{"report_id":"c4e5ac3f-1f2e-4d9e-b188-259ef8199efa","version":6,"status":"done","tags":[],"date":"2026-02-13T22:42:18Z","url":{"schema":"https","addr":"casinogiris.vip/","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"casinogiris.vip/h5/#/","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"title":"casinogiris.vip/h5/","dom":{"size":190084,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (59522), with CRLF, LF line terminators","md5":"c1aeac6bc1725953b2749f90920edbce","sha1":"550235fb65c471d43c2f78b4fb6a580db9b03162","sha256":"5a9376be91646a8b6aae62d00ba4822ddd02b43c2f0a32885a1215e3100abc61","sha512":"8a066bc0cd4b480d055b0936c9ba616ecc61df3ae6a689999c32aa20e979d34b75d4772bfa322972f832e109630a8df688d44bab8d175e4d345d93c4fa43434b","ssdeep":"3072:yy3oWojGIVnqWPEwxsFbDW4YUml+tBwbHn:yy3oWoqIVnqWcusFNYUml+PwbHn","tlshash":"4004e632710239d72473ccc2e094af07ac1edf33c1684a54bbaa27659fd6ef45a25b19","dom_hash":"domhashaa591586e929460a9a9790f4a02db805","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"casinogiris.vip/","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-20T22:42:18Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"cdn.dcloud.net.cn","ip":{"addr":"124.221.80.91","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"domain_registered":"2013-07-17","domain_rank":296858,"first_seen":"2018-09-15T09:18:08Z","last_seen":"2026-02-11T15:09:54.260395Z","alert_count":0,"request_count":1,"received_data":579,"sent_data":446,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"casinogiris.vip","ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-11-02","domain_rank":0,"first_seen":"2026-02-13T09:40:10.662701Z","last_seen":"2026-02-13T09:40:10.662701Z","alert_count":0,"request_count":24,"received_data":1577272,"sent_data":11670,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"shortbox.cc","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-05-04","domain_rank":0,"first_seen":"2026-02-13T06:21:32.159416Z","last_seen":"2026-02-13T06:21:32.159416Z","alert_count":0,"request_count":2,"received_data":102098,"sent_data":839,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"mp4.nymaite.cn","ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"domain_registered":"2022-01-21","domain_rank":0,"first_seen":"2023-09-01T01:24:47Z","last_seen":"2026-02-13T06:21:32.679617Z","alert_count":0,"request_count":17,"received_data":2414,"sent_data":8151,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"console.nymaite.cn","ip":{"addr":"146.56.206.145","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"domain_registered":"2022-01-21","domain_rank":0,"first_seen":"2023-06-15T03:01:52Z","last_seen":"2026-02-13T06:21:32.674976Z","alert_count":0,"request_count":6,"received_data":13688,"sent_data":2950,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"casinogiris.vip/h5/","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ec0086722d72ea95d1e97d455d135c91","sha1":"136c72ace1875c1206b274ca0cf24ed33a11d9a6","sha256":"9ea1492b35a3f52f61c72ab9690242149455b8068d149dff181d54532437f552","sha512":"a6377bb19cce90e385c3cd941eaa1ae27e18d70e1ce90f4e2e5cf5a9c5141069539c442aeb8f5c8a13378a8acc1043c1e84bb2a8593ed6ee026e7303e97bad47","ssdeep":"","tlshash":"fce068c360aa294c0120801a304ac0032bba08b29ec149610c487ba58ab9e4bc46e859","size":343,"data":"","first_seen":"2024-11-11T19:54:28.271167Z","last_seen":"2026-06-07T21:35:15.770423Z","times_seen":723,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/js/pages-home-index~pages-home-update~pages-home-user~pages-login-login~pages-login-register~pages-user~6ea07087.f6a1a659.js","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f968f5ebabe97723b9a6b6abe65bbb99","sha1":"5e941745f7d67e38e267eb5302c01a97d5295114","sha256":"f75aa7d182f255e03520a42940582af9e1ed13ef41ca40a1838bad49109dabc9","sha512":"d71c6399491b9f704b5efc755d36e74018104a8e4224158ea57332f7ce1f6cca3f151d65982fbda89e25b653ca96032bea2aa8f6d8d02377b099e4a93b77937d","ssdeep":"192:twpIxPYPPXbzcvXqk0bevv9fgl4LIEUP46psIFoRsP6g383d5FoRsr:taIx6zQ0bkBnMEUw6pszpdsO","tlshash":"7732fa5df28eb4640ad7c050c91b814971673e1ce435a691ebe8c3fb86e1bce0657f18","size":11626,"data":"","first_seen":"2026-02-13T06:21:38.347144Z","last_seen":"2026-06-07T21:35:15.76985Z","times_seen":49,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/js/pages-home-index~pages-user-share-withdraw.23d61766.js","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7e66177696f3b8d8babe77eee46ef564","sha1":"3be69793038e4477e3751d6846d1bb02c1b3c314","sha256":"1e02b8ebaee2108df885ec75bd321adddb207b992899e15f977f002b66083f95","sha512":"7d27b6de82c5cec1a1cd8a841e968d18fd7ad31f35a255d4da4c36db3c714a67ffc5ef09e0f48515fcbc599f22cfb7e123f8618bf6f3a9056ce90716f4b4c93b","ssdeep":"192:19zLPlqIdoRsAhBpDT98dM21g0wSrew/0F+Mg98D7hH5oRs669qz:PlqBzwgZi/LqDQC9qz","tlshash":"4342b55fb1def42348e36454146b220a32662d5c84193190dff2d7ee8baaa4f07a7f5c","size":12577,"data":"","first_seen":"2026-02-13T06:21:38.357189Z","last_seen":"2026-06-07T21:35:15.747738Z","times_seen":49,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"console.nymaite.cn/assets/js/mt4.js?t=10112","fqdn":"console.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"146.56.206.145","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"e7a84f3838ffb696a13b25cbce1097ca","sha1":"4e51dd57574070e6d796d4d452774ad53dc55386","sha256":"47f4f41faf980b1a7406ed6578be312f8e96394f49dbba1449f0db1c081bf61d","sha512":"cf67527e2df5ee28f20d6d0e7a04674c62f5c77d27648aa12dc0e6dad3d469541feee07e4d26b573aae602097a2425f74a2b808286f8247608476f5032e0d1d4","ssdeep":"48:fHN4fUVJYIArGLr7BXgsBwyAn8DBwp3zZfyxxEbMhOrJmQ/Nu3zQjlLcwZz:1ckrrVBwyAnOszFaeMhcn6zQjlzZ","tlshash":"bbb188cd30f6647197a7f1aa25c5430356f23499abd5f364b08ca50b07d4ca4b13b9af","size":5365,"data":"","first_seen":"2024-12-15T08:42:20.713612Z","last_seen":"2026-06-07T21:35:15.75446Z","times_seen":52,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/#/","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eval","is_inline":false,"md5":"3c42a63b848d3fb712f7d2752cde71dd","sha1":"a9ebaeacae86444b212c0445969da37387a583ea","sha256":"497ff616fb3ea9f7103998af71e34570fba494c9a5e99196718391c20a1c9c44","sha512":"6859b1126e684d46b887e4ce9d868c455acdd1e601db3f5892649e64d4da0c96a73d699901043d8e26d09e6ddf8b9091c9da99e0acbca5f9fac43cac0e1dd6f9","ssdeep":"48:bqWNdMHXiAvEX4J4kvPI/brwbgJC2vrzDO0SUfMHOlA36hkE7Ad:uWNm3DEJJC2LO0kuKorAd","tlshash":"ceb1939f248214306117df900ff6474a6bbab1749862a5363a9db2c3478ad48c09f76f","size":5342,"data":"","first_seen":"2024-12-15T08:42:20.716395Z","last_seen":"2026-06-07T21:35:15.770995Z","times_seen":52,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/#/","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eval","is_inline":false,"md5":"3c42a63b848d3fb712f7d2752cde71dd","sha1":"a9ebaeacae86444b212c0445969da37387a583ea","sha256":"497ff616fb3ea9f7103998af71e34570fba494c9a5e99196718391c20a1c9c44","sha512":"6859b1126e684d46b887e4ce9d868c455acdd1e601db3f5892649e64d4da0c96a73d699901043d8e26d09e6ddf8b9091c9da99e0acbca5f9fac43cac0e1dd6f9","ssdeep":"48:bqWNdMHXiAvEX4J4kvPI/brwbgJC2vrzDO0SUfMHOlA36hkE7Ad:uWNm3DEJJC2LO0kuKorAd","tlshash":"ceb1939f248214306117df900ff6474a6bbab1749862a5363a9db2c3478ad48c09f76f","size":5342,"data":"","first_seen":"2024-12-15T08:42:20.716395Z","last_seen":"2026-06-07T21:35:15.770995Z","times_seen":52,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/js/index.83fb5993.js","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0c8def300add4b18aa20d44f9c6df77f","sha1":"5a6b41e61fd6de05f0a03b184a0b0a6b5ecdd8ee","sha256":"3111a8790ef81f73f8a785224e02d5c454e15e2b14b8dbaa6959db11921988a9","sha512":"9797724be7cb833ea1ed9a1d15c795ee22e176b6fe95bb040f70cf09382df8911892ae189150968c3d01ff34bbae197934e52205c48b54ba78e403a0733051b2","ssdeep":"6144:t8OYsWZlM2bJAAih854mWy3oWoqIVnqWcusFNYUml+P4BO4KaaG:t8OYfZlM2bGAB54mVoFRYWcuISUml+PQ","tlshash":"dd747db93199fdef0ad32494041fa2017d6e3d27445af881fbf5cac59e1eb491226f28","size":338034,"data":"","first_seen":"2026-02-13T06:21:38.36697Z","last_seen":"2026-06-07T21:35:15.752284Z","times_seen":49,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/js/chunk-vendors.9141e4b8.js","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"dcd6c642dab9fa820f5b8075d2248275","sha1":"21c05aca8533018101b86ff3a6450584ab5fb1d3","sha256":"fc8accee25c9adddeeb6d5b2ee2c1e917eaba3cd9491d52ec28aa92ab37f1eb8","sha512":"1ee9dfe14afbd521667205567799efd6232ddb93f3e5d5e43ca8656fb452a8da8da06498dd7a3d551fb5ab730c447acfb8e93c53afe83db724df3ccd71c4daf2","ssdeep":"6144:mYDEsj7aV7N0vHTASzZTRWNob/AEvmfr11hpTo57umJDXvzL4HPCHoWB3F:x47N0vHUSzZTRWNB+imOJu3F","tlshash":"3505f78df286b0b507e770b5403f220bb2376999b40a84d4f275e4d4ad7894e622bf7d","size":821415,"data":"","first_seen":"2026-02-13T06:21:38.366043Z","last_seen":"2026-06-07T21:35:15.747053Z","times_seen":49,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shortbox.cc/assets/js/mt4.js","fqdn":"shortbox.cc","domain":"shortbox.cc","tld":"cc"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"bc4c7b254531d15327af19df14b19199","sha1":"dbdd37067f44ee88c08691b0a6e4eaea2a18be84","sha256":"339c8ae9bb8706fa851b2df3f109e7bb7d9c067c0c74b2117ed07a5ab179e387","sha512":"4da5fed1d7e794219dbe8f7911c2e77a6177f3a91d78c3f219bc6df91411d2fa21252e280e9198674b0b546b3679c2a789e00606d4ce53dcae04eb9eb97dcdef","ssdeep":"","tlshash":"5c81f48d30fa1021885760fe1f8b71247425d01b6a5adf117e0e82499fd5739e3a7bde","size":3935,"data":"","first_seen":"2026-02-13T06:21:38.345895Z","last_seen":"2026-02-17T11:32:45.034531Z","times_seen":47,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shortbox.cc/assets/js/jquery.min.js","fqdn":"shortbox.cc","domain":"shortbox.cc","tld":"cc"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2a3eea3f27f34c98a7d644b3f0f60f85","sha1":"5ddd6acb2972a82d79c114ff0c4836b31d5255a6","sha256":"9cfed95f01296eb75a92709a60c838983daeab019219c75c106ffff4cd8b3908","sha512":"6bdd5d3ca228b89663547e381d8086a09098b884292e4c2b46f93b3b12aeb12f1217c3d8cd8563232a1b590e4e7c78c8aed11b61787025662f6d6d2d4b062dd2","ssdeep":"1536:19qodwgFZCg6YGIF+G5FWbxdnh17gnIlK/2RZYRHBpz+3e5ynQaKPkLl0xMXk23t:1fcsIq5FyQYpUuEK","tlshash":"07932add76d6b06247ab20b9506f510af232589d784c8400f264e8f6fc78e4a927bf7d","size":96638,"data":"","first_seen":"2026-02-13T06:21:38.368819Z","last_seen":"2026-02-17T11:32:44.987202Z","times_seen":47,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/js/pages-home-index.56a9dab0.js","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ddb308baab7c93e8e1ff4ec28b9da046","sha1":"d16c0468b237309901db65542daa0e78b1310e5d","sha256":"94eb2b215216984170378b31d008bd6bfa3ba7ef90d66c27ff9be9ebedc47f8f","sha512":"eefc6001da98e81607fee72bded98b3e23dd603692911855b9db861502a352520473d0b32ebe67c25373e24b9d71cc314e868becd2b9cae02551e8bcdd2a3216","ssdeep":"384:u7CQKu+5OAZ9ApJYdh8tFARjCPYhGDQPgEoSJKcZ+Vp4Owyb:uZKuE9AzYyqjCghjPzouKcZ4pP","tlshash":"a3030c2db14bb46b8dc39c1534ce591a11796e36e051b4c0f7f2c868caf1ada171af4e","size":40115,"data":"","first_seen":"2026-02-13T06:21:38.343168Z","last_seen":"2026-06-07T21:35:15.761186Z","times_seen":49,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"console.nymaite.cn/assets/js/mt4.js?t=20221","fqdn":"console.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"146.56.206.145","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"e7a84f3838ffb696a13b25cbce1097ca","sha1":"4e51dd57574070e6d796d4d452774ad53dc55386","sha256":"47f4f41faf980b1a7406ed6578be312f8e96394f49dbba1449f0db1c081bf61d","sha512":"cf67527e2df5ee28f20d6d0e7a04674c62f5c77d27648aa12dc0e6dad3d469541feee07e4d26b573aae602097a2425f74a2b808286f8247608476f5032e0d1d4","ssdeep":"48:fHN4fUVJYIArGLr7BXgsBwyAn8DBwp3zZfyxxEbMhOrJmQ/Nu3zQjlLcwZz:1ckrrVBwyAnOszFaeMhcn6zQjlzZ","tlshash":"bbb188cd30f6647197a7f1aa25c5430356f23499abd5f364b08ca50b07d4ca4b13b9af","size":5365,"data":"","first_seen":"2024-12-15T08:42:20.713612Z","last_seen":"2026-06-07T21:35:15.75446Z","times_seen":52,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"3d5272693eb411e5b8b13a243f76c720","sha1":"6a586ab8e0a4bf12bbc60eea6ca9f2418625a22c","sha256":"9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8","sha512":"03fc5614f48fc9a2e3c4a30626fdbacde74c1fda09ffa9d1cde0393d31cd5fe1588e270c241f4cedb473c6e5cc224ff16c141468a29519ea6159accf3e3a18f1","ssdeep":"","tlshash":"a4c08c8350e2080c8210861b848880050b8808b04f9308a22cd85b7ecc9ae88c8f804c","size":148,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-06-07T08:18:02.151537Z","times_seen":15899,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/js/chunk-vendors.9141e4b8.js","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:57.407Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/js/chunk-vendors.9141e4b8.js HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\nvary: Accept-Encoding\r\netag: \"65f9286c-c88a7\"\r\nexpires: Sat, 14 Feb 2026 10:41:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5S9BqG9GtuPh2%2BfoKqacnWAIbF1w%2F0BfWqukw8vjz0EFNx6kwDui59tF53KYSkq0ylR9K%2BDCdIAR0Xt%2FNy%2BPn1GLYhbaRXrAzBOHnOnAYQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d60dcd88481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":821415,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (44298), with NEL line terminators","md5":"4b665a6f25a7ea4a1ac25fcfdad192d9","sha1":"8a7e0a81412deaece1b9d1635fea07b2961fa57e","sha256":"62fc623ca1962802af5940a8f502af81de42ea92b0447f99053e1ae416a40283","sha512":"f8e15460ed3a3d5173b5cbe8885f3469d02e2e2ce4ca2c1bc28fc84370e25016f6302d52d4838260497fd646c4a255dbf657f7f86064b76d059f016cc7bf7f2d","ssdeep":"6144:AYDEsjKaV7N0vHTASzZTRWNob/AEvmfr11hpTo57umJDXvzL4HPCHoWB3F:y47N0vHUSzZTRWNB+imOJu3F","tlshash":"ae05078df286b0b507e770b5403f220bb2376999b40a84d4f275e4d4ad7894e622bf7d","first_seen":"2026-02-13T22:42:21.040827Z","last_seen":"2026-02-13T22:42:21.040827Z","times_seen":1,"resource_available":false,"data":null}},"time_used":417,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":382,"receive":35,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/addons/dramas/index/init?platform=H5","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.186Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /addons/dramas/index/init?platform=H5 HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nToken: \r\nSign: \r\nLang: \r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AfVLvK1wT0VtoJuQ65xiXLsI75YZs0Au6SpYXr%2BJunl%2Fw9SG0lfAsqJazacR%2Blnr1%2BBxj1Sm6F7zSpl8ArIB%2BCm7ZLAA0tq8MC03bcXtXQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d612ae27481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1455,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"369ba00920f4b58865ede672b3da2c93","sha1":"7802dbe07ef7d47e57992828c482d978676b1e20","sha256":"c351e9d1083fede4f23da3efa966b0bca640f5f1d2532e90d8c5a92d383bb246","sha512":"e068783380d91495fa57661ee1d8f6d3b4f6d9f96beed51eb55aca4f6eb4e88321d510591b02235afc18510f3ddf7b11a57076b2bdb7c085bb542a90247b24e3","ssdeep":"","tlshash":"1631747fb114cd9f025057cc508a399cc7ae1a23dddc9a698a44dd5844ec1ea27336b3","first_seen":"2026-02-13T22:42:21.042102Z","last_seen":"2026-02-13T22:42:21.042102Z","times_seen":1,"resource_available":false,"data":null}},"time_used":162,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":162,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shortbox.cc/assets/js/mt4.js","fqdn":"shortbox.cc","domain":"shortbox.cc","tld":"cc"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.322Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shortbox.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 11 Jan 2026 05:01:11 GMT","end":"Sat, 11 Apr 2026 05:59:32 GMT"},"fingerprint":{"sha1":"61:72:5F:C9:D5:3C:A5:3A:9D:46:23:DA:37:03:F0:1D:87:36:67:EF","sha256":"77:8C:13:FF:79:AC:1B:28:3D:AD:8D:9E:92:82:3E:E8:54:E0:6B:94:CE:34:0B:3F:6A:18:14:AE:09:85:42:17"}}},"request":{"raw":"GET /assets/js/mt4.js HTTP/1.1\r\nHost: shortbox.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Tue, 30 Dec 2025 06:58:37 GMT\r\nvary: Accept-Encoding\r\netag: \"6953781d-f5f\"\r\nexpires: Sat, 14 Feb 2026 07:29:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 11519\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JoypZsSBhB%2Bj%2F5QZUjevTIZYQZKg98EnoK%2FEbXlzPehqK4wARG%2F1bIUWaMY6gVfl8HMr6cuIjSL9MG0d7zuP%2BmeppOWZ24i68w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d6138f4682c4-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3935,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"bc4c7b254531d15327af19df14b19199","sha1":"dbdd37067f44ee88c08691b0a6e4eaea2a18be84","sha256":"339c8ae9bb8706fa851b2df3f109e7bb7d9c067c0c74b2117ed07a5ab179e387","sha512":"4da5fed1d7e794219dbe8f7911c2e77a6177f3a91d78c3f219bc6df91411d2fa21252e280e9198674b0b546b3679c2a789e00606d4ce53dcae04eb9eb97dcdef","ssdeep":"","tlshash":"5c81f48d30fa1021885760fe1f8b71247425d01b6a5adf117e0e82499fd5739e3a7bde","first_seen":"2026-02-13T06:21:38.345895Z","last_seen":"2026-02-17T11:32:45.034531Z","times_seen":47,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E5%8F%8C%E4%B8%96%E8%90%8C%E5%A6%832992/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.006Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E5%8F%8C%E4%B8%96%E8%90%8C%E5%A6%832992/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:42:00 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":1965,"timings":{"blocked":764,"dns":283,"connect":229,"send":0,"wait":436,"receive":0,"ssl":245},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"console.nymaite.cn/assets/js/mt4.js?t=10112","fqdn":"console.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"146.56.206.145","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.086Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /assets/js/mt4.js?t=10112 HTTP/1.1\r\nHost: console.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 02 Jan 2024 09:29:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6593d790-14f5\"\r\nset-cookie: server_name_session=48d390272009a6f0f71d5de6ebbb4c4b; Max-Age=86400; httponly; path=/\r\nexpires: Sat, 14 Feb 2026 10:41:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5365,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5365), with no line terminators","md5":"e7a84f3838ffb696a13b25cbce1097ca","sha1":"4e51dd57574070e6d796d4d452774ad53dc55386","sha256":"47f4f41faf980b1a7406ed6578be312f8e96394f49dbba1449f0db1c081bf61d","sha512":"cf67527e2df5ee28f20d6d0e7a04674c62f5c77d27648aa12dc0e6dad3d469541feee07e4d26b573aae602097a2425f74a2b808286f8247608476f5032e0d1d4","ssdeep":"48:fHN4fUVJYIArGLr7BXgsBwyAn8DBwp3zZfyxxEbMhOrJmQ/Nu3zQjlLcwZz:1ckrrVBwyAnOszFaeMhcn6zQjlzZ","tlshash":"bbb188cd30f6647197a7f1aa25c5430356f23499abd5f364b08ca50b07d4ca4b13b9af","first_seen":"2024-12-15T08:42:20.713612Z","last_seen":"2026-06-07T21:35:15.75446Z","times_seen":52,"resource_available":true,"data":null}},"time_used":2466,"timings":{"blocked":1087,"dns":399,"connect":291,"send":0,"wait":291,"receive":0,"ssl":393},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"console.nymaite.cn/assets/js/mt4.js?t=20221","fqdn":"console.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"146.56.206.145","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.120Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /assets/js/mt4.js?t=20221 HTTP/1.1\r\nHost: console.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 02 Jan 2024 09:29:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6593d790-14f5\"\r\nset-cookie: server_name_session=48d390272009a6f0f71d5de6ebbb4c4b; Max-Age=86400; httponly; path=/\r\nexpires: Sat, 14 Feb 2026 10:41:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5365,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5365), with no line terminators","md5":"e7a84f3838ffb696a13b25cbce1097ca","sha1":"4e51dd57574070e6d796d4d452774ad53dc55386","sha256":"47f4f41faf980b1a7406ed6578be312f8e96394f49dbba1449f0db1c081bf61d","sha512":"cf67527e2df5ee28f20d6d0e7a04674c62f5c77d27648aa12dc0e6dad3d469541feee07e4d26b573aae602097a2425f74a2b808286f8247608476f5032e0d1d4","ssdeep":"48:fHN4fUVJYIArGLr7BXgsBwyAn8DBwp3zZfyxxEbMhOrJmQ/Nu3zQjlLcwZz:1ckrrVBwyAnOszFaeMhcn6zQjlzZ","tlshash":"bbb188cd30f6647197a7f1aa25c5430356f23499abd5f364b08ca50b07d4ca4b13b9af","first_seen":"2024-12-15T08:42:20.713612Z","last_seen":"2026-06-07T21:35:15.75446Z","times_seen":52,"resource_available":true,"data":null}},"time_used":2454,"timings":{"blocked":1080,"dns":368,"connect":287,"send":0,"wait":291,"receive":0,"ssl":425},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/addons/dramas/block/index","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.816Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /addons/dramas/block/index HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nToken: \r\nSign: \r\nLang: zh-tw\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nCookie: think_var=zh-tw\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lfZwLVSStO418hOXL7fk9ZASxZXndvJSR%2F5NsPUoDbJjSnov%2FnRheFq0obpFh40DpjEk2UjwMlNjCbGqMCdvDVm4FuCovMBpA9ihQvPuww%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d6169e60481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":416,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"9309d12f69da65226cc0c228ed40e5b4","sha1":"43114d9bb868ca82b6b37851e7eab046f6f83fba","sha256":"721ae73dce530a94e38f5060882edd8a8deab4421b79f53e6a8711149402dd02","sha512":"69f59fdbdd17c0682afc29876b2693e89174cc9a8c4b2d2858a78c2de1b4fb1855b906cd1587af3e18bcae5eee0bf5122f01d8c7d31a27db3d91c68003f75b92","ssdeep":"","tlshash":"d0e02bd00f2c5c5b5ac2b3f49897708852ed12c214c45738790aec6084ed1c587c52f3","first_seen":"2026-02-13T22:42:21.045478Z","last_seen":"2026-02-13T22:42:21.045478Z","times_seen":1,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":159,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"console.nymaite.cn/api/index/notify","fqdn":"console.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"146.56.206.145","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.852Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"POST /api/index/notify HTTP/1.1\r\nHost: console.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 42\r\nOrigin: https://casinogiris.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":42,"data":"{\"site\":\"casinogiris.vip\",\"type\":\"dramas\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://casinogiris.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: server_name_session=48d390272009a6f0f71d5de6ebbb4c4b; Max-Age=86400; httponly; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":63,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"fbe55abea2656b80a8e0869b9b5f4733","sha1":"42db4036b07748b7f4eadc3f616cd87280466a71","sha256":"1a44914cff99ade4ee1f124590170045cdab366ec7d12b0b0a98b715d85f4c1b","sha512":"243f253127ea6f52d72bde71fea63aad3f8af108330c6da0b070a2effcbfbfe03fce67f89aff6a294cc1d58a9540820bc954396f170a6d9af1fc0086f4de1106","ssdeep":"","tlshash":"f6a002546519682608366aa84589958b021d95430895cf18094bbf6888cf674b67b676","first_seen":"2026-02-13T22:42:21.047426Z","last_seen":"2026-02-13T22:42:21.047426Z","times_seen":1,"resource_available":false,"data":null}},"time_used":302,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":302,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/favicon.png","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:42:00.238Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/favicon.png HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nCookie: think_var=zh-tw\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:42:00 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65f9286c-2a6c7\"\r\nexpires: Sun, 15 Mar 2026 09:39:50 GMT\r\ncache-control: max-age=2592000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, token, platform\r\ncontent-encoding: gzip\r\nage: 46929\r\npriority: u=6,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xv6cM6brjYeoutcCrrnt80yUclqXYlcInqIBBFnrA0%2FRE5q6DyRs%2FzEUN5eL5bqMkTZPLj5lryoGFYa%2FGmR0Btshuf2VNrBKuBoOEldbwg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d61f7ee5481e-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":173767,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 797 x 797, 8-bit/color RGBA, non-interlaced","md5":"3722a5abfe39e847b19beb1d1a41164d","sha1":"c51eeb17b191dcf1663564ab310ea5c29781a912","sha256":"b455a00cdfbe81e1a37a48e0b1d5433bcc29f8d63d91777dd8e7482a2e8ec312","sha512":"9c726c3672791bc6ed5ffc5fce34859dbf70488a22cb77e6f335654bda101eae99c221bf16eeb8b8c1355d44d0c509007cb62350c026cfd78139612ba0a32b9f","ssdeep":"3072:DirwKSPpTO9tOrXVYsTGNcpSN3znbrk4qXvz4XzcoMaKKPDgcs9Ken4URwj/:D7tKLCVrFSpXk5XvHoMaP7A+Ug","tlshash":"4004128762becca5df0f117d6a7f0e57944665b183fc2931e9c2714e7510e2e00b693a","first_seen":"2026-02-13T06:21:38.363259Z","last_seen":"2026-06-07T21:35:15.768237Z","times_seen":50,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E5%BE%A1%E5%AE%A0%E7%94%9C%E5%A6%BB2999/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.998Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E5%BE%A1%E5%AE%A0%E7%94%9C%E5%A6%BB2999/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:42:00 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":1977,"timings":{"blocked":768,"dns":290,"connect":229,"send":0,"wait":440,"receive":0,"ssl":242},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E5%A5%B3%E6%80%BB%E8%A3%81%E7%9A%84%E5%90%8C%E5%B1%85%E7%94%B7%E5%8F%8B2988/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.419Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E5%A5%B3%E6%80%BB%E8%A3%81%E7%9A%84%E5%90%8C%E5%B1%85%E7%94%B7%E5%8F%8B2988/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:42:00 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":787,"timings":{"blocked":340,"dns":0,"connect":0,"send":0,"wait":447,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/icons/hot.png","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.083Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/icons/hot.png HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nCookie: think_var=zh-tw\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: image/png\r\ncontent-length: 580\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\netag: \"65f9286c-244\"\r\nexpires: Sun, 15 Mar 2026 07:23:01 GMT\r\ncache-control: max-age=2592000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, token, platform\r\naccept-ranges: bytes\r\nage: 55137\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ONmz32S0rUe854%2Fmyga%2FacXQv9HvubMr4m0YZGCRHX0e8WcVXqpLZK9IpLN95J%2FrPcKfEAzHiOncfLjuWSVakaILTVlORzSFBFdVBt1s3g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9cd7d6184e7f481e-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":580,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced","md5":"3ea5faad5a6b6fb16c0670f5620a8591","sha1":"e0d318893c9122dc8850b3e9e4a76698c4c1962c","sha256":"0cb3acb84a0a56fa06aad389d72f5aef239b17b75cd368931a6000ae8c215a48","sha512":"049ccb5594717df954e0559b6f6e06a13aeb39a39198c1cf4f2b6183d8d3bdde48e957327ed0d15114d4f6df9eff18e588216a70dc31985600be7950ab6f15b5","ssdeep":"","tlshash":"2af00cc2961d12bc5f9886e5f6670af520764bf55d0cb80c36b19425ee92c862b270a9","first_seen":"2024-11-30T21:11:26.076359Z","last_seen":"2026-06-07T21:35:15.76735Z","times_seen":55,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E6%8A%A2%E4%B8%AA%E4%B9%9E%E4%B8%90%E5%81%9A%E5%A4%AB%E5%90%9B2990/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.111Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E6%8A%A2%E4%B8%AA%E4%B9%9E%E4%B8%90%E5%81%9A%E5%A4%AB%E5%90%9B2990/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":869,"timings":{"blocked":644,"dns":0,"connect":0,"send":0,"wait":225,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"console.nymaite.cn/api/index/notify","fqdn":"console.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"146.56.206.145","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.545Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"OPTIONS /api/index/notify HTTP/1.1\r\nHost: console.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://casinogiris.vip/\r\nOrigin: https://casinogiris.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://casinogiris.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: content-type\r\nset-cookie: server_name_session=48d390272009a6f0f71d5de6ebbb4c4b; Max-Age=86400; httponly; path=/\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":300,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":300,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E7%8E%8B%E7%89%8C%E5%AE%AB%E5%A5%B32996/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.074Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E7%8E%8B%E7%89%8C%E5%AE%AB%E5%A5%B32996/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":1585,"timings":{"blocked":679,"dns":214,"connect":224,"send":0,"wait":225,"receive":1,"ssl":237},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"console.nymaite.cn/api/index/notify","fqdn":"console.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"146.56.206.145","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.854Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"POST /api/index/notify HTTP/1.1\r\nHost: console.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 42\r\nOrigin: https://casinogiris.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":42,"data":"{\"site\":\"casinogiris.vip\",\"type\":\"dramas\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://casinogiris.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: server_name_session=48d390272009a6f0f71d5de6ebbb4c4b; Max-Age=86400; httponly; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":63,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"fbe55abea2656b80a8e0869b9b5f4733","sha1":"42db4036b07748b7f4eadc3f616cd87280466a71","sha256":"1a44914cff99ade4ee1f124590170045cdab366ec7d12b0b0a98b715d85f4c1b","sha512":"243f253127ea6f52d72bde71fea63aad3f8af108330c6da0b070a2effcbfbfe03fce67f89aff6a294cc1d58a9540820bc954396f170a6d9af1fc0086f4de1106","ssdeep":"","tlshash":"f6a002546519682608366aa84589958b021d95430895cf18094bbf6888cf674b67b676","first_seen":"2026-02-13T22:42:21.047426Z","last_seen":"2026-02-13T22:42:21.047426Z","times_seen":1,"resource_available":false,"data":null}},"time_used":300,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":300,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/index.2da1efab.css","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:57.405Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/index.2da1efab.css HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\nvary: Accept-Encoding\r\netag: \"65f9286c-178f9\"\r\nexpires: Sat, 14 Feb 2026 10:41:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=78nt7ur3M0sIRctOnSvMZNkurI7NQ4aPfBRX1X7f8TRraCZP%2BfZnMKZn2p%2BPFxd5r8u3ekJ1koU%2BOUPG9TKUXXg5NIcyQoQIRexy%2B98YNQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d60dcd87481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":96505,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"73ae6c583d02d78f81e3f18860a2899a","sha1":"07df9233fc11dddc34fbf519b891d40b2ac29c0f","sha256":"e97de9a247807f12d74101e9f736250b2410be4e1ed3d17ed875e4b08cf66c83","sha512":"da54ba9dbe06d8d763f3cfd64cf5babb54e761e3208c7a2f23e845290c48db8c115bb86c24262cd6c9a96ff2e51674c6d86439e1814baf2de7980f5c06349921","ssdeep":"1536:OlIApuK7hmVmb2RS1Wu3xdynGJ7eh/nKhlvbc:VApuK7hmVrS1Wu3iG41nKPI","tlshash":"1893f73719012e39e52bcd26b6c1ab5a1e61c033e15307adfba47628cbcf9c9167b345","first_seen":"2024-01-02T00:07:11Z","last_seen":"2026-06-07T21:35:15.75173Z","times_seen":5979,"resource_available":false,"data":null}},"time_used":389,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":371,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/addons/dramas/index/lang_list","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.544Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /addons/dramas/index/lang_list HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nToken: \r\nSign: \r\nLang: zh-tw\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DQgmK7Ql%2BBVj5dFCMAd%2BCZ6XDd7PsCMP3sdR6bzGNr7Io5xXq6lxJDHIYT04qFBPaCplkvaLk0w%2FN4WD3nuqjKepBEiaAHgS2W%2BZuhoSRg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d614ee40481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":434,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"2abcb6932a6d92988d7800bf0b010a23","sha1":"a650b0d84d51d0c56ad0f9b408e76d2db7051556","sha256":"b8fbce4e8a229ef364d58d24aced1c79c9610b832a336dfb1b713f41422e01be","sha512":"302f298aac890e99b3352240ebbc42312d696e5b48c365618113e69d5ca90ab736c329b8812985bdf7f0f52b0c2737d0fb76f5dbfe01f4695f1b775d4bce4873","ssdeep":"","tlshash":"6de0e5a0d7a558bac0236031590ade19257d5001bbcce9bc5fbe9f898d083e0820fcf2","first_seen":"2026-02-13T22:42:21.05098Z","last_seen":"2026-02-13T22:42:21.05098Z","times_seen":1,"resource_available":false,"data":null}},"time_used":160,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":160,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E5%8F%8C%E4%B8%96%E8%90%8C%E5%A6%8322993/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.407Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E5%8F%8C%E4%B8%96%E8%90%8C%E5%A6%8322993/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":795,"timings":{"blocked":349,"dns":0,"connect":0,"send":0,"wait":446,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E5%AB%A1%E5%A5%B3%E6%9C%AA%E5%A4%AE2984/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.410Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E5%AB%A1%E5%A5%B3%E6%9C%AA%E5%A4%AE2984/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":794,"timings":{"blocked":345,"dns":0,"connect":0,"send":0,"wait":446,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-13T22:41:56.514Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Fri, 13 Feb 2026 22:41:56 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nlocation: /h5/\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kYWga2RwK3vvYSY6hMPLfSBanHLWsW3KwoW13Jr3daNGG27ahH67jk9cMZuOvDV3tbjZNGG%2BmUgJs9mapKKo4l%2B%2FAqzQu5d4RQWh93irmw%3D%3D\"}]}\r\ncf-ray: 9cd7d608df52370a-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":808,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":591,"timings":{"blocked":97,"dns":67,"connect":8,"send":0,"wait":393,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E7%89%B9%E5%B7%A5%E7%8E%8B%E5%A6%832994/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.098Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E7%89%B9%E5%B7%A5%E7%8E%8B%E5%A6%832994/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:42:00 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":1795,"timings":{"blocked":679,"dns":196,"connect":239,"send":0,"wait":430,"receive":0,"ssl":248},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E6%9E%AD%E5%AE%A03003/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.421Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E6%9E%AD%E5%AE%A03003/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:42:00 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":784,"timings":{"blocked":339,"dns":0,"connect":0,"send":0,"wait":445,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/js/pages-home-index~pages-home-update~pages-home-user~pages-login-login~pages-login-register~pages-user~6ea07087.f6a1a659.js","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.137Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/js/pages-home-index~pages-home-update~pages-home-user~pages-login-login~pages-login-register~pages-user~6ea07087.f6a1a659.js HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\nvary: Accept-Encoding\r\netag: \"65f9286c-2d6a\"\r\nexpires: Sat, 14 Feb 2026 10:41:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hCS1FXSEL3llxNAf8SnWNUkZqKYi5yw6sEZpWFxOEKJhV1rJ27wct8OB9MJ%2BdZ%2FkNmNle4lJPjlNHnTLDWXR1CXErAEKXMVS0O6US1Q%2F2g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d6125e22481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11626,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10638), with no line terminators","md5":"f968f5ebabe97723b9a6b6abe65bbb99","sha1":"5e941745f7d67e38e267eb5302c01a97d5295114","sha256":"f75aa7d182f255e03520a42940582af9e1ed13ef41ca40a1838bad49109dabc9","sha512":"d71c6399491b9f704b5efc755d36e74018104a8e4224158ea57332f7ce1f6cca3f151d65982fbda89e25b653ca96032bea2aa8f6d8d02377b099e4a93b77937d","ssdeep":"192:twpIxPYPPXbzcvXqk0bevv9fgl4LIEUP46psIFoRsP6g383d5FoRsr:taIx6zQ0bkBnMEUw6pszpdsO","tlshash":"7732fa5df28eb4640ad7c050c91b814971673e1ce435a691ebe8c3fb86e1bce0657f18","first_seen":"2026-02-13T06:21:38.347144Z","last_seen":"2026-06-07T21:35:15.76985Z","times_seen":49,"resource_available":true,"data":null}},"time_used":364,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":364,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/icons/rank.png","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.629Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/icons/rank.png HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nCookie: think_var=zh-tw\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: image/png\r\ncontent-length: 761\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\netag: \"65f9286c-2f9\"\r\nexpires: Sun, 15 Mar 2026 07:22:59 GMT\r\ncache-control: max-age=2592000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, token, platform\r\naccept-ranges: bytes\r\nage: 55139\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=74TnpjwZ%2B0XRfCkB9Fr%2F1RGzoOTuXXM9ORqAKExOsKWKxaFmkef4zLNN2iQDl8som9N4UOaK%2B3DbVG%2Fow%2B0HzyRMzpB2ljrei%2FdyE9QQbg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9cd7d6156e47481e-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":761,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 24 x 44, 8-bit/color RGBA, non-interlaced","md5":"feba139cbd5d8dcab4665ab0612895b3","sha1":"4a3cae6d5ef30c5a149a8b738c8bdfee14af97ff","sha256":"295d784b083cf8d9d94aaf8667a0c3443c8ee49a402e8b765d95760c10a00f2d","sha512":"e46e2dfa026eeba31568785ddedf049f9ca55cb4580e53e64dff8f3baf62036f38de62f4ab4de7d496208308801a0a4b43bd250fe98d8e200a8d3efba46f85bc","ssdeep":"","tlshash":"7801754a8b8868148b46c2214f0fdc9e7450fd1b216c218695759501e47a2773944022","first_seen":"2024-11-30T21:11:26.074524Z","last_seen":"2026-06-07T21:35:15.763341Z","times_seen":50,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/tabbar/user_2_d.png","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.635Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/tabbar/user_2_d.png HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nCookie: think_var=zh-tw\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65f9286c-498\"\r\nexpires: Sun, 15 Mar 2026 07:22:59 GMT\r\ncache-control: max-age=2592000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, token, platform\r\ncontent-encoding: gzip\r\nage: 55139\r\npriority: u=4,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gT2YIm%2FQVBMdSYYJue%2FZPOJ0K3RJzrz4gapfi0n1iTCF%2FApr6VKntBVWtZ%2B8UKqISwifx%2B2cvvud8z0Y8AOXdxGq7Wje%2BuwKPHlH7jIMxA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d6157e4b481e-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1176,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"e8b8713f472b380040be70a6ebd217c5","sha1":"cc00437113704ba1f2a2d9c6b0e5c1d21becc9c9","sha256":"1f5af3682915e93fb942047276bf783faf9c9f437257c6fa575884b24e5a91a8","sha512":"a8327f67718de7548d8e659a1c6edc30d9b1478800f051ce6b413565d84a74c337b51996bb427c145213cdaca7dfd86e1775ab4010f509052e3b090138c0d60f","ssdeep":"","tlshash":"74210d6e77e75a24126f31ff0a516464edb513a4305cd5098c4ffc10eb0cc930c8d229","first_seen":"2025-11-11T16:01:27.544183Z","last_seen":"2026-06-07T21:35:15.753115Z","times_seen":53,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/icons/new.png","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.004Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/icons/new.png HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nCookie: think_var=zh-tw\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65f9286c-766\"\r\nexpires: Sun, 15 Mar 2026 07:22:59 GMT\r\ncache-control: max-age=2592000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, token, platform\r\ncontent-encoding: gzip\r\nage: 55139\r\npriority: u=4,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=H1EOwEJKHjDeza0NWdfBKKOVPJE7QMQfZKPPNd2C4Dm8JkFw1YD2Qsu%2BQjGsZm0Dec7md0j3PAUntdF98VO35BNQOZSO%2BGQfeY0jvnndYQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d617ce7a481e-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1894,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 90 x 38, 8-bit/color RGBA, non-interlaced","md5":"cbe85e96f04cff3f137614f0f97f3698","sha1":"eae4f014fce9d20525ffd69b3451b1b152516628","sha256":"6aa32357ddb383df184a87bbae39a4a506bf515f0183ec54eec8c7a81676f382","sha512":"9f49615c36d1f41f6fdafd7f56939af7ac98215d334bcc2a3e4e661ae807af94d820f4ecbe4b6760a6b9342ffefaeb2eeff5823c84d2858978bd4eeca6bc6e71","ssdeep":"","tlshash":"894119a811a5102bf1e1da32f4c941c9ba337d2b0370b341fe454b0b152f986ae6e11f","first_seen":"2025-11-11T16:01:27.554234Z","last_seen":"2026-06-07T21:35:15.750161Z","times_seen":54,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/js/pages-home-index~pages-user-share-withdraw.23d61766.js","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.139Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/js/pages-home-index~pages-user-share-withdraw.23d61766.js HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\nvary: Accept-Encoding\r\netag: \"65f9286c-3121\"\r\nexpires: Sat, 14 Feb 2026 10:41:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SrSqxEQBuUTqmrfvJ5NK5UF35ks545gOST0VAxZzFWYU895GfRbwFtf9q49xrcKh2PAtD7HTc8F%2BuxMUKeZ6WO8hF6D%2FMXRclq22g96%2B1g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d6125e23481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12577,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (11589), with no line terminators","md5":"7e66177696f3b8d8babe77eee46ef564","sha1":"3be69793038e4477e3751d6846d1bb02c1b3c314","sha256":"1e02b8ebaee2108df885ec75bd321adddb207b992899e15f977f002b66083f95","sha512":"7d27b6de82c5cec1a1cd8a841e968d18fd7ad31f35a255d4da4c36db3c714a67ffc5ef09e0f48515fcbc599f22cfb7e123f8618bf6f3a9056ce90716f4b4c93b","ssdeep":"192:19zLPlqIdoRsAhBpDT98dM21g0wSrew/0F+Mg98D7hH5oRs669qz:PlqBzwgZi/LqDQC9qz","tlshash":"4342b55fb1def42348e36454146b220a32662d5c84193190dff2d7ee8baaa4f07a7f5c","first_seen":"2026-02-13T06:21:38.357189Z","last_seen":"2026-06-07T21:35:15.747738Z","times_seen":49,"resource_available":true,"data":null}},"time_used":362,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":362,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/addons/dramas/video/index?type=top","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /addons/dramas/video/index?type=top HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nToken: \r\nSign: \r\nLang: zh-tw\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nCookie: think_var=zh-tw\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ufjmEp32zLx9NeZJJh5jHwfiR%2Bfa%2Bhq%2BFZ7Lq%2FsKz87yxhnabBVXuzhb77XaGGbp8DnJp890SmGJuLwS6rEKxKRRnGJ6PNDiQu%2FP1%2FRP8A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d616ae61481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6286,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"684051c7bd5f97d2435d3196f1f292f9","sha1":"c681d1965dbe3e83b8e938744d20d4c522aea625","sha256":"ea73082f1be9cb34592c9797f598b8c6a622b50d4a81f6120a1371518a9a2c95","sha512":"eab52b4a3185dd41e7d271fd9cda5c14fffee17168e694f7c0ba0a4b8473dfe8880a93a1fddf9c68bdca3045ff698f01a27b00ec52458e09771bdd563a6cbb04","ssdeep":"96:O2xjy22xjzIycXVANgGAfaik1yKkbzbnFy8Q6m4Yp+okN40VkNp6YHPAQVHU8gQP:O2Z26dONNlCS6mN4ooVtYrbMk9","tlshash":"afd14284ef7e6c26530317f96e57b44659fc62941a844bb59ebedc3c11a0caed3c0067","first_seen":"2026-02-13T22:42:21.06444Z","last_seen":"2026-02-13T22:42:21.06444Z","times_seen":1,"resource_available":false,"data":null}},"time_used":160,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":160,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E9%81%87%E8%A7%81%E7%89%B9%E5%88%AB%E7%9A%84%E4%BD%A03000/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E9%81%87%E8%A7%81%E7%89%B9%E5%88%AB%E7%9A%84%E4%BD%A03000/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:42:00 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":1791,"timings":{"blocked":672,"dns":199,"connect":229,"send":0,"wait":440,"receive":0,"ssl":239},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E4%B8%91%E5%A5%B3%E6%B4%9B%E6%97%A0%E5%BF%A72982/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.107Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E4%B8%91%E5%A5%B3%E6%B4%9B%E6%97%A0%E5%BF%A72982/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":873,"timings":{"blocked":648,"dns":0,"connect":0,"send":0,"wait":225,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"console.nymaite.cn/api/index/notify","fqdn":"console.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"146.56.206.145","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.550Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"OPTIONS /api/index/notify HTTP/1.1\r\nHost: console.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://casinogiris.vip/\r\nOrigin: https://casinogiris.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://casinogiris.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: content-type\r\nset-cookie: server_name_session=48d390272009a6f0f71d5de6ebbb4c4b; Max-Age=86400; httponly; path=/\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":296,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":296,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/addons/dramas/index/notification","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.539Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /addons/dramas/index/notification HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nToken: \r\nSign: \r\nLang: zh-tw\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UowbDk%2FvMJYkq57jthgpHOY6PsIk0gIVPdq25ZQABZvYGjmeubsJUG4N5YQ%2BeHv0%2F2394Id%2BCS0r9gtwt9fNZieL0cZCHy8a63QMRtQ4Hg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d614ee3f481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":49,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"c33bebad678a51e181304c8f29a88f4f","sha1":"18dabada1ef1662c365267fc94984a3f0fe31091","sha256":"eebb46f59bd3d26afcb3a622c7e447573a1ec918c098b003554663f460ff47ea","sha512":"08f38a7de24729d1ac314947774389c2538b33a8c8a7ec1f0a259954a9a195a205b5ff7fbbc51a1449a30a71594ab57cc8ce98cdcf981efd49f8f1288e264cbd","ssdeep":"","tlshash":"e290025425096816142650bc910cd1d701585052049a4768494bad24814c1941605932","first_seen":"2026-02-13T22:42:21.067307Z","last_seen":"2026-02-13T22:42:21.067307Z","times_seen":1,"resource_available":false,"data":null}},"time_used":171,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":171,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/tabbar/home_2_s.png","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.631Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/tabbar/home_2_s.png HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nCookie: think_var=zh-tw\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65f9286c-52e\"\r\nexpires: Sun, 15 Mar 2026 07:22:59 GMT\r\ncache-control: max-age=2592000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, token, platform\r\ncontent-encoding: gzip\r\nage: 55139\r\npriority: u=4,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NfrE9YGLkYSrsFgbHNgJwLJHzrGF1sIRsWoa5cFqqQWfy0U9c%2BLVofcH1d9hAtHaI2ESR24uOFWI6UeIRk33CI8x%2BJTXR3kkGB7dEL%2BQVA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d6157e48481e-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1326,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"86235a0d3058f1114bcaa5280b96db1f","sha1":"10c09a543d0c144fce9166302754e94a69e5d768","sha256":"b2a2613ef0394f0ac8a61b6ea31a2124c6107009f4493c3300fe8ac7260f71e6","sha512":"5edef86e91ac1a486c03b7112a2c8fe80748a9db5456af3e7c11b86605930ddf3e7b7fb22dac2647077587b535da0660234d1046f6bd91984db8b66a96aca4e0","ssdeep":"","tlshash":"6021c8cd2c315cdb51c6da6ba8a58ccead7cd22914208ff841a7067cf687629a0585ef","first_seen":"2025-11-11T16:01:27.540092Z","last_seen":"2026-06-07T21:35:15.758832Z","times_seen":53,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E7%BB%9D%E4%B8%96%E5%B0%8F%E7%8B%82%E5%A6%832985/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.103Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E7%BB%9D%E4%B8%96%E5%B0%8F%E7%8B%82%E5%A6%832985/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":876,"timings":{"blocked":651,"dns":0,"connect":0,"send":0,"wait":225,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E5%A5%91%E7%BA%A6%E5%9C%A3%E5%A5%B32989/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.423Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E5%A5%91%E7%BA%A6%E5%9C%A3%E5%A5%B32989/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:42:00 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":784,"timings":{"blocked":338,"dns":0,"connect":0,"send":0,"wait":446,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/addons/dramas/index/lang_data?lang=zh-tw","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.384Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /addons/dramas/index/lang_data?lang=zh-tw HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nToken: \r\nSign: \r\nLang: zh-tw\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nset-cookie: think_var=zh-tw; path=/\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nlEiVs2LtH6Bo5Zs1Jq5gi2lQcXwykQqS2Er6ZBSZLrJCrWA1Q3qxgo5%2FeY1Hti9wb%2BJVDwvzJukBP4N3HskAnmQL1tJsv1%2FBPjEiD9kxg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d613ee31481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":28088,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (20127), with no line terminators","md5":"43fb32b5d24221383a021dec25b1ee95","sha1":"63fc9d779ac1c0f503cd60703e393c9ad383487d","sha256":"f753eda0332946b08606f4d2b41734823b694f76029f910a43865bcfea674b0a","sha512":"77d77fa816e35fb8a99be2c03e07f58893554cbad2bba0bf84c5c8762f8525e0c8a2edf3a64a36da78b02555e6ae2d9b32b6fcb454776fe8bebf3bec479ef18c","ssdeep":"384:HTTcv9q/+TRqCsHBGKQuGwOSIcItCNgi/XpWlUl3tS88+BjRaVUDJ/Ku9omlq+:Hcv9q2TRqCWCjwOS2g54lUl3t2uFDYZ+","tlshash":"6cc22989455e9ebb4fc010c6b00e0d8375e912e592e6c95fa8bdbf4c5e5c917a2fba00","first_seen":"2026-02-13T22:42:21.070151Z","last_seen":"2026-02-13T22:42:21.070151Z","times_seen":1,"resource_available":false,"data":null}},"time_used":164,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":164,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/addons/dramas/video/home","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.823Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /addons/dramas/video/home HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nToken: \r\nSign: \r\nLang: zh-tw\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nCookie: think_var=zh-tw\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JYwO9ar4%2B1ANrbMIVGhko%2F%2F7EonTJTTgHshRUxJA%2FVnoxQcB6K%2FqDaCSzXmX5ePeju2Uy%2FPaYBp73QQ4AhG5EAbjtKozk5mVw%2B%2Bh8WOSVA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d616ae62481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":16727,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"6000f51a4e2d8c965b716d00d6b4513f","sha1":"c7b6e392ce86eed7119e06d533925f1e33d6d964","sha256":"08ebf149794631392a5ad5da52801288be38a1304c4e48cd2ec8215a10b0bfee","sha512":"3132f68a3e3f959c43dd1114ac2ce78f3b37d29f39f0ab3de536ccffcf59b38efe1e48ccb9aa92d3d5cb75648f7c42090a3752580b321bdb73d4f674f32e2b8d","ssdeep":"96:kcXxJI3kN4gFkN404HQUKvYwl2SYCzZ49DHPATarm+gGf+37fXEjHPATwk51zMn+:nq6oFwTeg2TL52kKo0wGoR2Pe","tlshash":"f67295d5cb7e0c2f170327f9adcb708a65fc619129dd9eb46e1bec28056449ec2c029b","first_seen":"2026-02-13T22:42:21.071402Z","last_seen":"2026-02-13T22:42:21.071402Z","times_seen":1,"resource_available":false,"data":null}},"time_used":168,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":168,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E6%9D%83%E5%AE%A0%E5%B0%8F%E7%8B%82%E5%A6%832991/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E6%9D%83%E5%AE%A0%E5%B0%8F%E7%8B%82%E5%A6%832991/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:42:00 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":1787,"timings":{"blocked":672,"dns":195,"connect":239,"send":0,"wait":434,"receive":0,"ssl":241},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/tabbar/watch_2_d.png","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.632Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/tabbar/watch_2_d.png HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nCookie: think_var=zh-tw\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: image/png\r\ncontent-length: 977\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\netag: \"65f9286c-3d1\"\r\nexpires: Sun, 15 Mar 2026 07:22:59 GMT\r\ncache-control: max-age=2592000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, token, platform\r\naccept-ranges: bytes\r\nage: 55139\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=924UEUMsRk%2BhLf0I9oH%2B5Xwso05Ng2xrLAFYN8SAzbwFdK3%2FhfYzMBpUNdS7P5bTIZtM8sBoT%2F0urltSVbMHb1jWlytye4HOLRee7Q3AMg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9cd7d6157e49481e-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":977,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"af3503f4338f17f74fdd0ac9694c799b","sha1":"a3e8402831d12cea58de5296e0a55749a8dc0b59","sha256":"061f29b13bf366b4beecd1ee940cb327567b280e63a97dc507680836bbff8baa","sha512":"b30aefa3be318bee8f787327483226e478baf92d3e2c0a8df0636e2e796a9419fe5243792cb9fde1e94b2f2ebf47b56be244c7792e1a594791a583658d5a2bdb","ssdeep":"","tlshash":"341198c77681ca5193cc70470d7d65055f1576d293908b5ece4d92b34d1b146cb8eaa3","first_seen":"2025-11-11T16:01:27.540922Z","last_seen":"2026-06-07T21:35:15.764513Z","times_seen":53,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E7%A9%BF%E8%B6%8A%E7%94%9F%E5%AD%98%E6%94%BB%E7%95%A52983/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.415Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E7%A9%BF%E8%B6%8A%E7%94%9F%E5%AD%98%E6%94%BB%E7%95%A52983/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:42:00 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":790,"timings":{"blocked":343,"dns":0,"connect":0,"send":0,"wait":447,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/tabbar/recommend_2_d.png","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.633Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/tabbar/recommend_2_d.png HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nCookie: think_var=zh-tw\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: image/png\r\ncontent-length: 953\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\netag: \"65f9286c-3b9\"\r\nexpires: Sun, 15 Mar 2026 07:22:59 GMT\r\ncache-control: max-age=2592000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, token, platform\r\naccept-ranges: bytes\r\nage: 55139\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=s6RJPF2Pc4ZLC%2B3UAterZUUWCqkzapixAkL0ToFOIqU8DVK%2Bfowtf1VIpeTzX2azLjibI%2BDERWuV5h5%2FdaWBWk3%2BkGOuVqYTNxcdFl%2FlzA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9cd7d6157e4a481e-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":953,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"4c16a60e57e4259ae6888845d9027b84","sha1":"2318a1247bf67a1b226d6b3dec57655ef21f8a56","sha256":"574445421bcc36f427e1b92b567f7e1ece227df4d3345a5d7589320750334ed5","sha512":"07e9336d2c984f6b28404950c040c1d94ade359c12d7ce167afaab0f9f24d0c160e00714789a1d0b41fc179b91012e4356f5fadb5948e0d734a99c3916bf0206","ssdeep":"","tlshash":"2a1194e087e41928e1a36c6a68280e21e9fd20002271421ceb88a1909daf42290dc8a8","first_seen":"2025-11-11T16:01:27.568075Z","last_seen":"2026-06-07T21:35:15.757103Z","times_seen":53,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/js/index.83fb5993.js","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:57.408Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/js/index.83fb5993.js HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 10:24:10 GMT\r\nvary: Accept-Encoding\r\netag: \"6953a84a-52872\"\r\nexpires: Sat, 14 Feb 2026 10:41:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VaIbZBEUPPKi8gpf62u3zhjpb4SuB4HnQRuxnGh7XqkQ3HNUMNAYhE84emGWi%2FfHakrTy8YBLax%2FcfkjqcHRnhXSSuvddYoSMovDetP5qQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d60dcd89481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":338034,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (63484), with no line terminators","md5":"0c8def300add4b18aa20d44f9c6df77f","sha1":"5a6b41e61fd6de05f0a03b184a0b0a6b5ecdd8ee","sha256":"3111a8790ef81f73f8a785224e02d5c454e15e2b14b8dbaa6959db11921988a9","sha512":"9797724be7cb833ea1ed9a1d15c795ee22e176b6fe95bb040f70cf09382df8911892ae189150968c3d01ff34bbae197934e52205c48b54ba78e403a0733051b2","ssdeep":"6144:t8OYsWZlM2bJAAih854mWy3oWoqIVnqWcusFNYUml+P4BO4KaaG:t8OYfZlM2bGAB54mVoFRYWcuISUml+PQ","tlshash":"dd747db93199fdef0ad32494041fa2017d6e3d27445af881fbf5cac59e1eb491226f28","first_seen":"2026-02-13T06:21:38.36697Z","last_seen":"2026-06-07T21:35:15.752284Z","times_seen":49,"resource_available":true,"data":null}},"time_used":411,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":371,"receive":40,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/static/js/pages-home-index.56a9dab0.js","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/static/js/pages-home-index.56a9dab0.js HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\nvary: Accept-Encoding\r\netag: \"65f9286c-9e2f\"\r\nexpires: Sat, 14 Feb 2026 10:41:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2ctHwG9555J17Mv6a7XyhgQqKOccWMj9R4XvbHR5dyfHHOKVgH%2FC4WEyZHrIjcCx6tbZrobXLt%2F1OzC2EA2psizdiLVz3e9rE4N3JkDebQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d6125e24481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":40495,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (38325), with no line terminators","md5":"ddb308baab7c93e8e1ff4ec28b9da046","sha1":"d16c0468b237309901db65542daa0e78b1310e5d","sha256":"94eb2b215216984170378b31d008bd6bfa3ba7ef90d66c27ff9be9ebedc47f8f","sha512":"eefc6001da98e81607fee72bded98b3e23dd603692911855b9db861502a352520473d0b32ebe67c25373e24b9d71cc314e868becd2b9cae02551e8bcdd2a3216","ssdeep":"384:u7CQKu+5OAZ9ApJYdh8tFARjCPYhGDQPgEoSJKcZ+Vp4Owyb:uZKuE9AzYyqjCghjPzouKcZ4pP","tlshash":"a3030c2db14bb46b8dc39c1534ce591a11796e36e051b4c0f7f2c868caf1ada171af4e","first_seen":"2026-02-13T06:21:38.343168Z","last_seen":"2026-06-07T21:35:15.761186Z","times_seen":49,"resource_available":true,"data":null}},"time_used":367,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":366,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E7%97%85%E5%A8%87%E6%91%84%E6%94%BF%E7%8E%8B2979/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.110Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E7%97%85%E5%A8%87%E6%91%84%E6%94%BF%E7%8E%8B2979/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":870,"timings":{"blocked":645,"dns":0,"connect":0,"send":0,"wait":225,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/h5/","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-13T22:41:57.012Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /h5/ HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 13 Feb 2026 22:41:57 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Tue, 19 Mar 2024 05:53:48 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QlErZ5kNMgyhjS1n078C0lrCsjYn4lsflalX%2FTCdkJI%2Bt%2FJCPmOKN11SI6MZY49q6IGt3ipJVaqbMs%2FLsEKIATVwFxzcTUgj%2B%2FJafkTnog%3D%3D\"}]}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9cd7d60b5c92370a-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":808,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (533), with CRLF line terminators","md5":"e5ccd5a78cff367d840d7a873b5d0b01","sha1":"35fb76410e61885e77d5e9ff08fcfae06adff876","sha256":"072dead3f0d8473c86ddf10307b71233dedc1b421b9322674657c9c4a903e897","sha512":"ab0631c88b5be4211cee3e7046f9496afeceeeb5a3768bd5093999236f4f05fab31965b9e8d4f5cc15d49b50fa7f147c60dc2c8801dfd8bf1ae83ee4b7964bd8","ssdeep":"","tlshash":"360112c31c20e40d0b108642317ad12e896b49f4ae50c9505cc46aec89e0b8ece2e804","first_seen":"2026-02-13T06:21:38.355181Z","last_seen":"2026-06-07T21:35:15.759784Z","times_seen":49,"resource_available":true,"data":null}},"time_used":128,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":128,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mp4.nymaite.cn/s/%E5%AE%A0%E5%A6%83%E8%A6%81%E7%BF%BB%E5%A4%A92981/1.jpg","fqdn":"mp4.nymaite.cn","domain":"nymaite.cn","tld":"cn"},"ip":{"addr":"124.220.23.160","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:59.109Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.nymaite.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 05 Aug 2025 09:05:43 GMT","end":"Fri, 04 Sep 2026 09:05:42 GMT"},"fingerprint":{"sha1":"AD:39:9B:23:73:DD:9B:2E:E9:45:1E:28:EE:36:73:C0:1E:05:38:B0","sha256":"90:BD:79:83:21:77:FB:BA:19:00:B4:7F:4F:38:4E:85:4A:12:75:6B:1E:B1:B7:B4:5C:68:09:70:F5:17:66:60"}}},"request":{"raw":"GET /s/%E5%AE%A0%E5%A6%83%E8%A6%81%E7%BF%BB%E5%A4%A92981/1.jpg HTTP/1.1\r\nHost: mp4.nymaite.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:41:59 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T22:34:23.045387Z","times_seen":16223158,"resource_available":true,"data":null}},"time_used":871,"timings":{"blocked":646,"dns":0,"connect":0,"send":0,"wait":225,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.dcloud.net.cn/img/shadow-grey.png","fqdn":"cdn.dcloud.net.cn","domain":"dcloud.net.cn","tld":"net.cn"},"ip":{"addr":"124.221.80.91","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:42:00.849Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.dcloud.net.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 26 Aug 2025 11:47:17 GMT","end":"Fri, 25 Sep 2026 11:47:16 GMT"},"fingerprint":{"sha1":"47:A7:6C:09:6B:1D:CA:2D:7D:39:2E:C1:7F:15:DE:5D:F2:C4:0F:77","sha256":"EA:73:37:83:D0:38:44:D9:3C:0B:26:F0:DD:D1:22:2F:36:F7:F2:86:A1:B0:58:52:DE:4E:0A:21:D6:89:E7:3E"}}},"request":{"raw":"GET /img/shadow-grey.png HTTP/1.1\r\nHost: cdn.dcloud.net.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 22:42:01 GMT\r\ncontent-type: image/png\r\ncontent-length: 136\r\nlast-modified: Thu, 06 Jun 2019 06:42:07 GMT\r\netag: \"5cf8b5bf-88\"\r\nexpires: Sat, 14 Feb 2026 15:42:01 GMT\r\ncache-control: max-age=61200\r\nset-cookie: __uni__uid=rBEQVWmPqLmYMwgcA00wAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":136,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 6, 4-bit colormap, non-interlaced","md5":"5a962adf74d92ae702467b3f47976547","sha1":"36f74049375584e3fa69b5ef87e9572336ff9e7a","sha256":"ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f","sha512":"4ace23fe7ec6c7271710030fd423aace13eafac68ac3e76366ce4ce9bdc702caf71c9bdc2fb6a32c8e9791546098617cc0259decd8bb8489afdbce43e1b53a73","ssdeep":"","tlshash":"47c09bf3a615dc754a0d153b42e98271f429511e07046d0e5a13c216741e3448d56793","first_seen":"2023-04-15T10:50:30Z","last_seen":"2026-06-07T21:35:15.761776Z","times_seen":16206,"resource_available":false,"data":null}},"time_used":1611,"timings":{"blocked":674,"dns":50,"connect":262,"send":0,"wait":262,"receive":0,"ssl":359},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shortbox.cc/assets/js/jquery.min.js","fqdn":"shortbox.cc","domain":"shortbox.cc","tld":"cc"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.117Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shortbox.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 11 Jan 2026 05:01:11 GMT","end":"Sat, 11 Apr 2026 05:59:32 GMT"},"fingerprint":{"sha1":"61:72:5F:C9:D5:3C:A5:3A:9D:46:23:DA:37:03:F0:1D:87:36:67:EF","sha256":"77:8C:13:FF:79:AC:1B:28:3D:AD:8D:9E:92:82:3E:E8:54:E0:6B:94:CE:34:0B:3F:6A:18:14:AE:09:85:42:17"}}},"request":{"raw":"GET /assets/js/jquery.min.js HTTP/1.1\r\nHost: shortbox.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 29 Dec 2025 21:47:21 GMT\r\nvary: Accept-Encoding\r\netag: \"6952f6e9-1797e\"\r\nexpires: Sat, 14 Feb 2026 07:29:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 11519\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=b2Af2gYdbL7Be3KCAfc0DJi2gh10eEXTZVpccy9c%2FgHayIlwFWKR8oAWbHXC8blxjegIdbWneanHTIrcb2asNGz%2BOX%2F9KIVH24Ya\"}]}\r\ncf-ray: 9cd7d612dd424453-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":96638,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (31994)","md5":"2a3eea3f27f34c98a7d644b3f0f60f85","sha1":"5ddd6acb2972a82d79c114ff0c4836b31d5255a6","sha256":"9cfed95f01296eb75a92709a60c838983daeab019219c75c106ffff4cd8b3908","sha512":"6bdd5d3ca228b89663547e381d8086a09098b884292e4c2b46f93b3b12aeb12f1217c3d8cd8563232a1b590e4e7c78c8aed11b61787025662f6d6d2d4b062dd2","ssdeep":"1536:19qodwgFZCg6YGIF+G5FWbxdnh17gnIlK/2RZYRHBpz+3e5ynQaKPkLl0xMXk23t:1fcsIq5FyQYpUuEK","tlshash":"07932add76d6b06247ab20b9506f510af232589d784c8400f264e8f6fc78e4a927bf7d","first_seen":"2026-02-13T06:21:38.368819Z","last_seen":"2026-02-17T11:32:44.987202Z","times_seen":47,"resource_available":true,"data":null}},"time_used":208,"timings":{"blocked":94,"dns":57,"connect":8,"send":0,"wait":16,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.vip/addons/dramas/index/init?platform=H5","fqdn":"casinogiris.vip","domain":"casinogiris.vip","tld":"vip"},"ip":{"addr":"104.21.1.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://casinogiris.vip/h5/","date":"2026-02-13T22:41:58.382Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.vip","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 02:20:13 GMT","end":"Wed, 01 Apr 2026 03:16:37 GMT"},"fingerprint":{"sha1":"71:48:D9:69:E2:CD:F8:8B:30:30:24:DE:FE:20:76:EB:E0:C8:D3:32","sha256":"10:63:CA:68:A4:1B:9E:50:3A:19:85:84:3B:20:2F:D6:BB:6A:FA:A5:91:8F:D1:1A:CA:72:F2:10:74:5E:CE:44"}}},"request":{"raw":"GET /addons/dramas/index/init?platform=H5 HTTP/1.1\r\nHost: casinogiris.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nToken: \r\nSign: \r\nLang: zh-tw\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.vip/h5/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 13 Feb 2026 22:41:58 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zo%2F%2BfiolYFdEBmzGsbHeYDIb%2B30UyhRnQZx%2FsP2706UTsziIbwEu9Mg4ODZ8d%2BP03nQTO3Txg1vVApIMwczOnIRhgWuMTJNqseE7U6f%2FEQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd7d613ee30481e-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1475,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"5d619069c73449f127ed594e798c426c","sha1":"21f69ae6ace453cf7f9ef8844d52eccfe1bf8a09","sha256":"22d64db70dd1e67586de8ab7ed49ae4a3f122258dedf8edc70e7045838039339","sha512":"c462da91d397c56f22635b2f3ff7117a4f8996f0b1a9519e2ff02f9f9f9981e942e505bd614aa761ea3a980b0897fb6e1a0fec89c7a901985823c842f494a708","ssdeep":"","tlshash":"7031547fb144d8df036163dc508a3968c7ae1963dd9c92489a45cd58489c2ca3737af3","first_seen":"2026-02-13T22:42:21.080616Z","last_seen":"2026-02-13T22:42:21.080616Z","times_seen":1,"resource_available":false,"data":null}},"time_used":161,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":161,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}