{"report_id":"4e1a2664-3316-4169-bfa0-8492815a7f6e","version":6,"status":"done","tags":[],"date":"2025-12-23T17:01:53Z","url":{"schema":"http","addr":"m0tjmiqh.poldefi2.cloud/index.html?shiny","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"172.67.135.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/index.html?shiny#/","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"title":"m0tjmiqh.poldefi2.cloud/index.html?shiny#/","dom":{"size":209008,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (40058), with CRLF, LF line terminators","md5":"fad8cab4fb866a0afaa4b62dbc8511fb","sha1":"b798dae57ab63f26c23e87e82756e8085c8fca6c","sha256":"53136ec4e209d7740c4d2dc00e2c78af3ec49dd49582a9a3ed97457d88bbfd0d","sha512":"55aa86a54686c5091b94243df25b47fe06eec81457a6f752babc40e3bbca96528c2ad81525e6d80700609c71a888c26ea06a69b42b0edc98ce0df624a34699cf","ssdeep":"1536:Ar84pe24BmPgNHYvkvhFOCYDvsrFKVHvnx2qb8QsYId0FHoMqu7NdEAaM2OLbxKe:bjzOsYVXsp0NVr7fnaMZ","tlshash":"d814e852f688089cbb2bc886d2c4fb7db9bb7522c2415cd6f76e23258f816e3125175c","dom_hash":"domhash1b612813131014006c4ede0277b711d8","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"m0tjmiqh.poldefi2.cloud/index.html?shiny","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"172.67.135.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-27T17:01:53Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"m0tjmiqh.poldefi2.cloud","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-11-17","domain_rank":0,"first_seen":"2025-12-23T17:01:55.632136Z","last_seen":"2025-12-23T17:01:55.632136Z","alert_count":28,"request_count":30,"received_data":18541925,"sent_data":15215,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-12-21T22:14:03.270461Z","alert_count":0,"request_count":2,"received_data":98734,"sent_data":1126,"comment":"","tags":null,"fingerprints":null},{"fqdn":"secure.walletconnect.com","ip":{"addr":"172.66.147.126","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-12-19","domain_rank":0,"first_seen":"2024-01-29T14:17:12Z","last_seen":"2025-12-11T15:45:20.021645Z","alert_count":0,"request_count":1,"received_data":961,"sent_data":580,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-12-21T22:17:07.06462Z","alert_count":0,"request_count":1,"received_data":10794,"sent_data":482,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"api.web3modal.org","ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2022-11-18","domain_rank":433029,"first_seen":"2023-09-19T09:52:23Z","last_seen":"2025-12-18T19:52:26.898618Z","alert_count":0,"request_count":30,"received_data":45814,"sent_data":19217,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/index.html?shiny","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"5b1d20b34db0ccac17cba8e8a51283f8","sha1":"d404685494a5b31116a986852f5e29bbeabcab71","sha256":"238375b2cedeebb7bf3294763f5ff3cc9821d6297010b0525b27271bebb252aa","sha512":"2440260b951427606cbabfe6a83a68422f0b962dd278eaf52f7ecba6934a6ffaca15b1b31cffa36eae146e8a02bcab685ed45b1fe26defef71a2580d32dfa4d4","ssdeep":"","tlshash":"6cf099c2903d256c0229410db916d28a3a7f0472658328913c9c27ac9df4f0fc12eaa8","size":655,"data":"","first_seen":"2025-08-12T16:39:14.731522Z","last_seen":"2026-04-13T06:23:20.808131Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/js/resolution-sageuhn-avocadophn~resolution-driedwcp-simmeredgv~resolution-joyvjv-historiank~resolution-archaeolog-crusaderfc~resolution-archaeolog-sousmgb~resolution-disciplebs-conviction.a5542e86.js","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2a50410535a5bc0591e1d0c6f2cd47c0","sha1":"1cd4b059fed721ff13e171eb5b39e3c654e6c2d7","sha256":"3053508755cff8a4453407d22601e7a94d9c8841d4c1c158f020a6bb755f152e","sha512":"7e24637ecf17eaeb15996cf156be9d9fcf6f94f794a975ed92045d73927ab0159879cc5453a6011f7e8324b82b00f65354ba30bf472810bf79f4ee21c6376df8","ssdeep":"1536:KmSsl07EsYId0FHoMqu7NdEAaM2OwkCiPCz4v:HSY07Esp0NVr7fnaMWPiPWA","tlshash":"5f833b54f6481cca57b7ce4d7708f69defb23e1594881c89e46a6d2d09f730260ecab8","size":83505,"data":"","first_seen":"2025-12-23T17:02:06.00953Z","last_seen":"2025-12-23T17:02:06.00953Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/js/resolution-managerwmc-virtuegwu~resolution-sageuhn-avocadophn~resolution-foreignerf-singermcc~resolution-foreignerf-seekermqf~resolution-implementb-ownerlbo~resolution-virtuernb~mockeryjyq.79443e17.js","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b13c54654feb29b3ad762caddac3153b","sha1":"9c1426e7e56d9b14983df3ca60b5ddbc16e115fd","sha256":"7fee0b2234fc0e4ee46a520fe64ecd25bb56775f33bf99659962faaf6f489603","sha512":"9116263aea199b902720d663ff4586421ef613e1369d12f50e65aee588fa0725ce3ae51f9a81d9ece9bb7916dac4ddd6808def8c26b4620018c2082ffd1e27fd","ssdeep":"768:+MyBKL6u+c85eulBxp69eysERgMLfiwYfW/9klri9HQn:7OKLByeqxksyTiwYRcQn","tlshash":"19e2964a2ec0a94c234a8ff77127a5e8e14a0d6e380d884fe1157d68bdd5257faf1631","size":31278,"data":"","first_seen":"2025-12-23T17:02:05.998441Z","last_seen":"2025-12-23T17:02:05.998441Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/js/resolution-sageuhn-avocadophn.920ca02b.js","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0339e0286b2b82478cd2da915790c968","sha1":"5ef24c43d0d785b28b2ea9d749e852bd6abc8bb1","sha256":"99d6a63315bd6ef88d69440a6bf40f1a6ace8729df3711fe45bce19f07eea66d","sha512":"c170a13eca75dd7856cccb5add552a428ff0ab4818cd32aeb9135906cecb9fee2a19c673854ebbbe686c113f5f0b718b6fcec11af8c2961f395a7a370c28b0b3","ssdeep":"1536:sotleeG4N7YX8xTMFM/npI/XueIzjbsZ0V3UHACKoLunwb6aCVzTomOzGw+mj6RN:4Gwb6aCVzTomOzGw+mAN","tlshash":"bc7350452a41a25c774b0b763217b4f6e057082d24da8efae0257c5423ba72ff9bce35","size":78980,"data":"","first_seen":"2025-12-23T17:02:06.033437Z","last_seen":"2025-12-23T17:02:06.033437Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/js/resolution-sageuhn-avocadophn~resolution-driedwcp-simmeredgv~resolution-joyvjv-historiank~resolution-ketozcu-mushroomxw~resolution-disciplebs-conviction.65c709a6.js","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0511165098d8345342242413ad58f46c","sha1":"7f233bdb2b867c93fc9b3874f3e305e0ab732ab9","sha256":"6eae28ee867ce5dca655f65509d031b8666109ae196fa44da1002d60d50b10fc","sha512":"54e1bdd4cb7545aaa19bcf8668fab012645368f3066ba0fcc55222de3465a022bebb9fc00b712d09b7374750ec9ccc4c2f146a929384d4acc332d01f2ae22d38","ssdeep":"6144:cJqmxfXxp1dut1VNSLS4MvDm51bHhP1qWHtgKRgqYoT0eblCUzktdSN1kZ1z5tD2:cIkfXzutFX4Wo1qWHtgKRgqP/AkkZR5s","tlshash":"1364c74166c07595238b8fbb721bb4e6e81b0cde38481ccbd158fc5499aa727fae1734","size":315271,"data":"","first_seen":"2025-12-23T17:02:06.024551Z","last_seen":"2025-12-23T17:02:06.024551Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/js/resolution-sageuhn-avocadophn~resolution-driedwcp-simmeredgv~resolution-empathyeej-brutalityl~resolution-joyvjv-historiank~resolution-ketozcu-mushroomxw~resolution-acquaintan~soggynjd.1cca4edb.js","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b39b485304047d2f921229b8751054a3","sha1":"1e7bf586bafab8b0e441063af4c07f99ff7c46b1","sha256":"2340325ff3da64e1f0feb8394de0dfe3b37f7c18db4677dda4b2f1071d7c793a","sha512":"98be7499269b86078eec9e5ac5f2c5b44f7bfce872ce6dd8708c9665f869dd0f7dd1184e2e747cbe415a21b01c7e684341d56e4762110be779374c9bed9cb6d1","ssdeep":"768:OCwYuifjnGjPhZsTiAF1DRB9tbN7+pzsnnVbOctl2zVdjTeIeEB6DBcvgaYcqeJm:2e9p+pmnVbx+m3m1uZc2dr","tlshash":"d143f702bfc0955c13475bab7317b0e8f41b09af394d859fe2382ca4999760af5fa271","size":56144,"data":"","first_seen":"2025-12-23T17:02:05.986008Z","last_seen":"2025-12-23T17:02:05.986008Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"3d5272693eb411e5b8b13a243f76c720","sha1":"6a586ab8e0a4bf12bbc60eea6ca9f2418625a22c","sha256":"9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8","sha512":"03fc5614f48fc9a2e3c4a30626fdbacde74c1fda09ffa9d1cde0393d31cd5fe1588e270c241f4cedb473c6e5cc224ff16c141468a29519ea6159accf3e3a18f1","ssdeep":"","tlshash":"a4c08c8350e2080c8210861b848880050b8808b04f9308a22cd85b7ecc9ae88c8f804c","size":148,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-06-07T08:18:02.151537Z","times_seen":15899,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.032Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:54:11 GMT","end":"Wed, 25 Feb 2026 15:54:10 GMT"},"fingerprint":{"sha1":"43:D3:3F:93:6C:4F:F7:67:58:9D:D5:48:20:4C:74:A2:69:DB:13:9F","sha256":"8C:DB:D2:85:E1:AB:12:7B:1D:5A:65:A7:EC:22:67:6F:B3:A6:65:01:28:29:FA:D2:3B:01:8D:10:7E:4D:09:52"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 23 Dec 2025 17:01:34 GMT\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10108,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"e85517dadd43448782d60d7f207fddce","sha1":"6cd31f870727ba8090fac9602b42524b4139a619","sha256":"88fbd0b95222be288587a149c324189ecbd8de0d6f0c94f528ec53857e52b66c","sha512":"5edc78df5bb062a9a2e1ea6724c14dd7eb80d77ea0fa9572de4bb0d52bbd0d163815b08a1ae77084f99fbefbb07715da1c61f0bb36fb498710c91387792955f8","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExlONEhYO3RrxGx:vXuM0p2+4","tlshash":"04227792002ba400ab971dc233cf7f3aaece50896085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-10T18:13:11.065101Z","last_seen":"2026-06-11T02:00:42.055633Z","times_seen":29921,"resource_available":false,"data":null}},"time_used":1171,"timings":{"blocked":562,"dns":1,"connect":27,"send":0,"wait":45,"receive":0,"ssl":533},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWallets?page=1\u0026chains=eip155%3A137\u0026entries=4\u0026exclude=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.057Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /getWallets?page=1\u0026chains=eip155%3A137\u0026entries=4\u0026exclude=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf029c923eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":116,"timings":{"blocked":53,"dns":4,"connect":9,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/uzgxcmyl.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.914Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/uzgxcmyl.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad106-135b\"\r\nexpires: Thu, 22 Jan 2026 17:01:35 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bZDAWefvedkxlkbPFG7bRPWrEiFMyJHpQF7BtTySw5TX4isZ4WzJ7dpz0IRVlCCBzp9BB0wMjSXmhqstKsRmmFmBEEucg0g%2Bk6NdFpZfPLwQgLcS1g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf52a677127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4955,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 81 x 80, 8-bit/color RGBA, non-interlaced","md5":"e433b355ebd34c0f0dcec3f9f7b13df3","sha1":"0408c89d03b52bf53d72008b1c4f9f4d97635532","sha256":"accfc5895bd405f7f60fe11ddb24ee0a58b44334bbf8a7e1a4e9925ea88a8dcf","sha512":"6ce07756813a11235e5767d401f2eb2f162ffb61bef7772876fb5eaacd8f6a070ea8efbcd9e07fbd66ac0183970946c9d8c896441027385a02a0500a1f935442","ssdeep":"96:fFsymOVQjSy9dRzz0RjA6rutiI7Un7ejk68QhTPMHgQj86dZAASLcVZ:fFZo79PzL6SYNb6TJPeo6dZhSLcL","tlshash":"2ba17e221fdf8f391ca6d832d157a6d4768b85112f64a5036453f73b105127b8f81a69","first_seen":"2025-07-01T08:53:06.479447Z","last_seen":"2026-04-13T06:23:20.745257Z","times_seen":23,"resource_available":false,"data":null}},"time_used":238,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":238,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/phvjdjyv.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/phvjdjyv.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad106-13df\"\r\nexpires: Thu, 22 Jan 2026 17:01:35 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kb3L7xI5A8kS%2B3NZkKd3JQ1XSCu%2FRMhEU5%2B3ovC2GDCtjD9tvf6ExqkKv4p9f5deNvj8UXxT0zgg92YQ%2FJXKVRwZBapPyTO5g%2Fz1TzREfbJYY99V%2FA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf51a617127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5087,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 81 x 80, 8-bit/color RGBA, non-interlaced","md5":"bb8248455cf0a7419f25c102c5086efa","sha1":"829fa152bec78020031c3c317f933f8431c89995","sha256":"09a37322642be8565154fcb17ba43be85c2578e3b6d06780720648cc7dcccba5","sha512":"ab624f0d29e158a37cee093a3fa5d49502d83967482c4cd48ef1816538a771070ebe01fe41358c4852e5f47487a2a2a0dd709b675a9229e864220ba32b123214","ssdeep":"96:Ts7yTemfBLO0Qe0lLWSYBnyZoOQsrmDPQ+1NwZnjxIHvX++:6yvfBLO5lKSYBnHGmp1N+njx23","tlshash":"87a18ccbe4c1935f85791a93d1c84c64d22adc54a872e08220674b26bc7775d4f6f70a","first_seen":"2025-07-01T08:53:06.485368Z","last_seen":"2026-04-13T06:23:20.744264Z","times_seen":23,"resource_available":false,"data":null}},"time_used":249,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":249,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/js/merchantpl-regulation.9538e91e.js","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:29.910Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/merchantpl-regulation.9538e91e.js HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:30 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:29:30 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad17a-bcc4df\"\r\nexpires: Wed, 24 Dec 2025 05:01:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NKWVVPH88t3lNzk334p6TvyANWKXJiPhn0kY9Q9RiAwai00II%2FTw3BHMCUpScgcyitt5X1ymGfjI5OAMpE1w6aD2Ej8dNmHc53xMIOWpoJX8DO%2FZkA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bd5e8757127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12371167,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (65521), with no line terminators","md5":"67785a4c7cb32a050c8ccda6507010c5","sha1":"f62db865c3c35a8398e1844a4a4bbb131f4f6edc","sha256":"9bc01ce2b78cae8158e2b7cf16003c112bfea3175153e28132704634895badf3","sha512":"b0318a9bc8d9d9d228720fba361fed01fc9b77d53265f74d9a93a81ed3d68a450c7d66f4e74f94da1e5bf12ae0521a36ac8106f197fab0a0efd7106d7f658c7f","ssdeep":"12288:3ynkF5OhrztILDwZlVljRaaXx4OVASvLLAe:3ynkFghr63wZlVl19h4Or7","tlshash":"36354be2c700877d510a1eaff5a06d8ed6b29c09c9c8ebe4f7cebd58c49c76550b5a80","first_seen":"2025-12-23T17:02:05.97828Z","last_seen":"2025-12-23T17:02:05.97828Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1217,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":254,"receive":963,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/js/resolution-sageuhn-avocadophn~resolution-driedwcp-simmeredgv~resolution-empathyeej-brutalityl~resolution-joyvjv-historiank~resolution-ketozcu-mushroomxw~resolution-acquaintan~soggynjd.1cca4edb.js","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:33.987Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/resolution-sageuhn-avocadophn~resolution-driedwcp-simmeredgv~resolution-empathyeej-brutalityl~resolution-joyvjv-historiank~resolution-ketozcu-mushroomxw~resolution-acquaintan~soggynjd.1cca4edb.js HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:29:36 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad180-db50\"\r\nexpires: Wed, 24 Dec 2025 05:01:34 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VrTxPpnhPoASVudp1CnVVPg%2F8v9U4OAaTZ6PWCUtOa4Fonkmraucs4TIqX7EgqNYJkJwe2oQXHnqYx6dj1GxdHUGBaUdRbJIf8rvuB5TeN8NwUGRRw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bef6d817127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":56144,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (55008), with no line terminators","md5":"b39b485304047d2f921229b8751054a3","sha1":"1e7bf586bafab8b0e441063af4c07f99ff7c46b1","sha256":"2340325ff3da64e1f0feb8394de0dfe3b37f7c18db4677dda4b2f1071d7c793a","sha512":"98be7499269b86078eec9e5ac5f2c5b44f7bfce872ce6dd8708c9665f869dd0f7dd1184e2e747cbe415a21b01c7e684341d56e4762110be779374c9bed9cb6d1","ssdeep":"768:OCwYuifjnGjPhZsTiAF1DRB9tbN7+pzsnnVbOctl2zVdjTeIeEB6DBcvgaYcqeJm:2e9p+pmnVbx+m3m1uZc2dr","tlshash":"d143f702bfc0955c13475bab7317b0e8f41b09af394d859fe2382ca4999760af5fa271","first_seen":"2025-12-23T17:02:05.986008Z","last_seen":"2025-12-23T17:02:05.986008Z","times_seen":1,"resource_available":true,"data":null}},"time_used":359,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":244,"receive":115,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/tabbar/lramobup.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.005Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/tabbar/lramobup.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/png\r\ncontent-length: 558\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\netag: \"694ad106-22e\"\r\nexpires: Thu, 22 Jan 2026 17:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FumFlVamg9yCrhdUBTh8h8o70jVn9uNN5eo%2BTd5f8KgK5ymDp%2F2FL1j41LWvghlU5L4F24UuUPwIA9LlEGDmaaZtJDnJIM8yMFcifOsTPcnFPW%2BT%2BA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bef7d9b7127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":558,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 34, 8-bit/color RGBA, non-interlaced","md5":"940e5ab7ee5747ea21ab225cde25f4ea","sha1":"9720b89f64e4e852a92835fdbc33614c151d6775","sha256":"4ff0b70a9486177db8cd7ee2366cde9f4c48b890c41cdc43fd1771147093cac6","sha512":"73fab24a582c70039614fbddfc185203fba378c5ab28c37a350170514ea480f73d80ff0d12b29b53825e6fc2bb5cf56753705fdd4ae8179f01b7c4a1072e0cdc","ssdeep":"","tlshash":"96f0e1a6226463b865ca9177167b21b2aaa4596432700b3b3e93ec2a7f40490d6e4312","first_seen":"2025-08-12T16:39:14.710557Z","last_seen":"2026-04-13T06:23:20.776183Z","times_seen":17,"resource_available":false,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/07ba87ed-43aa-4adf-4540-9e6a2b9cae00","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.062Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /public/getAssetImage/07ba87ed-43aa-4adf-4540-9e6a2b9cae00 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf0097423eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":96,"timings":{"blocked":28,"dns":3,"connect":1,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/0c2840c3-5b04-4c44-9661-fbd4b49e1800","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.225Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /public/getAssetImage/0c2840c3-5b04-4c44-9661-fbd4b49e1800 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1512\r\nserver: cloudflare\r\ncf-ray: 9b296bf039d623eb-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 26985\r\ncache-control: public, max-age=31536000\r\netag: \"cf3ispWE62A-P6WwAnoXfYmxdffmDcyauXnchu_YTSDQ\"\r\nexpires: Wed, 23 Dec 2026 17:01:34 GMT\r\nvary: Accept, Accept-Encoding\r\nx-wc-r2-status: HIT\r\ncf-images: internal=ok/- q=0 n=603+6 c=1+4 v=2025.11.6 l=1512 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1512,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"4d2d4c960bb4cfffa4482fbf2c7f2de9","sha1":"f0362b531e6a030f0af62c88dfbe43fbc8fbb037","sha256":"e03de82996a25e996279f6018e54cddf1e3660d9302c2dc4c9a86421f0c58614","sha512":"6aa82cec09ea0bd75988df0261d636476dc915a2f1497a48504d5c2cf854ad2b12206cd03daa969fa3fe5c6eb302cd7899ecbeff9ea9804fefa45cad198b73a2","ssdeep":"","tlshash":"0a31cc8f6448c0f355b7a03638b503bbe2ac694b321e0455d1126a0ed237d9ecb6d1e6","first_seen":"2024-07-08T23:13:45Z","last_seen":"2026-06-10T23:09:04.379491Z","times_seen":1445,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/c81295d5-363c-4476-16ef-1e8ab557b100","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.774Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /getWalletImage/c81295d5-363c-4476-16ef-1e8ab557b100 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1740\r\nserver: cloudflare\r\ncf-ray: 9b296bf43db376ef-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 32375\r\ncache-control: public, max-age=31536000\r\netag: \"cfgLPvenmjJiV2gFIq-um3dPSAfmDcyauXnchu_YTSDQ\"\r\nexpires: Wed, 23 Dec 2026 17:01:34 GMT\r\nvary: Accept, Accept-Encoding\r\nx-wc-r2-status: HIT\r\ncf-bgj: imgq:86,h2pri\r\ncf-images: internal=ok/- q=0 n=18+4 c=0+3 v=2025.11.6 l=1740 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1740,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"2583343f5b90bad78538fb913b15c233","sha1":"2c1a24028d97c60d41b5a7dd53c0fee8c009f689","sha256":"d9add9ce99e31c5399f5d1f1616ed1dc79e4ba940a68875233c706646789e8dc","sha512":"8f14afad3e810111b5712a1a6b10d88e6b33e47617c31f7193d7bf915e1ef7f60499fa36800809fc93cf0c39308530a0287417aea9d3a64d187a6d24c2eed824","ssdeep":"","tlshash":"5b312bb102bc3973dc290c3ed14977681571cb12c9674c1280a416e7002e5d49c3e7ac","first_seen":"2025-09-09T19:24:39.813327Z","last_seen":"2026-03-12T17:34:22.345367Z","times_seen":178,"resource_available":false,"data":null}},"time_used":47,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":47,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/qlkdfgyj.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.915Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/qlkdfgyj.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad106-5d9da\"\r\nexpires: Thu, 22 Jan 2026 17:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FwQ7RVHNTlfyG%2FmVMLb%2BF3bSvPwBEF2722VNK5P2D0M0%2FBgsWV4iTVcDjTxw9guzbwgGsPS0n%2BtDec4Z%2FZF%2FATcC14Qq2kCnSGALXVyITnL0BwrF8Q%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf52a697127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":383450,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1200 x 1200, 8-bit/color RGBA, non-interlaced","md5":"b2a968f59f83dfddd4d5cf48849a1304","sha1":"807131e5a25148394c64b346282f261f09fc4b5f","sha256":"19ff9235399a3542929f1c974eb2bceb015446abc3dbfc1b4c0f02815135ac64","sha512":"718a9f35a354aec90b3eafbccadbf814c4e450540c751249c65a1e562409015cbac2fa477b6943c833046ef1b2d6eb67459bc4fa5bea859a1ae4dacebd945bdc","ssdeep":"6144:qIjrHdiXRbusc+JmAjSR/CAS9N6BD0qzg9SYTeBwhirw5DpLO:qCHdOuQmAE/NS9cGqzg9SYTWwh9DpLO","tlshash":"288412cce3a885b3b0159954783d018b22265c7bb12ace8517cbf59f6317fb2ad36d42","first_seen":"2025-07-01T08:53:06.500036Z","last_seen":"2026-04-13T06:23:20.742311Z","times_seen":23,"resource_available":false,"data":null}},"time_used":591,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":123,"receive":468,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/tabbar/osuvoach.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.001Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/tabbar/osuvoach.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/png\r\ncontent-length: 495\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\netag: \"694ad106-1ef\"\r\nexpires: Thu, 22 Jan 2026 17:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0GwaBiNo6XEVnN4cCOiNNWPfo0RyrODqmoKml%2F52dpOJzUAL2JkjJb3s%2Fz%2FVooRV%2BtfK3z%2FPfgvYJSxzl2DPMAFuU6w5ImOAVAsonzXEJf8VuLKz6g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bef7d997127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":495,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 39 x 40, 8-bit/color RGBA, non-interlaced","md5":"86d3d3e701e1a028ec1d4303d631beb7","sha1":"86f582f89c17568b714d209fa2e01c7d1095eedd","sha256":"dd02f853eeee38609466f5c7caffdafac3e68c66b8a76dccbe896d62953ca5e9","sha512":"275c7fe581d77ec8efa8d3d8289ea9c0a82989c604617eb9243b9464e590551767838a496453c12db58dd87fa5238f5d94424450b7499d8a74849ed778f0f7b3","ssdeep":"","tlshash":"59f00e55634888b8dfd9d32b49ab8440cee511548a34eee8cfd08076578274d458b8aa","first_seen":"2025-10-21T18:08:52.141276Z","last_seen":"2026-04-13T06:23:20.783458Z","times_seen":16,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":245,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/tfsieeor.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.913Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/tfsieeor.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad106-1388\"\r\nexpires: Thu, 22 Jan 2026 17:01:35 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DLz%2F0%2FHci5syHM4kzxywmWG2lPL0j2Rs3vaecEVu0KePl4NcSdEJarh2HLvVJ16rte3JWOHfy3cMg0UVDSIe0bPHaSg9HjaYQno8qg%2BvSoNMwDHFzQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf52a657127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5000,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 81 x 80, 8-bit/color RGBA, non-interlaced","md5":"7fc68d96da8cf883ec1810bde7d2451f","sha1":"dc0068ef6e4a51e8e997a4b113702a9f1e1cb702","sha256":"7f34c9e11542de6461b4e65e6ac555bcd663d91cfc20b687cb6e799b7028e6e2","sha512":"bf131aba9a5b2b7820cdc46ba67d4a59d28f423d2d9bea6882d1ae80338b9e0f6bfc5e65431ced878563ed59dd086aea38803b2341922c8f8d7b5531a889eff5","ssdeep":"96:nQy/LakACZkIdr1CrdxDNLBuq+ksTpaKaIepB8uDuao1acZLSJImYyBvEv:nQyYKwVNL7upvaI0B8KY4ImRBvEv","tlshash":"bca17da1ddcbaaa90e831222566ad409c17587010ea7bbce78b06f6752d5235c607ae4","first_seen":"2025-07-01T08:53:06.488511Z","last_seen":"2026-04-13T06:23:20.782651Z","times_seen":23,"resource_available":false,"data":null}},"time_used":247,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":247,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/abjkefxo.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.921Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/abjkefxo.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad106-190aa\"\r\nexpires: Thu, 22 Jan 2026 17:01:35 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Y2RDwVOzKhcHsK42AmO3xhzOmFPAec3i5hZDnntdcqVzvUj%2FCeBM%2BZq15ujepJgA4bTw%2B8vO%2F4pToqYU6JaXALxgcu8xmQeIyWIvdpNNglXYXsmpuQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf53a867127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":102570,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"ff16a73d7def0791eea8d2eb593a7184","sha1":"b89b74e2e945fb3fa169f9e33c995ccd6f8c4e27","sha256":"735f68fcda9b5910871c2baa46a91eb05335250065f628f94ca8a5c3325c8ade","sha512":"4be88085ce6bbec75c343fa21e255af2db383879c91336127e952542556d110c501eab40594d2c49adc8a885b8de9a0536571d3ba49213ff898f8b35159fd42c","ssdeep":"1536:dn4CM5iaiWh8I5Z8OC1wfPnftVbTJ2pj8ztXpr6Qhl6ZU7WflIBDwqpb0:BMQaH8I/jaYcpIfWZ8wlIBxg","tlshash":"afa312d49edd42d4ada4c9e060d0710bbf2279033a78304b558f7d8a6e40f61f9e63da","first_seen":"2025-07-01T08:53:06.502996Z","last_seen":"2026-04-13T06:23:20.746179Z","times_seen":23,"resource_available":false,"data":null}},"time_used":591,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":244,"receive":347,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/mjcazrtz.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.918Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/mjcazrtz.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad106-1d42d\"\r\nexpires: Thu, 22 Jan 2026 17:01:35 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=X7%2F%2Fw%2FpdE8IfLBy96klvJqK8rQhaQZf3Y1mdBwhIsUFnbWnx5rc0kIG7rEkHBI6LABNOHWCpGWk8UqsbiWEU9qa%2Fhe%2BPmH5XhYmBdnFoZaFBIQD%2FvA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf52a787127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":119853,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"6d91dba6fd33695e5b07e3005950ed8c","sha1":"c09d9da1f50ee92e85f298e2a397bab36903132c","sha256":"14b4e6dd54ed3aa457c9267b53f5fe19a53188edfd0c2eb106985e9baae9fd7d","sha512":"5a021a9f72c073030fcaf2ba6ad7b1b5886fcf51305ac4a5b475d069767f3423c4758531c2ff8b936db53a6445b9c33393dd1e70c4ef27475e5f01a1f305a2ec","ssdeep":"3072:mTfWnHBig3a13iZsvX3Mj4pfJHBGKYlDwMf:VnhbMXX3pphhXYlnf","tlshash":"6bc312be3441f7a68a7520f4f9bfc6417e62630c3f46623ca542691da311ffb80595c6","first_seen":"2025-07-01T08:53:06.500755Z","last_seen":"2026-04-13T06:23:20.785316Z","times_seen":23,"resource_available":false,"data":null}},"time_used":596,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":244,"receive":352,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/js/resolution-managerwmc-virtuegwu~resolution-sageuhn-avocadophn~resolution-foreignerf-singermcc~resolution-foreignerf-seekermqf~resolution-implementb-ownerlbo~resolution-virtuernb~mockeryjyq.79443e17.js","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:33.983Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/resolution-managerwmc-virtuegwu~resolution-sageuhn-avocadophn~resolution-foreignerf-singermcc~resolution-foreignerf-seekermqf~resolution-implementb-ownerlbo~resolution-virtuernb~mockeryjyq.79443e17.js HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:29:34 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad17e-7a58\"\r\nexpires: Wed, 24 Dec 2025 05:01:34 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2Bb%2B6FkemA4cRMlGrzR9kQODOrneW05VEm4LXBUYGZGZhMcN1sna2j5hac1ed3Bn0SaLj5qalJlK%2B4RhZckWryB7lxRYlweDJJqTX44UxfiTxqwaVFw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bef5d7d7127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31320,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (31034), with no line terminators","md5":"b13c54654feb29b3ad762caddac3153b","sha1":"9c1426e7e56d9b14983df3ca60b5ddbc16e115fd","sha256":"7fee0b2234fc0e4ee46a520fe64ecd25bb56775f33bf99659962faaf6f489603","sha512":"9116263aea199b902720d663ff4586421ef613e1369d12f50e65aee588fa0725ce3ae51f9a81d9ece9bb7916dac4ddd6808def8c26b4620018c2082ffd1e27fd","ssdeep":"768:+MyBKL6u+c85eulBxp69eysERgMLfiwYfW/9klri9HQn:7OKLByeqxksyTiwYRcQn","tlshash":"19e2964a2ec0a94c234a8ff77127a5e8e14a0d6e380d884fe1157d68bdd5257faf1631","first_seen":"2025-12-23T17:02:05.998441Z","last_seen":"2025-12-23T17:02:05.998441Z","times_seen":1,"resource_available":true,"data":null}},"time_used":245,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":245,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/tabbar/fjshyugw.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.006Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/tabbar/fjshyugw.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/png\r\ncontent-length: 593\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\netag: \"694ad106-251\"\r\nexpires: Thu, 22 Jan 2026 17:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CCrN8fMwsQpP63VO8BO6vYL9hONmN4p6wtVarNiO8lwp3Lu7datSfVg1POyVd6TSHOzUrWfhWB7qM3INDwJJSgG1nIalprGv7y68KS3Deu%2F4ibF6qw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bef7d9f7127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":593,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced","md5":"4eca2e2896f411c4eb69d2e356ea1206","sha1":"78623c927c6eb3324315a329574a32bc4ceff8c0","sha256":"77de81e405b0927c79fa3684b0f7829d6d2552c11b8e2491428a429b567b4b0a","sha512":"85be6714093e91dcafdb9707ff4cf3aec62dee2f64840581cb56bb24bad307f49da28514423260dfd2aab76a2c2257f3a4ec31fdc85b966d48bed9c0ce80355f","ssdeep":"","tlshash":"59f047c64dc89c6bbd459b2307345438ea815c34091d577c14063ebc0234ddbcaeb848","first_seen":"2025-08-12T16:39:14.718182Z","last_seen":"2026-04-13T06:23:20.805888Z","times_seen":17,"resource_available":false,"data":null}},"time_used":244,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":244,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWallets?page=1\u0026entries=4\u0026include=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.056Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /getWallets?page=1\u0026entries=4\u0026include=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf029c523eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":122,"timings":{"blocked":53,"dns":5,"connect":6,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/f6ff957e-7e74-4f43-a3ae-a643bf18a200","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.754Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /getWalletImage/f6ff957e-7e74-4f43-a3ae-a643bf18a200 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf42ac723eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/grqbwpwg.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.920Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/grqbwpwg.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad106-1a708\"\r\nexpires: Thu, 22 Jan 2026 17:01:35 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ykOUGLoR8h%2BTf4jkL1u0Y6zYdinrL4feB0UVpAuCb6o3cbm3%2B5JJ7vvVzfIaiL0G8E%2BT39Y6SX8OrhnQRQdMImMTFccZrwXxpzzBAjZ1EL3xt%2FNuqA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf52a847127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":108296,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"bf8fcbebb0733e069265f964783ff195","sha1":"96718a449a59d9cb97e25278249dc2df1d1d431e","sha256":"eebf4a9073ecd4c0e66005eb7009c94df88cc9a81c08f3d6a3e0dcad01f37c5b","sha512":"62687c5456423a131f118d2fabe8ad9e1cf3a78e403dae40ea5e61389dea36d993adc1817afb05a9966c2ba523443e8525b32c78fe2368d27e782297511e761b","ssdeep":"3072:n0IfSYgn9jhzUO/v2x3aHPvJScZGkeMDAenH4O:H6Yg9jWOv21qv4O+MDrYO","tlshash":"84b312c4869284c1ee9528c4f6fd890f8c959cf0909511b94ef9e922c7fb7ee8e53e05","first_seen":"2025-07-01T08:53:06.489401Z","last_seen":"2026-04-13T06:23:20.760485Z","times_seen":23,"resource_available":false,"data":null}},"time_used":586,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":242,"receive":344,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/uploads/10001/20251222/e82bc5d144f930af7dd741fffa16323e.jpg","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:35.176Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /uploads/10001/20251222/e82bc5d144f930af7dd741fffa16323e.jpg HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Dec 2025 12:50:28 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"69493e94-3dc7d\"\r\nexpires: Thu, 22 Jan 2026 17:01:35 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=U89qMhWfpO6cAk6%2BDCybDbNgY8Jsxd9QdG78h3QstrQW9KnytbkjML9JsZOGZHH4e8bo166Kxm%2BQtVQyYTuHxuT%2B3hPG8abRP%2BcBSBEGKCLCEibtkw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf6dbf97127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":253053,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 119x119, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2025:11:16 11:31:08], comment: \"JPG resized with https://ezgif.com/resize\", baseline, precision 8, 640x320, components 3","md5":"3ea4a53fff970040d5c466c7942964ba","sha1":"d39e15dfe5bf34b44b35faf1f6e803a682ed355f","sha256":"d6fc884e9ecf8b5455ab1ca5d615fedf52d1f6245ba68b62ce64b1f37852e3a6","sha512":"624b90b90d324fc0340d248ea0070781223cfb65e61221d700c396203bcca53abcb7bf26bcc318f334752b5146282d65b88da054ee62b9575728ccb07e6c994c","ssdeep":"6144:QDiztCmcxa6jZZKfrRsQBNbBEDMo2y55XQ1z5Jj:QDiRCmcZjZCrRlbBnoVuHJj","tlshash":"b33412007134fa47e7e155b705daa01599a20b62d387d3f4bc1d3c88bf6e6e39a94363","first_seen":"2025-12-23T17:02:06.007311Z","last_seen":"2025-12-23T17:02:06.007311Z","times_seen":1,"resource_available":false,"data":null}},"time_used":606,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":127,"receive":479,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/c20e1cec-05e8-4ac6-a086-7ce355092400","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.749Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /getWalletImage/c20e1cec-05e8-4ac6-a086-7ce355092400 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf42abc23eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/c1bd1250-b97a-4e26-c584-554019bc1d00","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.751Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /getWalletImage/c1bd1250-b97a-4e26-c584-554019bc1d00 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf42ac323eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/3d7eb880-7654-431f-ed84-a25712b45200","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.755Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /getWalletImage/3d7eb880-7654-431f-ed84-a25712b45200 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf42acd23eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/aicumomn.png?v=1","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:35.200Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/aicumomn.png?v=1 HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad106-d413\"\r\nexpires: Thu, 22 Jan 2026 17:01:35 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sNKQfnSQmBb9S4DMvxFjLce5s4Gcmjb5PVV3FEJ17EJQ53Qtjrp33LdfDOZpIuV3HO8oSfE%2Fttensi74%2BOM229rbhuVIPEUDgKXggRVJa7H8TwyiBg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf6fc257127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":54291,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"94a8ad85b598e58d124126b03f735cf5","sha1":"960e4f278b86e3195d803ffa0772b47dd1263990","sha256":"33c73f728331357699f92c6ae03582cf50c714b3baf78c4bf005c248ccf59af5","sha512":"d115bb0c49adc7533e9ebcd972ff26dda5c6a7846e9067e63d935d3ba57ac679992a89cf4069f6c0ffbbca807b2b8a1e9a90809a6570f67d56320f45e258a37e","ssdeep":"1536:6ietCnsnE9JV2tX4O/b9Vdx8FZZH6zrG7:FetCn8QOYFHwi","tlshash":"2a330115feacdc18728a09f6a0c93221132777d4f678c3622ec5ea3484066a5c886ef2","first_seen":"2025-11-27T22:43:44.684573Z","last_seen":"2026-03-12T17:43:56.99191Z","times_seen":11,"resource_available":false,"data":null}},"time_used":493,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":253,"receive":240,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/js/resolution-sageuhn-avocadophn~resolution-driedwcp-simmeredgv~resolution-joyvjv-historiank~resolution-archaeolog-crusaderfc~resolution-archaeolog-sousmgb~resolution-disciplebs-conviction.a5542e86.js","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:33.989Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/resolution-sageuhn-avocadophn~resolution-driedwcp-simmeredgv~resolution-joyvjv-historiank~resolution-archaeolog-crusaderfc~resolution-archaeolog-sousmgb~resolution-disciplebs-conviction.a5542e86.js HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:29:36 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad180-14631\"\r\nexpires: Wed, 24 Dec 2025 05:01:34 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6puj7P5z1nGinDHBlPo5cat2oxKBqPG7Qil8GjsNRiJUKBLj%2FwLDb4IA7y3%2F48y2Imm86X4pQgSOOfxtPFCs4w%2BFpWpYfTIeW6DIQMD3agOBC%2BmigQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bef6d827127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":83505,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65450), with no line terminators","md5":"2a50410535a5bc0591e1d0c6f2cd47c0","sha1":"1cd4b059fed721ff13e171eb5b39e3c654e6c2d7","sha256":"3053508755cff8a4453407d22601e7a94d9c8841d4c1c158f020a6bb755f152e","sha512":"7e24637ecf17eaeb15996cf156be9d9fcf6f94f794a975ed92045d73927ab0159879cc5453a6011f7e8324b82b00f65354ba30bf472810bf79f4ee21c6376df8","ssdeep":"1536:KmSsl07EsYId0FHoMqu7NdEAaM2OwkCiPCz4v:HSY07Esp0NVr7fnaMWPiPWA","tlshash":"5f833b54f6481cca57b7ce4d7708f69defb23e1594881c89e46a6d2d09f730260ecab8","first_seen":"2025-12-23T17:02:06.00953Z","last_seen":"2025-12-23T17:02:06.00953Z","times_seen":1,"resource_available":true,"data":null}},"time_used":359,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":244,"receive":115,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWallets?page=1\u0026chains=eip155%3A137\u0026entries=4\u0026exclude=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.551Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /getWallets?page=1\u0026chains=eip155%3A137\u0026entries=4\u0026exclude=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: application/json; charset=UTF-8\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=43200, s-maxage=21600\r\nx-robots-tag: noindex\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 9b296bf12be623eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3840,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"b69232cd4ad3868b716edeb5d0411954","sha1":"d625f2f4e194a50b8eee0c2323f0184baded4e15","sha256":"a7dfdff399860fbfee7f24b623ef39d18f3b701f19dc8cafaad7ee6de21047ca","sha512":"44e8988a85608de2e04e9aed86e275871cad715275fc1c8d16beb6fb5fee770a3882ffb9e6ddb35de092d765c159b17fbf82a20f9f229c7a4c21ffd0d664bf98","ssdeep":"","tlshash":"1a8153ab5b949d3a8b244749e5acfcee883e505b82c92dfc95f0893801f657b3211465","first_seen":"2025-12-23T17:02:06.016219Z","last_seen":"2025-12-23T17:02:06.016219Z","times_seen":1,"resource_available":false,"data":null}},"time_used":66,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":66,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/7c94a262-6d79-464c-bce3-a06f6beca600","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.747Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /getWalletImage/7c94a262-6d79-464c-bce3-a06f6beca600 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf41aaf23eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.966Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 16 Dec 2025 23:36:30 GMT\r\nexpires: Wed, 16 Dec 2026 23:36:30 GMT\r\ncache-control: public, max-age=31536000\r\nage: 581105\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-11T01:58:33.142149Z","times_seen":207999,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":119,"dns":0,"connect":9,"send":0,"wait":8,"receive":4,"ssl":108},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/js/resolution-sageuhn-avocadophn~resolution-driedwcp-simmeredgv~resolution-joyvjv-historiank~resolution-ketozcu-mushroomxw~resolution-disciplebs-conviction.65c709a6.js","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:33.990Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/resolution-sageuhn-avocadophn~resolution-driedwcp-simmeredgv~resolution-joyvjv-historiank~resolution-ketozcu-mushroomxw~resolution-disciplebs-conviction.65c709a6.js HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:29:36 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad180-4d18b\"\r\nexpires: Wed, 24 Dec 2025 05:01:34 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SeJonOjmzd0bUS6mDI2kmzY4Bt0FC6BuyIRxV6LLy%2FKQ8NUYVHAO%2BpcNFQ3CpPYjE%2BG%2FPUBbvGr5nDdGLzmo13p3wgezJkQg1q9d7bWqLl0861HNOA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bef6d897127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":315787,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (63260), with no line terminators","md5":"0511165098d8345342242413ad58f46c","sha1":"7f233bdb2b867c93fc9b3874f3e305e0ab732ab9","sha256":"6eae28ee867ce5dca655f65509d031b8666109ae196fa44da1002d60d50b10fc","sha512":"54e1bdd4cb7545aaa19bcf8668fab012645368f3066ba0fcc55222de3465a022bebb9fc00b712d09b7374750ec9ccc4c2f146a929384d4acc332d01f2ae22d38","ssdeep":"6144:cJqmxfXxp1dut1VNSLS4MvDm51bHhP1qWHtgKRgqYoT0eblCUzktdSN1kZ1z5tD2:cIkfXzutFX4Wo1qWHtgKRgqP/AkkZR5s","tlshash":"1364c74166c07595238b8fbb721bb4e6e81b0cde38481ccbd158fc5499aa727fae1734","first_seen":"2025-12-23T17:02:06.024551Z","last_seen":"2025-12-23T17:02:06.024551Z","times_seen":1,"resource_available":true,"data":null}},"time_used":483,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":129,"receive":354,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/ef1a1fcf-7fe8-4d69-bd6d-fda1345b4400","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.061Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /public/getAssetImage/ef1a1fcf-7fe8-4d69-bd6d-fda1345b4400 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf039df23eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":129,"timings":{"blocked":55,"dns":5,"connect":9,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getAnalyticsConfig","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.394Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /getAnalyticsConfig HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: application/json; charset=UTF-8\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=1800, s-maxage=900\r\nx-robots-tag: noindex\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 9b296bf0eb7723eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":55,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"d624ae72d5da08a9698cf19ed1004a52","sha1":"d2da4fc91b5567dfa523c551f8b8501b43d0384a","sha256":"68df83e68b02e91713d9e5b52a22c297d98ec2d5acda0c37cb47162547cf35db","sha512":"90aa31b4915827753f86420e7b64e4f7685df1bf06908974128eb66b8699e549781120077589005dc68e9fd726c8904fb322695755e997ba1dd28a0b90e77d58","ssdeep":"","tlshash":"9a90020520487596c052c631c21157075d258e732d1460345025090990bb4750841823","first_seen":"2024-07-15T21:15:20Z","last_seen":"2026-06-10T23:02:19.561797Z","times_seen":475,"resource_available":false,"data":null}},"time_used":139,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":139,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/6033c33c-0773-48e3-a12f-e7fbf409e700","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.753Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /getWalletImage/6033c33c-0773-48e3-a12f-e7fbf409e700 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf42ac623eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/7c94a262-6d79-464c-bce3-a06f6beca600","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.777Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /getWalletImage/7c94a262-6d79-464c-bce3-a06f6beca600 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/webp\r\ncontent-length: 852\r\nserver: cloudflare\r\ncf-ray: 9b296bf44dbd76ef-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 32375\r\ncache-control: public, max-age=31536000\r\netag: \"cfid2B_1KOrVnOD9enPdwoepL_fmDcyauXnchu_YTSDQ\"\r\nexpires: Wed, 23 Dec 2026 17:01:34 GMT\r\nvary: Accept, Accept-Encoding\r\nx-wc-r2-status: HIT\r\ncf-bgj: imgq:86,h2pri\r\ncf-images: internal=ok/- q=0 n=678+3 c=0+3 v=2025.11.6 l=852 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":852,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"c7c914b343f3c7f6de6c12723495c2b7","sha1":"823cde8535f741586ae87d3b0f684a9bd2a1a924","sha256":"beab5214d5a0e56e700dce3f94470763f4a86bbdac19f88cb019b97c53e29fec","sha512":"6dca804e9882d25866c12852f7c64231d341b8eb0445982ae05a981a511969d8a738667bf9c54db4a7de14c526e0e8e201ae53b06affc8ce89d56c4f87c0f1d1","ssdeep":"","tlshash":"5b0192929e8340689a6cb9a3b8d28423b662d3301beb8942f4c1adec4205923062a802","first_seen":"2025-10-16T06:49:58.237672Z","last_seen":"2026-03-12T17:34:22.38666Z","times_seen":181,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.965Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 16 Dec 2025 23:36:30 GMT\r\nexpires: Wed, 16 Dec 2026 23:36:30 GMT\r\ncache-control: public, max-age=31536000\r\nage: 581105\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-11T01:58:33.142149Z","times_seen":207999,"resource_available":false,"data":null}},"time_used":165,"timings":{"blocked":71,"dns":1,"connect":9,"send":0,"wait":9,"receive":11,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/uploads/10001/20251222/2cc3f65aa6992b8ab7acf98b1a2627c9.jpg","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:35.174Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /uploads/10001/20251222/2cc3f65aa6992b8ab7acf98b1a2627c9.jpg HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Dec 2025 12:50:51 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"69493eab-13410\"\r\nexpires: Thu, 22 Jan 2026 17:01:35 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wQYwDpeiHUz5hqCSjCjHAwxsvoPYXDwQQrULONT1AzHol7OfJPi9wpX%2BmFzoF8HFOmsYo01m4rk0WSyDRV4r1uLbXsATWdy5ySw6otokujSYPkCm1Q%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf6cbf27127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":78864,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 640x320, components 3","md5":"645714435824b7dd7f5bf5a20606d25b","sha1":"964a09c782bb95d537509682e154dc5a7fbd6575","sha256":"3cb8619c10b3ec229bfe89825f3402d489e179b4f0b9c1de56131cba823f9096","sha512":"8feb2e8a53a9953ca9fc4ad16e25214029339e27789c4186368b4b4dc89adb509fa0e3873b0a86ee7347c0ee8409540554de6b9ca4b4c993e3f8322bb8157f59","ssdeep":"1536:xXJMrV8ows28zIcmTrgSrw4ab9aAAI6FOOfff1DOGVsiqQwvRnjwlt89yIZ:xXOrtn0cmTrFrg9AwOfffEGzgRjwlU","tlshash":"617302b2fac37337d17a6df0f2b4623562f219182703da559da87a356a182dcbe4c14c","first_seen":"2025-12-23T17:02:06.02925Z","last_seen":"2025-12-23T17:02:06.02925Z","times_seen":1,"resource_available":false,"data":null}},"time_used":353,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":122,"receive":231,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/index.html?shiny","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-23T17:01:29.386Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /index.html?shiny HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:29 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:50 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RcPAyhlpmSZnu2C0QS9C30ql4UrQX6rVGX2bfAkUXhl9%2BVHYP2BQjyUT0QiNYndj%2FhIg8d%2BnM5B9C%2BzrMWXr4Js28fpQ9HSHd8tRB2h5bQnCQmYe%2Fg%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9b296bd32eee568a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1152,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (370), with CRLF, LF line terminators","md5":"cb8d50a67b16a224e1bfc204fdc858cc","sha1":"6c273d5df284f70bed5f99722b6a664fd4fc3237","sha256":"b6ba7cf49dc9401bf76f05c9a1a8e882d8363ea11675977cfe79441872d2ed11","sha512":"cb47334fa4ce7e2dc15824facb45ea36de4ca4fd5ffaf0edad4f563ca6e008cb65a1d1fa2e89f07f45b37cda94ed4f14e34b30008da4c22e8ff78a25d9fcbf9c","ssdeep":"","tlshash":"2621e1c26c2ce15c033482457973f25e79bfc6b67512a4906cdc26bc88e0b4fca6f991","first_seen":"2025-12-23T17:02:06.03147Z","last_seen":"2025-12-23T17:02:06.03147Z","times_seen":1,"resource_available":false,"data":null}},"time_used":412,"timings":{"blocked":80,"dns":49,"connect":1,"send":0,"wait":252,"receive":0,"ssl":27},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/js/resolution-sageuhn-avocadophn.920ca02b.js","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:33.993Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/resolution-sageuhn-avocadophn.920ca02b.js HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:29:34 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad17e-13484\"\r\nexpires: Wed, 24 Dec 2025 05:01:34 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AvdnCytR%2FI6f1dCvqIdxsPSCphWDT3Kla%2Fec0QE7IH0I4Cpf4dMMtk5R%2Bi2JS1d%2BaUfLdgo%2Bz1E6X4C7%2FECcQx6MS3PystjNBmF5vypzBthmscaxSg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bef6d8b7127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":78980,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65455), with no line terminators","md5":"0339e0286b2b82478cd2da915790c968","sha1":"5ef24c43d0d785b28b2ea9d749e852bd6abc8bb1","sha256":"99d6a63315bd6ef88d69440a6bf40f1a6ace8729df3711fe45bce19f07eea66d","sha512":"c170a13eca75dd7856cccb5add552a428ff0ab4818cd32aeb9135906cecb9fee2a19c673854ebbbe686c113f5f0b718b6fcec11af8c2961f395a7a370c28b0b3","ssdeep":"1536:sotleeG4N7YX8xTMFM/npI/XueIzjbsZ0V3UHACKoLunwb6aCVzTomOzGw+mj6RN:4Gwb6aCVzTomOzGw+mAN","tlshash":"bc7350452a41a25c774b0b763217b4f6e057082d24da8efae0257c5423ba72ff9bce35","first_seen":"2025-12-23T17:02:06.033437Z","last_seen":"2025-12-23T17:02:06.033437Z","times_seen":1,"resource_available":true,"data":null}},"time_used":361,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":243,"receive":118,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/ef1a1fcf-7fe8-4d69-bd6d-fda1345b4400","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.591Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /public/getAssetImage/ef1a1fcf-7fe8-4d69-bd6d-fda1345b4400 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1420\r\nserver: cloudflare\r\ncf-ray: 9b296bf17cd523eb-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 44700\r\ncache-control: public, max-age=31536000\r\netag: \"cfRx5BuyC7eclsMS9LWuzHtxGJfmDcyauXnchu_YTSDQ\"\r\nexpires: Wed, 23 Dec 2026 17:01:34 GMT\r\nvary: Accept, Accept-Encoding\r\nx-wc-r2-status: HIT\r\ncf-images: internal=ok/- q=0 n=425+3 c=1+2 v=2025.11.5 l=1420 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1420,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"9df25d84823d34b95221c40c0e0d14fc","sha1":"68c23d619508da07b435f40b755884190a4327f8","sha256":"b51c83c28818cca37e5b74f5fe58f03e1060b10aef0b37563fc1716354be368e","sha512":"59bd12e0c148b6f6685cfe6c305b80df0bf2ef0604d642df50bd316391a5db947c21020a5185027af65a5e072c0ca36e254071e6eb2b2c7583a8f6708c38286e","ssdeep":"","tlshash":"7021e9196d03b8988b2d4c95558ca31315c64b2ced574264e4ab9fded460c19ee4ba40","first_seen":"2025-01-22T15:25:28.961034Z","last_seen":"2026-06-10T23:09:04.38805Z","times_seen":1350,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/6033c33c-0773-48e3-a12f-e7fbf409e700","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.776Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /getWalletImage/6033c33c-0773-48e3-a12f-e7fbf409e700 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2538\r\nserver: cloudflare\r\ncf-ray: 9b296bf44db776ef-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 13585\r\ncache-control: public, max-age=31536000\r\netag: \"cfUAub_Er_vI-ZJ66S9RS1_8SffmDcyauXnchu_YTSDQ\"\r\nexpires: Wed, 23 Dec 2026 17:01:34 GMT\r\nvary: Accept, Accept-Encoding\r\nx-wc-r2-status: HIT\r\ncf-images: internal=ok/- q=0 n=696+3 c=0+3 v=2025.11.6 l=2538 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2538,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"efe241ae855f4eb2c03263fec2c82e89","sha1":"58bd429d6861753cc6807895cbf2fad4b1add046","sha256":"0f0692f7247d95714c7348d367e88ee81840e456c68722c02e2395f5c0ceac32","sha512":"7359586d8a76601bda2e6776ffa2b5a89eb1582204f498eb17c1fb16a63def773de1764180723122d8e9d111868fc097ef732217e35e7e0373a70976be06b491","ssdeep":"","tlshash":"69515d7c2ca1ca9e37a3ef32562461788d8dd05151539000a5eace21ff278072a52ddb","first_seen":"2025-01-28T05:59:32.017954Z","last_seen":"2026-06-10T12:40:15.863953Z","times_seen":255,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/c81295d5-363c-4476-16ef-1e8ab557b100","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.750Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /getWalletImage/c81295d5-363c-4476-16ef-1e8ab557b100 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf42abe23eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/c1bd1250-b97a-4e26-c584-554019bc1d00","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.778Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /getWalletImage/c1bd1250-b97a-4e26-c584-554019bc1d00 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1370\r\nserver: cloudflare\r\ncf-ray: 9b296bf44dc776ef-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 32026\r\ncache-control: public, max-age=31536000\r\netag: \"cfOCQ0sJeY_I0imbFb9m7m6TPgfmDcyauXnchu_YTSDQ\"\r\nexpires: Wed, 23 Dec 2026 17:01:34 GMT\r\nvary: Accept, Accept-Encoding\r\nx-wc-r2-status: HIT\r\ncf-images: internal=ok/- q=0 n=46+3 c=0+2 v=2025.11.6 l=1370 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1370,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"3ccdde1acc98f170bbae714264189036","sha1":"446f88f8d6fc575c73cc0cbe7b7e1d0cb6523f2c","sha256":"c4d1f304931ff132f4f8444083fa211e17722d6ad73ce5b766f2ae1031c0b7db","sha512":"66e2792827e8f7f75ccb49debdc6c3d711dbb68c082ca9b1dd6f238c77f0c6444f3203f7c5f5d31d41540123862bb9ea4800ec02978fc349f5410d79ef6c17fa","ssdeep":"","tlshash":"0f21d8a00d148261f74a497db0fc27c0a5a61ff13cd2273e0b541ed14a1fe761d1248a","first_seen":"2025-09-09T19:24:39.887417Z","last_seen":"2026-06-09T02:18:21.355277Z","times_seen":30,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/3d7eb880-7654-431f-ed84-a25712b45200","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.782Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /getWalletImage/3d7eb880-7654-431f-ed84-a25712b45200 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2176\r\nserver: cloudflare\r\ncf-ray: 9b296bf45dd876ef-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 41968\r\ncache-control: public, max-age=31536000\r\netag: \"cfepCHWB1qkSi-cNd1o8wsvD9BfmDcyauXnchu_YTSDQ\"\r\nexpires: Wed, 23 Dec 2026 17:01:34 GMT\r\nvary: Accept, Accept-Encoding\r\nx-wc-r2-status: HIT\r\ncf-images: internal=ok/- q=0 n=17+2 c=0+1 v=2025.11.6 l=2176 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2176,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"7b91b6e5024dfdf6e8a4d61f0f74dd13","sha1":"1614f764ed7b516c7768fae0966abab152ac7d1b","sha256":"00e34844a07301274fc65fdbb65891aa95436b94c4c860d9edfcb96331c5487f","sha512":"c3948fdb40f0f4154fce632acb88cf9cf57ce39d2858e4934d8820c4d5729da238c569448b5bcb6d1780e37f005cb9f5ed60093005cfa451a92270c4c0034566","ssdeep":"","tlshash":"48413ab2c3378c72ce2cb5e3e9b2d5168b449a5a91859afc22413d33a4b145cc4b89e4","first_seen":"2025-01-28T05:59:32.007883Z","last_seen":"2026-06-10T20:15:25.893807Z","times_seen":2968,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/assets/uniicons.b6d3756e.ttf","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.867Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /assets/uniicons.b6d3756e.ttf HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 35760\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\netag: \"694ad106-8bb0\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AT8IvBuTRkmRaWwq9EvqcsLNk2hOLvf7Wymm5UJFR0KipFQrCS9WwoIaNz3l414KtpC5n6lfIXJayZPkpt40hiiOrwIBc3%2B4k6bPT%2Bsd78vtxCSmdA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf4ea417127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":35760,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 11 tables, 1st \"GSUB\", 18 names, Macintosh, Created by iconfontuniiconsRegularuniiconsuniiconsVersion 1.0uniiconsGenerated by svg2ttf from F","md5":"b6d3756ee0e3dd7ecb155b751a233247","sha1":"4e61eda60483fc01548f76ca5741ee838486cc96","sha256":"89ed7d6d732e893a473c6d6b443f854f4dcdf57360a11016306335a2048895ff","sha512":"0dca69f143ce0b6428348a23a9030ae49ae1936d940e28c75b766f89ec3fff44df111e435c300ffab7dac14d3f6b39fef8d8babb490b755c2ed5ec1b3f602cd4","ssdeep":"768:66TDym6KsVBqac6riFK/d8PWenmP7p7+A9cbWL2eRaXNPs:JTDym6nqB6WsdenmP97dqb4lss","tlshash":"2ef28e65176d4e6ad97e59ba188761130f7eff30a0b1ed16ee8ebc5e84080f405e0b1e","first_seen":"2023-04-13T07:38:27Z","last_seen":"2026-06-10T09:17:53.677948Z","times_seen":520,"resource_available":false,"data":null}},"time_used":377,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":122,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWallets?page=1\u0026entries=4\u0026include=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.573Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /getWallets?page=1\u0026entries=4\u0026include=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: application/json; charset=UTF-8\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=43200, s-maxage=21600\r\nx-robots-tag: noindex\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 9b296bf16c7223eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4874,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"a13baf8e2d4a66f6ef46efdcf49a2a00","sha1":"7a44350a8678db8ce0d332e791efb06ce806dca4","sha256":"e7a90d1d887078b3f7a942d0c90adad8750a021c9320a153c9ad5eaf379dbdd7","sha512":"caeb07cd4ba4ce8ed89a66c460ae148964d0d0bf1632094f0ec1e90ee6ad4c4526a866a88d01850de8211b4c4946526f306bbf5ede696d48bc4e8c98f0c186d7","ssdeep":"96:dNbhfWUmyvdMrhIuJmdw9vMhD+bvmI3vhhky1QmVvE:hwyfjduuPeUaVc","tlshash":"28a1559f8bc099764f348388e50dfaeed42ed047c2cc58ed64b5893981fdd676201565","first_seen":"2025-11-09T14:34:32.833294Z","last_seen":"2025-12-23T17:02:06.038993Z","times_seen":6,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/c20e1cec-05e8-4ac6-a086-7ce355092400","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /getWalletImage/c20e1cec-05e8-4ac6-a086-7ce355092400 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1192\r\nserver: cloudflare\r\ncf-ray: 9b296bf43daf76ef-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 42948\r\ncache-control: public, max-age=31536000\r\netag: \"cfs6eobn8WxmhFyQ_IbBrw7DUFfmDcyauXnchu_YTSDQ\"\r\nexpires: Wed, 23 Dec 2026 17:01:34 GMT\r\nvary: Accept, Accept-Encoding\r\nx-wc-r2-status: HIT\r\ncf-images: internal=ok/- q=0 n=468+7 c=1+5 v=2025.7.3 l=1192 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1192,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4d40ea4af9c48c1d894bf5aabcbdcd8c","sha1":"4b82938b46b8d238553afe63c1f591ce24a562af","sha256":"54656b79cfe70edf0e291967e6aeeec12239fa8042d1d2281efa356889de134f","sha512":"16a8587b3aee0df3406f3464adf437b2e43aba4b87823a4dd3ee1e18f89c725c817f308d38f186e5a9ff12fd69757701ad3a827b36b0360d27c8e40a8cda751e","ssdeep":"","tlshash":"89210ae1123e045cc83bb3fe0f5433e35d9b4921d88228d1684489046dbc0c12301ed2","first_seen":"2024-12-05T15:42:26.551532Z","last_seen":"2026-06-10T12:46:33.637223Z","times_seen":958,"resource_available":false,"data":null}},"time_used":47,"timings":{"blocked":-1,"dns":1,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/yiuzehqh.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.906Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/yiuzehqh.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad106-132b1\"\r\nexpires: Thu, 22 Jan 2026 17:01:35 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xgr8XPhPG5NTEhitt1ELLLqP3A%2FfeLWLmTw2GiFyvzOqD59enUhOtE573WHHdydvKEgxLfMZ%2B7kBC5FNJnCnwziM2Z9dT2h4sJbAC2Biv9weMHqwpw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf51a607127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":78513,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced","md5":"e187a8fe942bff4e9205e0359e911dd2","sha1":"695798141318dce15c657a95f5f3652203d6da0b","sha256":"d8e21fba5cc31a30c3159549e3d433b6276852332361a1075774a3d1e48b139b","sha512":"d0170d99954ddfe6f430854ca43836d10181b2f52df2f7d0cff215aa413ca5b4dcf84b3feabd7fad041792906c46e2a402df9de9fd0503ac5d2dfed637b9078b","ssdeep":"1536:AbThU7LkKdbLRnkpKrfl4eIEPSI7ApF9Lj/wSHLp5w8W9RgtHIV52rMt:QhUEKdpkp6N4xEPSI7IH/9LpS8CaNIzn","tlshash":"5673127ed307bbc2fb55a1e2e027d7ea9000a29c7709434d14ff09837676a9b2499d93","first_seen":"2025-07-01T08:53:06.505755Z","last_seen":"2026-04-13T06:23:20.794099Z","times_seen":23,"resource_available":false,"data":null}},"time_used":490,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":239,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/07ba87ed-43aa-4adf-4540-9e6a2b9cae00","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.361Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /public/getAssetImage/07ba87ed-43aa-4adf-4540-9e6a2b9cae00 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/webp\r\ncontent-length: 3090\r\nserver: cloudflare\r\ncf-ray: 9b296bf0bb0a23eb-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 34963\r\ncache-control: public, max-age=31536000\r\netag: \"cfmK10fIs0rtXK3D1w_qZdnstVfmDcyauXnchu_YTSDQ\"\r\nexpires: Wed, 23 Dec 2026 17:01:34 GMT\r\nvary: Accept, Accept-Encoding\r\nx-wc-r2-status: HIT\r\ncf-images: internal=ok/- q=0 n=465+6 c=0+5 v=2025.11.6 l=3090 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3090,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"b8e093ad4a0e0bf420966897e5d52611","sha1":"90172a764ff649c9553d8e84ada46adcb73f33ed","sha256":"4a00efea74245ceacea37a3e83f0a4a2830236143357d3c57e96c4dd154d593f","sha512":"50b07fcc6d1c5460e69613f4509eb8323b11b6634ea8f268bf541eeec6271bfc5852200c34f385ad82d44c3e3f70122e783f1669d9d356d65be4ee82a20d6546","ssdeep":"","tlshash":"d7515d250e57bb7f0fa7793b2e97c313955320052e06b200b624f75101940863bf35da","first_seen":"2025-01-22T15:25:28.982905Z","last_seen":"2026-06-10T23:09:04.378771Z","times_seen":1153,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/tabbar/zkxaoyfy.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.008Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/tabbar/zkxaoyfy.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/png\r\ncontent-length: 778\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\netag: \"694ad106-30a\"\r\nexpires: Thu, 22 Jan 2026 17:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=youUWBF4aIYSzWOoLgQDsn4n8ukTM%2BSLcBaJIVyo2cHNs%2FkVtVoGvVI1q5lGPePbl%2FerpUSl5VNzdPHpeKhIPhrYB%2BB%2B2iuHyp7cjqXrTsduVr5%2BzA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bef7da17127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":778,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 43 x 41, 8-bit/color RGBA, non-interlaced","md5":"54a495a70622fcf56899759ddee96455","sha1":"b793ed9c8bb812cd44cb5c1781c6133ff038bbcc","sha256":"1a13fde7a0b81cb0cfc1df17214ea64ee238ab0cb70e7328893aa3d70af7b3bf","sha512":"45efc6e042ec5374b5edef983aba04fe5c45fcf7b4ba6cd03ff91cfa4e9493a5a4bdeb9e77978e62cf6e70f082f797ac97478ef22a9f03551d7739387b48ef93","ssdeep":"","tlshash":"be01c5cdfd1becacd611af368ce21ea08836115131e8317d578ab8782a8035a2020fd1","first_seen":"2025-08-12T16:39:14.707922Z","last_seen":"2026-04-13T06:23:20.747106Z","times_seen":17,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/tabbar/eyxwncyg.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.009Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/tabbar/eyxwncyg.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/png\r\ncontent-length: 657\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\netag: \"694ad106-291\"\r\nexpires: Thu, 22 Jan 2026 17:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DlcPEBfa2ChdnIwQyRxYbTJkXG36SmRUVfwQTvjpRaOOaYei5ZVtqurmSSI%2FrL1BiXWezWj3yHzPXQzsMtn%2BJ4MAb21lOEfYsDAL2H5Q5qs%2FDlnq6g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bef8dad7127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":657,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 40 x 41, 8-bit/color RGBA, non-interlaced","md5":"5c4c4b0dc05ebfab15dffd2356c883b7","sha1":"dde489316a33eb1d4ac61a8e6dc8a8994abd11fd","sha256":"f9d7e5ab19028d26d85f5600e72f99cc678aaa53a7f00e15f195e3edccd9cb00","sha512":"d8ae0b797f46878e0753835be027ea08fb9f845dc575736d44487de619b40a9f583c9b62790b5bad4e10ec51f9825354eb50585a53060bf43579a8fbe88ff8d7","ssdeep":"","tlshash":"800128cde8e11600cf9986b467670a3369f36134a950a1d12065bdecf46154120cd187","first_seen":"2025-10-21T18:08:52.193944Z","last_seen":"2026-04-13T06:23:20.771097Z","times_seen":16,"resource_available":false,"data":null}},"time_used":237,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":237,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/0c2840c3-5b04-4c44-9661-fbd4b49e1800","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.064Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /public/getAssetImage/0c2840c3-5b04-4c44-9661-fbd4b49e1800 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf0097723eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":44,"timings":{"blocked":27,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/f6ff957e-7e74-4f43-a3ae-a643bf18a200","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.779Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /getWalletImage/f6ff957e-7e74-4f43-a3ae-a643bf18a200 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1522\r\nserver: cloudflare\r\ncf-ray: 9b296bf44dce76ef-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 977\r\ncache-control: public, max-age=31536000\r\netag: \"cfWO9thvxtxbg41N-thM9s_bmtfmDcyauXnchu_YTSDQ\"\r\nexpires: Wed, 23 Dec 2026 17:01:34 GMT\r\nvary: Accept, Accept-Encoding\r\nx-wc-r2-status: HIT\r\ncf-images: internal=ok/- q=0 n=22+3 c=0+2 v=2025.11.2 l=1522 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1522,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"6290547a33ac9e9a3cdb7bd693dcfd1c","sha1":"356980fdb86b10c322aed1433f60a3a245e1c48f","sha256":"3d61d02171ec648d5303c71c4513b00df31217fda260e3bf346a91c46034fe4a","sha512":"9a8f3ad6e70e620e7df4f040d16918f33d7eee380843d973576e2c72d61bc1e158f9884d5cfd114fd57c686567b9604def778253197f9933c416b60aedfa823a","ssdeep":"","tlshash":"bf31da5c201518d81d96c1069c241600d7766bba973bba6b7132f27ac24e8ad4cd504d","first_seen":"2025-05-26T15:14:19.567265Z","last_seen":"2026-04-30T11:12:58.931728Z","times_seen":343,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/index.php?s=/api/user/article","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.786Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /index.php?s=/api/user/article HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\ncontent-type: application/json;charset=utf-8\r\nplatform: H5\r\nAccess-Token: false\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QG1udl53Hq58A4zsUvib%2F7vDMw9Qhm3Iw%2BQA8l4fJk9T41FxGkTm4vfj%2F5WcH6rHseij1nChQCbxiMIKQJqFy8vpfF164pDeKYILH4IL2XOu4VD0VA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf469e17127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11322,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"c06262861608fd6a77c34960ebb7ed34","sha1":"c5a6644d5ece6102e09831f76393524a14ce1855","sha256":"9f65388e58d03d64f653a9828df5f2f5fbdca0f3f21afb89e33c424e0bc0e766","sha512":"d90bfb9c759f3c611216fb1aacb03cb16815d514dea31629ea55f02a39e6f0a958bb5adaf68ab598f78a1daaba46618c27ac77098f6ba43ea16b7e9e195a005b","ssdeep":"192:Ii+rS1B6LH4h+Dn2zBhZXUAqAUEUqUSTQUwB3i3ZG3I3X6C+NA7KksNg79JEh7EN:h+riB6LHDT2NP7qdxzewlYSaXt+m0gbJ","tlshash":"3232459fa3b8c560957c89d86a5573fb74c9300e49084fba75eccea8444a2335e332d7","first_seen":"2025-12-23T17:02:06.044366Z","last_seen":"2025-12-23T17:02:06.044366Z","times_seen":1,"resource_available":false,"data":null}},"time_used":323,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":323,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/criticismt.ed4a2d2b.css","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:29.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/criticismt.ed4a2d2b.css HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:30 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad106-1794e\"\r\nexpires: Wed, 24 Dec 2025 05:01:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ezUuXhYO3e6C3OKLTJuBZ3kGQL%2Fzcx7MJV5d8f2suqyiCi1a8QF7Sj7JorGvF03mnTf%2F7cydQiUYXZ3m4eq2Av%2FgHaihF1pxdBvludSHTOV8SSwb4A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bd5d8737127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":96590,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"d2c05a28c7f2113821d909b7b5b918a3","sha1":"ccac94311f6ac6f580b64f47f7705318f1d226a3","sha256":"695bdbeea38a126c139158967cdd4f3a435e9936b9dff5b002e5f20a10fc7907","sha512":"3b96fbd1a89be8ae0b7479705cd4a2958ffe7f2f3f57ec23f407ad51ed8b447b9960728d77502e8fd8b2b19bf0971682030117559df250ea11c9bc1802364c3c","ssdeep":"1536:qlIApuK7hmVmb2RS1Wu3xdynGJ7eh/nrhlvbc:hApuK7hmVrS1Wu3iG41nrPI","tlshash":"4493f73719012e39e52bcd26b6c1ab5a1e61c033e15307adfba47628cbcf9c9167b345","first_seen":"2025-10-16T12:28:28.877032Z","last_seen":"2026-06-11T00:01:28.352092Z","times_seen":1272,"resource_available":false,"data":null}},"time_used":357,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":244,"receive":113,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/41d04d42-da3b-4453-8506-668cc0727900","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.060Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /public/getAssetImage/41d04d42-da3b-4453-8506-668cc0727900 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf029cd23eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":119,"timings":{"blocked":51,"dns":5,"connect":9,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getAnalyticsConfig","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.065Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /getAnalyticsConfig HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf0197c23eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":28,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/chtiohom.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.912Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/chtiohom.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad106-1388\"\r\nexpires: Thu, 22 Jan 2026 17:01:35 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WvvbOKudN9m5XVIVcGDCaeOcHNW%2BECHsu9BBXCkR3OB5gRQeZtsQHQi4ilPg9yTJgmVeDC%2FCaDIzeIMdvfxoJokw%2BR%2FyNU1TfWgscI%2BBbttUaUYW6A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf52a647127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5000,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 81 x 80, 8-bit/color RGBA, non-interlaced","md5":"7fc68d96da8cf883ec1810bde7d2451f","sha1":"dc0068ef6e4a51e8e997a4b113702a9f1e1cb702","sha256":"7f34c9e11542de6461b4e65e6ac555bcd663d91cfc20b687cb6e799b7028e6e2","sha512":"bf131aba9a5b2b7820cdc46ba67d4a59d28f423d2d9bea6882d1ae80338b9e0f6bfc5e65431ced878563ed59dd086aea38803b2341922c8f8d7b5531a889eff5","ssdeep":"96:nQy/LakACZkIdr1CrdxDNLBuq+ksTpaKaIepB8uDuao1acZLSJImYyBvEv:nQyYKwVNL7upvaI0B8KY4ImRBvEv","tlshash":"bca17da1ddcbaaa90e831222566ad409c17587010ea7bbce78b06f6752d5235c607ae4","first_seen":"2025-07-01T08:53:06.488511Z","last_seen":"2026-04-13T06:23:20.782651Z","times_seen":23,"resource_available":false,"data":null}},"time_used":246,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":246,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/ulfkzquw.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.916Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/ulfkzquw.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:35 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad106-91d35\"\r\nexpires: Thu, 22 Jan 2026 17:01:35 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BsxjQ%2B1wT0%2FxI5JBgSsRNXlaShIfuo842pS%2FM7KxVA3BypxqSh%2B6jaKQTXtcjTIouXiHaLs97jAx2rsEXfyi8QavGXlFw1d7tsBvxJln%2F9aHlX6S5g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bf52a6c7127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":597301,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1200 x 1200, 8-bit/color RGBA, non-interlaced","md5":"d27862a7fc1f0ec31e42eca40ee7c3c4","sha1":"b3ef604adb60bae3a127df72cabcbd2bfbc8f7b8","sha256":"bc6bcc3e0c90451fe5ca299669ebfb560de2678b68761d00e992c7452eb3540b","sha512":"ee30214252711e12ab20c864b1fa2bcfa9bd5fc2289101ea1ffa7febc29f4caaf0d3391de4f22cdd5c767b9003272d73182ea08869423aa46ab0b99f5d5377ca","ssdeep":"12288:HIt7glSKt3LyLqDeoosp/lJ//fWdYRHCUUDfBq/6xegDESw4CY2n6X:HItMZ5F5TtJ/PRH2E6TEaCYb","tlshash":"bcc401e8fc782440a0ce694507733adcc46e965722d24d6cb722e2361d534b6f1bbe7a","first_seen":"2025-07-01T08:53:06.480354Z","last_seen":"2026-04-13T06:23:20.773489Z","times_seen":23,"resource_available":false,"data":null}},"time_used":820,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":579,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/js/auntbwc.fbc5ad47.js","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:29.912Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/auntbwc.fbc5ad47.js HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:30 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:28:32 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad140-36feb5\"\r\nexpires: Wed, 24 Dec 2025 05:01:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zKy5C%2FXeIG3FIpV%2BY8S7bf%2Bl3%2FPfH8MckiXSeH66%2B39BcuG7dlEURTy76OTzMgYWQRvzTCERGe13U%2BmM%2Bu0s%2F6WRQ3TpFqRj6T3nJKD2H64mNA1Zbg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296bd5e8767127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3604149,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65500), with no line terminators","md5":"fe01d938cf382633bc6df6ac9d3c6afb","sha1":"d0e03476926a7a69cfa2262bcb91620ad3d4173c","sha256":"be26c6104da1af508fca1649a115b6563e70b6d4570dac4bead640fe0ede955b","sha512":"fc792fbada7ef4b6812790998b6fac864648aca26f14e23cd150d2b885531b867e927305e45e73961595642148f9a24aeae4b369cb7dcb1757d649d03672e70b","ssdeep":"12288:pjyQeqf/dcVih+MsuQ5d3tO/WmESL+HmQvQl51PpzxASCMgMP4sCiBMWmpG6rCmz:JDeg/dTygP4sCiqWmp4oj4fftoGegsqO","tlshash":"2b35a501a2c0a7cc03d77fa9771f73d6f65a185b2a880c8fe650fd6069ea616f69c530","first_seen":"2025-12-23T17:02:06.051276Z","last_seen":"2025-12-23T17:02:06.051276Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1027,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":772,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m0tjmiqh.poldefi2.cloud/static/qxvreyiw.png","fqdn":"m0tjmiqh.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:31.734Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/qxvreyiw.png HTTP/1.1\r\nHost: m0tjmiqh.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:32 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Tue, 23 Dec 2025 17:27:34 GMT\r\npriority: u=6,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"694ad106-8362\"\r\nexpires: Thu, 22 Jan 2026 17:01:31 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hkTAFjvmI%2FmFycPkTc2Bz6Lj4a%2BpIHv4aPYkU%2Fs%2FiToMXO4FwWyzggEhHA2BpiBZoLfSvgh6OVm54ttjdyYg6rkiEybFB98F9R9QgODmSWCoPjsdwA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b296be19acd7127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":33634,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 275 x 276, 8-bit/color RGBA, non-interlaced","md5":"6781390fda71ebc04bc064509caf78c3","sha1":"e094dee7df7ca047c6616602d9077ef676fee902","sha256":"febb28719cb814bb29786742da273eb5ddd06af0f143403251815e0bb49c78f5","sha512":"986762a56cf59f18b89e6a1d93c5db41a5dea2758026043eac53305b303029aebed7296d4701536cf1d7f27cc25e539af7d549ffa8fcf772ac7c7cd8e63730de","ssdeep":"768:Rk5EVtsqHfmNhF9Kufvgy3KWHsKF25AXema8jQcVuubOtbI7RN0:Rk5+so+jFgyaWMKF2eRFsuuBtbGRN0","tlshash":"cbe20281ceb8dc97aa4cfce5a775c08a9827a194f7a3ec11474340019ca47bf78dda67","first_seen":"2025-08-12T16:39:14.703895Z","last_seen":"2026-04-13T06:23:20.794909Z","times_seen":17,"resource_available":false,"data":null}},"time_used":413,"timings":{"blocked":44,"dns":0,"connect":0,"send":0,"wait":252,"receive":117,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"m0tjmiqh.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/41d04d42-da3b-4453-8506-668cc0727900","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.554Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /public/getAssetImage/41d04d42-da3b-4453-8506-668cc0727900 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1452\r\nserver: cloudflare\r\ncf-ray: 9b296bf13c2023eb-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 27510\r\ncache-control: public, max-age=31536000\r\netag: \"cfIBgbS-WAFgZUOOKJGP6fnCtOfmDcyauXnchu_YTSDQ\"\r\nexpires: Wed, 23 Dec 2026 17:01:34 GMT\r\nvary: Accept, Accept-Encoding\r\nx-wc-r2-status: HIT\r\ncf-bgj: imgq:86,h2pri\r\ncf-images: internal=ok/- q=0 n=294+2 c=0+2 v=2025.7.3 l=1452 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1452,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"a93dd349a5fd1ed9361de97195e3e09c","sha1":"84c1f402075d3d247d52ba8df9ec30272fca1f58","sha256":"a1e40b02198365213323c48f1ccd4b2ea8945df4ee94617faf8232ba4c19855a","sha512":"b4f12e7697181c9f5045636731012f5df336975d0c4245afd5afea9c628f11d0f1a6b31fb9e4a95e6277d185c2acf471ac4e8a7d32b8958d9659906a116c5ddb","ssdeep":"","tlshash":"4531a743a76c94a24493f4017b88cbce1d24641b7926c8fa22a846c8e5bed41c269cf5","first_seen":"2024-07-07T11:58:42Z","last_seen":"2026-06-10T20:12:42.057116Z","times_seen":1177,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/3386dde1-8b24-48c8-4b81-16979e342000","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.757Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"OPTIONS /getWalletImage/3386dde1-8b24-48c8-4b81-16979e342000 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncf-ray: 9b296bf42ace23eb-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/3386dde1-8b24-48c8-4b81-16979e342000","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:34.780Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Dec 2025 15:13:15 GMT","end":"Mon, 16 Mar 2026 16:12:59 GMT"},"fingerprint":{"sha1":"BB:A4:F0:3C:53:42:23:CF:CE:B4:8E:41:44:54:EA:D2:CC:AE:63:19","sha256":"56:62:33:83:79:07:6D:C7:91:6E:19:7A:0D:42:AB:AA:CA:79:20:84:2C:B4:55:EC:E2:C4:A1:84:5D:7B:EC:0D"}}},"request":{"raw":"GET /getWalletImage/3386dde1-8b24-48c8-4b81-16979e342000 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://m0tjmiqh.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1682\r\nserver: cloudflare\r\ncf-ray: 9b296bf44dd476ef-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 48890\r\ncache-control: public, max-age=31536000\r\netag: \"cfEA-Bw7H9k1gZltgcL-Suew9FfmDcyauXnchu_YTSDQ\"\r\nexpires: Wed, 23 Dec 2026 17:01:34 GMT\r\nvary: Accept, Accept-Encoding\r\nx-wc-r2-status: HIT\r\ncf-images: internal=ok/- q=0 n=1168+4 c=0+3 v=2025.8.5 l=1682 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1682,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"12fd7a0bbecec898caf25744ceae7549","sha1":"d4e4685c48987c850c780fd8e99de426fb5b19e8","sha256":"fdd5b72b8c65c37fd0db1c494691dc35794639a66ae8c11240def16c07d6e2ac","sha512":"08feddd7bab4b6b6135ba61fc3f12c7f4df27802d2357d1999ccf0dc17874f3d0a6b43368301389885f21a92273a41b420b729e408c2695d5becfbb8ddd5da8e","ssdeep":"","tlshash":"b8311a477584218d4283591bdbf086459953cc1b4b1c6123c11425b249a95731ee13dc","first_seen":"2025-02-27T06:37:34.817516Z","last_seen":"2026-06-10T20:15:25.929194Z","times_seen":1050,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"secure.walletconnect.com/sdk?projectId=27b15e4e5bf5a67b9520b54b6047c3df","fqdn":"secure.walletconnect.com","domain":"walletconnect.com","tld":"com"},"ip":{"addr":"172.66.147.126","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://m0tjmiqh.poldefi2.cloud/index.html?shiny","date":"2025-12-23T17:01:33.893Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure.walletconnect.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 25 Nov 2025 15:32:50 GMT","end":"Mon, 23 Feb 2026 16:32:46 GMT"},"fingerprint":{"sha1":"BB:EF:98:39:1B:9E:0F:92:82:B8:21:B5:7A:E3:12:65:17:85:E8:B9","sha256":"13:36:D9:42:F8:03:4E:FA:1E:E1:56:F5:B3:F9:44:5B:7F:8B:C2:0E:4C:ED:98:41:B0:63:E9:3C:E2:76:55:0D"}}},"request":{"raw":"GET /sdk?projectId=27b15e4e5bf5a67b9520b54b6047c3df HTTP/1.1\r\nHost: secure.walletconnect.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m0tjmiqh.poldefi2.cloud/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 23 Dec 2025 17:01:34 GMT\r\ncontent-type: text/html; charset=utf-8\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=86400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-security-policy: frame-ancestors  'self' http://localhost:* https://*.pages.dev https://*.vercel.app https://*.ngrok-free.app https://secure-mobile.walletconnect.com https://secure-mobile.walletconnect.org; object-src 'none'\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=G2Jg5mwAXR3UM1BQk713nhInjErTEhpo%2FA3JREAk5L0n12wk%2F1uupiwVZEcEC7Rrom9Ees4nYT1hoF%2FtYqwomNBhATdXHyty%2FS2Wws0ffmF13H1Sggw%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncontent-encoding: br\r\ncf-ray: 9b296bef094d56ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":457,"timings":{"blocked":30,"dns":6,"connect":1,"send":0,"wait":396,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}