{"report_id":"4b933291-0d60-4d3f-9cda-7cbe1cee0875","version":6,"status":"done","tags":[],"date":"2026-05-12T14:42:36Z","url":{"schema":"https","addr":"bloxbalance.com/","fqdn":"bloxbalance.com","domain":"bloxbalance.com","tld":"com"},"ip":{"addr":"91.218.49.176","port":0,"asn":0,"as":"","country":"Ukraine","country_code":"UA"},"final":{"url":{"schema":"https","addr":"bloxbalance.com/","fqdn":"bloxbalance.com","domain":"bloxbalance.com","tld":"com"},"title":"All in one giftcards","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"bloxbalance.com/","fqdn":"bloxbalance.com","domain":"bloxbalance.com","tld":"com"},"ip":{"addr":"91.218.49.176","port":0,"asn":0,"as":"","country":"Ukraine","country_code":"UA"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-16T14:42:36Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-12","alert":"Sinkholed","trigger":"bloxbalance.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-12","alert":"Sinkholed","trigger":"robloxhelper.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-12","alert":"Sinkholed","trigger":"robloxhelper.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"bloxbalance.com","ip":{"addr":"91.218.49.176","port":443,"asn":0,"as":"","country":"Ukraine","country_code":"UA"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":4,"request_count":4,"received_data":145956,"sent_data":1687,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"jQuery:2.2.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.251.143.131","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-05-10T22:17:57.86744Z","alert_count":0,"request_count":1,"received_data":15431,"sent_data":515,"comment":"","tags":null,"fingerprints":null},{"fqdn":"robloxhelper.app","ip":{"addr":"104.21.33.232","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-02-13T14:10:07.438651Z","last_seen":"2026-05-03T23:25:15.645147Z","alert_count":2,"request_count":1,"received_data":4561,"sent_data":382,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"ajax.googleapis.com","ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":3691,"first_seen":"2012-05-22T10:38:03Z","last_seen":"2026-05-10T23:37:20.475816Z","alert_count":0,"request_count":1,"received_data":86564,"sent_data":409,"comment":"","tags":null,"fingerprints":null},{"fqdn":"d2lmlpk6xgu7kg.cloudfront.net","ip":{"addr":"108.157.217.61","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2008-04-25","domain_rank":0,"first_seen":"2023-10-02T10:07:48Z","last_seen":"2026-04-25T15:53:12.425338Z","alert_count":0,"request_count":11,"received_data":254050,"sent_data":5038,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"robloxhelper.app/cl/js/4orqm5","fqdn":"robloxhelper.app","domain":"robloxhelper.app","tld":"app"},"ip":{"addr":"104.21.33.232","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5ae5f3f5b573437893d24d0413038799","sha1":"fba1145bc538036a345c07f89e06a85a30b91ee9","sha256":"c3a5511a518677fc6897aa1e895da0e64c2ca40edfff91d74343451c07533205","sha512":"e3d51da21f348fd8c13dae64d0bba6369f1a8e4c2e2b14b5561964c70ed84c9190ac8d2543b4b50eb2587ff10400df743addf5222eb6f142a205ca0ed68ddc61","ssdeep":"","tlshash":"5b517aef6ce3a650256ba47d0bef914d30b884673505c530bcbc95c85fe0e10aa99bed","size":2847,"data":"","first_seen":"2026-04-25T15:53:16.93055Z","last_seen":"2026-05-12T14:44:55.704608Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2f6b11a7e914718e0290410e85366fe9","sha1":"69bb69e25ca7d5ef0935317584e6153f3fd9a88c","sha256":"05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e","sha512":"0d40bccaa59fedecf7243d63b33c42592541d0330fefc78ec81a4c6b9689922d5b211011ca4be23ae22621cce4c658f52a1552c92d7ac3615241eb640f8514db","ssdeep":"1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a986:v4J+OlfOhWppCW6G9a98Hr2","tlshash":"1e83c6d9b2d6706297b734b850bf410bb17a98dab44c8c60f059d4e47eb4a8e507bf2c","size":85578,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-05-31T01:06:44.024016Z","times_seen":282091,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bloxbalance.com/","fqdn":"bloxbalance.com","domain":"bloxbalance.com","tld":"com"},"ip":{"addr":"91.218.49.176","port":443,"asn":0,"as":"","country":"Ukraine","country_code":"UA"},"introduction_type":"scriptElement","is_inline":true,"md5":"959701ef033b4688ac4cd13b6cb3f25c","sha1":"e5275b2f0ce0ade5db3bfa7fc2988d751de55144","sha256":"f9459227e2d0e9e1652a2b95053ef6a99d41e54a5e72e30ba5ec18ebcca3b513","sha512":"b3ee66040c4677d2f722c81d388cf2f4dc306fc3288fd73e18483196872d15202f5c3b0980909d280089e363f959a91f8ff4165b48b0adc9efda89478bdb8ba9","ssdeep":"","tlshash":"6ab0124eb6d3f0200233e6be0e2b500415184c47290cc008f60c0258af941044060958","size":96,"data":"","first_seen":"2026-02-13T14:10:12.058311Z","last_seen":"2026-05-12T14:44:55.726614Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bloxbalance.com/","fqdn":"bloxbalance.com","domain":"bloxbalance.com","tld":"com"},"ip":{"addr":"91.218.49.176","port":443,"asn":0,"as":"","country":"Ukraine","country_code":"UA"},"introduction_type":"scriptElement","is_inline":true,"md5":"d867fbbbe5de6f99b853e88e70e45130","sha1":"fb0aaa54f82bc3ecc843eabaf2647fd39690cbfa","sha256":"01d94021a46c82f39ab7fd012620b4fc6d3a9589c83492aca6117b621995ff46","sha512":"503b81ef5a4b443d669558b104cb9f1749809579e9886518348370d9333b2ab35edb9a760b6b6b55fd3eea2363b6e2dd51d186dd186c471c1fd02356416acd20","ssdeep":"96:c08nBzZLYBDpYiX3iCPIIiC7X/G1ki06po0FKjghWo2h2YEA2YD3i+l4itEAutgT:cBBzZLYBDpYiX3iCxiC7X/G1kT6po0F8","tlshash":"6fb1f2e3b34905711cdb27bb1e5b139c34a9d1371c138897260c6c24d82adf6b9bbe59","size":5126,"data":"","first_seen":"2026-04-06T13:50:43.175115Z","last_seen":"2026-05-12T14:44:55.73227Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bloxbalance.com/","fqdn":"bloxbalance.com","domain":"bloxbalance.com","tld":"com"},"ip":{"addr":"91.218.49.176","port":443,"asn":0,"as":"","country":"Ukraine","country_code":"UA"},"introduction_type":"scriptElement","is_inline":true,"md5":"7f17bb5a6ab7ce53c59cc390f7089708","sha1":"e6aeb7d38dfff1a205ec9c68e78074395c610a90","sha256":"0507d6953a3e15b7fa29260204bcc941eb5ed1d04f6c6bd0ee1ee36814b343af","sha512":"f6add4d77c9ef579ad91754f5a8864bb853fe19493de1b264918184cb181a0194f10c89550302765870a8711254934ee3ec6894189e497ce62bbf171816f12d5","ssdeep":"192:cswDQscMxU2noSAhW3HkIyvUEr/he5fJJ:cpMtqfEEPJ","tlshash":"07d1125fb4f3216a49677b790baf4100ba6461231d1dfc90be8cc6444f3d0ab6e726b9","size":6545,"data":"","first_seen":"2023-03-10T13:35:25Z","last_seen":"2026-05-12T14:44:55.733128Z","times_seen":40,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"d2lmlpk6xgu7kg.cloudfront.net/uploads/16456066916a38f76ae3e8e9726290ecaff38046f2.png","fqdn":"d2lmlpk6xgu7kg.cloudfront.net","domain":"d2lmlpk6xgu7kg.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"108.157.217.61","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C9:18:5B:88:98:FA:65:52:EE:3F:8C:AC:85:C1:E4:56:E1:0D:39:DA","sha256":"C6:C6:D5:C7:F7:92:11:BB:D5:98:B6:EB:43:02:E5:65:7B:E8:32:E7:75:CE:E0:A8:29:B0:DE:A3:5E:AF:4E:02"}}},"request":{"raw":"GET /uploads/16456066916a38f76ae3e8e9726290ecaff38046f2.png HTTP/1.1\r\nHost: d2lmlpk6xgu7kg.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 19705\r\nlast-modified: Wed, 23 Feb 2022 08:58:13 GMT\r\nx-amz-version-id: feXPtQKsqBjA.yJS7XuZz0bIQAGPBMH3\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\netag: \"6964ff24ad45b4c30c15081c6147ab08\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d84d4103926180da8f8abcb90515db0c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: MEN3zHX0LTI5CVnssMqqnVmqNeiUlo2l9eqxYMIsAgiUpBa0r1Jq9Q==\r\nage: 174\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":19705,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 677 x 333, 8-bit colormap, non-interlaced","md5":"6964ff24ad45b4c30c15081c6147ab08","sha1":"aee5564e36cccef45fb74541e1110847ab7466fa","sha256":"e90f3ef231d9b8c0871201da1135b8b1c156a9fdaac624ab368695f1276a0b9c","sha512":"f46eb2d4d0b36dee96e5c04b7447a3ae3fff5872d3422c50a1b3386f53badedb878f68dd02e54eca27794b0806c417e3f5d9ec2085b66c8886203111c121d0ab","ssdeep":"384:k17d9dQaBoXLGDrVEG3xou2MwxL4yNOvr:KxSXLgEuounwxLF4T","tlshash":"6e92d19e0ed77c6fe40b3f92b142100309396aa94cbe23a3bbc57871e8d5e5d1327191","first_seen":"2023-05-05T20:10:25Z","last_seen":"2026-05-12T14:44:55.700767Z","times_seen":28,"resource_available":false,"data":null}},"time_used":240,"timings":{"blocked":86,"dns":48,"connect":8,"send":0,"wait":43,"receive":8,"ssl":41},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d2lmlpk6xgu7kg.cloudfront.net/uploads/16456066910ad995c478735eeb59daf47640f653e3.png","fqdn":"d2lmlpk6xgu7kg.cloudfront.net","domain":"d2lmlpk6xgu7kg.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"108.157.217.61","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C9:18:5B:88:98:FA:65:52:EE:3F:8C:AC:85:C1:E4:56:E1:0D:39:DA","sha256":"C6:C6:D5:C7:F7:92:11:BB:D5:98:B6:EB:43:02:E5:65:7B:E8:32:E7:75:CE:E0:A8:29:B0:DE:A3:5E:AF:4E:02"}}},"request":{"raw":"GET /uploads/16456066910ad995c478735eeb59daf47640f653e3.png HTTP/1.1\r\nHost: d2lmlpk6xgu7kg.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 31861\r\nlast-modified: Wed, 23 Feb 2022 08:58:12 GMT\r\nx-amz-version-id: jESQ7VF8lhOQmEKpco8QJsEG4PY.lIh1\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\netag: \"3ea539d676fccf2fef78a5c74e5cc5dc\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d84d4103926180da8f8abcb90515db0c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: LWS2nlhGNKl1R75i3-QCoiuH-g6q1_HOyGqtjx6stTTp2x7G4e9zUA==\r\nage: 174\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":31861,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 272 x 434, 8-bit colormap, non-interlaced","md5":"3ea539d676fccf2fef78a5c74e5cc5dc","sha1":"0a6632809bc4ed012493f4eb5f7c7e9e1473bce5","sha256":"1b20575865a1cb75844e1b88a862c90932305f38c7e9f25068e8ab6f50b82473","sha512":"9281a46174ef47774f6a9647b5aa17476a04a4872445508871967e99c3bd7274bd161851f9f157c783e190d5b266ffcf33809934f6bceac71571dafcc31babf8","ssdeep":"768:KC7VT9cTkinqh7+cOi8cI+tLOHnm+USSw/IwlQxyhVlP:L7DcTwluHBQmQwVZ","tlshash":"3fe2f1f1704efbf0859a3e642dbbc3baac018501d23f86791e48b5a7c9125b41938b77","first_seen":"2023-05-05T20:10:25Z","last_seen":"2026-05-12T14:44:55.711584Z","times_seen":24,"resource_available":false,"data":null}},"time_used":247,"timings":{"blocked":74,"dns":44,"connect":11,"send":0,"wait":76,"receive":1,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d2lmlpk6xgu7kg.cloudfront.net/uploads/16470047894e0de69106b6d5dc5add9dcfe186f25e.png","fqdn":"d2lmlpk6xgu7kg.cloudfront.net","domain":"d2lmlpk6xgu7kg.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"108.157.217.61","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.181Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C9:18:5B:88:98:FA:65:52:EE:3F:8C:AC:85:C1:E4:56:E1:0D:39:DA","sha256":"C6:C6:D5:C7:F7:92:11:BB:D5:98:B6:EB:43:02:E5:65:7B:E8:32:E7:75:CE:E0:A8:29:B0:DE:A3:5E:AF:4E:02"}}},"request":{"raw":"GET /uploads/16470047894e0de69106b6d5dc5add9dcfe186f25e.png HTTP/1.1\r\nHost: d2lmlpk6xgu7kg.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 78469\r\nlast-modified: Fri, 11 Mar 2022 13:19:50 GMT\r\nx-amz-version-id: fcOyD45QcUokxdIW2JQzGVFGLluh6gm5\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\netag: \"bb54a65af58009e48c0ab87a11a77cf4\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d84d4103926180da8f8abcb90515db0c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: zvnM8r5prW8SZYkkgijuEjKB6ll7N9aFbJwqepKnpgmV7rsRdiB57Q==\r\nage: 173\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":78469,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 272 x 434, 8-bit/color RGBA, non-interlaced","md5":"bb54a65af58009e48c0ab87a11a77cf4","sha1":"f064eb6c77f82a1a66dc45d42fd81f13a32bdbf6","sha256":"2e2c7f466c050e4e14548c8aa416680d115c159a99f93f97ae5e2a763c3bfadc","sha512":"ed34db53f501a4f1778ee37a2576c85f52a5cb629fc4ca405d138ab0bd8b085747a87dfcb38c1e03a5c0f9f8691ee50d6c8cf0424966fe98baeb38f1cfb14772","ssdeep":"1536:LfRxiYW55KxPP2v9WX9jX2HGhz5mXibsnc+bE/CB2WdMaDOGs9kzm2pWjQ6:LfR5W55anAAh2mhgibsnNEM2WayOMIQ6","tlshash":"db7302e1a7080d5590294697b82ea3ec1f67a1869dcb1c8365fc33c6045d37ee0e2dee","first_seen":"2023-05-05T20:10:25Z","last_seen":"2026-05-12T14:44:55.713305Z","times_seen":28,"resource_available":false,"data":null}},"time_used":1482,"timings":{"blocked":709,"dns":41,"connect":11,"send":0,"wait":40,"receive":3,"ssl":671},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d2lmlpk6xgu7kg.cloudfront.net/uploads/16456066913af5eafc1e8f4b67bdb9fad531193dd3.png","fqdn":"d2lmlpk6xgu7kg.cloudfront.net","domain":"d2lmlpk6xgu7kg.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"108.157.217.61","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.182Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C9:18:5B:88:98:FA:65:52:EE:3F:8C:AC:85:C1:E4:56:E1:0D:39:DA","sha256":"C6:C6:D5:C7:F7:92:11:BB:D5:98:B6:EB:43:02:E5:65:7B:E8:32:E7:75:CE:E0:A8:29:B0:DE:A3:5E:AF:4E:02"}}},"request":{"raw":"GET /uploads/16456066913af5eafc1e8f4b67bdb9fad531193dd3.png HTTP/1.1\r\nHost: d2lmlpk6xgu7kg.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 9529\r\nlast-modified: Wed, 23 Feb 2022 08:58:12 GMT\r\nx-amz-version-id: QPZwrvOa2SGRY6j1Pkocfk2.CcPFUmtI\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\netag: \"ccaa833c45dcb4ea162881be6dc91e0c\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d84d4103926180da8f8abcb90515db0c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: OaXPRKpZoG8xhk0I1r4vYRu3lGNUhm224S1NE9E7c_8MZbrQpWiCXg==\r\nage: 173\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":9529,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 272 x 434, 8-bit colormap, non-interlaced","md5":"ccaa833c45dcb4ea162881be6dc91e0c","sha1":"49734a815f59d17556136ed5a0c2eb5a47e15144","sha256":"a5b75ddbb788541f2b625130f823a6a26bc8106f1b7d30bd31a4fedd1a6d856b","sha512":"87fa20ea527c57482e8a3d0977702b058b08018f919f7af863cb3915c7f20eb95ddbc64debcdeb49bcc8849b75190295b898ecd11f67b66c7e04eaa99f0bc11d","ssdeep":"192:wVi003Moo2RcrpJPsfSGh09p3iOvFXKLrqbqSs2fF5JRK8dNB7H:wc0BRTQf0qOvVKLrj2fF708dr7H","tlshash":"11128eb025f5ba6136a720b70593cb82af29415ecef4337099c7d0c8863b9386ab5075","first_seen":"2023-05-05T20:10:25Z","last_seen":"2026-05-12T14:44:55.701458Z","times_seen":24,"resource_available":false,"data":null}},"time_used":235,"timings":{"blocked":83,"dns":40,"connect":11,"send":0,"wait":48,"receive":0,"ssl":44},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d2lmlpk6xgu7kg.cloudfront.net/uploads/1645606690bc25555bab4430a7900a83e596aef47d.png","fqdn":"d2lmlpk6xgu7kg.cloudfront.net","domain":"d2lmlpk6xgu7kg.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"108.157.217.61","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C9:18:5B:88:98:FA:65:52:EE:3F:8C:AC:85:C1:E4:56:E1:0D:39:DA","sha256":"C6:C6:D5:C7:F7:92:11:BB:D5:98:B6:EB:43:02:E5:65:7B:E8:32:E7:75:CE:E0:A8:29:B0:DE:A3:5E:AF:4E:02"}}},"request":{"raw":"GET /uploads/1645606690bc25555bab4430a7900a83e596aef47d.png HTTP/1.1\r\nHost: d2lmlpk6xgu7kg.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 13473\r\nlast-modified: Wed, 23 Feb 2022 08:58:11 GMT\r\nx-amz-version-id: Lge6SHJh03SQ6P2vJ6l8595_6NBefZsV\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\netag: \"12ab420eb2f85783090f0d149cce0373\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d84d4103926180da8f8abcb90515db0c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: EwfbaurIAFW_2pwp0Q8SExmAmlIAoI6HdynczCdGZR6Ce9NTtyC74w==\r\nage: 171\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":13473,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 272 x 434, 8-bit colormap, non-interlaced","md5":"12ab420eb2f85783090f0d149cce0373","sha1":"96b42990ca1e304d0f96dc6c4841ee3d4220561c","sha256":"ebfd40e9d2070bd61499d490fc4ba516d4e1f9baef1a8a271433051cdb25ab23","sha512":"807625c6edd610fd96fd200653b16789591937846af3e632450c2b963cb84b91be14a6362c216230bd726e783fe11b83e3b01311a368b7f0f5c4aa09c2ef8808","ssdeep":"384:FTLOwrwGJ1a3q1UbNaP6TQqE68/qSDSxM9tB:tawdJ83WcP8/qJxgB","tlshash":"0b52bfe3e639d153c2e16263620c17701c6c3d992dbda0d688c63a522ebf3cee575252","first_seen":"2023-05-05T20:10:25Z","last_seen":"2026-05-12T14:44:55.725968Z","times_seen":26,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":66,"dns":0,"connect":0,"send":0,"wait":42,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bloxbalance.com/favicon.ico","fqdn":"bloxbalance.com","domain":"bloxbalance.com","tld":"com"},"ip":{"addr":"91.218.49.176","port":443,"asn":0,"as":"","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.704Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bloxbalance.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 21:12:05 GMT","end":"Fri, 07 Aug 2026 21:12:04 GMT"},"fingerprint":{"sha1":"E1:BA:C1:DA:02:AE:2A:E2:EE:D4:5B:15:B1:86:C3:15:9D:AE:66:76","sha256":"97:8C:24:A0:0D:17:46:23:4A:17:78:85:75:7A:A1:73:20:BE:35:FC:A1:03:65:36:CE:78:25:47:7A:8B:13:6D"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: bloxbalance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\npragma: no-cache\r\ncontent-type: text/html\r\ncontent-length: 1251\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1251,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"8150f458ed6fb9b1db4e5cfa57a1a281","sha1":"6e5726854d28687b560d7fdcb5c782c425c7dfb9","sha256":"4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896","sha512":"4cc6a112673aef8bb8bb8a385c26791b805d43bb707b509880e894f1c83bab4e16f13de187036c5f660c3bec1d286258396b7bde65c5d7945c5019665196818c","ssdeep":"","tlshash":"c021353ec1c1560ae0271164fbc1f7a86669825291970f703b9eb176f6cd0bb56a36c8","first_seen":"2024-02-08T16:48:55Z","last_seen":"2026-05-31T00:53:34.256867Z","times_seen":130793,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-12","alert":"Sinkholed","trigger":"bloxbalance.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bloxbalance.com/image.webp","fqdn":"bloxbalance.com","domain":"bloxbalance.com","tld":"com"},"ip":{"addr":"91.218.49.176","port":443,"asn":0,"as":"","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.177Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bloxbalance.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 21:12:05 GMT","end":"Fri, 07 Aug 2026 21:12:04 GMT"},"fingerprint":{"sha1":"E1:BA:C1:DA:02:AE:2A:E2:EE:D4:5B:15:B1:86:C3:15:9D:AE:66:76","sha256":"97:8C:24:A0:0D:17:46:23:4A:17:78:85:75:7A:A1:73:20:BE:35:FC:A1:03:65:36:CE:78:25:47:7A:8B:13:6D"}}},"request":{"raw":"GET /image.webp HTTP/1.1\r\nHost: bloxbalance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 19 May 2026 14:42:15 GMT\r\ncontent-type: image/webp\r\nlast-modified: Sat, 09 May 2026 22:07:41 GMT\r\naccept-ranges: bytes\r\ncontent-length: 28664\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":28664,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"12388997c50fd02a80b47eb7d2d95347","sha1":"23e626d78236e272dd8bab4fa473e3e4a9997446","sha256":"d8aa6c8f49be71aa31c2635451639d9bf93a2af8dcb42fc66b5992e38a4fb483","sha512":"c27aac8e3fd3f1acbe79760504a83ff5dc9f84323589b2522a379e08eed14be27e7ffe3a59c144e01270330b12484cd6ff0a4d8d04ef6bfd956642be49e80044","ssdeep":"768:LK8fcJmscpBNWbR/v4XNVJ9ux37xdffmPjCBFzqef:m8fcJmscpBNOdK39037xVfmLCfzqef","tlshash":"ecd2e1674a967900a842e8c290385359e1ef3167ef04d75c1dc1bddbd2f7b1f2a67a80","first_seen":"2026-04-06T13:50:43.153505Z","last_seen":"2026-05-12T14:44:55.724451Z","times_seen":4,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":133,"receive":41,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-12","alert":"Sinkholed","trigger":"bloxbalance.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"d2lmlpk6xgu7kg.cloudfront.net/uploads/1645606691ccf0a7bdb704e85631127b851dc0e997.png","fqdn":"d2lmlpk6xgu7kg.cloudfront.net","domain":"d2lmlpk6xgu7kg.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"108.157.217.61","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C9:18:5B:88:98:FA:65:52:EE:3F:8C:AC:85:C1:E4:56:E1:0D:39:DA","sha256":"C6:C6:D5:C7:F7:92:11:BB:D5:98:B6:EB:43:02:E5:65:7B:E8:32:E7:75:CE:E0:A8:29:B0:DE:A3:5E:AF:4E:02"}}},"request":{"raw":"GET /uploads/1645606691ccf0a7bdb704e85631127b851dc0e997.png HTTP/1.1\r\nHost: d2lmlpk6xgu7kg.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 6552\r\nlast-modified: Wed, 23 Feb 2022 08:58:12 GMT\r\nx-amz-version-id: Hh5GCdeMrVnnrp5ASrE4eMIJ8HaFIhOY\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\netag: \"72cd5bca1317cb4ccb7744a82a5b92cc\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d84d4103926180da8f8abcb90515db0c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: MYX9LvZblZ0lOrlH5rRMO4gradXSzVfTtg0n99mNqDAcbLv18U6b3g==\r\nage: 172\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":6552,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 272 x 434, 8-bit colormap, non-interlaced","md5":"72cd5bca1317cb4ccb7744a82a5b92cc","sha1":"e57009963d72ab7edc632c1c8fb0fe024f4f948e","sha256":"47722d99cdc263f3783855402a9e9c81d12cbce823b6dba6b9ac3b948afd0075","sha512":"358239f26b86c65253eadf67fe88261c527fd7420416145941593391beeda6e9db8bfac8bb14b01fdb2b0c551fc3630e30bb24792bd20084aa12f871a28b51c9","ssdeep":"96:/B9Lsh7VMPslVKAeUp7rfGkZsMmf2BADZvk9859OCABIWTv3QfQUWa5WzkkP6WaU:ZlsZSsuUXZzmXZvs859OvFb7N90teX","tlshash":"bfd18d4f9744e893cf9ffdb2877fa1f850b51da0603c66c5d77a1c9c68066861a243b0","first_seen":"2023-05-05T20:10:25Z","last_seen":"2026-05-12T14:44:55.719245Z","times_seen":24,"resource_available":false,"data":null}},"time_used":145,"timings":{"blocked":-1,"dns":38,"connect":11,"send":0,"wait":50,"receive":3,"ssl":42},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d2lmlpk6xgu7kg.cloudfront.net/uploads/164560669197909a539d87aced1c1438c4da903d01.png","fqdn":"d2lmlpk6xgu7kg.cloudfront.net","domain":"d2lmlpk6xgu7kg.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"108.157.217.61","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.185Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C9:18:5B:88:98:FA:65:52:EE:3F:8C:AC:85:C1:E4:56:E1:0D:39:DA","sha256":"C6:C6:D5:C7:F7:92:11:BB:D5:98:B6:EB:43:02:E5:65:7B:E8:32:E7:75:CE:E0:A8:29:B0:DE:A3:5E:AF:4E:02"}}},"request":{"raw":"GET /uploads/164560669197909a539d87aced1c1438c4da903d01.png HTTP/1.1\r\nHost: d2lmlpk6xgu7kg.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 7959\r\nlast-modified: Wed, 23 Feb 2022 08:58:12 GMT\r\nx-amz-version-id: yVMr_pqF8bM_T5zFyFeflToGbc2nMQn_\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\netag: \"2ad10c7fd2ca9ff2c30c60316256f42d\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d84d4103926180da8f8abcb90515db0c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: QJpToOpxBXAk52E_gCROL3nFhV_6IRaeLKSANXnj2dBKP29oTw84Yg==\r\nage: 171\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":7959,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 272 x 434, 8-bit colormap, non-interlaced","md5":"2ad10c7fd2ca9ff2c30c60316256f42d","sha1":"0a330895cdb84e68365b9ce9e184dc484da22907","sha256":"a71a66d454123464159618ae7fefc696774ce6b64b25c87b589c26778151d03e","sha512":"53053014ed050dc16ce38270c5f641d7edf0794310aacc208912201992f49d1fbce80cef8a33e697c0a4f9c499aefd8bf8f7f2bc99dc106e5a677e17acbff18e","ssdeep":"192:5tVla0ZwVZ/grdyZb3AlL2oGn9cqQV8pzG4cAKkEv:LfnEZ4sclL2oGKf8iAKfv","tlshash":"d9f1aeb093258a21e0bed352a47b61106f1e1e13075353587a07aef7967fd93e09125a","first_seen":"2023-05-05T20:10:25Z","last_seen":"2026-05-12T14:44:55.725077Z","times_seen":26,"resource_available":false,"data":null}},"time_used":111,"timings":{"blocked":68,"dns":0,"connect":0,"send":0,"wait":42,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d2lmlpk6xgu7kg.cloudfront.net/uploads/1645606690250c6c064370ec8752e020ce647d55a1.png","fqdn":"d2lmlpk6xgu7kg.cloudfront.net","domain":"d2lmlpk6xgu7kg.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"108.157.217.61","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.187Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C9:18:5B:88:98:FA:65:52:EE:3F:8C:AC:85:C1:E4:56:E1:0D:39:DA","sha256":"C6:C6:D5:C7:F7:92:11:BB:D5:98:B6:EB:43:02:E5:65:7B:E8:32:E7:75:CE:E0:A8:29:B0:DE:A3:5E:AF:4E:02"}}},"request":{"raw":"GET /uploads/1645606690250c6c064370ec8752e020ce647d55a1.png HTTP/1.1\r\nHost: d2lmlpk6xgu7kg.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 29488\r\nlast-modified: Wed, 23 Feb 2022 08:58:12 GMT\r\nx-amz-version-id: cRdaK9HhLLcS9_wllPQb.ZMwmx1tSKec\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\netag: \"959fb4eb8ce68f4120db1a1c19362c71\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d84d4103926180da8f8abcb90515db0c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: lFIP_ESKDmyvHLk7R5ohoPfjZ-HCqaS-B8eB1Vim5SvmJjxdi7m4Jw==\r\nage: 171\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":29488,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 272 x 434, 8-bit colormap, non-interlaced","md5":"959fb4eb8ce68f4120db1a1c19362c71","sha1":"340a129c1ae0696ae3cbabbeddf4f36e95d4dd9d","sha256":"36372b5fdfae8de8e99b7a209ef8d6831b531644877b91bea3f5be51b7fa2adc","sha512":"4848b2d55218751ce314f6939d9bf2c3acb21a1f50d656b3fe476220b391fff1d401a6941ff76f7fd4e0721e4d08f258fc373dabc4b8a65829d7fab3b3345af8","ssdeep":"768:lgGEB3yDuIExXDwNZnacEyWk41gWGF2/i:lgGEBwE1cREdk4iT","tlshash":"1ed2e1c084f694c2e331573b3e4f220e72f569039369b4580b57f96826f8dafd221609","first_seen":"2023-05-05T20:10:25Z","last_seen":"2026-05-12T14:44:55.715239Z","times_seen":24,"resource_available":false,"data":null}},"time_used":117,"timings":{"blocked":67,"dns":0,"connect":0,"send":0,"wait":42,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bloxbalance.com/image.png","fqdn":"bloxbalance.com","domain":"bloxbalance.com","tld":"com"},"ip":{"addr":"91.218.49.176","port":443,"asn":0,"as":"","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.172Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bloxbalance.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 21:12:05 GMT","end":"Fri, 07 Aug 2026 21:12:04 GMT"},"fingerprint":{"sha1":"E1:BA:C1:DA:02:AE:2A:E2:EE:D4:5B:15:B1:86:C3:15:9D:AE:66:76","sha256":"97:8C:24:A0:0D:17:46:23:4A:17:78:85:75:7A:A1:73:20:BE:35:FC:A1:03:65:36:CE:78:25:47:7A:8B:13:6D"}}},"request":{"raw":"GET /image.png HTTP/1.1\r\nHost: bloxbalance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 19 May 2026 14:42:15 GMT\r\ncontent-type: image/png\r\nlast-modified: Sat, 09 May 2026 22:07:41 GMT\r\naccept-ranges: bytes\r\ncontent-length: 88075\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":88075,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 272 x 434, 8-bit/color RGBA, non-interlaced","md5":"505631b961bfb15a2da1d3dd619f4391","sha1":"58f6618a1a119f0ae5a32b5086acc74841902259","sha256":"6cddc0e0497c36c1d7702622f46dbd6737584fbcbaed78605044230d9b189a13","sha512":"b18276e17849e2b58d8d0e06bfef1e9a69ac02ba7a72ac09885ed24e14d79922eea949ee2a7e45179e148ba3cb85f542f75dfddd96d95e5408c4ae69f0cb3477","ssdeep":"1536:FW3aPfdivYXFjPyrFx9X16NwUxzTuKWptKg+7GDDHtbzCY50zCpMSOl:o3aPfZrGfnUx3uJ+4DHtbmcC/","tlshash":"248302c1ba49f158a2f25de566812ccc883f71286d553bda6f6bb3984a5c530e3f4ec0","first_seen":"2026-01-09T08:54:26.059187Z","last_seen":"2026-05-12T14:44:55.708038Z","times_seen":8,"resource_available":false,"data":null}},"time_used":133,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":43,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-12","alert":"Sinkholed","trigger":"bloxbalance.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"d2lmlpk6xgu7kg.cloudfront.net/uploads/1645606690860b44915e39951ccef2f78aae356a84.png","fqdn":"d2lmlpk6xgu7kg.cloudfront.net","domain":"d2lmlpk6xgu7kg.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"108.157.217.61","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.187Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C9:18:5B:88:98:FA:65:52:EE:3F:8C:AC:85:C1:E4:56:E1:0D:39:DA","sha256":"C6:C6:D5:C7:F7:92:11:BB:D5:98:B6:EB:43:02:E5:65:7B:E8:32:E7:75:CE:E0:A8:29:B0:DE:A3:5E:AF:4E:02"}}},"request":{"raw":"GET /uploads/1645606690860b44915e39951ccef2f78aae356a84.png HTTP/1.1\r\nHost: d2lmlpk6xgu7kg.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 31679\r\nlast-modified: Wed, 23 Feb 2022 08:58:11 GMT\r\nx-amz-version-id: RQYIgMchvr6G6gI3kkzRz2_v3JIfeLza\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\netag: \"cf9c06469236cd8e8d2088087b10b5b8\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d84d4103926180da8f8abcb90515db0c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: ayS75QtnNkZ3VgC8s9axn2qkZC-zT77Yj5MmbVD8Bwxhv-oTAnkrUQ==\r\nage: 171\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":31679,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 272 x 434, 8-bit colormap, non-interlaced","md5":"cf9c06469236cd8e8d2088087b10b5b8","sha1":"3ed6a01bbcf7bf6b83ab2c997546ead5af372743","sha256":"ce0e7beb9853e79a93344cec332447dad72d4ed2f18b703cfee28bed8e77b038","sha512":"d697b7fc3f1cee051f891dd7cecc51d6c9b4f205988ba8979df46655df709b70d4e68bebe92a22be1de1fd11f0c6a622dcab089fd399e724d6da667ff0282b5b","ssdeep":"768:Ga9qfls4ytxy/TBpMdHBrxJjQuASobcCncLnvGcMTWBQraCveQBV:/9qds4ytwXMdHBrxN1ASob9cLGluUaA5","tlshash":"b5e2f148af5294946c80f1512af16e5d68771fd82a1944887fefab3f5ca10718f0caeb","first_seen":"2023-05-05T20:10:25Z","last_seen":"2026-05-12T14:44:55.717598Z","times_seen":24,"resource_available":false,"data":null}},"time_used":150,"timings":{"blocked":66,"dns":0,"connect":0,"send":0,"wait":79,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v15/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.143.131","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.195Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"99:99:69:B2:FC:B4:4F:EA:18:FB:04:4C:0F:8D:3E:40:61:B5:31:00","sha256":"55:6F:9F:9F:5C:FF:31:03:79:C7:88:2B:89:0C:1A:2F:DE:0B:7B:1A:91:6E:BD:C8:7D:60:EF:5A:D9:C7:51:26"}}},"request":{"raw":"GET /s/roboto/v15/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://bloxbalance.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 14596\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 05 May 2026 18:19:01 GMT\r\nexpires: Wed, 05 May 2027 18:19:01 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 14 Jan 2015 22:47:38 GMT\r\ncontent-type: font/woff2\r\nage: 591794\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14596,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14596, version 2.0","md5":"bb474f16c9f76f522d656d66aa4a220e","sha1":"55161308d29d91ec21aadf6f63da390a902c053b","sha256":"01a44f86a9b361ef0d3ad5e4f9f0f01d394ab53fc5b0e3dff92466fa411e706b","sha512":"4e8cee0f4f0d8c18263b80abca06e8dda9d58a5ff10fda72d8d0c27bc27ef49dc97346f7c3477518d191b4cd0c946b2d8aef40025e81d72d4b58862395fdd064","ssdeep":"384:yut37C+Qoa05r//4Yy65wcEoo99oX61GRwkdNxGGFJobKdlbCl:yupG+QslwcEooJ0zdPGSwKdlbCl","tlshash":"4562e010a7e1ce84918e77b4641b49662e0010bfd37743f24d471dda6f2c4e8b5ac764","first_seen":"2023-04-11T18:56:18Z","last_seen":"2026-05-30T22:44:48.211597Z","times_seen":1182,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":1,"connect":8,"send":0,"wait":9,"receive":1,"ssl":99},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bloxbalance.com/","fqdn":"bloxbalance.com","domain":"bloxbalance.com","tld":"com"},"ip":{"addr":"91.218.49.176","port":443,"asn":0,"as":"","country":"Ukraine","country_code":"UA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-12T14:42:14.672Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bloxbalance.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 21:12:05 GMT","end":"Fri, 07 Aug 2026 21:12:04 GMT"},"fingerprint":{"sha1":"E1:BA:C1:DA:02:AE:2A:E2:EE:D4:5B:15:B1:86:C3:15:9D:AE:66:76","sha256":"97:8C:24:A0:0D:17:46:23:4A:17:78:85:75:7A:A1:73:20:BE:35:FC:A1:03:65:36:CE:78:25:47:7A:8B:13:6D"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bloxbalance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\nlast-modified: Sat, 09 May 2026 22:08:27 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 6025\r\ndate: Tue, 12 May 2026 14:42:14 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"jQuery:2.2.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]}],"data":{"size":26721,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1302), with CRLF line terminators","md5":"6345dd62e1187a0a454ae4596444a26e","sha1":"300ddac5f187017342e102982f10db0ab32f5379","sha256":"22f785d21319c4175a7273222f3e0ac8e13e90fe9ada16ee270a58f20d7b4195","sha512":"8c199c9e20c98134a422d38a87cf2d9f22fde596b0d40364d91d8c68274a9aec91f23b7969edc0ac6a2cbbd2a45ee4d141aed18c7a917ca84eeccd2fdbb9bc0b","ssdeep":"384:Tgge5MTZM8qSmUEloAcQNG4+EG/MjieiOwCb45uH0F7i9snOZqaiYiNoGTzIMpwj:0ge5MTHqSmU+/GZmGvrD1Ax5URLI3","tlshash":"7ec2d957bb800029607393bd2bb71708f97d92138a018d57beaca550cf76c796973eac","first_seen":"2026-05-12T14:42:41.618892Z","last_seen":"2026-05-12T14:44:55.723403Z","times_seen":2,"resource_available":true,"data":null}},"time_used":378,"timings":{"blocked":160,"dns":74,"connect":42,"send":0,"wait":51,"receive":0,"ssl":47},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-12","alert":"Sinkholed","trigger":"bloxbalance.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"robloxhelper.app/cl/js/4orqm5","fqdn":"robloxhelper.app","domain":"robloxhelper.app","tld":"app"},"ip":{"addr":"104.21.33.232","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.157Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"robloxhelper.app","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 11:31:41 GMT","end":"Tue, 07 Jul 2026 11:31:40 GMT"},"fingerprint":{"sha1":"15:4B:C4:12:6F:C3:63:FC:6E:E1:B0:60:B6:66:A0:FA:4B:FE:47:4D","sha256":"F6:0E:AF:B5:F4:8F:2F:17:A7:0D:59:94:82:7B:87:49:CE:DF:54:06:7E:1E:21:87:CD:B0:47:9D:E7:14:86:0A"}}},"request":{"raw":"GET /cl/js/4orqm5 HTTP/1.1\r\nHost: robloxhelper.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: no-cache, private\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-content-type-options: DENY, nosniff\r\nx-xss-protection: 1; mode=block, 1; mode=block\r\nx-robots-tag: none\r\nset-cookie: XSRF-TOKEN=eyJpdiI6Ikh2bWd3QUw3Q2tINTk2cDdud055amc9PSIsInZhbHVlIjoiL21KR0RvTDRxa2pNb0RuYi9uZXlGZmFZelVhT1pkVDRJc3ZKRS9NTzQzWGxmZytOWHhjaTRVbXk1OE5rMUNEbHN2UzVxdXFGWUJzUlR1Qjl5b0RsMEVKV21hVGl0ejJ6MGdObHpoTU5tL3J5NVNlV3k3OHdxOXpDcllWMlp4Sm8iLCJtYWMiOiIwZTQ1MjEyZGRkMmM2ZDE1YTlhMTcxZTI1YTliOGY2MTNkYmI1OGZjZmQ3MjM1MTlhZjc5MzViOGY2NjY2MzVkIiwidGFnIjoiIn0%3D; expires=Wed, 13 May 2026 10:42:15 GMT; Max-Age=72000; path=/; secure; samesite=lax\nogads_session=eyJpdiI6IjdRaFVLZ29PTndUN1c1WlFLNFhxYVE9PSIsInZhbHVlIjoiU0tEOTVIczd0UzM5a1haMTJlbnhuSSt3dDl0cjlaaWRiT1ZKbnhNSEh1TitxTENiY0VmZzYyTkRZMGRvbVNWc3ArRUl5c2h5UGxkbGNiZDVoV2Y0ditTZzY2Wk84S0plT3RXRnRzaGkraDFORjc3cmRtWjQrZmtqV2I5UWRYY0UiLCJtYWMiOiI4ZDUyMGIzZWIzY2JkZGZiY2Y0OTNhMTQwOGQ1MTEyYzBhMTU3YjJkYmQ5OGU1MDczNjViOWY2MzU4ZTg3ZWM2IiwidGFnIjoiIn0%3D; expires=Wed, 13 May 2026 10:42:15 GMT; Max-Age=72000; path=/; secure; httponly; samesite=lax\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0HlTXVtYqOpFraMgaZZgBb1%2BxLuSEboQ0iDPRsMxBe%2B%2BJ24VMUcxAQta6e5vtYVU4qtRyfv52CFjfhSKuhy4QMdtxb49JBU39%2FZAqrer%2FTnD08x5ZZPkkp2fcxRV8zJ9S%2Fxi\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9faa305cfba40b02-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2847,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"5ae5f3f5b573437893d24d0413038799","sha1":"fba1145bc538036a345c07f89e06a85a30b91ee9","sha256":"c3a5511a518677fc6897aa1e895da0e64c2ca40edfff91d74343451c07533205","sha512":"e3d51da21f348fd8c13dae64d0bba6369f1a8e4c2e2b14b5561964c70ed84c9190ac8d2543b4b50eb2587ff10400df743addf5222eb6f142a205ca0ed68ddc61","ssdeep":"","tlshash":"5b517aef6ce3a650256ba47d0bef914d30b884673505c530bcbc95c85fe0e10aa99bed","first_seen":"2026-04-25T15:53:16.93055Z","last_seen":"2026-05-12T14:44:55.704608Z","times_seen":3,"resource_available":true,"data":null}},"time_used":428,"timings":{"blocked":45,"dns":37,"connect":1,"send":0,"wait":329,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-12","alert":"Sinkholed","trigger":"robloxhelper.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-12","alert":"Sinkholed","trigger":"robloxhelper.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"d2lmlpk6xgu7kg.cloudfront.net/uploads/16456066916e6559533a5e292ccba8bb80f9149007.png","fqdn":"d2lmlpk6xgu7kg.cloudfront.net","domain":"d2lmlpk6xgu7kg.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"108.157.217.61","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.183Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C9:18:5B:88:98:FA:65:52:EE:3F:8C:AC:85:C1:E4:56:E1:0D:39:DA","sha256":"C6:C6:D5:C7:F7:92:11:BB:D5:98:B6:EB:43:02:E5:65:7B:E8:32:E7:75:CE:E0:A8:29:B0:DE:A3:5E:AF:4E:02"}}},"request":{"raw":"GET /uploads/16456066916e6559533a5e292ccba8bb80f9149007.png HTTP/1.1\r\nHost: d2lmlpk6xgu7kg.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 12769\r\nlast-modified: Wed, 23 Feb 2022 08:58:12 GMT\r\nx-amz-version-id: qWhXdWD6ozQaJ.1oJMOpmTjlkVn6l6k0\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\netag: \"677e596f3cd64052974585aa7e123c1e\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d84d4103926180da8f8abcb90515db0c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: c_pjgsuu2ROCYXbHV7xGDMnPF9-sJ8N8byxxs4v-oasRBbq3-kQVrA==\r\nage: 172\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":12769,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 272 x 434, 8-bit colormap, non-interlaced","md5":"677e596f3cd64052974585aa7e123c1e","sha1":"92843957e506d7500dce6def69484d6bcb255dad","sha256":"17abeedfe0763eff8133623a2b24502d116f561c2ca907e0263b490a958e2072","sha512":"b5b3d8a29dadbf7dad33749e43b65330d9421656f2af1dea1ba082982b5bd2edc7f58731ff0c20d1b12ab6a1d51b9bade024d74ba95f642e6ec4a36322f98fc3","ssdeep":"192:KaIGyde3nuzh1UHe82qgXJp6LWKcZZR8ImA1pIkzuVRZJu6/iUf:V0LM+8FkIWZD8E1pIkuVfJu6a8","tlshash":"d742b0c28e84ddba3d563d0c3785a148bbf2686cb6f0c845fd6f2e2b7d11860602b536","first_seen":"2023-05-05T20:10:25Z","last_seen":"2026-05-12T14:44:55.702451Z","times_seen":24,"resource_available":false,"data":null}},"time_used":220,"timings":{"blocked":73,"dns":39,"connect":11,"send":0,"wait":43,"receive":10,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d2lmlpk6xgu7kg.cloudfront.net/uploads/1645606690dfe4c50e8dab48f102c825bbb91242c3.png","fqdn":"d2lmlpk6xgu7kg.cloudfront.net","domain":"d2lmlpk6xgu7kg.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"108.157.217.61","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.190Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C9:18:5B:88:98:FA:65:52:EE:3F:8C:AC:85:C1:E4:56:E1:0D:39:DA","sha256":"C6:C6:D5:C7:F7:92:11:BB:D5:98:B6:EB:43:02:E5:65:7B:E8:32:E7:75:CE:E0:A8:29:B0:DE:A3:5E:AF:4E:02"}}},"request":{"raw":"GET /uploads/1645606690dfe4c50e8dab48f102c825bbb91242c3.png HTTP/1.1\r\nHost: d2lmlpk6xgu7kg.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 6729\r\nlast-modified: Wed, 23 Feb 2022 08:58:11 GMT\r\nx-amz-version-id: W6axW.sMqNSWP4B7a9GQEzzaYOmvzKOC\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Tue, 12 May 2026 14:42:15 GMT\r\netag: \"e2a36e05f872ff1f960328d91954a724\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d84d4103926180da8f8abcb90515db0c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: C6c12gkob7Xos-17AtFu4nnEPzy2-k9RWHKPhM37s-yXF382pp2uFQ==\r\nage: 171\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":6729,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 272 x 434, 8-bit colormap, non-interlaced","md5":"e2a36e05f872ff1f960328d91954a724","sha1":"236b905b2962ca0e8e99b7ec670abd3574fc36c5","sha256":"0807e8f7ee5b126649b8815fbcfb23d0eb5a5809066299bdc9e3ad2cfd94030f","sha512":"9a9f733158321f3d4bb684bb7036c271d7de0ffd0dd9462a05acadba5d53760b64e5d9dc18b7501d58717f1eda30a57bd6ca366cd214be9e52d39458aa871498","ssdeep":"192:g8B335/2L/+KGCnC+LS3tG4gUYUZC3qvZ/PE:Xp3sLPW3txgfUZC6vVPE","tlshash":"63d1ade8d0cd44eb799897b5829fddb6e8ba980b388903f2c855bd30cd35968b4f045d","first_seen":"2023-05-05T20:10:25Z","last_seen":"2026-05-12T14:44:55.722305Z","times_seen":26,"resource_available":false,"data":null}},"time_used":117,"timings":{"blocked":64,"dns":0,"connect":0,"send":0,"wait":44,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bloxbalance.com/","date":"2026-05-12T14:42:15.154Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"25:C3:78:A0:E1:97:BA:8A:CE:43:FA:9C:BF:89:EF:DD:A3:CD:9C:40","sha256":"C1:18:7F:C1:92:8E:D0:83:CA:E8:62:DB:BE:FE:89:B2:84:13:70:FA:0E:40:65:D2:B6:8C:09:37:73:46:4D:4B"}}},"request":{"raw":"GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1\r\nHost: ajax.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"hosted-libraries-pushers\"\r\nreport-to: {\"group\":\"hosted-libraries-pushers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 30028\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 05 May 2026 18:31:52 GMT\r\nexpires: Wed, 05 May 2027 18:31:52 GMT\r\ncache-control: public, max-age=31536000, stale-while-revalidate=2592000\r\nlast-modified: Tue, 03 Mar 2020 19:15:00 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 591023\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":85578,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (32065)","md5":"2f6b11a7e914718e0290410e85366fe9","sha1":"69bb69e25ca7d5ef0935317584e6153f3fd9a88c","sha256":"05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e","sha512":"0d40bccaa59fedecf7243d63b33c42592541d0330fefc78ec81a4c6b9689922d5b211011ca4be23ae22621cce4c658f52a1552c92d7ac3615241eb640f8514db","ssdeep":"1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a986:v4J+OlfOhWppCW6G9a98Hr2","tlshash":"1e83c6d9b2d6706297b734b850bf410bb17a98dab44c8c60f059d4e47eb4a8e507bf2c","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-05-31T01:06:44.024016Z","times_seen":282091,"resource_available":true,"data":null}},"time_used":208,"timings":{"blocked":91,"dns":1,"connect":8,"send":0,"wait":10,"receive":8,"ssl":84},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}