{"report_id":"316890c1-9040-4531-9a55-57d2d6cd80a0","version":6,"status":"done","tags":[],"date":"2026-01-25T05:18:23Z","url":{"schema":"https","addr":"ynstbc.xyz.webplus7.a2hosted.com/","fqdn":"ynstbc.xyz.webplus7.a2hosted.com","domain":"a2hosted.com","tld":"com"},"ip":{"addr":"106.0.62.84","port":0,"asn":55293,"as":"A2HOSTING","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"ynstbc.xyz.webplus7.a2hosted.com/","fqdn":"ynstbc.xyz.webplus7.a2hosted.com","domain":"webplus7.a2hosted.com","tld":"a2hosted.com"},"title":"MetaMask USDT Payment","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"ynstbc.xyz.webplus7.a2hosted.com/","fqdn":"ynstbc.xyz.webplus7.a2hosted.com","domain":"a2hosted.com","tld":"com"},"ip":{"addr":"106.0.62.84","port":0,"asn":55293,"as":"A2HOSTING","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-01T05:18:23Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"ynstbc.xyz.webplus7.a2hosted.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"ynstbc.xyz.webplus7.a2hosted.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"metamask-sdk-socket.metafi.codefi.network","ip":{"addr":"3.147.212.86","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2019-09-04","domain_rank":0,"first_seen":"2023-09-07T17:09:27Z","last_seen":"2026-01-24T19:35:17.255395Z","alert_count":0,"request_count":7,"received_data":4976,"sent_data":4128,"comment":"","tags":null,"fingerprints":[{"name":"Amazon ALB","description":"Amazon Application Load Balancer (ALB) distributes incoming application traffic to increase availability and support content-based routing.","website":"https://aws.amazon.com/elasticloadbalancing/","common_platform_enumeration":"","icon":"Amazon ELB.svg","categories":["Load balancers"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"ynstbc.xyz.webplus7.a2hosted.com","ip":{"addr":"106.0.62.84","port":443,"asn":55293,"as":"A2HOSTING","country":"United States","country_code":"US"},"domain_registered":"2013-10-29","domain_rank":0,"first_seen":"2026-01-24T19:35:16.69896Z","last_seen":"2026-01-24T19:35:16.69896Z","alert_count":6,"request_count":3,"received_data":1575959,"sent_data":1471,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"ynstbc.xyz.webplus7.a2hosted.com/","fqdn":"ynstbc.xyz.webplus7.a2hosted.com","domain":"webplus7.a2hosted.com","tld":"a2hosted.com"},"ip":{"addr":"106.0.62.84","port":443,"asn":55293,"as":"A2HOSTING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"4f40b5467524e7336b5602d07b9b93b8","sha1":"61d754fd7f8fbb670e806e710ef1deea81a19384","sha256":"aa793649586ed1da8f370dde66dafb132ff9e014a37932ca74c7ab751cc9476e","sha512":"a30a2cda8f76addd133de4d926a6570dd28aa35cd275df4679478edd2b9ea0587c25f77ce5c42f3bee688d504e2268317c0adbf5ea44ba416e07377e415d3343","ssdeep":"","tlshash":"c301500e2ba1a055526721643bcbb211133521f326d89dd435ce5f285f1a71fd033bc7","size":662,"data":"","first_seen":"2026-01-24T19:35:18.519175Z","last_seen":"2026-01-25T05:18:25.338004Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ynstbc.xyz.webplus7.a2hosted.com/","fqdn":"ynstbc.xyz.webplus7.a2hosted.com","domain":"webplus7.a2hosted.com","tld":"a2hosted.com"},"ip":{"addr":"106.0.62.84","port":443,"asn":55293,"as":"A2HOSTING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"05d0dd2a41b82a63f9d11a064eeaafca","sha1":"3c6e4c27a4bb8a7ea86d07406462881f1f22550a","sha256":"33b59bda8cd04c20ec770750cdd36c93e1c7f74a2c7db85f044705e2c2531b7a","sha512":"28ad7159cb21cb40a469d5f424626250757b190b9abff54d1315ac36c47b6c0c7c904ae0e63d90b21c2f8f892427a5133537a5e15000fbbdb9b1be719efb5a1f","ssdeep":"","tlshash":"e651309a36b12531cf2720447fcb72112312b31332849d697ace93684ff655ac8636c6","size":2479,"data":"","first_seen":"2026-01-24T19:35:18.520185Z","last_seen":"2026-01-25T05:18:25.339374Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ynstbc.xyz.webplus7.a2hosted.com/node_modules/@metamask/sdk/dist/browser/iife/metamask-sdk.js","fqdn":"ynstbc.xyz.webplus7.a2hosted.com","domain":"webplus7.a2hosted.com","tld":"a2hosted.com"},"ip":{"addr":"106.0.62.84","port":443,"asn":55293,"as":"A2HOSTING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c636a3dced0719e05450d42c951c7603","sha1":"7dd0c908d51311713bfcc441e2bc911d60d72d5b","sha256":"cb0e4065e4d7956f6fcb5d146c7e245ab094b2dadac8691650ec07ca0c2bc551","sha512":"69ce1a4449a1d33f8dbe22717f65be0d816c827fd714a180592153b1abeac3285d6e3126ae522d5248ec9d2039f8290203b2c3838290f259c616e648cd69095d","ssdeep":"12288:LA+IQxonams9Bf3pFXZOf2SLybyY7cP7OOI:0+IqeGBxFX6tLyWE","tlshash":"74753bd876a1b06147a352b6103f140bf339b92e680d4468f255d8f97cbd98da23bf78","size":1570694,"data":"","first_seen":"2024-04-30T07:12:24Z","last_seen":"2026-01-25T05:18:25.340776Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"metamask-sdk-socket.metafi.codefi.network/socket.io/?EIO=4\u0026transport=polling\u0026t=PlpbdZu","fqdn":"metamask-sdk-socket.metafi.codefi.network","domain":"codefi.network","tld":"network"},"ip":{"addr":"3.147.212.86","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ynstbc.xyz.webplus7.a2hosted.com/","date":"2026-01-25T05:18:03.519Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.metafi.codefi.network","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 09 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:43:8B:A5:EA:51:6E:40:9C:C5:47:56:E8:8B:1A:04:7C:31:E4:CA","sha256":"E3:05:4C:AD:E7:D2:6B:03:3E:5A:17:7C:35:3E:95:A2:38:6A:B3:DE:57:4A:0E:DC:EE:06:92:52:96:14:66:E1"}}},"request":{"raw":"GET /socket.io/?EIO=4\u0026transport=polling\u0026t=PlpbdZu HTTP/1.1\r\nHost: metamask-sdk-socket.metafi.codefi.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ynstbc.xyz.webplus7.a2hosted.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 25 Jan 2026 05:18:04 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-length: 118\r\nset-cookie: AWSALB=WASbYo4BKYcpczPxp8J66+qfaImakwqiEbYPAkrAPibmM7RDG/IXx9WxpBMu4doX7+9Tg004RuRjfJlzsBMVAwVMOhp6uBD0dmsPHGgD2VFDy/7zbtCdYZR+8hu1; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/\nAWSALBCORS=WASbYo4BKYcpczPxp8J66+qfaImakwqiEbYPAkrAPibmM7RDG/IXx9WxpBMu4doX7+9Tg004RuRjfJlzsBMVAwVMOhp6uBD0dmsPHGgD2VFDy/7zbtCdYZR+8hu1; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/; SameSite=None; Secure\r\naccess-control-allow-origin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\ncache-control: no-store\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon ALB","description":"Amazon Application Load Balancer (ALB) distributes incoming application traffic to increase availability and support content-based routing.","website":"https://aws.amazon.com/elasticloadbalancing/","common_platform_enumeration":"","icon":"Amazon ELB.svg","categories":["Load balancers"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":118,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"af6fd91514879e93123bb51bfb099156","sha1":"ad3fd840bc574ef7897e746153df6d9035f71238","sha256":"5f931a9eac7aedf33394cfdb766a3daf287913850216411f676fcb27772b8aae","sha512":"9a7542a246fac64a5ba781f143bdf05a8c5b9169545a67d5a45c7131a859eb148d81b6ac57d45ac7c18d206a9a77545b774350fc4e22121ae3a6ab51eaf254a1","ssdeep":"","tlshash":"15b02bc8810e42c0e970728078f3e9081444751f88c0408d2124044448076003001b1b","first_seen":"2026-01-25T05:18:25.325336Z","last_seen":"2026-01-25T05:18:25.325336Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1101,"timings":{"blocked":496,"dns":96,"connect":105,"send":0,"wait":108,"receive":0,"ssl":294},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"wss","addr":"metamask-sdk-socket.metafi.codefi.network/socket.io/?EIO=4\u0026transport=websocket\u0026sid=xO4sdg8LiCc8WeRKAU12","fqdn":"metamask-sdk-socket.metafi.codefi.network","domain":"codefi.network","tld":"network"},"ip":{"addr":"3.147.212.86","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://ynstbc.xyz.webplus7.a2hosted.com/","date":"2026-01-25T05:18:04.165Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.metafi.codefi.network","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 09 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:43:8B:A5:EA:51:6E:40:9C:C5:47:56:E8:8B:1A:04:7C:31:E4:CA","sha256":"E3:05:4C:AD:E7:D2:6B:03:3E:5A:17:7C:35:3E:95:A2:38:6A:B3:DE:57:4A:0E:DC:EE:06:92:52:96:14:66:E1"}}},"request":{"raw":"GET /socket.io/?EIO=4\u0026transport=websocket\u0026sid=xO4sdg8LiCc8WeRKAU12 HTTP/1.1\r\nHost: metamask-sdk-socket.metafi.codefi.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: 44OAuoJWCTXsAVqOoYT8Eg==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Sun, 25 Jan 2026 05:18:04 GMT\r\nConnection: upgrade\r\nSet-Cookie: AWSALB=xoox+8fgcYz1kXYBHc8l43iPi3o86WJkjuYvl9f2l3LH+5cfkbwV2QDk/b6pHm0OpumErPnMuZEtPUmFs0snKr0SLfhMWpcsjVKH+dt47Am6Nj8SzyzDeoiX/qmo; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/\nAWSALBCORS=xoox+8fgcYz1kXYBHc8l43iPi3o86WJkjuYvl9f2l3LH+5cfkbwV2QDk/b6pHm0OpumErPnMuZEtPUmFs0snKr0SLfhMWpcsjVKH+dt47Am6Nj8SzyzDeoiX/qmo; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/; SameSite=None; Secure\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: VFgKDE15qbBiy4DRNC4sxol/GNA=\r\nAccess-Control-Allow-Origin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nVary: Origin\r\nAccess-Control-Allow-Credentials: true\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Amazon ALB","description":"Amazon Application Load Balancer (ALB) distributes incoming application traffic to increase availability and support content-based routing.","website":"https://aws.amazon.com/elasticloadbalancing/","common_platform_enumeration":"","icon":"Amazon ELB.svg","categories":["Load balancers"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T23:17:23.623528Z","times_seen":16252840,"resource_available":true,"data":null}},"time_used":323,"timings":{"blocked":0,"dns":1,"connect":103,"send":0,"wait":107,"receive":0,"ssl":111},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"metamask-sdk-socket.metafi.codefi.network/socket.io/?EIO=4\u0026transport=polling\u0026t=Plpbdlq\u0026sid=xO4sdg8LiCc8WeRKAU12","fqdn":"metamask-sdk-socket.metafi.codefi.network","domain":"codefi.network","tld":"network"},"ip":{"addr":"3.147.212.86","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ynstbc.xyz.webplus7.a2hosted.com/","date":"2026-01-25T05:18:04.279Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.metafi.codefi.network","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 09 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:43:8B:A5:EA:51:6E:40:9C:C5:47:56:E8:8B:1A:04:7C:31:E4:CA","sha256":"E3:05:4C:AD:E7:D2:6B:03:3E:5A:17:7C:35:3E:95:A2:38:6A:B3:DE:57:4A:0E:DC:EE:06:92:52:96:14:66:E1"}}},"request":{"raw":"GET /socket.io/?EIO=4\u0026transport=polling\u0026t=Plpbdlq\u0026sid=xO4sdg8LiCc8WeRKAU12 HTTP/1.1\r\nHost: metamask-sdk-socket.metafi.codefi.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ynstbc.xyz.webplus7.a2hosted.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 25 Jan 2026 05:18:04 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-length: 68\r\nset-cookie: AWSALB=Dpe68O5wl7jD652OWYuMOJLFMAnRPsIrkyClujwVwgwwz4QFcM6yoRcsezCquyRiHJZZU+4xdCxp7knQMgNxsobGDGs/eIzpD80mYX1yJ2DtCtvibES2SM730p/y; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/\nAWSALBCORS=Dpe68O5wl7jD652OWYuMOJLFMAnRPsIrkyClujwVwgwwz4QFcM6yoRcsezCquyRiHJZZU+4xdCxp7knQMgNxsobGDGs/eIzpD80mYX1yJ2DtCtvibES2SM730p/y; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/; SameSite=None; Secure\r\naccess-control-allow-origin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\ncache-control: no-store\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon ALB","description":"Amazon Application Load Balancer (ALB) distributes incoming application traffic to increase availability and support content-based routing.","website":"https://aws.amazon.com/elasticloadbalancing/","common_platform_enumeration":"","icon":"Amazon ELB.svg","categories":["Load balancers"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":68,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"28030a7a01e126acd923a839fb01a4bb","sha1":"33eab9fd4fa4cc91549c30e10c79f44ab953b8e1","sha256":"01e8a6f0e0c68a290ca2d11ab20f3e65aac62ba5b52e1159959ea5428e44cdf3","sha512":"081b06b2af76af23bdd10cf9ebe875f357bd7135986cd6d3a3164dd21929bcb9dcc263750a96e2fd78789cf8ef9e6f26c38d2ed1759506e8b845b8fe2e1a7213","ssdeep":"","tlshash":"f3a002a6a7158c7a0d64a774cd8cd00e36e9c55daae77d592ca104a8856c011c6a9844","first_seen":"2026-01-25T05:18:25.329487Z","last_seen":"2026-01-25T05:18:25.329487Z","times_seen":1,"resource_available":false,"data":null}},"time_used":210,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":210,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"metamask-sdk-socket.metafi.codefi.network/socket.io/?EIO=4\u0026transport=polling\u0026t=PlpbdpD\u0026sid=xO4sdg8LiCc8WeRKAU12","fqdn":"metamask-sdk-socket.metafi.codefi.network","domain":"codefi.network","tld":"network"},"ip":{"addr":"3.147.212.86","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ynstbc.xyz.webplus7.a2hosted.com/","date":"2026-01-25T05:18:04.498Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.metafi.codefi.network","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 09 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:43:8B:A5:EA:51:6E:40:9C:C5:47:56:E8:8B:1A:04:7C:31:E4:CA","sha256":"E3:05:4C:AD:E7:D2:6B:03:3E:5A:17:7C:35:3E:95:A2:38:6A:B3:DE:57:4A:0E:DC:EE:06:92:52:96:14:66:E1"}}},"request":{"raw":"GET /socket.io/?EIO=4\u0026transport=polling\u0026t=PlpbdpD\u0026sid=xO4sdg8LiCc8WeRKAU12 HTTP/1.1\r\nHost: metamask-sdk-socket.metafi.codefi.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ynstbc.xyz.webplus7.a2hosted.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 25 Jan 2026 05:18:04 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-length: 1\r\nset-cookie: AWSALB=l50+zd7Heip7a86ELbAudfz6XJGYusknIRepkJU8JbDtbMYihV7AEKQTDnhneBaAw27rpyEhUOETF4y1YuARW23RnYBFetdlCSxLwZPO5A/8RmAw/eYKlXB1FbEd; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/\nAWSALBCORS=l50+zd7Heip7a86ELbAudfz6XJGYusknIRepkJU8JbDtbMYihV7AEKQTDnhneBaAw27rpyEhUOETF4y1YuARW23RnYBFetdlCSxLwZPO5A/8RmAw/eYKlXB1FbEd; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/; SameSite=None; Secure\r\naccess-control-allow-origin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\ncache-control: no-store\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon ALB","description":"Amazon Application Load Balancer (ALB) distributes incoming application traffic to increase availability and support content-based routing.","website":"https://aws.amazon.com/elasticloadbalancing/","common_platform_enumeration":"","icon":"Amazon ELB.svg","categories":["Load balancers"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"very short file (no magic)","md5":"1679091c5a880faf6fb5e6087eb1b2dc","sha1":"c1dfd96eea8cc2b62785275bca38ac261256e278","sha256":"e7f6c011776e8db7cd330b54174fd76f7d0216b612387a5ffcfb81e6f0919683","sha512":"3c9ad55147a7144f6067327c3b82ea70e7c5426add9ceea4d07dc2902239bf9e049b88625eb65d014a7718f79354608cab0921782c643f0208983fffa3582e40","ssdeep":"","tlshash":"c700000000030000c00000300000000000000000000c00000000000000000000000000","first_seen":"2023-03-07T01:10:09Z","last_seen":"2026-06-08T22:04:31.406919Z","times_seen":11612,"resource_available":true,"data":null}},"time_used":206,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":206,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ynstbc.xyz.webplus7.a2hosted.com/","fqdn":"ynstbc.xyz.webplus7.a2hosted.com","domain":"webplus7.a2hosted.com","tld":"a2hosted.com"},"ip":{"addr":"106.0.62.84","port":443,"asn":55293,"as":"A2HOSTING","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-25T05:18:01.569Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getpaidreviews.space.webplus7.a2hosted.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 13 Jan 2026 15:07:21 GMT","end":"Mon, 13 Apr 2026 15:07:20 GMT"},"fingerprint":{"sha1":"A6:CD:9F:76:2B:30:BD:0A:7F:A4:06:5B:E2:F9:C4:4F:25:C3:E7:2E","sha256":"92:51:5E:AC:A5:C9:90:29:0A:B4:56:4A:3A:DE:7C:41:E7:F0:31:A5:67:51:86:4F:EB:5A:5B:FA:D6:83:E6:7B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ynstbc.xyz.webplus7.a2hosted.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 25 Jan 2026 05:18:01 GMT\r\nServer: Apache\r\nStrict-Transport-Security: max-age=63072000; includeSubDomains\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nLast-Modified: Fri, 29 Dec 2023 14:01:07 GMT\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nCache-Control: max-age=3600, must-revalidate\r\nContent-Length: 1335\r\nKeep-Alive: timeout=3, max=500\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3647,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"ce000e045fee1a94db6c9586efc80ef4","sha1":"0a4eecd0888807f0f4eec1a0fc89876812ffaa0b","sha256":"d55ab98802aee08d976853659bfc4ffec7e21cd06a55957a8e24ba73ef2e357e","sha512":"b24c7fdb4a42a6383923222bd171bb40c06fd47facb67c942a11ef53d7f36e29240ded4f2065beaf799515f97f7efba956efa211ccdcbd71ebeab4c7c00f398f","ssdeep":"","tlshash":"6671618e27611471da3222607ed3b215e31673a333c04e553aee572a0fb6956c853fce","first_seen":"2024-04-30T07:12:24Z","last_seen":"2026-01-25T05:18:25.332602Z","times_seen":8,"resource_available":false,"data":null}},"time_used":835,"timings":{"blocked":336,"dns":36,"connect":147,"send":0,"wait":155,"receive":0,"ssl":157},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"ynstbc.xyz.webplus7.a2hosted.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"ynstbc.xyz.webplus7.a2hosted.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ynstbc.xyz.webplus7.a2hosted.com/favicon.ico","fqdn":"ynstbc.xyz.webplus7.a2hosted.com","domain":"webplus7.a2hosted.com","tld":"a2hosted.com"},"ip":{"addr":"106.0.62.84","port":443,"asn":55293,"as":"A2HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ynstbc.xyz.webplus7.a2hosted.com/","date":"2026-01-25T05:18:03.513Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getpaidreviews.space.webplus7.a2hosted.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 13 Jan 2026 15:07:21 GMT","end":"Mon, 13 Apr 2026 15:07:20 GMT"},"fingerprint":{"sha1":"A6:CD:9F:76:2B:30:BD:0A:7F:A4:06:5B:E2:F9:C4:4F:25:C3:E7:2E","sha256":"92:51:5E:AC:A5:C9:90:29:0A:B4:56:4A:3A:DE:7C:41:E7:F0:31:A5:67:51:86:4F:EB:5A:5B:FA:D6:83:E6:7B"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ynstbc.xyz.webplus7.a2hosted.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ynstbc.xyz.webplus7.a2hosted.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sun, 25 Jan 2026 05:18:03 GMT\r\nServer: Apache\r\nStrict-Transport-Security: max-age=63072000; includeSubDomains\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nContent-Length: 355\r\nKeep-Alive: timeout=3, max=498\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-08T23:15:55.178465Z","times_seen":39341,"resource_available":true,"data":null}},"time_used":154,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"ynstbc.xyz.webplus7.a2hosted.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"ynstbc.xyz.webplus7.a2hosted.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"metamask-sdk-socket.metafi.codefi.network/socket.io/?EIO=4\u0026transport=polling\u0026t=Plpbdjv\u0026sid=xO4sdg8LiCc8WeRKAU12","fqdn":"metamask-sdk-socket.metafi.codefi.network","domain":"codefi.network","tld":"network"},"ip":{"addr":"3.147.212.86","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ynstbc.xyz.webplus7.a2hosted.com/","date":"2026-01-25T05:18:04.160Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.metafi.codefi.network","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 09 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:43:8B:A5:EA:51:6E:40:9C:C5:47:56:E8:8B:1A:04:7C:31:E4:CA","sha256":"E3:05:4C:AD:E7:D2:6B:03:3E:5A:17:7C:35:3E:95:A2:38:6A:B3:DE:57:4A:0E:DC:EE:06:92:52:96:14:66:E1"}}},"request":{"raw":"POST /socket.io/?EIO=4\u0026transport=polling\u0026t=Plpbdjv\u0026sid=xO4sdg8LiCc8WeRKAU12 HTTP/1.1\r\nHost: metamask-sdk-socket.metafi.codefi.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-type: text/plain;charset=UTF-8\r\nContent-Length: 2\r\nOrigin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ynstbc.xyz.webplus7.a2hosted.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2,"data":"40"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 25 Jan 2026 05:18:04 GMT\r\ncontent-type: text/html\r\ncontent-length: 2\r\nset-cookie: AWSALB=2uXdpDXeS1PjblQV3fjN5cgl1WrtAl/Q2huw83ZY0BVYI3bH5hEEcc6CgVfxEqydGjnskPxbnUKHk4rfmjMkxKYeg4doBw+22YcbhFRQ4cAYpTWu4t5YP8ol2auK; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/\nAWSALBCORS=2uXdpDXeS1PjblQV3fjN5cgl1WrtAl/Q2huw83ZY0BVYI3bH5hEEcc6CgVfxEqydGjnskPxbnUKHk4rfmjMkxKYeg4doBw+22YcbhFRQ4cAYpTWu4t5YP8ol2auK; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/; SameSite=None; Secure\r\naccess-control-allow-origin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\ncache-control: no-store\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon ALB","description":"Amazon Application Load Balancer (ALB) distributes incoming application traffic to increase availability and support content-based routing.","website":"https://aws.amazon.com/elasticloadbalancing/","common_platform_enumeration":"","icon":"Amazon ELB.svg","categories":["Load balancers"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/html","magic":"ASCII text, with no line terminators","md5":"444bcb3a3fcf8389296c49467f27e1d6","sha1":"7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb","sha256":"2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df","sha512":"9fbbbb5a0f329f9782e2356fa41d89cf9b3694327c1a934d6af2a9df2d7f936ce83717fb513196a4ce5548471708cd7134c2ae99b3c357bcabb2eafc7b9b7570","ssdeep":"","tlshash":"c710000000000000300000000000000000000000000000000000000000000c0000c000","first_seen":"2023-03-08T02:32:37Z","last_seen":"2026-06-08T23:17:47.135494Z","times_seen":423639,"resource_available":true,"data":null}},"time_used":107,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":107,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"metamask-sdk-socket.metafi.codefi.network/socket.io/?EIO=4\u0026transport=polling\u0026t=Plpbdjy\u0026sid=xO4sdg8LiCc8WeRKAU12","fqdn":"metamask-sdk-socket.metafi.codefi.network","domain":"codefi.network","tld":"network"},"ip":{"addr":"3.147.212.86","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ynstbc.xyz.webplus7.a2hosted.com/","date":"2026-01-25T05:18:04.163Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.metafi.codefi.network","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 09 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:43:8B:A5:EA:51:6E:40:9C:C5:47:56:E8:8B:1A:04:7C:31:E4:CA","sha256":"E3:05:4C:AD:E7:D2:6B:03:3E:5A:17:7C:35:3E:95:A2:38:6A:B3:DE:57:4A:0E:DC:EE:06:92:52:96:14:66:E1"}}},"request":{"raw":"GET /socket.io/?EIO=4\u0026transport=polling\u0026t=Plpbdjy\u0026sid=xO4sdg8LiCc8WeRKAU12 HTTP/1.1\r\nHost: metamask-sdk-socket.metafi.codefi.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ynstbc.xyz.webplus7.a2hosted.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 25 Jan 2026 05:18:04 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-length: 32\r\nset-cookie: AWSALB=fqonET9YAP8eThS1PVWeiBsEoeP0Ztl2yaHG3jRlZo8hXXqwRw2TheNRi9auW7/KXNjbY2UUn4IPK7oUCHPStR1wNCSwyAJadILOk7trREbWclG3S8tngCjBg9Su; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/\nAWSALBCORS=fqonET9YAP8eThS1PVWeiBsEoeP0Ztl2yaHG3jRlZo8hXXqwRw2TheNRi9auW7/KXNjbY2UUn4IPK7oUCHPStR1wNCSwyAJadILOk7trREbWclG3S8tngCjBg9Su; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/; SameSite=None; Secure\r\naccess-control-allow-origin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\ncache-control: no-store\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon ALB","description":"Amazon Application Load Balancer (ALB) distributes incoming application traffic to increase availability and support content-based routing.","website":"https://aws.amazon.com/elasticloadbalancing/","common_platform_enumeration":"","icon":"Amazon ELB.svg","categories":["Load balancers"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":32,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"3ba9a0b2b1785cc38b1a357563823106","sha1":"c6963f2e3530ccc1ef9cb2e81659160e790ca02e","sha256":"8aa560441d93f04a0fc8f1c4d25d500dc774a879468a8574603e2a942a360d93","sha512":"c955c3c7d2a8df0984b50e8fd88cb29d8a4f065a02b6c247118bfe5e07b28551182bdc67cd47c668e3260ae1fc13b766c22af8135080e4a2005a7fe3398a0825","ssdeep":"","tlshash":"3880002ae88c22a08cba888f203888003080302ee0a2020c082b828022220003008802","first_seen":"2026-01-25T05:18:25.335045Z","last_seen":"2026-01-25T05:18:25.335045Z","times_seen":1,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":112,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"metamask-sdk-socket.metafi.codefi.network/socket.io/?EIO=4\u0026transport=polling\u0026t=Plpbdlq.0\u0026sid=xO4sdg8LiCc8WeRKAU12","fqdn":"metamask-sdk-socket.metafi.codefi.network","domain":"codefi.network","tld":"network"},"ip":{"addr":"3.147.212.86","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ynstbc.xyz.webplus7.a2hosted.com/","date":"2026-01-25T05:18:04.281Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.metafi.codefi.network","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 09 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:43:8B:A5:EA:51:6E:40:9C:C5:47:56:E8:8B:1A:04:7C:31:E4:CA","sha256":"E3:05:4C:AD:E7:D2:6B:03:3E:5A:17:7C:35:3E:95:A2:38:6A:B3:DE:57:4A:0E:DC:EE:06:92:52:96:14:66:E1"}}},"request":{"raw":"POST /socket.io/?EIO=4\u0026transport=polling\u0026t=Plpbdlq.0\u0026sid=xO4sdg8LiCc8WeRKAU12 HTTP/1.1\r\nHost: metamask-sdk-socket.metafi.codefi.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-type: text/plain;charset=UTF-8\r\nContent-Length: 77\r\nOrigin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ynstbc.xyz.webplus7.a2hosted.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":77,"data":"42[\"join_channel\",\"84453751-3c0a-4141-8899-c7c30b265fff\",\"dappcreateChannel\"]"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 25 Jan 2026 05:18:04 GMT\r\ncontent-type: text/html\r\ncontent-length: 2\r\nset-cookie: AWSALB=ptCjZYWF4eV+5vj7MR1lZFKC1tRFwtupnv950AVbAG/XlIpSEn8XOQ9PWTiBOxovyAPMf35tOR51QcWEwMRibtp8n9Q7lZzsFPhqoRt1z5uMkV03gYNjRcf33hvx; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/\nAWSALBCORS=ptCjZYWF4eV+5vj7MR1lZFKC1tRFwtupnv950AVbAG/XlIpSEn8XOQ9PWTiBOxovyAPMf35tOR51QcWEwMRibtp8n9Q7lZzsFPhqoRt1z5uMkV03gYNjRcf33hvx; Expires=Sun, 01 Feb 2026 05:18:04 GMT; Path=/; SameSite=None; Secure\r\naccess-control-allow-origin: https://ynstbc.xyz.webplus7.a2hosted.com\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\ncache-control: no-store\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon ALB","description":"Amazon Application Load Balancer (ALB) distributes incoming application traffic to increase availability and support content-based routing.","website":"https://aws.amazon.com/elasticloadbalancing/","common_platform_enumeration":"","icon":"Amazon ELB.svg","categories":["Load balancers"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/html","magic":"ASCII text, with no line terminators","md5":"444bcb3a3fcf8389296c49467f27e1d6","sha1":"7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb","sha256":"2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df","sha512":"9fbbbb5a0f329f9782e2356fa41d89cf9b3694327c1a934d6af2a9df2d7f936ce83717fb513196a4ce5548471708cd7134c2ae99b3c357bcabb2eafc7b9b7570","ssdeep":"","tlshash":"c710000000000000300000000000000000000000000000000000000000000c0000c000","first_seen":"2023-03-08T02:32:37Z","last_seen":"2026-06-08T23:17:47.135494Z","times_seen":423639,"resource_available":true,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":106,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ynstbc.xyz.webplus7.a2hosted.com/node_modules/@metamask/sdk/dist/browser/iife/metamask-sdk.js","fqdn":"ynstbc.xyz.webplus7.a2hosted.com","domain":"webplus7.a2hosted.com","tld":"a2hosted.com"},"ip":{"addr":"106.0.62.84","port":443,"asn":55293,"as":"A2HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ynstbc.xyz.webplus7.a2hosted.com/","date":"2026-01-25T05:18:02.220Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getpaidreviews.space.webplus7.a2hosted.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 13 Jan 2026 15:07:21 GMT","end":"Mon, 13 Apr 2026 15:07:20 GMT"},"fingerprint":{"sha1":"A6:CD:9F:76:2B:30:BD:0A:7F:A4:06:5B:E2:F9:C4:4F:25:C3:E7:2E","sha256":"92:51:5E:AC:A5:C9:90:29:0A:B4:56:4A:3A:DE:7C:41:E7:F0:31:A5:67:51:86:4F:EB:5A:5B:FA:D6:83:E6:7B"}}},"request":{"raw":"GET /node_modules/@metamask/sdk/dist/browser/iife/metamask-sdk.js HTTP/1.1\r\nHost: ynstbc.xyz.webplus7.a2hosted.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ynstbc.xyz.webplus7.a2hosted.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 25 Jan 2026 05:18:02 GMT\r\nServer: Apache\r\nStrict-Transport-Security: max-age=63072000; includeSubDomains\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nLast-Modified: Sat, 30 Dec 2023 00:00:18 GMT\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nCache-Control: max-age=604800, public\r\nKeep-Alive: timeout=3, max=499\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\nContent-Type: application/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1570694,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"9594885168d95021f3cf29240ec6c834","sha1":"d5b3110ccb4daa2e80c93e9a76be3a4a3925719d","sha256":"5686d0c59ad66569bd62bb8a94298ece1b43baf11591b313102938952a315d08","sha512":"659f64d6e8040c4005530a8d0fa6a0807bd73e651778cba633f7f7d9af72b93b9ce333bfbcc1a9bb11101e40d6ec7a857c5dc21da8fcfb31493af7338c421b82","ssdeep":"6144:XxGoLufK1td5JgM3IiHv5oJbNCNvms9/AGUeurvofYN3epxbuGowOaO7j87HHrkQ:LA+IQxonams9Bf3pFXZOf2SLybyYT","tlshash":"fe251bd873a1b06143a765a1043f540ff339ba1e6809446cf658d8fa7cbd989a63bf34","first_seen":"2026-01-24T19:35:18.512445Z","last_seen":"2026-01-25T05:18:25.3365Z","times_seen":2,"resource_available":false,"data":null}},"time_used":906,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":169,"receive":737,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"ynstbc.xyz.webplus7.a2hosted.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"ynstbc.xyz.webplus7.a2hosted.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}