{"report_id":"29a3da4a-6d56-459f-8d31-eb58be9bf7c6","version":6,"status":"done","tags":[],"date":"2026-03-05T01:34:42Z","url":{"schema":"http","addr":"blockdaghelp.network","fqdn":"blockdaghelp.network","domain":"blockdaghelp.network","tld":"network"},"ip":{"addr":"45.133.200.14","port":0,"asn":200313,"as":"IT WEB LTD","country":"British Virgin Islands","country_code":"VG"},"final":{"url":{"schema":"https","addr":"blockdaghelp.network/","fqdn":"blockdaghelp.network","domain":"blockdaghelp.network","tld":"network"},"title":"Welcome to NodeRestores","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"blockdaghelp.network","fqdn":"blockdaghelp.network","domain":"blockdaghelp.network","tld":"network"},"ip":{"addr":"45.133.200.14","port":0,"asn":200313,"as":"IT WEB LTD","country":"British Virgin Islands","country_code":"VG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-09T01:34:42Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"blockdaghelp.network","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"blockdaghelp.network","ip":{"addr":"45.133.200.14","port":443,"asn":200313,"as":"IT WEB LTD","country":"British Virgin Islands","country_code":"VG"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-03-05T01:34:42.711263Z","last_seen":"2026-03-05T01:34:42.711263Z","alert_count":5,"request_count":5,"received_data":4029619,"sent_data":2324,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}]},{"fqdn":"s3.tradingview.com","ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"domain_registered":"2010-03-20","domain_rank":165395,"first_seen":"2018-06-24T04:06:00Z","last_seen":"2026-02-26T21:54:53.054393Z","alert_count":0,"request_count":1,"received_data":14574,"sent_data":458,"comment":"","tags":null,"fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"blockdaghelp.network/","fqdn":"blockdaghelp.network","domain":"blockdaghelp.network","tld":"network"},"ip":{"addr":"45.133.200.14","port":443,"asn":200313,"as":"IT WEB LTD","country":"British Virgin Islands","country_code":"VG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-05T01:34:18.189Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"blockdaghelp.network","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 12:05:44 GMT","end":"Tue, 26 May 2026 12:05:43 GMT"},"fingerprint":{"sha1":"6F:B7:3D:89:44:E3:7E:B6:23:B9:1D:34:B7:87:57:E9:44:88:07:E6","sha256":"26:C8:89:B8:12:CE:48:85:CF:9B:F3:D1:55:23:FD:59:5B:D3:E7:E8:34:4D:8B:A8:22:2C:C5:AC:A4:7C:62:E7"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: blockdaghelp.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:34:18 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\nlast-modified: Mon, 16 Feb 2026 00:27:28 GMT\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: EXPIRED\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}],"data":{"size":500712,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (41445)","md5":"949ded4cb99b722b664dd586090d1bb7","sha1":"64b9d70d2abe8c0855565070883a48de1d480da8","sha256":"f70f1def6ba8d0e4b54c235438e165c4cdd5c1ef16934bdb959b4493b89dd388","sha512":"bddd6910670664f71fd2e9e04f6686072a24a6e8e549f0169ae1c11c5e8ee5917c53dd43f72295e2ad4beb4022b633c6be40b288254f86ef6d94b9017ca65cd1","ssdeep":"12288:a/b3Z363rvAFFwWtGdZ07hO8AN/IfG1JYf3i:A3Z3637AFWdK48AN/IfVi","tlshash":"50b4f1ba98f325591517906c23eb2f4a3f25d507d41eee957ecd1384cfcab8088a3798","first_seen":"2026-03-05T01:34:46.548326Z","last_seen":"2026-03-05T01:45:11.127203Z","times_seen":2,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":110,"dns":31,"connect":19,"send":0,"wait":32,"receive":0,"ssl":57},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"blockdaghelp.network","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"blockdaghelp.network/smartportresolver.web.app/3ccf3692-798f-45be-8012-e26ee3a9ca07.js","fqdn":"blockdaghelp.network","domain":"blockdaghelp.network","tld":"network"},"ip":{"addr":"45.133.200.14","port":443,"asn":200313,"as":"IT WEB LTD","country":"British Virgin Islands","country_code":"VG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://blockdaghelp.network/","date":"2026-03-05T01:34:18.537Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"blockdaghelp.network","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 12:05:44 GMT","end":"Tue, 26 May 2026 12:05:43 GMT"},"fingerprint":{"sha1":"6F:B7:3D:89:44:E3:7E:B6:23:B9:1D:34:B7:87:57:E9:44:88:07:E6","sha256":"26:C8:89:B8:12:CE:48:85:CF:9B:F3:D1:55:23:FD:59:5B:D3:E7:E8:34:4D:8B:A8:22:2C:C5:AC:A4:7C:62:E7"}}},"request":{"raw":"GET /smartportresolver.web.app/3ccf3692-798f-45be-8012-e26ee3a9ca07.js HTTP/1.1\r\nHost: blockdaghelp.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://blockdaghelp.network/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:34:18 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Sun, 15 Feb 2026 19:06:30 GMT\r\nexpires: Sat, 04 Apr 2026 01:34:18 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}],"data":{"size":3021907,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"e8c0a2449e289b86d6364bd6f8d6b7ff","sha1":"5429d340e4bec83667afbe2042c3828599efdd7c","sha256":"bdfeb41efc9dcf298259dceab6787b77992714ae1ba7bbf1c04abfa044dcaeb9","sha512":"b62d3c31402a976fd7649ac08d49da5ac45853a013effe5d5cc4669fbbd044f7b19db71a09a355e86fd5ff13354f33ff8aa0c0ea70de004c75886f6b4ad7b9d5","ssdeep":"24576:rUF2CmaLfYY8O9yXM1WSW2AzH8IolhQLFi/gq2Afo1kSMN:Em4fF1BW2AH8phQ0/gq2Afo7a","tlshash":"0d25d74623946cda1a0fdb73b71ae5e1d51a7dacb2c4069ff1443d64f2a8811ebe4b30","first_seen":"2026-03-05T01:34:46.550755Z","last_seen":"2026-03-05T01:45:11.130017Z","times_seen":2,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"blockdaghelp.network","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"blockdaghelp.network/","fqdn":"blockdaghelp.network","domain":"blockdaghelp.network","tld":"network"},"ip":{"addr":"45.133.200.14","port":443,"asn":200313,"as":"IT WEB LTD","country":"British Virgin Islands","country_code":"VG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://blockdaghelp.network/","date":"2026-03-05T01:34:18.541Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"blockdaghelp.network","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 12:05:44 GMT","end":"Tue, 26 May 2026 12:05:43 GMT"},"fingerprint":{"sha1":"6F:B7:3D:89:44:E3:7E:B6:23:B9:1D:34:B7:87:57:E9:44:88:07:E6","sha256":"26:C8:89:B8:12:CE:48:85:CF:9B:F3:D1:55:23:FD:59:5B:D3:E7:E8:34:4D:8B:A8:22:2C:C5:AC:A4:7C:62:E7"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: blockdaghelp.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://blockdaghelp.network/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:34:18 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\nlast-modified: Mon, 16 Feb 2026 00:27:28 GMT\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: HIT\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":175155,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (41445)","md5":"990739f4d20d179ad594296a06d148d8","sha1":"0e0c7ee6759392b58264bc14fad1940be178cb0a","sha256":"68c8bf5935009c1445e2d954211a649daee009cd2197aa8c7fbbf477d9f475b3","sha512":"b042edae20383fd8c8e40beaf01a8075d8fe7420388a684ecc944be8e7588ad27ebced40e58ef64d0029fe5306ca4cf62d2426446a1be65dbbb254ff108053ca","ssdeep":"3072:a/uzK1ISsttooL2gvogzK1ISsttooL2gvo1zK1ISsttooL2gvoNGR0D7LbaDtvl:a/V7atq3P7atq307atq3rD7Kv","tlshash":"270402e18e69cb3357fcc1ad10abbd9a3d0d9a1aa4513e1a39ccc3a00f557179a32774","first_seen":"2026-03-05T01:34:46.552909Z","last_seen":"2026-03-05T01:34:46.552909Z","times_seen":1,"resource_available":false,"data":null}},"time_used":240,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":225,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"blockdaghelp.network","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s3.tradingview.com/external-embedding/embed-widget-ticker-tape.js","fqdn":"s3.tradingview.com","domain":"tradingview.com","tld":"com"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://blockdaghelp.network/","date":"2026-03-05T01:34:18.539Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.tradingview.com","organization":"TradingView, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Oct 2025 00:00:00 GMT","end":"Tue, 17 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C4:FE:64:00:30:2A:CD:16:30:95:7E:E1:70:D1:31:3A:D6:33:3A:CC","sha256":"87:D2:67:7D:3E:02:F0:3B:58:BD:38:17:DA:FE:73:C0:CA:25:F9:58:CC:11:14:E0:3A:6E:C3:58:84:9E:BF:52"}}},"request":{"raw":"GET /external-embedding/embed-widget-ticker-tape.js HTTP/1.1\r\nHost: s3.tradingview.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://blockdaghelp.network/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Mar 2026 01:34:18 GMT\r\ncontent-type: text/javascript\r\nserver: BunnyCDN-NO1-830\r\ncdn-pullzone: 1837468\r\ncdn-requestcountrycode: NO\r\nvary: Accept-Encoding\r\naccess-control-allow-methods: GET\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3000\r\ncache-control: public, max-age=300\r\ncontent-encoding: br\r\netag: \"61bb725d0205b47ccbf8162145546221\"\r\nlast-modified: Wed, 04 Mar 2026 18:15:53 GMT\r\nx-amz-id-2: b6wdffY2NCSqQaJEy5oM6YXiyyMZmT5i2xvZSPoRtonRE8C2KCeVZQCvMosPAhQd6xpy9ZvJ6go=\r\nx-amz-request-id: PA6M74AAEPBCB7VH\r\nx-amz-server-side-encryption: AES256\r\ncdn-proxyver: 1.43\r\ncdn-requestpullcode: 200\r\ncdn-requestpullsuccess: True\r\ncdn-edgestorageid: 830\r\ncontent-security-policy: default-src 'none'\r\ncdn-cachedat: 03/04/2026 18:17:08\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\ncdn-requestid: f4f4fdd24a1ff1744ee026e1bc6f6f7d\r\ncdn-cache: REVALIDATED\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":13672,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (3458)","md5":"61bb725d0205b47ccbf8162145546221","sha1":"75c88e6f6828b2a6e4b23987f709b24157ddce5d","sha256":"aa844315620f2ad8d42bf8d07f9795b4ad3df24a1bc448f4cf5b7f33feda0577","sha512":"c281d1f1cf2e408d9a0152e623cedfb47c01aadd48d9993ffa7eedaab3aad77fe1c5f4925996beb43e26e2e1ff6a5c2b242717111ed62a3947697c16ebb01bd8","ssdeep":"384:vgXsuCWoofYkFdjh01Hr2sVVc9rKp+SVNtMEjRYP:IXF50lr2sVVc9rKp+yEEjRw","tlshash":"0f52d699b660d8bd91d945dba07a2321b6193a48b243eca4b5ecd4c510fdccca131fbe","first_seen":"2026-01-30T17:20:23.614215Z","last_seen":"2026-05-05T05:32:10.681631Z","times_seen":1351,"resource_available":true,"data":null}},"time_used":494,"timings":{"blocked":174,"dns":103,"connect":3,"send":0,"wait":142,"receive":0,"ssl":68},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"blockdaghelp.network/favicon/apple-touch-icon.png","fqdn":"blockdaghelp.network","domain":"blockdaghelp.network","tld":"network"},"ip":{"addr":"45.133.200.14","port":443,"asn":200313,"as":"IT WEB LTD","country":"British Virgin Islands","country_code":"VG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://blockdaghelp.network/","date":"2026-03-05T01:34:19.589Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"blockdaghelp.network","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 12:05:44 GMT","end":"Tue, 26 May 2026 12:05:43 GMT"},"fingerprint":{"sha1":"6F:B7:3D:89:44:E3:7E:B6:23:B9:1D:34:B7:87:57:E9:44:88:07:E6","sha256":"26:C8:89:B8:12:CE:48:85:CF:9B:F3:D1:55:23:FD:59:5B:D3:E7:E8:34:4D:8B:A8:22:2C:C5:AC:A4:7C:62:E7"}}},"request":{"raw":"GET /favicon/apple-touch-icon.png HTTP/1.1\r\nHost: blockdaghelp.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://blockdaghelp.network/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:34:19 GMT\r\ncontent-type: image/png\r\ncontent-length: 48324\r\nlast-modified: Sun, 15 Feb 2026 19:06:30 GMT\r\nexpires: Mon, 04 May 2026 01:34:19 GMT\r\ncache-control: max-age=5184000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48324,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"7948db7430f9990f8a823a2a5ebc17f8","sha1":"c040c4f6bfa25224ea9575ea0e33af80227d8d13","sha256":"db95ef8d0063121c27d35f4da27de6824f22ba37bbf6f6febb2cf52746e6e83d","sha512":"796e4e3ca6aeb3713352f39b2efce4c49f8232f512d5c446bd1d1f487dca0fe2a696728a69ceadfca0b57cb562b6de588a3a785fc66f2ac2121d032ccc54c4bd","ssdeep":"768:vekoSQtWkQZNVfLU529BYSqjvpzVj9Qu2h9krWoBUlNk5SCoim+/3AOPkZOSA4OD:mkytWkWBLU529BZepzt93Ko6lDZiUZON","tlshash":"6b2301c6f2404d7f979c53ae4e81ba15bfd132df9276816b4528483ec8eca4013b5acd","first_seen":"2025-09-03T18:46:04.676168Z","last_seen":"2026-03-05T01:45:11.135502Z","times_seen":4,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"blockdaghelp.network","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"blockdaghelp.network/favicon/favicon.svg","fqdn":"blockdaghelp.network","domain":"blockdaghelp.network","tld":"network"},"ip":{"addr":"45.133.200.14","port":443,"asn":200313,"as":"IT WEB LTD","country":"British Virgin Islands","country_code":"VG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://blockdaghelp.network/","date":"2026-03-05T01:34:19.590Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"blockdaghelp.network","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 12:05:44 GMT","end":"Tue, 26 May 2026 12:05:43 GMT"},"fingerprint":{"sha1":"6F:B7:3D:89:44:E3:7E:B6:23:B9:1D:34:B7:87:57:E9:44:88:07:E6","sha256":"26:C8:89:B8:12:CE:48:85:CF:9B:F3:D1:55:23:FD:59:5B:D3:E7:E8:34:4D:8B:A8:22:2C:C5:AC:A4:7C:62:E7"}}},"request":{"raw":"GET /favicon/favicon.svg HTTP/1.1\r\nHost: blockdaghelp.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://blockdaghelp.network/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:34:19 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nlast-modified: Sun, 15 Feb 2026 19:06:30 GMT\r\nexpires: Mon, 04 May 2026 01:34:19 GMT\r\ncache-control: max-age=5184000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}],"data":{"size":281575,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"09da00f240efdca2f91e688292dcbc38","sha1":"2aa0feb9288a1c29eae4dd9ff5e461a65dedfb47","sha256":"54c455cc25fa45b9ff35726d851cadb3224024303cf2a1baf610d64620f6de13","sha512":"09827fcc00147f44ac6bf7132d98cf5d3ed11fe41e3e50a2db4ce834b596649681fa35f6553bc08181d3f276b0197e6cd8f48e142769b864ff26e1e901fb62f1","ssdeep":"6144:hRMESEo5zH2fAeLQFQojmmvnBYe1pSf1wb:hRPybdccvdu1wb","tlshash":"e85423b4a66c9f641c4c83b861203ba83fb1eb9bddcc64e3191aa9da7fd13d05d4d019","first_seen":"2025-09-03T18:46:04.680679Z","last_seen":"2026-03-05T01:45:11.124957Z","times_seen":4,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"blockdaghelp.network","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}