{"report_id":"50b48e79-84cb-4ccc-b553-6ebb2afdca60","version":6,"status":"done","tags":[],"date":"2026-03-03T17:21:56Z","url":{"schema":"https","addr":"efeem.com/","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"172.67.139.51","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"efeem.com/","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"title":"Buy \u0026 Sell Bitcoin, Ethereum | Cryptocurrency Exchange | EFEEM","dom":{"size":232834,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1953)","md5":"018fbdcf984a6b1a3055423d562d76f3","sha1":"f74679dd3f924869f4975ee8b1d59bc729d2f677","sha256":"45c1d3b186b8329e1317ab947914dc0131ae85bc1507e6e18a752c56c5dd4d27","sha512":"58e32c0e48eb0700b5973d9888bea8e82f23c1eeb5417f67f42824f3278a0fd685cd73b22dc9288ddb680521795c0cb3cd31da1a6972217796c1198c2a5f67df","ssdeep":"1536:M3MfMSlB444AD1+pxT62tcSanddhhI70RjCHXKsjL+Z6ok6iRL8qEk5PpXo0uy3H:GQD1+pSSanddhhZXIuy38MfhBBR","tlshash":"a0340ae022f011e1a00293e9bb764a6a3f5695679746c644b7fc1ed49fc2ccdcd43a8b","dom_hash":"domhash84f376dd5222a749099f20e90bbfd7c9","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"efeem.com/","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"172.67.139.51","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-07T17:21:56Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"efeem.com","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-11-09","domain_rank":0,"first_seen":"2026-03-03T17:21:57.511475Z","last_seen":"2026-03-03T17:21:57.511475Z","alert_count":29,"request_count":29,"received_data":485841,"sent_data":14245,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"Chart.js","description":"Chart.js is an open-source JavaScript library that allows you to draw different types of charts by using the HTML5 canvas element.","website":"https://www.chartjs.org","common_platform_enumeration":"","icon":"Chart.js.svg","categories":["JavaScript graphics"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-03-01T22:18:12.522658Z","alert_count":0,"request_count":1,"received_data":34196,"sent_data":471,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-03-01T22:28:03.022415Z","alert_count":0,"request_count":2,"received_data":654189,"sent_data":927,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":4915,"first_seen":"2012-05-21T17:28:02Z","last_seen":"2026-03-01T22:48:56.265504Z","alert_count":0,"request_count":1,"received_data":88168,"sent_data":441,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-03-01T22:32:56.293355Z","alert_count":0,"request_count":1,"received_data":209296,"sent_data":411,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.7.1.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2c872dbe60f4ba70fb85356113d8b35e","sha1":"ee48592d1fff952fcf06ce0b666ed4785493afdc","sha256":"fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a","sha512":"bf6089ed4698cb8270a8b0c8ad9508ff886a7a842278e98064d5c1790ca3a36d5d69d9f047ef196882554fc104da2c88eb5395f1ee8cf0f3f6ff8869408350fe","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKr:sHNwcv9VBQpLl88SMBQ47GKr","tlshash":"3983f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","size":87533,"data":"","first_seen":"2023-08-31T16:03:19Z","last_seen":"2026-06-07T14:16:08.058015Z","times_seen":166235,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/lottie-web/5.12.2/lottie.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"55bf86203909151984bef8cbe4739d64","sha1":"543e646b2ff86405b77bd2514b1aede8a8b4cbd8","sha256":"a0757321f974527bda3cc2593bf56cc7ffe4578421249ced6ae49ffb1c529f90","sha512":"8c49ee0edea37de7028ed850009f9e774313540fbee592a69547260c606fdaf508fd1127e85b88762c4b367413faf2aeb04da18539368acddc16fbf9c00f9282","ssdeep":"3072:xnEwejqNqAvPSIoPayIYzfq526QGK2y0mbsZmml+39xzKMTlB6k:xUjqNqAvPSIoPayIYzfq52tU1l4fRRBl","tlshash":"a85419597254343805c540a9806f0a4bb736292e246ac49cb76cf4ffacbde8d31beb75","size":305543,"data":"","first_seen":"2023-07-18T12:10:25Z","last_seen":"2026-06-07T12:23:32.874039Z","times_seen":2031,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"efeem.com/assets/img/header/p2p.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.975Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/header/p2p.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 5440\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GLfNVty19YpkQkScrMZ7UOMnOKbclQ1ru9pMFxABQyVaVBjEudsEjFRscNIH3ozW9rtuxaQj2cKBhrzU0Ymtpslo3hphcxju0Q%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a5187bdb4a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5440,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"ecf394d33dfc28501d3f92f99d490660","sha1":"0a51f4e56a04e40a05eae931cd68d86750a2c43e","sha256":"e003384304ceacbe2ab8f0abdf2ef74e1c8fc3b2a58c93a43d46afc0c3499eca","sha512":"c7489bf8a174dd7b4ee4ac736be0384eaf9a8601e60f777faa9d6c8803967400e579dcf81536182ddd4535667f252c5818038c9c2270c768f937c0d6eb66d42a","ssdeep":"96:+cVYcgk0I8QIMIat2wU9bmdT5DdlBa6hUGDN:wcgkrMa7HBaqZ","tlshash":"62b1d91ef92231d0224dae7725ec61155f3381979a81ac94f9cf48521f142ab1c9b6fe","first_seen":"2025-02-15T17:58:10.485235Z","last_seen":"2026-06-05T15:12:51.674029Z","times_seen":383,"resource_available":false,"data":null}},"time_used":568,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":568,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/arrow-down.svg","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.769Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/arrow-down.svg HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:37 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mUqmQ%2B9V94bALDlzIVHbb3ca3Rb9WzMvk10X3R2YxtHq3CdIqcqKTuqe4lMTJQq8kMggDDYzAFJ%2BWigWjvmVeV4nTVXJobu%2FjA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d6a518cbb87a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":243,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"d0be16ce06ea0a66b8c8be201c88f71a","sha1":"03afb7918db67625b2365659d303a057071773eb","sha256":"3e6f14737272b9e9e4b60048aea76d784d99ed190878112b91f2cfba0c6fc77c","sha512":"c26291f4c90c6fe57adfcd466577789d483352812391a587011e19e0e8bf111230722309775ae62ef605ce3ef8bc7efe533b18eef7fbfea696f60205f169c245","ssdeep":"","tlshash":"19d0a79841d84d2ce6664650d7783664f03e10735f894188ea52713ed51a6cd6c339ec","first_seen":"2024-12-06T22:27:57.083257Z","last_seen":"2026-06-05T15:12:51.557656Z","times_seen":426,"resource_available":false,"data":null}},"time_used":767,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":767,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Roboto:100,300,400,500,700,900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.956Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /css?family=Roboto:100,300,400,500,700,900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 03 Mar 2026 17:21:36 GMT\r\ndate: Tue, 03 Mar 2026 17:21:36 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33510,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"a763918f3b1cf01f5127eaaaa4e5ed36","sha1":"e5932e684c5249dece73f827719829b05315deda","sha256":"316e33bfe6ab63fbb1920bfcf23774c4a779aa22c0707c7831064f9a1bb87c43","sha512":"adeeb53b0a7524e78f035b88e7993fee8484360c90ce3e6d3d69536ebf2aea3dc5d1cd45a94f0dbf8ce9ed4989351a1258ae07663871bd407bd3baa6b33d7f0e","ssdeep":"768:DDZDCDHDHDY4DRLDuDWDyDS99YURRuWDyjooYhREHPM5svvYaR7AIWP2ZZYQRVK7:Xxyllff","tlshash":"04e210a1041744009b838ce223cebf35fe1f52117142d0b5abfd9b6baddbca6526936d","first_seen":"2026-02-19T23:46:21.252973Z","last_seen":"2026-06-07T11:29:16.237002Z","times_seen":2003,"resource_available":false,"data":null}},"time_used":217,"timings":{"blocked":90,"dns":1,"connect":8,"send":0,"wait":21,"receive":0,"ssl":90},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/header/cross-rates.svg","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.969Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/header/cross-rates.svg HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=q%2Blg4d%2FuUtjI0D8HvSimPAvH1%2FWsDGYLB7G9O1xTh%2BGKycdYbuTohoYywwtGG%2BzlaJ7LACJ5lgtx9uXDPNk2iNkJK2qoa9BHow%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d6a5187bdaea618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2959,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"9197cda83fe8496d926173548214b18a","sha1":"275be8becf5bf35748b30715fa16a23a3b1fab61","sha256":"f10b465bb31a5e56f2cffb2e43b2dd222b17387ed9ac48e0c8669ee0abceae0b","sha512":"b4ffd9827f1dfdd795497d16dcc6bf068f132162ffadc7f7ce641171e7478e933efd49b8c56e53a33b1810bc6c57060b8245b52378d557178a274fd5c88829bc","ssdeep":"","tlshash":"30510a43e378e674bb4cae5d71503a50667114bbfa30808887b61f6e1c437d7b284d35","first_seen":"2024-12-06T22:27:57.041928Z","last_seen":"2026-04-24T09:21:43.524964Z","times_seen":255,"resource_available":false,"data":null}},"time_used":836,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":836,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/header/card.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.973Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/header/card.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:37 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 4528\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zvApcwxHl2bjnzgKLyLIUDKna9jGljniLgynJoC58NlINjQsc7ONXhlYXLmNuApjh%2BwlkucekMNxGAv4HpPo1RgJU6RWkQCSPw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a5187bdb2a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4528,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"787d17f49cc145d078cec3f38989b144","sha1":"8bb854fe7462d3ddc152b958232a952888a14c3f","sha256":"c38f9a1f91724365b80b233a5ddc5b891216bf82bb05f7be521fc2e75bd3cf37","sha512":"8ab4bb5374d3d7133892ba81959d0a0cf9c3adc05328d644b2ef326e602907c6988dd9b1588cb18e595583458628e130943ed8b53d70d13dde7c03fcde4f6ed1","ssdeep":"48:+MvnJralQqxKPbGf3k0IJN5IloAhat2wxrYCrW3ETb92jw1M:ZvnJWlHAjck0IJ7Ifat2wpYkbb92jwm","tlshash":"7891cc06da5235c1664ea9b711d503596c334153cdc19c5cb4cd8829af303e91e6ebdf","first_seen":"2025-02-15T17:58:10.483843Z","last_seen":"2026-06-05T15:12:51.713986Z","times_seen":383,"resource_available":false,"data":null}},"time_used":1241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/coins/SOL.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.980Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/coins/SOL.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 404\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=o7J29fQXZ2Vx70tlEU59kER2BLBU9nRzeAbjThhZlSh1lf1oMDpQZ7Kz%2BJRehUK1ypOFUC0OZfNOWJ3vr8DJss4MWK%2FkXTR6vw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a5187bdbaa618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":404,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"5e22a9302a4383454bfe530f0ddffb53","sha1":"be5b706cd340c21bd9be3a3ce56647ec384d6624","sha256":"b4f74a2541dbe53158395e8b054ec169ffe18124b55a0b5e027ebd9c22b5ba11","sha512":"0d94a417d4f0c678faea64e59463ab5c6cd582168ae7e744d44c1d6878deffec49dec89d5b5ca176bb15767eae10cdf9aa1691d4b033367becb08caf8ec56889","ssdeep":"","tlshash":"c9e0f1f27d245ca97f5642050fe80ff2d03c66f515119c861db2ca2d554105545d5453","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-06-06T23:47:44.166187Z","times_seen":947,"resource_available":false,"data":null}},"time_used":582,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":582,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/coins/TRX.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.191Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/coins/TRX.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:37 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 1315\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dN2pW9dY1Q4ZB%2BFN%2FLbY15Pb7SJR4kIA3tHw0jCTL%2BVfW%2BiSAjhAHAhx0yrv%2B65Ip09EzHplFw187cyIPfWqril2RelBGlVgxQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a51892f57a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1315,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"79cbcbdfcc32e9ed14054fb9f306d76b","sha1":"d0fe46ecc0664340d7027500d23cb6ee7b8de4f6","sha256":"ac3824adc2a37e25d5e63fe30c4de623c0985730450f3e12b58bcc58677d107d","sha512":"98eb00b634f4214e5d546aff3c51c6e889a337ed9e9a59d96b2dc189bb822352d01d2d53e02db22255c2c3f44836ce30c52c8e22199eca10c8e431d17560cedd","ssdeep":"","tlshash":"1f21f8b87b5d652cc209c890e8364aa77098f9ae0512041e3830ec3dfee098be2567c3","first_seen":"2023-05-04T03:36:11Z","last_seen":"2026-06-06T23:47:44.189054Z","times_seen":1032,"resource_available":false,"data":null}},"time_used":1002,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1002,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/untitled-app-modal.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.770Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/untitled-app-modal.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:40 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 9947\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=P6lwF2osHZK3w4OgadoMTRmpwwIWhO2wBqmnw3ZWZylFTq577W0ffZyAW15NpSmhwOD9avmOt%2BezVm%2FtYJ6%2B8G1%2B30IIErqsRg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a518ccb8aa618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9947,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 345 x 252, 8-bit colormap, non-interlaced","md5":"5559668af3e553fc871a55adf3347819","sha1":"4a699964c855c8f83c2610de0af2419a71257c8c","sha256":"8ac5dfb6306149a3edebaf77bc100de9ffa8af46e56b8bc79716fc701e207617","sha512":"e0edab55aac4f8d743e98bbb7d52ed7c5b1f5b32c84e8cc271015c10d57333c2b458f30b4eb5e41e0c7e91b02dd46a8cf30b9653a3e932949413f85021485967","ssdeep":"96:JHrmqk0gW4mwLtat2J2wx1Q4Hs3NGlGzribeTnSodQNDirGQ0rNpV6x/ddcEoSa8:JHrmqk6QoqeTSoao4pVCdHahAob+8RLE","tlshash":"3b225ba49f9578c0975e1e73b5e5004548330ae7cdc2bd4abdce542a0f28b819f2b9d7","first_seen":"2024-12-06T22:27:57.026807Z","last_seen":"2026-06-05T15:12:51.600657Z","times_seen":385,"resource_available":false,"data":null}},"time_used":4223,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4222,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/js/noti.js?v=2","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.773Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/js/noti.js?v=2 HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:37 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FoozYNwx7io7rSIMfHOuqgmHbc%2BLO4reaWmtBv%2BOmiijtjZSzembMlzXMgVwN3mkiI8N3X2YQunlKnxGlI0V7sN%2B4s%2FGTp7lWw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d6a518ccb95a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13840,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"ASCII text, with CRLF line terminators","md5":"8df11a241e64d9bc99bb89b8c5218b34","sha1":"961a31a95d9349c0717d2b3258faa0945f702b08","sha256":"56454bdd62318680cd8914a3b8f794f7e99d1436bf384f9cd567d0ac33deb2f0","sha512":"4954be24f1eb168b45898a9e972fe6ab63d1ae1c20a230d581cf0be8d1cc7ab637c1c430d218e259d6d24916adeca68c88b0150dbfa3c5085a9dd2ded5f16bf4","ssdeep":"384:moz/a8j38k58kRrhiq48kRrYiEVn88kRjoCmP8kRjICmp2:ta08wXRrhiLXRrYiC83RjoCe3RjICd","tlshash":"7552836050da2923467f63bd9a525a19fa22d10ba3072a913bfc56c32ff7c10d6c7b1d","first_seen":"2025-08-21T06:37:29.607461Z","last_seen":"2026-04-24T09:21:43.566557Z","times_seen":12,"resource_available":true,"data":null}},"time_used":573,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":573,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-03T17:21:33.983Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:35 GMT\r\ncontent-type: text/html;charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD; Path=/; HttpOnly\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-language: en\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FmbXlRCW1P%2FJuXpAH0mZScttkVys9DI%2F%2By365Ls5SX4whIgUk4%2BZyvaKr7aLd0L8Swvz4YbqZZcywnbDVIZdhaUioYTVOfUKKQ%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9d6a517bbccdf527-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"Chart.js","description":"Chart.js is an open-source JavaScript library that allows you to draw different types of charts by using the HTML5 canvas element.","website":"https://www.chartjs.org","common_platform_enumeration":"","icon":"Chart.js.svg","categories":["JavaScript graphics"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]}],"data":{"size":241158,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1953)","md5":"29a5f96aaf18b816603171047b7c9b5b","sha1":"f511d61f379f5f7d440dcf919ebbc3e8b6fea66d","sha256":"b96f073a9a848cf7bc5e67636c836c254b024370525c00dd79c4ae0b55907c72","sha512":"a01ab967ae1cbdb846a2975ef9a102bb82cc65c3221ade3b58fb5f28ee02a105e4627b5bc2513c080bea8bad0041e657f95816d547ea4f838c500c428b1110bc","ssdeep":"3072:KID1+PSSanddhhZXIuy38MlhBBqGD5MDr94:KID1+PSSanddzZXIuy38MlhBBy4","tlshash":"bd342be022f015e1900293e9bb764a6a3b52d5679746c644b7fc1ed49fc2ccdcd83a8b","first_seen":"2026-03-03T17:22:00.278853Z","last_seen":"2026-03-03T17:22:00.278853Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1869,"timings":{"blocked":53,"dns":29,"connect":8,"send":0,"wait":1756,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/MaterialDesign-Webfont/7.4.47/css/materialdesignicons.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.959Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/MaterialDesign-Webfont/7.4.47/css/materialdesignicons.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:35 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 42396\r\ncf-ray: 9d6a5187c91fa0f0-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"658b77e4-a59c\"\r\nlast-modified: Wed, 27 Dec 2023 01:03:32 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1124178\r\nexpires: Sun, 21 Feb 2027 17:21:35 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=BrEaVvCUXtKNyG0weq1KNDpFj8dfc5b3wOEuWyu1ZGreWTXij9kjmCor3Qxg3slRomtQgWhOVphBqSAMrb0Jonb%2FhBarFVcDA3vEE41sMaQ9fYFeJhRaJl4fjJRB3AaZUB5l5ZcM\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":346626,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"2c83c4bce691e18f82409f87b2bf84e4","sha1":"3958d951f073022975e50de0c711a17bfa1b703f","sha256":"03fe3caba05e65b14e4035139eee89b12be87cd0bcf342ac3886770eec3a9962","sha512":"fe4eb9f06e94b02bdb906441def3d7a6c3c781679db89c225863c2192d78210c37c69afadc010c740f273181b68266245e2b50c434e7ea288aff67c3e13f3ba8","ssdeep":"3072:LRA3YkpX8O2wOBZuRVOh01y7xBqlaOznO3oDmCleSI5B1H3n/ZdhI97:LRAI64wN89BqZnODweSgH3n/hIB","tlshash":"b5742de5d04d24e3f733c85fd740b798458bf2b2d6690e05f68b660d09cba221687f6a","first_seen":"2023-12-27T17:19:29Z","last_seen":"2026-06-07T12:37:16.90846Z","times_seen":5798,"resource_available":false,"data":null}},"time_used":70,"timings":{"blocked":13,"dns":0,"connect":1,"send":0,"wait":25,"receive":2,"ssl":26},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/lottie-web/5.12.2/lottie.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.960Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/lottie-web/5.12.2/lottie.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://efeem.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:35 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 63677\r\ncf-ray: 9d6a5187dd00b28a-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"659c9856-f8bd\"\r\nlast-modified: Tue, 09 Jan 2024 01:50:30 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1506699\r\nexpires: Sun, 21 Feb 2027 17:21:35 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=wM4yd4eg7vUUcLhE27tdlUyRC%2FjxMV8d8gvWYYTZnxMhYhy%2B8WWI3a9qJe1E6PclSO3w8biYMz5O7FM5f10r0nOAeBqBLbzd3RTfgivcvi8zPwc9%2BJrLT7adi0zCB9m%2BVRvd9VeE\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":305543,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"55bf86203909151984bef8cbe4739d64","sha1":"543e646b2ff86405b77bd2514b1aede8a8b4cbd8","sha256":"a0757321f974527bda3cc2593bf56cc7ffe4578421249ced6ae49ffb1c529f90","sha512":"8c49ee0edea37de7028ed850009f9e774313540fbee592a69547260c606fdaf508fd1127e85b88762c4b367413faf2aeb04da18539368acddc16fbf9c00f9282","ssdeep":"3072:xnEwejqNqAvPSIoPayIYzfq526QGK2y0mbsZmml+39xzKMTlB6k:xUjqNqAvPSIoPayIYzfq52tU1l4fRRBl","tlshash":"a85419597254343805c540a9806f0a4bb736292e246ac49cb76cf4ffacbde8d31beb75","first_seen":"2023-07-18T12:10:25Z","last_seen":"2026-06-07T12:23:32.874039Z","times_seen":2031,"resource_available":true,"data":null}},"time_used":60,"timings":{"blocked":13,"dns":0,"connect":3,"send":0,"wait":14,"receive":3,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.7.1.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 26 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:36:FB:D3:E0:9E:71:88:98:A4:C9:34:94:9B:43:3A:C4:C5:1E:BE","sha256":"9A:64:20:6F:F5:DC:F1:8A:D6:B2:D0:93:C2:7E:62:86:0B:1A:D5:24:CF:CE:4A:9F:4C:0D:F1:FB:F2:A0:A8:1E"}}},"request":{"raw":"GET /jquery-3.7.1.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://efeem.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-155ed\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Tue, 03 Mar 2026 17:21:36 GMT\r\nage: 5479764\r\nx-served-by: cache-lga21978-LGA, cache-hel1410022-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 27, 80648\r\nx-timer: S1772558496.041003,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 30336\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":87533,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"2c872dbe60f4ba70fb85356113d8b35e","sha1":"ee48592d1fff952fcf06ce0b666ed4785493afdc","sha256":"fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a","sha512":"bf6089ed4698cb8270a8b0c8ad9508ff886a7a842278e98064d5c1790ca3a36d5d69d9f047ef196882554fc104da2c88eb5395f1ee8cf0f3f6ff8869408350fe","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKr:sHNwcv9VBQpLl88SMBQ47GKr","tlshash":"3983f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","first_seen":"2023-08-31T16:03:19Z","last_seen":"2026-06-07T14:16:08.058015Z","times_seen":166235,"resource_available":true,"data":null}},"time_used":168,"timings":{"blocked":62,"dns":4,"connect":26,"send":0,"wait":27,"receive":8,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/coins/BNB.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.978Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/coins/BNB.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 2560\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eGb0s7te7DcSU3SS706Sf57y%2Fqwa2Ach7hWC9I%2F7gJbe4yYi%2F9cBTjjVmuCwwj4KfKEiblW1%2FWRC9xqbTY7n47OBpavO2R6xmA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a5187bdb9a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2560,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 192 x 192, 8-bit colormap, non-interlaced","md5":"cb84d3ca48a52e3df1025731a8bef4ec","sha1":"b059f2eb3aaf93145fd62647cb908c5532e06795","sha256":"0f4502d8c5254df1eb0eb8d124c7684b4f02e2a5004525d5bd7acd18a6ebb9fc","sha512":"d7cd5d9aface1bb4718d418d1f7108bbbde7e8e24e926ce4bd4a88f51c715759e55741de3d6b17e7e54dea502761817e093e768a337fc0030a259fe9b4338151","ssdeep":"","tlshash":"7e513a6a47020c971334d44f89fc3eea1d6edc1ad421e0aeee0197fa18101c18dbe343","first_seen":"2023-05-25T23:01:30Z","last_seen":"2026-06-05T15:12:51.597661Z","times_seen":1502,"resource_available":false,"data":null}},"time_used":789,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":789,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/why-we-2.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/why-we-2.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:37 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 11063\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VVzo%2F3lxDpp9qAkKdjVlMQTJC4c4cJUpwLNLpqzydqQJVEXobSil69yzae6yZT%2BcOrJmVn8zN2tqp6hPFiLBPyQOus6%2FzyfqkA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a51892f5ea618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11063,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 436 x 378, 8-bit colormap, non-interlaced","md5":"708c0dfea5f5feaed5501b01c1c0f387","sha1":"0658f5cc13ae4f972913e0066986a3e0b5d472d4","sha256":"53332df3792420c1a7dfd18854330dc2033f1dd49f3d3659f315263d3b3162d8","sha512":"62e5c13672221ef5bdfeeef22da135915d905a288b576ae038b12297abd9ae02616a5bee9abd01db53d73ad4a277a64fd28a5561bd346cbd276fc52cd4ee3015","ssdeep":"192:6SmLsOmhczgfRDepWKH0VyqqvWT5olZx/27acRBjstxJCgtAsxBHjuf/Ia6S:16mh7f+WKSqvWTqlLGjszQjsHHy7","tlshash":"0532afb0591530410d9a7487e9b6e11f674b2e8c788a27073a4d7c6bed3b0a23f1ad0c","first_seen":"2024-12-06T22:27:57.020644Z","last_seen":"2026-04-24T09:21:43.461873Z","times_seen":175,"resource_available":false,"data":null}},"time_used":1338,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1338,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/why-we-3.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/why-we-3.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:38 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 35330\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FLpum7Vr5MS6MNt3e7%2F04RZMyUDIkZPA%2BI1ABBAWw2%2B3NqpoRg3SPntQ1ReuNFCeYqmL4cnfKxca3i6PwuNSSD5rR%2Fs2k16mIA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a51893f66a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":35330,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 436 x 378, 8-bit/color RGBA, non-interlaced","md5":"75db13442d06a1f1b627fd56194df892","sha1":"b2ce9f2f5fabde14dec5a939448d28876e946fe8","sha256":"65527f9f107b75b8ef337d5d2835c23f7dda0f51fb0c8ec220ad97be8bdb6985","sha512":"2266af931fb038e9581025a6005dd226674b2dfb7912bb8d611fe9dfd89f6c11be27baec78c1c13f34887d91b597f5567eb85c4e39b2f6dc315b71045fae6d2a","ssdeep":"768:sc3FOz6Nwy3nh3gHDdYyzXbG2aCPu1ySBfGRyj6nyCpCowtnIVkhl:7VN5hQHhY2LG1euGySCojkL","tlshash":"d2f2f1e3e96bae9ca5eb8579d4a40a4f3c170524d4bd420efdec38491f7b03665c4853","first_seen":"2024-12-06T22:27:57.025646Z","last_seen":"2026-04-24T09:21:43.569155Z","times_seen":175,"resource_available":false,"data":null}},"time_used":2934,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2196,"receive":738,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/header/heat-map.svg","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.971Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/header/heat-map.svg HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F1YZ1IxU2PAuicaUp0aTEA6BcgvtXG%2B%2FV22wkayXA991YE3BVLJaoJu9yoOSAHWM7bdJMV6fKpsRQVezi2jeA5CKJBGSGbDX%2BQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d6a5187bdafa618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2031,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"38072961af3da72b8380c6bda9044a91","sha1":"77be88133c31a4fa727474e58e9c35e9c7225465","sha256":"aaafa49ae82df38a2e0e0f1ea10250fa3a8413ea51f17647df955166800ec3ac","sha512":"11ed3d0c9f5aa9b3ce174685ed7fbae5e64b8329bc89e84a8a5632b265d3639dcba5be2db03c59f8ce36ea002e6a3de230618bed077c8d567e3ef44fba92c1eb","ssdeep":"","tlshash":"d341b8e9173985790b08d72c5a797a061ef214d7667084acfb2e283a3783dd310c0f98","first_seen":"2024-12-06T22:27:57.04065Z","last_seen":"2026-04-24T09:21:43.514235Z","times_seen":253,"resource_available":false,"data":null}},"time_used":854,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":853,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/coins/ETH.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.977Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/coins/ETH.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 1100\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JPVWbzWa48KRWtb1IrDk76RU7%2FtOkpVrhnj5TDZJNiaJVpnU1Bqhvzcn8YWtcR1oWOIudecXxGOx4rJDGf4bis%2FsAZVDQKIAEg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a5187bdb8a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1100,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"8658d5935ab59ee39d15c39226279d46","sha1":"27463866eb9fa6fe4b6d2bd2cd3d6fd88392cb43","sha256":"595a7c97f329934d40fa297958ccbb31d3cd101c2965b02a32a7c96fd49c9e11","sha512":"0179fd67c6baa7d46fba32986a8f6fe1586f2d9d3c57161bc33ecae609d6e608e8d9bfcdad0459bf41ba087843955a45ce5daca8ea223cb33138de6b4c8b13db","ssdeep":"","tlshash":"f211b6b64261eec7905c8a22da820b38ed2d9718f01c3f06ef73efb39225b045105d0a","first_seen":"2023-05-25T23:01:30Z","last_seen":"2026-06-05T15:12:51.685209Z","times_seen":1643,"resource_available":false,"data":null}},"time_used":592,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":592,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/domain_icons/15_1762714175458.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:42.292Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /domain_icons/15_1762714175458.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:42 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 9266\r\nserver: cloudflare\r\npriority: u=6,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 09 Nov 2025 18:49:35 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nage: 2\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nzRKlAHskNPcq1KES1WhVaeH7yhUX7UCQ1wT70PeQAn8A9N3Fg4wcOHsnXsG5rkGeMBsBBPg0TJ67B3HYHnKRH00IFUQ4R4KIg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a51af58baa618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9266,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 288x269, components 3","md5":"354ce4a3281bdef6bfbaa1dbe870a895","sha1":"99ebe2105bb616d14e26e79572a3bb03eca5e999","sha256":"cd5df0eef8bbc239cc4ff8acebc2816220eebbbc7961039c9e48dba4ed0744ae","sha512":"418464196ab1f67259114b5e28f4bf8500107372c6742cac50c55f3c24b53eb67b7e629cb860613378a5e8ced7e669546c762603fb8cdb124f8bda7225f980a8","ssdeep":"192:A8pOyybZtbC76UDkG/ue3SAgbOFa/KaP4shucDjIHklcWGbUTEjGdmd:AIO1W7prjLgbma/tgI//tlcWGEEjGe","tlshash":"7912bf898dec9227c91d03bff7e7a791c79b78b710dcae448ada0dc159954c3440420a","first_seen":"2026-01-22T16:13:39.946678Z","last_seen":"2026-04-24T09:21:43.470915Z","times_seen":6,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/domain_icons/15_1762714175458.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.966Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /domain_icons/15_1762714175458.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:40 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 9266\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 09 Nov 2025 18:49:35 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6Zb5FPPkbEQ0%2F29OplsOQfJKj2VLHZhoosRp6kvZ7FuKiKH3TNHjVHrTSLh%2FOFfBn4G0qTwyzbJ4G7XqVj2mF1hsewqFCLRYZg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a5187ad95a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9266,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 288x269, components 3","md5":"354ce4a3281bdef6bfbaa1dbe870a895","sha1":"99ebe2105bb616d14e26e79572a3bb03eca5e999","sha256":"cd5df0eef8bbc239cc4ff8acebc2816220eebbbc7961039c9e48dba4ed0744ae","sha512":"418464196ab1f67259114b5e28f4bf8500107372c6742cac50c55f3c24b53eb67b7e629cb860613378a5e8ced7e669546c762603fb8cdb124f8bda7225f980a8","ssdeep":"192:A8pOyybZtbC76UDkG/ue3SAgbOFa/KaP4shucDjIHklcWGbUTEjGdmd:AIO1W7prjLgbma/tgI//tlcWGEEjGe","tlshash":"7912bf898dec9227c91d03bff7e7a791c79b78b710dcae448ada0dc159954c3440420a","first_seen":"2026-01-22T16:13:39.946678Z","last_seen":"2026-04-24T09:21:43.470915Z","times_seen":6,"resource_available":false,"data":null}},"time_used":4137,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4136,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/header/technical-analysis.svg","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.972Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/header/technical-analysis.svg HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:38 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0S7hkPZ%2B%2BuuShChoBtiyoF4552DETkUedHVVllszzWccSIhAV%2FYc5G4ZzEsi%2B2pWPNXhipdlaI0CdYNK6mB5eLjH7Pev4PEtbA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d6a5187bdb0a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5032,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"392721e78e0013c0fa96cc574ec5063e","sha1":"45bb4f8eef034d061eae888b3b759f8890d82961","sha256":"e98843f36f8117977e9a636e6d29b9f0ed94e6ed93bbb492d3413dedd8db25e2","sha512":"33707ce4e4feace0dccd38422ee937c42ecc55f80f80148f922fc0d81c1965cfd3a19452eecd3e7ef4e423ed7ec6d3fb3858d9f025dd8e3b648a79a1c2e9900d","ssdeep":"96:+kUAfxrpn/Ilg7arcU7pV7M3qIkLmzKGhsmnJR3UDDVod96:3Ugxr6qOoq0KGXkDhoH6","tlshash":"0ca1728b033cc2f877c86428a9713542367264bf5678a108f3bff8263747f662259d58","first_seen":"2024-12-06T22:27:57.056845Z","last_seen":"2026-04-24T09:21:43.550293Z","times_seen":261,"resource_available":false,"data":null}},"time_used":2401,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2400,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/coins/DOGE.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/coins/DOGE.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 2808\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6RT26iEGc77yk1tBUbpnjxijlo%2FgPicaF7tdNyPYQZenZ8GWL3kKWDqKfXU6A77XSlagZ985E3Z%2F%2FPmszQ56fIu%2BIYCjqUVuMQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a51892f55a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2808,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"d55dd75446d505958e5210985b246bed","sha1":"df83b77aa8f8647f67f478e02c23f864a592f6d6","sha256":"8abf24f47bc3b4def59a6e6441a9f2dbb8d20c953c2c5373f219ab614a8f208d","sha512":"b65c5b9eca2ac0bef1dfdf742eb6ce365c3368650b37cd847ce12b955e683d3843cdeab9ec25beed31976e9b3ab571e59d4c66431e44345e7c57347a72bb758f","ssdeep":"","tlshash":"a6515c150736fcaac55846a3889f0970c8ee362be160571a7664cc17ff949494a17743","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-06-05T15:12:51.527019Z","times_seen":914,"resource_available":false,"data":null}},"time_used":608,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":608,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/js/toastr.js","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/js/toastr.js HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:39 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yjA%2FZuAGuWOfoHWaedB9xLNWznUM2Em1dGPs0CJYJ5fYnIMANuVTPz5oQGa1KYGvzMave59qBKIKsqRxBmgGs7XZ%2BbfPc06NQA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d6a518ccb92a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":24855,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (327), with CRLF line terminators","md5":"a02ccbbcf3073559037a62af82bfdd24","sha1":"4d5f7b3f3f280698aa26b10e1d7c6dd5708d64aa","sha256":"27f959b17ddfe77ca20a31b9950ebc3fbe8030c3ac376eec7355b2d7925e364c","sha512":"35acaadcc160935be74fb1492b1b0ca205aed6b61d8bd8edf4e26254c7772da02941ec53de59e3d66ce1695cc12de4ed9cf32b750e04659c7c0e2521b4697f22","ssdeep":"192:JJZWM9gzM3t3QrpJvxl6Xs8cZ9tID6CqQwPjOoOg6yS21tl3jWq5T14:JY45Kk7cZDItqLNO6S21tNA","tlshash":"deb20a08695263654cb7737c8aab800cfb769323458a96067dbc92d82f70714d6f6fec","first_seen":"2023-07-07T00:40:59Z","last_seen":"2026-06-05T15:12:51.710408Z","times_seen":914,"resource_available":true,"data":null}},"time_used":3046,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2680,"receive":366,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/header/market-cap.svg","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/header/market-cap.svg HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:37 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2oVTgm7zLpSYXTWS1aM7EwJQBv2iUQ5vCn7jqZQ4%2BLwSvWJVjrdbzm%2F5SfFO%2BPe2rRYwtD%2BXZehMPFlh1JzSn2gWR7qv7AacEw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d6a5187bd9da618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2411,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"9a158803d2e19c53560b0e584bac9d31","sha1":"8d8d86d15def4ad67061bee3077535cbabe7c2e2","sha256":"2e7b555e20af3a2eafb5cf7ad235d99ce39c58818c7dc4acec36acf808e04dc7","sha512":"a6fd891b73b76b772aa2e64065edee3fcb77b22f7247d1310e7724cd375568afbf9665c903da61521ce31efedc5dfadb0f2b69b15a314f2844609fd35d732440","ssdeep":"","tlshash":"b44145e80765473e56489f055eb94e9574206092bf62418cf37e3d2bffc2e9b208cc65","first_seen":"2025-06-02T07:00:29.898514Z","last_seen":"2026-04-24T09:21:43.493818Z","times_seen":246,"resource_available":false,"data":null}},"time_used":1768,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1768,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/coins/TON.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.190Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/coins/TON.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:37 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 24181\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=U5nP2xEyesXk0jqSnNNggAubhkhnbbladcABQ4w45IZfDFY58vj8ClqBXZ2XWPq8g%2BHI8bRgpQNnChgg0IKBIfJo0rKp4UafIg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a51892f56a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":24181,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"1e864e18e2e3a14b3407889b0e7fb1d4","sha1":"6498cdc01f17a9c51007bedb1eed9e28ef98bd90","sha256":"d8ffe78edcfb9ad030ef0f932ea5a25c89acab7c11d6cf03b32cd4913de14053","sha512":"5b0555db16debaafbad44fb6e10cd8f3ee414c8bd272ba47734fcdb44b32a5828cc0776c43dfea0c40c81d9718ebbee8d9f3fbfca17f08a5e45e193cb9497f31","ssdeep":"384:WU5AJju7MoJSV2L783TGNX2H3PLIE0eq8x343eNZCPkArJTMUno/JBWRCrasz5Px:/AA7MoUV2P83TGNGH3PLIE0t8+ONYP4F","tlshash":"40b2e128d57e8291b694f1b827cb5c8f0f738cd23c711e50ee550ea0a7922651cefa0e","first_seen":"2024-12-04T15:05:15.931067Z","last_seen":"2026-06-05T15:12:51.575515Z","times_seen":462,"resource_available":false,"data":null}},"time_used":1176,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1167,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/chat.svg","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.765Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/chat.svg HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:39 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XxtYrpgdS0SmjYbs6JRXnO1b3OCl8dS2X%2Bthw0BPqqKSWo2MNYv44%2FNafyht7wuVxbZTug9%2FcX038PP13ZBqzVaINqsbPmpTRg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d6a518cbb80a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1143,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"856a385d230e560529fe4f70a442cea9","sha1":"c9669d3c47705149e26efd24e0d3ed738fc03069","sha256":"c2b05ce3c22fd9b07bc627c2ace70217eb0e3dc2183d9d4aa58bd482dcd8d7d5","sha512":"10308be3d10aa5ea28b1c8a026b6008c530aea11658680ca9b54af0e06e4f7e7d7b1831326d13cc915f83bbc4d1e8b5e67e630a42b8bb898c713875ee3fb2959","ssdeep":"","tlshash":"fd2168e66fec96a6d35e833063f41fa62b4730bdb6408d5f8680dfb0db051aa4144ad8","first_seen":"2025-02-15T17:58:10.491189Z","last_seen":"2026-06-05T15:12:51.530116Z","times_seen":487,"resource_available":false,"data":null}},"time_used":2356,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2356,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/chart.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.775Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/chart.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=604800, s-maxage=43200\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: application/javascript; charset=utf-8\r\nx-jsd-version: 4.5.1\r\nx-jsd-version-type: version\r\netag: W/\"32e8a-y1VYFBBM+4v4jk0bIQM7SVw8Wnc\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Tue, 03 Mar 2026 17:21:36 GMT\r\nage: 39673\r\nx-served-by: cache-fra-etou8220052-FRA, cache-hel1410030-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 71722\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208522,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (56990)","md5":"e6452e2b454b091f857a45cce7624eae","sha1":"cb555814104cfb8bf88e4d1b21033b495c3c5a77","sha256":"48444a82d4edcb5bec0f1965faacdde18d9c17db3063d042abada2f705c9f54a","sha512":"5a85622a1283e2a2365abb9266abfdfa4bcce167c585431008b3784250d3b79694e7a7cb432da0628c5622a9449d7a89cbff80739abf864d6859faa730387030","ssdeep":"6144:Iy2IGjjkD/6w7tKuhSGmexa2FiKqU/1eFRQ1T9mkb0h3N+2HJ8l/mXI:v+kD/6w74uhSGmexa2FiBeeFRQ1T9mCH","tlshash":"3d14f5d53342b12282e256d2583a050ae33666483547899cf6bc5ddf3c6a98b71fff38","first_seen":"2025-10-13T17:57:35.280368Z","last_seen":"2026-06-07T13:25:47.219682Z","times_seen":4823,"resource_available":true,"data":null}},"time_used":122,"timings":{"blocked":41,"dns":1,"connect":13,"send":0,"wait":14,"receive":18,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/header/market-screener.svg","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.968Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/header/market-screener.svg HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GSjiT0rTrL9gtbigsi5qM2aiFtVQHsD9X6G9bv59L4R0oAt3fIGU%2BmDacGcXTdVF3kRwpWRnIYWXSxgzUXUi7mVtJCsZbYxqAw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d6a5187bd9fa618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1688,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"24c7b0b83795ef8461878325122b1499","sha1":"16a34c45d1c3bf263a890fb4689c36b5c48b8db7","sha256":"b08c1bc91d0325fc5fd89b00e9cf7aba49c3341fbeb71f1782013bba8bc37287","sha512":"3137f70bbdbdb7822f6e1f273d22e2516383c0567e92900b6bec7570b4918aecc772f6f7dbe0364490c35f0d7ea06bf9d734a16a87c0f1fd54a65c65f29c60f1","ssdeep":"","tlshash":"8331d1dc50d6c9f9aa64c70417f89f95786238fb3250459cfebc64273b824a4309ced6","first_seen":"2025-06-02T07:00:29.919137Z","last_seen":"2026-04-24T09:21:43.577741Z","times_seen":249,"resource_available":false,"data":null}},"time_used":589,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":589,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/coins/XRP.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/coins/XRP.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:41 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 953\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vnyK0bWJPVYLagYfnEbLzrNs453yDnLsWmme%2BMxW8I%2BMCfDXn%2FtsvEyMAGIboQavsW5ZCHeX23J7%2F5WJeT1CWAkAajYAo9meWw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a51892f50a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":953,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"92f9d15be55070c0f267e7b9609211da","sha1":"d25e8395244487e169b16cb9508e434ea1ea61dd","sha256":"0e7d0965ce52308846834de79ad8305ea31542444a1ba54888843fc0214418f4","sha512":"d39d1087b689cf8f8d543a282dfc802e0e996ddbdb0553b7376958b0be63dd8f6230451cc3cd3df7d63748ab2165e8e82433c35d4131a7a2c137445ecfeee95b","ssdeep":"","tlshash":"e91188a14b659e01632bcd7fcb2a0142b20b22efb465d716a88f533d0795d871059f85","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-06-05T15:12:51.676417Z","times_seen":1508,"resource_available":false,"data":null}},"time_used":4907,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4907,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/support-logo-chat.svg","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.767Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/support-logo-chat.svg HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:38 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=47ZtXisHLcJJyx2K7Qp5LCC53Lpj%2BuW6hnzJP1JyH98Rc%2FH3y8IQdBLgs8sfDz9e0mdE%2BEIxOqwfU%2FVbsUWmJVHyl2HYNPkDbw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d6a518cbb86a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1834,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"911003c9a49f882d73fe4c40511816f8","sha1":"240e8d2f0cf44da1b1cf801a1e3eab472d081e34","sha256":"1192299763868ea940054d1bb7529b95620f02490f8f42aba8590a9df6d394b8","sha512":"e1221ebb601b7d8723f7d84c6e9c91aff64ffbc75d66ff89dba9f4499c1c8ef0f09e9819a00573c8302b295228c40cee0f306b92ebdf8522a41ea6156ea1236f","ssdeep":"","tlshash":"363124f9f7edb5d4f91887d0539a56b07b5b21fa7623c50807d21ea0f24162e04a988d","first_seen":"2025-05-02T21:59:25.084344Z","last_seen":"2026-06-05T15:12:51.64523Z","times_seen":424,"resource_available":false,"data":null}},"time_used":2155,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/domain_icons/15_1762714175458.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:42.294Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /domain_icons/15_1762714175458.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:42 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 9266\r\nserver: cloudflare\r\npriority: u=6,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 09 Nov 2025 18:49:35 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nage: 2\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IyTOvkcHkKWKHhg%2BKWucCTyliXMgQJTzWr%2BrzhpDxGCw9lQ3WtumQkWii%2BSVCU9F3POCiueUfIQ3K47MLMyL8sIHnXyNb%2Fc2Aw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a51af58bba618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9266,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 288x269, components 3","md5":"354ce4a3281bdef6bfbaa1dbe870a895","sha1":"99ebe2105bb616d14e26e79572a3bb03eca5e999","sha256":"cd5df0eef8bbc239cc4ff8acebc2816220eebbbc7961039c9e48dba4ed0744ae","sha512":"418464196ab1f67259114b5e28f4bf8500107372c6742cac50c55f3c24b53eb67b7e629cb860613378a5e8ced7e669546c762603fb8cdb124f8bda7225f980a8","ssdeep":"192:A8pOyybZtbC76UDkG/ue3SAgbOFa/KaP4shucDjIHklcWGbUTEjGdmd:AIO1W7prjLgbma/tgI//tlcWGEEjGe","tlshash":"7912bf898dec9227c91d03bff7e7a791c79b78b710dcae448ada0dc159954c3440420a","first_seen":"2026-01-22T16:13:39.946678Z","last_seen":"2026-04-24T09:21:43.470915Z","times_seen":6,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/coins/BTC.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:35.976Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/coins/BTC.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:37 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 1125\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8cddMvdLdwK9iBpjpPtgCVFT%2B2pzwSv3zMKwvMDiEs%2BpmQd68g27%2FCbAWMGpSXficY1ovohzUfwFg5qnxXnkX5xSEPm1lpzCTg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a5187bdb7a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1125,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"75f196b437f9d87fdc198bc904c66c4c","sha1":"79b6e300761520f7ad41856878999dbc1fafc137","sha256":"f72b9a231c13012613217eec2bec27b923204e8c6cebc2b2ae51485d2b5d679d","sha512":"de4633885db64868d13a4a4699631acf0b00af0b2cda542c5be26b4dce3a1f8b4e071949280ddd9f3c59eb7a236d5d8d7003ffcb9633e0749fb62d46c780ac60","ssdeep":"","tlshash":"2421f9d3df09102ec4029c9cd4730c6bcc287a963410445b5f7c823fcc0b6496864b67","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-06-05T15:12:51.674782Z","times_seen":1634,"resource_available":false,"data":null}},"time_used":1221,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1221,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/img/why-we-1.png","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.192Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/img/why-we-1.png HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:39 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 12834\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fpv4ZNKLGfiqYkX3c3yL69mFhJVRi9SbPr2u4OqjRa2a%2FRsoNhBn%2FBYofUaT%2F95yHsmvt9EdaZdphikwgMAsIvsYU3I2Q0kVVA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d6a51892f5da618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12834,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 436 x 378, 8-bit colormap, non-interlaced","md5":"eb45fc67aad9ae7def6a56816bd0a898","sha1":"45defeded6011e48448cf9833d985f6e73cb5461","sha256":"07aa2ef2ee9bb569954601ccd1e881ac21853ca1dbe4b405b165879df0b05b0d","sha512":"28c58b0a6614ceb5c50462bcc9c64dd4838ebbdadb999a956ec890e2a95a21658a7e168439cb89ad92c026f8b93aef5e654db291334bd286a87adad59a871f34","ssdeep":"192:6Se6fEotO4b0G6nlB1m1Qpu4M9AgfveGMVZpL9zOZXQYAzjyxTI63SmN3:1XfEodH+ewKWTTOtQ/zGTI10","tlshash":"2042cf5ebc810076037c077280a6e366c4da0c0f943a5f7292cb3d71ab33b0a21c95f6","first_seen":"2024-12-06T22:27:57.019511Z","last_seen":"2026-04-24T09:21:43.515245Z","times_seen":174,"resource_available":false,"data":null}},"time_used":3654,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3653,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"efeem.com/assets/js/main.js?v=5","fqdn":"efeem.com","domain":"efeem.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://efeem.com/","date":"2026-03-03T17:21:36.774Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"efeem.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 07 Jan 2026 17:29:54 GMT","end":"Tue, 07 Apr 2026 18:28:21 GMT"},"fingerprint":{"sha1":"EE:CC:5B:56:EC:8C:1A:5E:F2:97:4B:F0:69:E7:3B:58:34:55:0D:5C","sha256":"B3:19:6E:52:14:F9:66:07:55:D0:D2:6C:6C:DD:66:E5:4B:58:9E:A8:DB:79:5B:8C:F9:66:38:58:89:65:95:30"}}},"request":{"raw":"GET /assets/js/main.js?v=5 HTTP/1.1\r\nHost: efeem.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://efeem.com/\r\nCookie: JSESSIONID=F0CF13E68E5B590EE6FCCFB8318E02CD\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 03 Mar 2026 17:21:38 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sat, 21 Jun 2025 16:53:46 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OhKQKlCKRjgcQbDM%2FqKSZXyaMXhFICwVmZFO%2B3PgtqHhedSMRPz99ovBV70HHrDS%2BtIpQXm3fWRK5ZEHD91JSLQbr7HBE4FABQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d6a518ccb98a618-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21541,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (430), with CRLF line terminators","md5":"6409d98ed3cbf6db97d351f0423f42f7","sha1":"6052163324873f34d80ddb789c07a279013e9394","sha256":"ea0d7e711fb8baa35e5c6483f6e339b3c92b4f6f01877ec4fc659594e43a26c8","sha512":"f3ef128d5c31b477f5bb3c7ef3da3a103e74323e7d87b7f64f6c8c6e37e930cdae90b52b4bee1370779e9505a51d72ea1eff3627e7cbbf32f2816c1ce9dbe9b7","ssdeep":"384:GXKlo7s8RElXRnwlWsjdKjHYc4NtZYK7roO:GXKlo7s8RElXRnwlWYd0Qr","tlshash":"4ba28298b22129aa813b7379be775646fb380027d341d349bd6c1de11fb2480d993f6e","first_seen":"2025-02-15T17:58:10.504157Z","last_seen":"2026-04-24T09:21:43.575405Z","times_seen":116,"resource_available":true,"data":null}},"time_used":1772,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1356,"receive":416,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"efeem.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}