nrid: 299638b27c1a42e2c02e584090132363\r\nx-cache-status: MISS\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2,"size_decoded":806,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-07-02T19:09:50.486977Z","times_seen":338198,"resource_available":true,"data":null}},"time_used":260,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg385859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"w15f6h2.pgwb859611.top/ipacdn.txt?t=1783012008431","fqdn":"w15f6h2.pgwb859611.top","domain":"pgwb859611.top","tld":"top"},"ip":{"addr":"103.231.15.230","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:48.443Z","timestamp":1783012008443,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"w15f6h2.pgwb859611.top","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Jun 2026 08:29:00 GMT","end":"Mon, 28 Sep 2026 08:28:59 GMT"},"fingerprint":{"sha1":"DC:82:54:D2:41:1A:0C:40:C5:F2:E4:3E:F9:46:1B:60:BE:5A:18:55","sha256":"62:C6:7F:16:4F:83:25:43:5F:BF:2B:9D:EE:9B:A4:96:3B:F7:04:23:37:96:25:05:21:B2:FD:24:D3:D5:A5:93"}}},"request":{"raw":"GET /ipacdn.txt?t=1783012008431 HTTP/1.1\r\nHost: w15f6h2.pgwb859611.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3600\r\ncache-control: s-maxage=315360000,max-age=0,public\r\ncontent-type: text/plain\r\ndate: Thu, 02 Jul 2026 17:06:49 GMT\r\nset-cookie: acw_tc=0a094e7317830120092863604e3fcc74038a6234122bb3d856d68771e57fde;path=/;HttpOnly;Max-Age=1800\r\nstrict-transport-security: max-age=31536000\r\nx-cache: BYPASS, Set-Cookie\r\ncontent-length: 2\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":459,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-07-02T19:09:50.486977Z","times_seen":338198,"resource_available":true,"data":null}},"time_used":953,"timings":{"blocked":-1,"dns":161,"connect":165,"send":0,"wait":287,"receive":0,"ssl":339},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"w15f6h2.pgwb859611.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/assets/index-BRScM-RS.css","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.599Z","timestamp":1783012010599,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/assets/index-BRScM-RS.css HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:50 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AAA833185BA42F71E76\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:33:23 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 11752589779093394466\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 3jNASNPcFMhJ4uhFXUmkHg==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":7347,"size_decoded":5196,"mime_type":"text/css","magic":"ASCII text, with very long lines (7346)","md5":"de334048d3dc14c849e2e8455d49a41e","sha1":"31e1aefde50bb090ca7150bb216a30ccc04a7d7b","sha256":"8b402e45f21ffc93142d88795cf1840f8cad439eda177dfbbd8171061593db3c","sha512":"fd1ad0f1dd8a851a10fb88bc8d372ec2c0d8829920783078e3d107993c44f94fe10daa63c6eca8283d30414444df0fd88a0e896fbc8d222f4f37e1fe9cd888d1","ssdeep":"192:o1t1001pNczitLq1Y7pUzvNm+502syTiP:oj71nvQm2zvF02snP","tlshash":"58e15b79f82d2c2dca37d06dba405b8c4670e2a5d61f2a99f543b1054c8f75b3c6819a","first_seen":"2026-03-21T10:33:31.207944Z","last_seen":"2026-07-02T17:07:21.716065Z","times_seen":1198,"resource_available":false,"data":null}},"time_used":182,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":182,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/utils-DP5omx3I.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:45.685Z","timestamp":1783012005685,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/js/utils-DP5omx3I.js HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:46 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AA66971B093B608482B\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:35:53 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10442958121826919971\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: txwaT9B0EtDd1fAAbkAedQ==\r\nx-oss-server-time: 2\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":24038,"size_decoded":11166,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (24037)","md5":"b71c1a4fd07412d0ddd5f0006e401e75","sha1":"a3cf730602aeef3df364916f4ef42e7c0f903419","sha256":"bc8e4ca06ec494e7df32f2dbf125b9b0503a60de5991b5badbb20e5e6c043ad7","sha512":"d018e92aeb4d98a54260edbd707e088a8875010278bc8979921cbbc492281e1fb8720ced7e21cc29b33500d4221c0c403b88b31b6f70caf069f2fc4daad2b793","ssdeep":"384:KLykXfExhSMH+rq/51Raw7t2v6az5CgSpnMjEMuSI162By4iBWijdv:KLFfY1erq/51YGt2/z5C3fSI162By4ib","tlshash":"f6b2a77fe3d5b73c07ece508d63504482f271f69ea88a0746e9892a1a9747c612c7f36","first_seen":"2025-06-19T04:15:59.5131Z","last_seen":"2026-07-02T19:18:54.903136Z","times_seen":11232,"resource_available":true,"data":null}},"time_used":642,"timings":{"blocked":-1,"dns":122,"connect":21,"send":0,"wait":180,"receive":0,"ssl":316},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/vant-DoiDA9Rs.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:45.687Z","timestamp":1783012005687,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/js/vant-DoiDA9Rs.js HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:46 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AA634FAB604F4A7AEE2\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:35:58 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 9834811770680785235\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 4IMdketgTcOL8Ct/d1h0sg==\r\nx-oss-server-time: 2\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":29462,"size_decoded":11889,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (29173)","md5":"e0831d91eb604dc38bf02b7f775874b2","sha1":"4998ca3f37992f9877ada4d981891d237951b356","sha256":"1a7b5ffded39ce7f50776e984fffb8ee389fc001b33f0b291ccbf5146e601583","sha512":"cb8140860715d26a6f6e8dec72492020f99f2cd80e55189bb5ccc59521f742cee47ec185991b698b0bb2a1ad4a627b096d719768b016a09f6d2b66f3f34a384e","ssdeep":"768:woxNnhadZoeRwG5fccpM0+/uQOt8kGxrME8Eu2Oada3x70Xan9EFf97h6NGXIUxo:ioMnM0+Y8T9+J","tlshash":"dcd21ad43046b43b53f686ea40290345b3292ba5340ac4ecb13ceddbb665c16b5bbf79","first_seen":"2026-03-21T10:33:31.197376Z","last_seen":"2026-07-02T18:29:33.565941Z","times_seen":1381,"resource_available":true,"data":null}},"time_used":581,"timings":{"blocked":405,"dns":0,"connect":0,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/config.json?t=1783012","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:46.693Z","timestamp":1783012006693,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"OPTIONS /1852/config.json?t=1783012 HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: clienttimezone,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:46 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AA64C216DC147239A41\r\nVary: Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Allow-Headers: clienttimezone, device, devicemodel, devicetype, domain, language, nonce, platformtype, sign, sitecode, timestamp, x-custom-referer, x-request-id, x-version\r\nAccess-Control-Max-Age: 0\r\nx-oss-server-time: 0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":0,"size_decoded":505,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":179,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h76nbgj8.pgwb859617.top/ipacdn.txt?t=1783012008430","fqdn":"h76nbgj8.pgwb859617.top","domain":"pgwb859617.top","tld":"top"},"ip":{"addr":"172.65.191.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:48.436Z","timestamp":1783012008436,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"h76nbgj8.pgwb859617.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 01 Jul 2026 00:00:00 GMT","end":"Fri, 15 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"31:1F:49:72:D5:00:CB:F8:46:1E:7D:18:6D:E1:A1:5F:E7:14:53:5E","sha256":"80:73:F1:3D:A3:6A:25:57:57:26:E1:A8:3D:BB:F7:E4:01:72:39:61:DB:AE:9E:30:18:D5:A3:D9:72:A4:1D:58"}}},"request":{"raw":"GET /ipacdn.txt?t=1783012008430 HTTP/1.1\r\nHost: h76nbgj8.pgwb859617.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:49 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nset-cookie: acw_tc=0a094e9617830120091478750e7985f0ce9ccd7ede8e24eddd719666d89c6b;path=/;HttpOnly;Max-Age=1800\r\ncache-control: s-maxage=315360000,max-age=0,public\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3600\r\naccess-control-allow-credentials: true\r\nserver: gocache\r\nc-type: pf\r\nrid: 543730b97e30e8e4b479e759ea21dca7\r\nx-cache-status: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}],"data":{"size":2,"size_decoded":475,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-07-02T19:09:50.486977Z","times_seen":338198,"resource_available":true,"data":null}},"time_used":837,"timings":{"blocked":-1,"dns":143,"connect":1,"send":0,"wait":265,"receive":0,"ssl":427},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-02","alert":"Phishing Block","trigger":"h76nbgj8.pgwb859617.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"h76nbgj8.pgwb859617.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pg385859.top/hall/api/netstat/point/get/static/idx/1687198/idxType/1.json?t=1783012","fqdn":"pg385859.top","domain":"pg385859.top","tld":"top"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.914Z","timestamp":1783012010914,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pg385859.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 14 Feb 2026 00:00:00 GMT","end":"Sun, 14 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CB:E8:00:ED:93:18:7E:DE:0A:59:06:CB:25:B7:BA:31:3F:74:73:0B","sha256":"83:4C:59:CC:BB:D0:98:4A:80:9C:2F:B5:94:FF:63:0A:CD:C9:C8:C9:1B:35:FF:08:62:28:B3:E9:6C:3B:1F:F1"}}},"request":{"raw":"OPTIONS /hall/api/netstat/point/get/static/idx/1687198/idxType/1.json?t=1783012 HTTP/1.1\r\nHost: pg385859.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: clienttimezone,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:51 GMT\r\ncontent-length: 0\r\nx-oss-request-id: 6A469AAB60F7333931F22643\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-allow-headers: clienttimezone, device, devicemodel, devicetype, domain, language, nonce, platformtype, sign, sitecode, timestamp, x-custom-referer, x-request-id, x-version\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\nx-oss-server-time: 1\r\nserver: gocache\r\nc-type: pf\r\nrid: 5902e85f8520da86e4352dcb3f416805\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":0,"size_decoded":641,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg385859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ntwq9p.pgyl859-58.top/?cid=1687198","fqdn":"ntwq9p.pgyl859-58.top","domain":"pgyl859-58.top","tld":"top"},"ip":{"addr":"43.229.212.37","port":443,"asn":132839,"as":"POWER LINE DATACENTER","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-02T17:06:43.796Z","timestamp":1783012003796,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.w62739.top","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Jun 2026 09:11:51 GMT","end":"Mon, 28 Sep 2026 09:11:50 GMT"},"fingerprint":{"sha1":"92:FD:FD:8F:30:D5:DF:12:FF:51:E4:20:EA:6E:C3:D7:EF:90:DF:34","sha256":"53:EC:36:38:77:15:B1:3B:30:54:56:7F:97:32:26:37:D8:FF:63:08:D1:60:4F:C4:41:61:5C:6B:F9:90:D5:3B"}}},"request":{"raw":"GET /?cid=1687198 HTTP/1.1\r\nHost: ntwq9p.pgyl859-58.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://euefj.one/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Thu, 02 Jul 2026 17:06:45 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding, Accept-Encoding\r\nX-Powered-By: PHP/7.4.33\r\nServer_ver: 20260413001\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS, PUT, DELETE\r\nAccess-Control-Allow-Headers: *\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.4.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":5547,"size_decoded":2753,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (356)","md5":"2a23a2fe3e41daf300567ad9e131069a","sha1":"8c327352c349ee46c0e69cdc66bb20f6923edc08","sha256":"0037e76eac5022d473a29a7d714d98cfeb71a605c147e232f3fa286f2c45c3bf","sha512":"5f28e534f50fd368abce86dbc3e3041a799774ed061fa48a5bba6dc6a8e4b93132fa1914be6c7b037f4d96b433338e8285b819e318ef4e2a6a677f8c3be3a997","ssdeep":"96:T7Q/IY+7YJN4xY39zD2IYyllTuB1nmpD2gsB1P/nBLCyZ468CKt:TfhiuB1n2+VXDxKt","tlshash":"d3b1849729e1c8220bb1156aafebf10c3ca6609b010add44bcdd41a86f54fdb47c7dda","first_seen":"2026-06-21T03:33:12.88319Z","last_seen":"2026-07-02T17:07:21.717673Z","times_seen":10,"resource_available":true,"data":null}},"time_used":1529,"timings":{"blocked":-1,"dns":520,"connect":246,"send":0,"wait":266,"receive":0,"ssl":496},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"ntwq9p.pgyl859-58.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/index-DLNOm8Kv.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:45.679Z","timestamp":1783012005679,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/js/index-DLNOm8Kv.js HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:46 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AA54C216DC147239825\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:34:56 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 3334981828428038064\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: EIu+mpbsyecpJXKLPLyfnA==\r\nx-oss-server-time: 2\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":121908,"size_decoded":47646,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (64376)","md5":"108bbe9a96ecc9e72925728b3cbc9f9c","sha1":"3e8ed3699b7c90e5aa70c104f5508358365cdb42","sha256":"b9cfd634419db018deac89dc96bacc6cb6374d2c31606180e853706b11c65e91","sha512":"8c898d27bb1cc3bc5cb8ba3375b789741930a658722914f9ada46c43f6ea05aca7ebb83ea43be2ce1577e23ea92bd2405562a7a65dbffa830c7c0d455e1fa966","ssdeep":"1536:WSEHRipI/N6nQzvvRPy9zBCzLjeXSwRAGw4KYBvvRTZAs1tAvhsA02bdF:7W/N6QzvZy9zTiIW4KYdj1uvhsAzF","tlshash":"e8c37dddb1a7603873e608ac517b1541b2293d467546c4e0f6be9e6427a3c08f3abf2c","first_seen":"2026-06-21T03:33:12.88598Z","last_seen":"2026-07-02T17:07:21.718167Z","times_seen":9,"resource_available":true,"data":null}},"time_used":418,"timings":{"blocked":-1,"dns":128,"connect":22,"send":0,"wait":188,"receive":15,"ssl":65},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pg385859.top/siteadmin/upload/img/1924669411190714370.png","fqdn":"pg385859.top","domain":"pg385859.top","tld":"top"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.578Z","timestamp":1783012010578,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pg385859.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 14 Feb 2026 00:00:00 GMT","end":"Sun, 14 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CB:E8:00:ED:93:18:7E:DE:0A:59:06:CB:25:B7:BA:31:3F:74:73:0B","sha256":"83:4C:59:CC:BB:D0:98:4A:80:9C:2F:B5:94:FF:63:0A:CD:C9:C8:C9:1B:35:FF:08:62:28:B3:E9:6C:3B:1F:F1"}}},"request":{"raw":"GET /siteadmin/upload/img/1924669411190714370.png HTTP/1.1\r\nHost: pg385859.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:50 GMT\r\ncontent-type: image/png\r\ncontent-length: 114931\r\nx-oss-request-id: 6A45E2302A8AB23339127647\r\nvary: Origin\r\netag: \"F1510A8500F12DFD8F36407CD58F360F\"\r\nlast-modified: Tue, 12 Aug 2025 10:41:47 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 18262347846046359078\r\nx-oss-storage-class: Standard\r\ncache-control: max-age=86400,stale-while-revalidate=86400,immutable,proxy-revalidate,public\r\ncontent-md5: 8VEKhQDxLf2PNkB81Y82Dw==\r\nx-oss-server-time: 5\r\nserver: gocache\r\nc-type: pf\r\nrid: 49fca91d374997b91bea5830d556fe81\r\nx-cache-status: HIT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":114931,"size_decoded":115629,"mime_type":"image/jpeg","magic":"JPEG image data, progressive, precision 8, 1024x1024, components 3","md5":"f1510a8500f12dfd8f36407cd58f360f","sha1":"629702cf2181f46d149298be6dbc17506d5413f8","sha256":"92813ca327dfba83b4a0bde2d7f53c96654aa028f426ea682227f23d2904e9cd","sha512":"a3ace3d13646555cff990d3f1a7dd2be59b5220a7dd835f07aa08c811ed0de40e41b863be330a2fed2e8a84581905ef2ccf6522529ea94001470112ff4b11cc9","ssdeep":"3072:aQxFGu+rDwZ5XV0XodqErh87rl5+caXTMCgZJ:0fd8IfeMCgZJ","tlshash":"1fb3128b9f4a57b3752c2a3960778b3afe76670961e0d245c334897b8b80bc78445df8","first_seen":"2025-11-27T04:29:30.4384Z","last_seen":"2026-07-02T17:07:21.718658Z","times_seen":93,"resource_available":false,"data":null}},"time_used":596,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":440,"receive":156,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg385859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/index-DWCQFMcq.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.792Z","timestamp":1783012010792,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/js/index-DWCQFMcq.js HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:50 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AAAB7D61A57DF4C871C\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:34:55 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 5988983779382046493\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 46N1UL3fLJ/0TcD6nY92yw==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1352,"size_decoded":1421,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1351)","md5":"e3a37550bddf2c9ff44dc0fa9d8f76cb","sha1":"c5d98fd43f71e28ebfd8a04d95a63e91102e6f4c","sha256":"0e99eecd668fee92525a6b288b63d3bb82acc55890ca6ae4fc3bc22535e8af10","sha512":"34745a89f555f3eff455dd47941283b9583ff3ae09810d17d27bfb921d1e628eb2997f3cecec2ed6fad3feafb6fda67b7ca160e630bc37b893ac45f582363f01","ssdeep":"","tlshash":"9f21010af518ac74427294885085406562aa0faa83b5c6e0a6fc9bd683b2d31d56ea7d","first_seen":"2026-06-10T12:24:42.666893Z","last_seen":"2026-07-02T18:29:33.574989Z","times_seen":78,"resource_available":true,"data":null}},"time_used":179,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/zh-DH7itq7n.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.410Z","timestamp":1783012010410,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/js/zh-DH7itq7n.js HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/index-DLNOm8Kv.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:50 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AAA2599E01E3DCA7AC0\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:36:05 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 15398038891774322525\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: WbrKHvvfZ37Ds7lLvaq4nA==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":8504,"size_decoded":4809,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (5275)","md5":"59baca1efbdf677ec3b3b94bbdaab89c","sha1":"563e7c8b352946ba19f71591c15c418893c4e8a4","sha256":"a00bb24989f0c16dbc866c683b214031ba6b7119ba6d6b367e26ffc798dcba91","sha512":"e2aef417bf9efb9b9cf4594356224aedabae7f601d7f39795837e5e2d82048ac6cee93802c0e856df6dee71933354c989894d49399bb4c4be1a41723d63d6cc6","ssdeep":"192:O3FyGn/aZJd4+Ms2QmPblTe+j1iU7hQbHyuej5Ov+H:onQcfxDk+piUMyuejAv+H","tlshash":"7702e9d507ec9ef8464a02d96f1b4884b1552da7e6e6c9e41fa688f5304db0f130319b","first_seen":"2026-03-21T10:33:31.223435Z","last_seen":"2026-07-02T18:29:33.573276Z","times_seen":1252,"resource_available":true,"data":null}},"time_used":176,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pg385859.top/hall/api/lobby/config/getAppDownloadInfo.json?t=1783012","fqdn":"pg385859.top","domain":"pg385859.top","tld":"top"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:49.371Z","timestamp":1783012009371,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pg385859.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 14 Feb 2026 00:00:00 GMT","end":"Sun, 14 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CB:E8:00:ED:93:18:7E:DE:0A:59:06:CB:25:B7:BA:31:3F:74:73:0B","sha256":"83:4C:59:CC:BB:D0:98:4A:80:9C:2F:B5:94:FF:63:0A:CD:C9:C8:C9:1B:35:FF:08:62:28:B3:E9:6C:3B:1F:F1"}}},"request":{"raw":"OPTIONS /hall/api/lobby/config/getAppDownloadInfo.json?t=1783012 HTTP/1.1\r\nHost: pg385859.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: clienttimezone,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:49 GMT\r\ncontent-length: 0\r\nx-oss-request-id: 6A469AA98A23F73334339055\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-allow-headers: clienttimezone, device, devicemodel, devicetype, domain, language, nonce, platformtype, sign, sitecode, timestamp, x-custom-referer, x-request-id, x-version\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\nx-oss-server-time: 0\r\nserver: gocache\r\nc-type: pf\r\nrid: f1d58d538134d92491656161dd0d779d\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":641,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":262,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":262,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg385859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pg385859.top/hall/api/agent/downloadSite/getDownloadTemplate/tid/4500522.json?t=1783012","fqdn":"pg385859.top","domain":"pg385859.top","tld":"top"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:49.876Z","timestamp":1783012009876,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pg385859.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 14 Feb 2026 00:00:00 GMT","end":"Sun, 14 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CB:E8:00:ED:93:18:7E:DE:0A:59:06:CB:25:B7:BA:31:3F:74:73:0B","sha256":"83:4C:59:CC:BB:D0:98:4A:80:9C:2F:B5:94:FF:63:0A:CD:C9:C8:C9:1B:35:FF:08:62:28:B3:E9:6C:3B:1F:F1"}}},"request":{"raw":"OPTIONS /hall/api/agent/downloadSite/getDownloadTemplate/tid/4500522.json?t=1783012 HTTP/1.1\r\nHost: pg385859.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: clienttimezone,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:50 GMT\r\ncontent-length: 0\r\nx-oss-request-id: 6A469AA960F7333931992043\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-allow-headers: clienttimezone, device, devicemodel, devicetype, domain, language, nonce, platformtype, sign, sitecode, timestamp, x-custom-referer, x-request-id, x-version\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\nx-oss-server-time: 1\r\nserver: gocache\r\nc-type: pf\r\nrid: f81b3d9484ec3dfa0da2e028f4760b15\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}],"data":{"size":0,"size_decoded":641,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":232,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":232,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg385859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/vue-core-BbiFjrsZ.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:45.680Z","timestamp":1783012005680,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/js/vue-core-BbiFjrsZ.js HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:46 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AA62599E01E3DCA7149\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:36:00 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 14003466474443674754\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 010yxV76woa6COXDMjPAXg==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":74290,"size_decoded":29913,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"d35d32c55efac286ba08e5c33233c05e","sha1":"de06712cff5235d39a38d51cf3cac9f3cd75a042","sha256":"237fea871343d1a14189d135fcef684ecf12c154202590c08430a9f9623365b3","sha512":"5340121a1858fd7c876cbd67f5189fec795c62f133fb841e67b05cbfa1b2b6dd0cee216153b7597656fca42f5fdeab14c833109b4c08cf9e265c7dcfb8c562ae","ssdeep":"768:sJNHhYJGVFK8wMjUXn6pt6RDazH0RXTmU9GssBg27Oo66MdAMLu9lExfqe4amDqq:g7xjSmXv/h3r/iCkv5nrfS","tlshash":"847307e83192b46253fa19e2007b0406f379295a3849d9d8f26dfddb3e7240550bbebd","first_seen":"2026-03-21T10:33:31.214025Z","last_seen":"2026-07-02T18:29:33.566484Z","times_seen":1379,"resource_available":true,"data":null}},"time_used":669,"timings":{"blocked":-1,"dns":127,"connect":22,"send":0,"wait":190,"receive":7,"ssl":320},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/crypto-CJRxg2fs.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:45.681Z","timestamp":1783012005681,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/js/crypto-CJRxg2fs.js HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:46 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AA6833185BA42F71411\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:34:13 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 15170336177377598905\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: KQ/V+C5cZc6BvQ2Y7bNX1w==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":19518,"size_decoded":7626,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (19517)","md5":"290fd5f82e5c65ce81bd0d98edb357d7","sha1":"e15954d96646300b17f6b35ec4bd5e252495361f","sha256":"39617d047930e2b5ead898e02803026c102ead3ddfd628bb0cc32983f4e5f01a","sha512":"8f8c77ae1db760d1c9028a7ddb7fc817f8cce280d7b9813c05307079f21f1dbd485b4347066cd894f4245886a02c21285e1a4d247f111345a5f18e444c20864c","ssdeep":"384:gNgT8ueqcZyudMUI9AKXlEBh/Z4hTL1Cr3niSs:t8XHoQMbepZ4hTpCr3niSs","tlshash":"9f92628ab9e9b58003933478193fa01bf1a7246555adc264f3a8d5ecfdb809de127d38","first_seen":"2026-06-04T17:45:36.945282Z","last_seen":"2026-07-02T18:29:33.570006Z","times_seen":123,"resource_available":true,"data":null}},"time_used":651,"timings":{"blocked":-1,"dns":126,"connect":24,"send":0,"wait":182,"receive":0,"ssl":316},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/assets/index-CZ5pvmb6.css","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:45.691Z","timestamp":1783012005691,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/assets/index-CZ5pvmb6.css HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:46 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AA6833185BA42F71493\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:33:34 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 15636024776468139085\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: /DwAsDzlmwGXU7/f6ENgdg==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":36862,"size_decoded":6415,"mime_type":"text/css","magic":"ASCII text, with very long lines (36861)","md5":"fc3c00b03ce59b019753bfdfe8436076","sha1":"58ec0c84e8653346d8cbe6f546434294c8ee9a5c","sha256":"af760cdeec3061f5a0efb03da6d00643c6848972565d3af91ac635fac7831259","sha512":"ea0deeeed1926784eaa7bad586772e39481eeb498bfc9fbeb6b440256503f7dc2656b830bf490a16dcd971ba676dae6dbdbb73e039843a149e07d8de19d3cb7e","ssdeep":"192:FwYdgt4FvfKxGOwArxE/pDpxInClCtAhYEkbxE5Mep4daAPj1fws2btOtrlZ+bRp:MtcWQ77lCtAmuvAF6hZ5hxm5piyKEap","tlshash":"13f2783bc45912189437ce71a7c82fa84214e563e5130fdeb99376074bcbbda35a129f","first_seen":"2026-03-21T10:33:31.206731Z","last_seen":"2026-07-02T18:29:33.56701Z","times_seen":1474,"resource_available":false,"data":null}},"time_used":815,"timings":{"blocked":634,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pg389859.top/normal/dscdn.txt?t=1783012008432","fqdn":"pg389859.top","domain":"pg389859.top","tld":"top"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:48.447Z","timestamp":1783012008447,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pg389859.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 14 Feb 2026 00:00:00 GMT","end":"Sun, 14 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"A3:86:0D:F3:A3:81:43:24:8E:E0:33:34:28:D5:AD:A0:DC:36:1D:2B","sha256":"F6:85:52:CF:B6:8C:0F:AC:07:D2:92:E5:EB:1A:AE:DE:C0:3C:DA:E7:43:7D:97:0D:73:78:CA:19:2E:6A:F8:DB"}}},"request":{"raw":"GET /normal/dscdn.txt?t=1783012008432 HTTP/1.1\r\nHost: pg389859.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:49 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\nx-oss-request-id: 6A469AA9D5B2A23533D6614D\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\naccept-ranges: bytes\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Mon, 08 Jun 2026 11:30:32 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-storage-class: Standard\r\nx-oss-meta-version: v7.3.9\r\ncache-control: no-cache\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\nx-oss-server-time: 2\r\nserver: gocache\r\nc-type: pf\r\nrid: eecf2d95c4c71c41d30b57e8d09e2d93\r\nx-cache-status: MISS\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":806,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-07-02T19:09:50.486977Z","times_seen":338198,"resource_available":true,"data":null}},"time_used":845,"timings":{"blocked":-1,"dns":158,"connect":1,"send":0,"wait":258,"receive":0,"ssl":428},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/arrow-down-CbZEo1md.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.907Z","timestamp":1783012010907,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/js/arrow-down-CbZEo1md.js HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:51 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 415\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AAAD31B127FD6BEB5F4\r\nVary: Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nAccept-Ranges: bytes\r\nETag: \"EC885A9A61BC9FFB0075CE201F1FD919\"\r\nLast-Modified: Mon, 08 Jun 2026 14:34:08 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 11258959773668813228\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 7IhammG8n/sAdc4gHx/ZGQ==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":415,"size_decoded":1109,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (414)","md5":"ec885a9a61bc9ffb0075ce201f1fd919","sha1":"c6867e239bea13137249f88d4df54257388e7206","sha256":"6b1b6e2af57f966ba2a9bf5968b89955c786aeff85f0094c701149cf85429ade","sha512":"d2114fcf440113d379275dcfb2e4f7ee768d12315f6165813492ec9cebcf895039c1c5a7eedfcbf4e89c2bf9cae04cc673932da7184a0e4338c9feebde86cd73","ssdeep":"","tlshash":"f8e0abbe56e551fd0907c86c0860584a872eb1fe36ad4895b28d96f1c013423a9034a5","first_seen":"2026-03-21T10:33:31.230669Z","last_seen":"2026-07-02T18:29:33.574405Z","times_seen":1255,"resource_available":true,"data":null}},"time_used":176,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/polyfills-BkzohEkc.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:45.676Z","timestamp":1783012005676,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/js/polyfills-BkzohEkc.js HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:46 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AA6CB8550221C6634B3\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:35:23 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 9779315239686224878\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 4x5K+1O0etk/H5TFhQj/LQ==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":6749,"size_decoded":3144,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (6748)","md5":"e31e4afb53b47ad93f1f94c58508ff2d","sha1":"ed0a05ae7e3a1c71b9c771144279a3e67c1971d9","sha256":"7d8df769625fe98395cff2056f13f2433e0249d8e0964562518456cf48b938bf","sha512":"f2d00e0a56715d072d7017bae61687fcd283ab57807621197a3ba3df4b75acffe0e442e93ee8cb174d305811e9ed69b1ee7d6848001ff7fcd4152b530b95b9ee","ssdeep":"96:cLy4jWt/WSSCpNw0Y9mnpYf6SXl6hQvXzEY8iWu0VdX1vSjvguDdrwaH:h4jE2CpN8v1Xl6Cvqu0bgj4u7","tlshash":"99d186e87291b07042a7a2b6d02f1507f239b97252edd0d0d365ecf0acb949d4277f29","first_seen":"2026-02-06T16:41:27.155404Z","last_seen":"2026-07-02T19:02:33.931509Z","times_seen":2653,"resource_available":true,"data":null}},"time_used":650,"timings":{"blocked":-1,"dns":130,"connect":22,"send":0,"wait":181,"receive":0,"ssl":316},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/assets/vant-DJOnW2S3.css","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:45.689Z","timestamp":1783012005689,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/assets/vant-DJOnW2S3.css HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:46 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AA6CB8550221C663517\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:33:47 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 17944980485908575814\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: hGLpeNy3oTOMMuVxP1I4/Q==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":12595,"size_decoded":3168,"mime_type":"text/css","magic":"ASCII text, with very long lines (12594)","md5":"8462e978dcb7a1338c32e5713f5238fd","sha1":"c729ead6412c6e2170d8ebbb88266b47c9a26823","sha256":"e3d1127793c738345cec2f02d7c4f9aa268505ab2d4527e9b77f75bb2f840bd3","sha512":"fcc34c90f6434bcc64a1641d102ab82e0a4fbe541b841813e0938663e49aa2ccfa26474dd9b520d38ee22b543ad25d5b56e758c6c1274cd7ce5b6dd7b44dce84","ssdeep":"384:MD2KFZnHEcam51bjQurwcq6SWHd/flrwcq6SWHd/fyfzQWmhqIX:5fXmhqIX","tlshash":"5742412ae841027a6e036a2597de05d4f17ce6b27e62cde8715432498bc7ff81737247","first_seen":"2025-08-21T07:31:55.601088Z","last_seen":"2026-07-02T19:18:54.902063Z","times_seen":8670,"resource_available":false,"data":null}},"time_used":763,"timings":{"blocked":582,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pg385859.top/hall/api/lobby/channel/go/getChannelInfoById/id/1687198/info/channel.json?t=1783012","fqdn":"pg385859.top","domain":"pg385859.top","tld":"top"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:49.369Z","timestamp":1783012009369,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pg385859.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 14 Feb 2026 00:00:00 GMT","end":"Sun, 14 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CB:E8:00:ED:93:18:7E:DE:0A:59:06:CB:25:B7:BA:31:3F:74:73:0B","sha256":"83:4C:59:CC:BB:D0:98:4A:80:9C:2F:B5:94:FF:63:0A:CD:C9:C8:C9:1B:35:FF:08:62:28:B3:E9:6C:3B:1F:F1"}}},"request":{"raw":"OPTIONS /hall/api/lobby/channel/go/getChannelInfoById/id/1687198/info/channel.json?t=1783012 HTTP/1.1\r\nHost: pg385859.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: clienttimezone,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:49 GMT\r\ncontent-length: 0\r\nx-oss-request-id: 6A469AA960F7333931781D43\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-allow-headers: clienttimezone, device, devicemodel, devicetype, domain, language, nonce, platformtype, sign, sitecode, timestamp, x-custom-referer, x-request-id, x-version\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\nx-oss-server-time: 0\r\nserver: gocache\r\nc-type: pf\r\nrid: 33c9e244e96b1390a6133487ed4154f4\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":0,"size_decoded":641,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":245,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":245,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg385859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/js/index-CUilaoSn.js","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.597Z","timestamp":1783012010597,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/js/index-CUilaoSn.js HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:50 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AAA833185BA42F71E72\r\nVary: Accept-Encoding, Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nLast-Modified: Mon, 08 Jun 2026 14:34:44 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 18411987994256127708\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: hwh6Guvldey55LzwKs95Cw==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":6529,"size_decoded":3094,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (6065)","md5":"87087a1aebe575ecb9e4bcf02acf790b","sha1":"5ce83177331ac07ea0de10703d6ca169d3d5f274","sha256":"3182b86a91ff190f373d3bff15fbb5478cb95ff4e69374ca774854cb85456d21","sha512":"28366b0e52c35d29ea86591228f7ff5dda90bc0e2d8e8abad0eb752cdd2938c5106c3f77601c389ff6443b6a4cf834ee3a1b6c53833fdafe564a1e00b3f404c0","ssdeep":"192:IZkEQLwe2cR+NQq6SkK7ZWoAR6EsAS/Ois:Iuj8eDKYIr3e","tlshash":"c1d1b60df8191db4d37298d8f285025811252b5296bcc2f1f1fe6ba81ae0c609fef4bd","first_seen":"2026-06-10T12:24:42.668909Z","last_seen":"2026-07-02T18:29:33.573837Z","times_seen":78,"resource_available":true,"data":null}},"time_used":181,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"h76nbgj8.pgwb859617.top/hall/api/statistics/domain/pointer","fqdn":"h76nbgj8.pgwb859617.top","domain":"pgwb859617.top","tld":"top"},"ip":{"addr":"172.65.191.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.909Z","timestamp":1783012010909,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"h76nbgj8.pgwb859617.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 01 Jul 2026 00:00:00 GMT","end":"Fri, 15 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"31:1F:49:72:D5:00:CB:F8:46:1E:7D:18:6D:E1:A1:5F:E7:14:53:5E","sha256":"80:73:F1:3D:A3:6A:25:57:57:26:E1:A8:3D:BB:F7:E4:01:72:39:61:DB:AE:9E:30:18:D5:A3:D9:72:A4:1D:58"}}},"request":{"raw":"OPTIONS /hall/api/statistics/domain/pointer HTTP/1.1\r\nHost: h76nbgj8.pgwb859617.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: clienttimezone,content-type,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:51 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 0\r\nset-cookie: acw_tc=0a094e9617830120110478984e79853df8b60129152cfc16969c55a1992033;path=/;HttpOnly;Max-Age=1800\r\nx-saas-server-id: 5d4f9f5485-vqvkk|802d3b18b8ef11479150248d9ed23cfe\r\naccess-control-allow-methods: *\r\naccess-control-max-age: 1728000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: clienttimezone,content-type,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\naccess-control-expose-headers: X-Trace-ID, newjwt, token\r\nserver: gocache\r\nc-type: pf\r\nrid: 8432d10f6d00b2352e80be0b970af535\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}],"data":{"size":0,"size_decoded":764,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":271,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":271,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-02","alert":"Phishing Block","trigger":"h76nbgj8.pgwb859617.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"h76nbgj8.pgwb859617.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"euefj.one/","fqdn":"euefj.one","domain":"euefj.one","tld":"one"},"ip":{"addr":"43.249.25.19","port":443,"asn":132839,"as":"POWER LINE DATACENTER","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-02T17:06:41.667Z","timestamp":1783012001667,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.gvzqn.one","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Thu, 25 Jun 2026 09:28:37 GMT","end":"Wed, 23 Sep 2026 09:28:36 GMT"},"fingerprint":{"sha1":"E4:90:71:2C:4D:FC:E5:D9:06:5E:81:8A:C4:50:ED:E7:9A:3E:2E:DC","sha256":"97:BC:89:1E:2E:74:7F:43:27:33:A5:1D:93:B9:12:B5:83:BE:65:37:A2:6B:0C:56:70:C3:28:CF:21:FB:E7:0B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: euefj.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nServer: nginx/1.20.1\r\nDate: Thu, 02 Jul 2026 17:06:43 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/7.4.33\r\nServer_ver: 20260413001\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS, PUT, DELETE\r\nAccess-Control-Allow-Headers: *\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.4.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"f5g6h778.pgwb859612.top/ipacdn.txt?t=1783012008431","fqdn":"f5g6h778.pgwb859612.top","domain":"pgwb859612.top","tld":"top"},"ip":{"addr":"137.220.139.118","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:48.440Z","timestamp":1783012008440,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"f5g6h778.pgwb859612.top","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Jul 2026 10:53:54 GMT","end":"Tue, 29 Sep 2026 10:53:53 GMT"},"fingerprint":{"sha1":"AE:AF:F9:A9:71:B5:53:E9:5C:18:B2:48:7A:0A:4B:B9:B6:82:FA:62","sha256":"BC:13:F8:F6:7A:5D:11:93:B7:78:6B:28:9C:7D:EB:CE:02:47:D2:B2:C3:20:AD:1A:72:39:32:B7:F0:71:28:06"}}},"request":{"raw":"GET /ipacdn.txt?t=1783012008431 HTTP/1.1\r\nHost: f5g6h778.pgwb859612.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:49 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3600\r\ncache-control: s-maxage=315360000,max-age=0,public\r\nset-cookie: acw_tc=0a0f6bab17830120094551386e6a22dd8dacb940baffb782cb66ce0b87a17a;path=/;HttpOnly;Max-Age=1800\r\nx-cache: MISS\r\nserver: ****\r\nstrict-transport-security: max-age=31536000; preload\r\nx-request-id: 41f04a9bd4d6f987a79440895c4af3d4\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":538,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-07-02T19:09:50.486977Z","times_seen":338198,"resource_available":true,"data":null}},"time_used":1190,"timings":{"blocked":-1,"dns":305,"connect":256,"send":0,"wait":336,"receive":0,"ssl":294},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"f5g6h778.pgwb859612.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-02","alert":"Phishing Block","trigger":"f5g6h778.pgwb859612.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h76nbgj8.pgwb859617.top/hall/api/agent/downloadSite/regionAccessV2","fqdn":"h76nbgj8.pgwb859617.top","domain":"pgwb859617.top","tld":"top"},"ip":{"addr":"172.65.191.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:49.368Z","timestamp":1783012009368,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"h76nbgj8.pgwb859617.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 01 Jul 2026 00:00:00 GMT","end":"Fri, 15 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"31:1F:49:72:D5:00:CB:F8:46:1E:7D:18:6D:E1:A1:5F:E7:14:53:5E","sha256":"80:73:F1:3D:A3:6A:25:57:57:26:E1:A8:3D:BB:F7:E4:01:72:39:61:DB:AE:9E:30:18:D5:A3:D9:72:A4:1D:58"}}},"request":{"raw":"OPTIONS /hall/api/agent/downloadSite/regionAccessV2 HTTP/1.1\r\nHost: h76nbgj8.pgwb859617.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: clienttimezone,content-type,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:49 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 0\r\nset-cookie: acw_tc=0a094e9617830120095078802e798524c0a2ab06e17736f37470a75a3bb315;path=/;HttpOnly;Max-Age=1800\r\nx-saas-server-id: 5d4f9f5485-bwpnv|7fff86f55b5edc6b0560322d26060610\r\naccess-control-allow-methods: *\r\naccess-control-max-age: 1728000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: clienttimezone,content-type,device,devicemodel,devicetype,domain,language,nonce,platformtype,sign,sitecode,timestamp,x-custom-referer,x-request-id,x-version\r\naccess-control-expose-headers: X-Trace-ID, newjwt, token\r\nserver: gocache\r\nc-type: pf\r\nrid: f9d2c5405cae7f02a482e2c1dc039b3d\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]}],"data":{"size":0,"size_decoded":764,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":267,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"h76nbgj8.pgwb859617.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-02","alert":"Phishing Block","trigger":"h76nbgj8.pgwb859617.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/assets/index-CRpQkerk.css","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.797Z","timestamp":1783012010797,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/assets/index-CRpQkerk.css HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:50 GMT\r\nContent-Type: text/css\r\nContent-Length: 237\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AAAD31B127FD6BEB5B0\r\nVary: Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nAccept-Ranges: bytes\r\nETag: \"8E63996D2AD6CF557B40183208382FDB\"\r\nLast-Modified: Mon, 08 Jun 2026 14:33:32 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 7611821684253846864\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: jmOZbSrWz1V7QBgyCDgv2w==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":237,"size_decoded":916,"mime_type":"text/css","magic":"ASCII text","md5":"8e63996d2ad6cf557b40183208382fdb","sha1":"2045bf6cce8c0bc96eab3013d7c4a379f5a173d5","sha256":"687a9e307b1dad286ad132dd348872c58fd29ac53fa82f4921ea9d357342df4f","sha512":"9b4179520720f6b3488026214a34ca3f5390586687482ff7adae19418572078b78b0d41e5860bfd1b33ae39a674909fb1fe267913c29448e36dc172ee0801989","ssdeep":"","tlshash":"3bd05e39e450b125943786d2ac8ecd8992d5a2438693142c8f002b61dcaf9196a6719d","first_seen":"2026-03-21T10:33:31.220209Z","last_seen":"2026-07-02T17:07:21.726061Z","times_seen":1193,"resource_available":false,"data":null}},"time_used":183,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":183,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ntwq9p.pgyl859-58.top/favicon.ico","fqdn":"ntwq9p.pgyl859-58.top","domain":"pgyl859-58.top","tld":"top"},"ip":{"addr":"43.229.212.37","port":443,"asn":132839,"as":"POWER LINE DATACENTER","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:46.811Z","timestamp":1783012006811,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.w62739.top","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Jun 2026 09:11:51 GMT","end":"Mon, 28 Sep 2026 09:11:50 GMT"},"fingerprint":{"sha1":"92:FD:FD:8F:30:D5:DF:12:FF:51:E4:20:EA:6E:C3:D7:EF:90:DF:34","sha256":"53:EC:36:38:77:15:B1:3B:30:54:56:7F:97:32:26:37:D8:FF:63:08:D1:60:4F:C4:41:61:5C:6B:F9:90:D5:3B"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ntwq9p.pgyl859-58.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/?cid=1687198\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Thu, 02 Jul 2026 17:06:46 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 0\r\nConnection: keep-alive\r\nLast-Modified: Tue, 25 Nov 2025 11:45:09 GMT\r\nETag: \"692596c5-0\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS, PUT, DELETE\r\nAccess-Control-Allow-Headers: *\r\nCache-Control: public, max-age=900\r\nExpires: Thursday, 02-Jul-2026 17:06:46 GMT\r\nAccept-Ranges: bytes\r\nStrict-Transport-Security: max-age=31536000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":491,"mime_type":"image/x-icon","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":247,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":247,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"ntwq9p.pgyl859-58.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s34dcf5.pgwb859616.top/ipacdn.txt?t=1783012008430","fqdn":"s34dcf5.pgwb859616.top","domain":"pgwb859616.top","tld":"top"},"ip":{"addr":"103.231.15.230","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:48.433Z","timestamp":1783012008433,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s34dcf5.pgwb859616.top","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Jul 2026 11:13:43 GMT","end":"Tue, 29 Sep 2026 11:13:42 GMT"},"fingerprint":{"sha1":"00:FB:55:05:E3:55:37:E0:4F:08:0E:AA:2E:2C:32:17:87:CA:97:B0","sha256":"10:F3:C7:40:37:CE:E1:DD:B4:07:98:76:84:F8:9C:23:7D:2F:0A:D9:CF:32:CB:D3:19:C5:5D:76:9B:70:5E:A5"}}},"request":{"raw":"GET /ipacdn.txt?t=1783012008430 HTTP/1.1\r\nHost: s34dcf5.pgwb859616.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3600\r\ncache-control: s-maxage=315360000,max-age=0,public\r\ncontent-type: text/plain\r\ndate: Thu, 02 Jul 2026 17:06:49 GMT\r\nset-cookie: acw_tc=0a0f6bc317830120093415651e6abcb355c1600101802530b9ab1119649b6e;path=/;HttpOnly;Max-Age=1800\r\nstrict-transport-security: max-age=31536000\r\nx-cache: BYPASS, Set-Cookie\r\ncontent-length: 2\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":459,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-07-02T19:09:50.486977Z","times_seen":338198,"resource_available":true,"data":null}},"time_used":1017,"timings":{"blocked":-1,"dns":90,"connect":157,"send":0,"wait":291,"receive":0,"ssl":479},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"s34dcf5.pgwb859616.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-02","alert":"Phishing Block","trigger":"s34dcf5.pgwb859616.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"o8nb2.pgwb859601.top/normal/dscdn.txt?t=1783012008433","fqdn":"o8nb2.pgwb859601.top","domain":"pgwb859601.top","tld":"top"},"ip":{"addr":"137.220.139.118","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:48.452Z","timestamp":1783012008452,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"o8nb2.pgwb859601.top","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jun 2026 11:55:52 GMT","end":"Sat, 26 Sep 2026 11:55:51 GMT"},"fingerprint":{"sha1":"7C:7A:03:37:1C:4A:29:AA:66:69:73:E1:7C:F7:85:56:2C:3A:48:2C","sha256":"01:1C:38:83:55:63:3B:70:21:B7:6D:68:0E:D6:61:BA:2F:1F:0D:18:79:EB:FB:4C:D5:64:3E:E0:1B:B7:F4:6D"}}},"request":{"raw":"GET /normal/dscdn.txt?t=1783012008433 HTTP/1.1\r\nHost: o8nb2.pgwb859601.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:50 GMT\r\ncontent-type: text/plain\r\ncontent-length: 2\r\naccess-control-allow-methods: GET, POST, HEAD, PUT\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Etag\r\naccess-control-max-age: 200\r\ncache-control: no-cache\r\ncontent-md5: 4KoCHiHd29bYzs7HHpz1ZA==\r\netag: \"E0AA021E21DDDBD6D8CECEC71E9CF564\"\r\nlast-modified: Mon, 08 Jun 2026 11:30:32 GMT\r\nserver: ****\r\nvary: Origin\r\nx-cache: BYPASS\r\nx-oss-hash-crc64ecma: 4312349438756823821\r\nx-oss-meta-version: v7.3.9\r\nx-oss-object-type: Normal\r\nx-oss-request-id: 6A469AAA8A23F73930639355\r\nx-oss-server-time: 1\r\nx-oss-storage-class: Standard\r\nstrict-transport-security: max-age=31536000; preload\r\nx-request-id: 648ac933ffb825ef942858a3015ec8c0\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2,"size_decoded":785,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-07-02T19:09:50.486977Z","times_seen":338198,"resource_available":true,"data":null}},"time_used":1778,"timings":{"blocked":-1,"dns":1001,"connect":253,"send":0,"wait":261,"receive":0,"ssl":262},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"o8nb2.pgwb859601.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"o8nb2.pgwb859601.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com/1852/assets/index-DzLeY5NJ.css","fqdn":"page859asdkjasd125s54.oss-accelerate.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.187.134","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.799Z","timestamp":1783012010799,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.oss-eu-central-1.aliyuncs.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 21 Jan 2026 05:48:22 GMT","end":"Sun, 07 Feb 2027 03:11:39 GMT"},"fingerprint":{"sha1":"64:86:8B:A7:E4:DC:0E:74:32:46:53:69:3C:B8:E4:89:DD:F6:BD:55","sha256":"B8:C1:A5:52:E0:02:69:05:3E:47:AF:74:43:E0:AC:57:AB:A5:93:BF:4E:FF:3B:47:70:FE:C7:D9:C7:08:29:93"}}},"request":{"raw":"GET /1852/assets/index-DzLeY5NJ.css HTTP/1.1\r\nHost: page859asdkjasd125s54.oss-accelerate.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://ntwq9p.pgyl859-58.top\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 02 Jul 2026 17:06:50 GMT\r\nContent-Type: text/css\r\nContent-Length: 404\r\nConnection: keep-alive\r\nx-oss-request-id: 6A469AAA4C216DC14723A3B3\r\nVary: Origin\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD\r\nAccess-Control-Max-Age: 0\r\nAccept-Ranges: bytes\r\nETag: \"26BC1671A1849DF90F801E00997985CE\"\r\nLast-Modified: Mon, 08 Jun 2026 14:33:43 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 14937727093536461152\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000111\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: JrwWcaGEnfkPgB4AmXmFzg==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":404,"size_decoded":1084,"mime_type":"text/css","magic":"ASCII text, with very long lines (403)","md5":"26bc1671a1849df90f801e00997985ce","sha1":"620e9980964dffeee13b08793691ea1b34135461","sha256":"5db55dc39d7987d5d2d374dc5f8202239fc8657e8870305d34b5b14b5387bbec","sha512":"f45bea0196308de6f28e91c48aa9e190e4125df276d24a2d2b26cae9316ae44b3d1b7a45be7180cfecceab729663b92e225ca7910014ed95ef2cf96880cb7281","ssdeep":"","tlshash":"1fe0e55a935102051871d3816e1d4d8e0654050272abcd8ce19357237a7f68f2af090b","first_seen":"2026-03-21T17:56:56.610885Z","last_seen":"2026-07-02T17:07:21.726532Z","times_seen":86,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pg385859.top/siteadmin/upload/img/1924669411190714370.png","fqdn":"pg385859.top","domain":"pg385859.top","tld":"top"},"ip":{"addr":"172.65.218.121","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ntwq9p.pgyl859-58.top/?cid=1687198","date":"2026-07-02T17:06:50.576Z","timestamp":1783012010576,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pg385859.top","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 14 Feb 2026 00:00:00 GMT","end":"Sun, 14 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CB:E8:00:ED:93:18:7E:DE:0A:59:06:CB:25:B7:BA:31:3F:74:73:0B","sha256":"83:4C:59:CC:BB:D0:98:4A:80:9C:2F:B5:94:FF:63:0A:CD:C9:C8:C9:1B:35:FF:08:62:28:B3:E9:6C:3B:1F:F1"}}},"request":{"raw":"GET /siteadmin/upload/img/1924669411190714370.png HTTP/1.1\r\nHost: pg385859.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ntwq9p.pgyl859-58.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Thu, 02 Jul 2026 17:06:50 GMT\r\ncontent-type: image/png\r\ncontent-length: 114931\r\nx-oss-request-id: 6A45E2302A8AB23339127647\r\nvary: Origin\r\netag: \"F1510A8500F12DFD8F36407CD58F360F\"\r\nlast-modified: Tue, 12 Aug 2025 10:41:47 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 18262347846046359078\r\nx-oss-storage-class: Standard\r\ncache-control: max-age=86400,stale-while-revalidate=86400,immutable,proxy-revalidate,public\r\ncontent-md5: 8VEKhQDxLf2PNkB81Y82Dw==\r\nx-oss-server-time: 5\r\nserver: gocache\r\nc-type: pf\r\nrid: e773006fda328422aa2225d8bc1be5d5\r\nx-cache-status: HIT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"GoCache","description":"GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.","website":"https://www.gocache.com.br/","common_platform_enumeration":"","icon":"GoCache.png","categories":["CDN"]},{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":114931,"size_decoded":115629,"mime_type":"image/jpeg","magic":"JPEG image data, progressive, precision 8, 1024x1024, components 3","md5":"f1510a8500f12dfd8f36407cd58f360f","sha1":"629702cf2181f46d149298be6dbc17506d5413f8","sha256":"92813ca327dfba83b4a0bde2d7f53c96654aa028f426ea682227f23d2904e9cd","sha512":"a3ace3d13646555cff990d3f1a7dd2be59b5220a7dd835f07aa08c811ed0de40e41b863be330a2fed2e8a84581905ef2ccf6522529ea94001470112ff4b11cc9","ssdeep":"3072:aQxFGu+rDwZ5XV0XodqErh87rl5+caXTMCgZJ:0fd8IfeMCgZJ","tlshash":"1fb3128b9f4a57b3752c2a3960778b3afe76670961e0d245c334897b8b80bc78445df8","first_seen":"2025-11-27T04:29:30.4384Z","last_seen":"2026-07-02T17:07:21.718658Z","times_seen":93,"resource_available":false,"data":null}},"time_used":429,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":213,"receive":216,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"pg385859.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}
