{"report_id":"52d2ae13-9551-42e7-9129-62187b4c1e6e","version":6,"status":"done","tags":[],"date":"2026-04-09T11:24:19Z","url":{"schema":"http","addr":"coinverify.cc","fqdn":"coinverify.cc","domain":"coinverify.cc","tld":"cc"},"ip":{"addr":"134.122.154.146","port":0,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"final":{"url":{"schema":"https","addr":"coinverify.cc/","fqdn":"coinverify.cc","domain":"coinverify.cc","tld":"cc"},"title":"CoinVerify - Instant USDT Verification","dom":{"size":42420,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (29657)","md5":"39b206c80a9880c6a949f437b698be06","sha1":"fcf9aec08277e861e715d0c043d82433df794dfb","sha256":"856d26d8175bdacd2ac47ae320eb1a99086be3131c23490a82a1d4b325bde1a9","sha512":"035fe5cbf453b0b91c20301c8ccd4abab1982590bad51618c8892f7901796480ba981ba59eebc69566831f889c18e390f4bd3b3cc96cbf0210d4e066055befc3","ssdeep":"768:OMhVQUPHH0RkqXR+rAHTBsiBQLkBKuqg2HqmCyTLx:OMhVQUPHHekN8HiiBEHthLx","tlshash":"f2134bb3a1d92126131b4fd5eb17372430a7e267d6069590f4ec0294aae7db0fc2f1ad","dom_hash":"domhash1c81c2edb5850c6626315b09e2f11b01","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"coinverify.cc","fqdn":"coinverify.cc","domain":"coinverify.cc","tld":"cc"},"ip":{"addr":"134.122.154.146","port":0,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-14T11:24:19Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":1}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-09T11:23:56Z","timestamp":1775733836,"ip_dst":{"addr":"Client IP","port":60002,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"134.122.154.146","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"severity":"medium","alert":"ET DROP Spamhaus DROP Listed Traffic Inbound group 25","source":"{\"timestamp\":\"2026-04-09T11:23:56.367386+0000\",\"flow_id\":431784006009781,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"134.122.154.146\",\"src_port\":443,\"dest_ip\":\"172.18.0.24\",\"dest_port\":60002,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.Evil\",\"ET.DROPIP\"]},\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2400024,\"rev\":4421,\"signature\":\"ET DROP Spamhaus DROP Listed Traffic Inbound group 25\",\"category\":\"Misc Attack\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Any\"],\"created_at\":[\"2010_12_30\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Dshield\"],\"updated_at\":[\"2025_08_01\"]}},\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":1,\"bytes_toserver\":74,\"bytes_toclient\":74,\"start\":\"2026-04-09T11:23:56.082869+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"coinverify.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-04-05T22:20:18.514512Z","alert_count":0,"request_count":2,"received_data":9095,"sent_data":951,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-04-05T22:16:34.770209Z","alert_count":0,"request_count":7,"received_data":245070,"sent_data":3823,"comment":"","tags":null,"fingerprints":null},{"fqdn":"coinverify.cc","ip":{"addr":"134.122.154.146","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"domain_registered":"2026-03-24","domain_rank":0,"first_seen":"2026-04-09T11:24:21.503979Z","last_seen":"2026-04-09T11:24:21.503979Z","alert_count":7,"request_count":7,"received_data":3008484,"sent_data":3107,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"coinverify.cc/assets/index-Cyrl1wjQ.js","fqdn":"coinverify.cc","domain":"coinverify.cc","tld":"cc"},"ip":{"addr":"134.122.154.146","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"7c27056d4341a2fa84848b0382981412","sha1":"c51d4c01e40ad5e5f315c44966a887d4948b8e83","sha256":"59af0414f86fd05eac23407448f8c246eb1838825c871c1a091725ec166fc5a0","sha512":"962a0adbdbb45d5e400aeb0bc15c84ad14f7a6a2c672b21d3fca88b3028cd28fc2867cf0cec73433a8fc0776b3b2b8f4cc13ccb6f56624587bb24def75988135","ssdeep":"49152:eIFwYrUpS8S+uQ6EobbGIUNKJrSI9jxu3wCqXr5U3vg9zMdAvVvRR8o0P2ym3g8g:e2Iobbzkmlym3/ZvyOTDydSkCa5","tlshash":"add53a8472d6b06243e654e4143b1106f23da958b00d90e8f7acd8f77ef9989867bf39","size":2792748,"data":"","first_seen":"2026-04-09T11:24:25.753807Z","last_seen":"2026-04-09T11:25:41.289419Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coinverify.cc/assets/index-DCM0Hl5U.js","fqdn":"coinverify.cc","domain":"coinverify.cc","tld":"cc"},"ip":{"addr":"134.122.154.146","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"7da3178c72d4485632c0c3bfd1bbccc6","sha1":"2f3221dd1ad2388ca583fb6d32a23508464263d4","sha256":"9dc2555c4961b3ab20b0d984c03e8041f0d0316a6cfdd0cc945819effa6528ef","sha512":"d7bdcdccae9090072d2a3c565459ebc5b53eba567f121b8865621d24a64f37b5483a1c96904926e830f2046bf57f8345bedd2c998a5d22ef672acc95ceeab3d8","ssdeep":"768:PNTFhxATrPBlu+jCmsjRcjCmsjrlh6lGUzqaB2UK1RhOKSShW0Hp7wYNVA2HMbmH:xHxirpW3VuqUiRAKSwjF0GE3py","tlshash":"4de20af072af41a4b2811c8c74261610901855b4d909c0797f9e6efad9af781cfeefe6","size":32471,"data":"","first_seen":"2026-04-09T11:24:25.745397Z","last_seen":"2026-04-09T11:25:41.285131Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"coinverify.cc/assets/index-Cyrl1wjQ.js","fqdn":"coinverify.cc","domain":"coinverify.cc","tld":"cc"},"ip":{"addr":"134.122.154.146","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:57.116Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coinverify.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 12:10:37 GMT","end":"Mon, 06 Jul 2026 12:10:36 GMT"},"fingerprint":{"sha1":"01:F2:23:E4:FD:C7:BD:B8:C6:94:53:AE:93:8D:7D:C5:C3:F4:9B:7F","sha256":"6A:8D:BE:2F:6C:E4:57:79:29:C2:90:2A:D7:E9:32:50:D7:CC:1A:17:A8:D4:48:7A:44:DA:11:62:42:3E:7A:28"}}},"request":{"raw":"GET /assets/index-Cyrl1wjQ.js HTTP/1.1\r\nHost: coinverify.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coinverify.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 11:23:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 04 Apr 2026 16:28:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d13c18-2a9d2c\"\r\nexpires: Thu, 09 Apr 2026 23:23:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2792748,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (39988)","md5":"ce5a30b1436a577c0a7e58806b6d4e37","sha1":"3ece7f7b29b14ab4b2202819bb50cd9330cf095d","sha256":"c983cf6f08f8ef70588d2ce0075a7e0c4438d75a9f7d46ea66f99ad96f2b58bb","sha512":"7375cdaa74dfe541bdc39a3b86778f1fb2608dbeb0e58019e5ffb28d72021aaff9466c2ccc3f19c9e7beb6c389559b87234329e3543b9daf5f7bbec37e27ff2a","ssdeep":"12288:eIFw8/U4RVZwLEHlXRKrFjS8Sx29u0l6E5Obb/uI2NVN3:eIFwYU4/1GpS8S+uQ6EobbGIkVN3","tlshash":"39253c847296b46643e254e4003b1006f23dad69f05d94d8f39cd9f73eb998986bbf38","first_seen":"2026-04-09T11:24:25.730167Z","last_seen":"2026-04-09T11:25:41.288235Z","times_seen":2,"resource_available":false,"data":null}},"time_used":577,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":577,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"coinverify.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=DM+Sans:wght@400;500;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:58.286Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:41 GMT","end":"Mon, 08 Jun 2026 08:38:40 GMT"},"fingerprint":{"sha1":"03:81:A0:0E:E1:9B:80:A3:BC:CD:F9:25:A5:7B:8A:43:07:22:C6:00","sha256":"73:8D:9A:B1:F0:C3:6E:8F:EE:C0:2F:99:C8:89:24:16:9A:DB:D1:9C:27:5D:8A:7A:A8:2B:0E:10:42:28:53:7F"}}},"request":{"raw":"GET /css2?family=DM+Sans:wght@400;500;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coinverify.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 09 Apr 2026 11:23:58 GMT\r\ndate: Thu, 09 Apr 2026 11:23:58 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2661,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"133c49d93c90ee2a37f0bc1925994575","sha1":"dc39271b772db50e087d2df87b05d76d633de31f","sha256":"bef84bf20a597f5dee644e4e04158b2602810fe705906cd0703c02b0338ee821","sha512":"6ab01451653fc35f661f3f25dd0aa026ca9d65e64da13127fb9809c12c0b0519375e424e64e2c0cc29882a73294fc3ac342fa9c3445d9431962da9ddbe54fff8","ssdeep":"","tlshash":"30519981046ba550eb971cc422cdbe62ef1fa15424549c74abfe188cacaac3d5362b8d","first_seen":"2025-09-11T17:08:25.90182Z","last_seen":"2026-04-09T11:25:41.284491Z","times_seen":1750,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coinverify.cc/assets/sol-DYviJvuA.png","fqdn":"coinverify.cc","domain":"coinverify.cc","tld":"cc"},"ip":{"addr":"134.122.154.146","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:59.663Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coinverify.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 12:10:37 GMT","end":"Mon, 06 Jul 2026 12:10:36 GMT"},"fingerprint":{"sha1":"01:F2:23:E4:FD:C7:BD:B8:C6:94:53:AE:93:8D:7D:C5:C3:F4:9B:7F","sha256":"6A:8D:BE:2F:6C:E4:57:79:29:C2:90:2A:D7:E9:32:50:D7:CC:1A:17:A8:D4:48:7A:44:DA:11:62:42:3E:7A:28"}}},"request":{"raw":"GET /assets/sol-DYviJvuA.png HTTP/1.1\r\nHost: coinverify.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coinverify.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 11:23:59 GMT\r\ncontent-type: image/png\r\nlast-modified: Sat, 04 Apr 2026 16:28:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d13c18-6f00\"\r\nexpires: Sat, 09 May 2026 11:23:59 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":28416,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 316 x 316, 8-bit/color RGBA, non-interlaced","md5":"8ed9ca4df50f996340c1b57b97b598ac","sha1":"526b6f3835cb20ae323bb774a68afa73cb0a36b8","sha256":"bcf4d8e35357bbe1ec3522efa7f309824a9656910ca5d8e3b07d4753f9c1be2a","sha512":"2d05602f73d6b14e8decde95037330be623292ab8a364b5ffb8b63180ebd7c76d66f248714c022e209f0b1ff5b16a74125838502c26c2ab1e4a6d14bbed1b4f0","ssdeep":"768:EfoaStUMo1uzrkcTNfL79qNwcVDzAOiQabLT:Ef39uH505hzAOitbX","tlshash":"47d2e1c7d25c5da38c0875a9fa938be9b76441c71f4d258bb1dbe540702753f06be224","first_seen":"2023-06-01T21:15:40Z","last_seen":"2026-04-09T11:25:41.278694Z","times_seen":185,"resource_available":false,"data":null}},"time_used":424,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":424,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"coinverify.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:59.714Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:38:49 GMT","end":"Mon, 15 Jun 2026 08:38:48 GMT"},"fingerprint":{"sha1":"37:8D:19:21:5B:E0:E1:BB:D8:7C:65:74:CB:23:05:60:8D:DA:34:48","sha256":"87:F6:F5:DB:75:39:30:F7:7B:2E:F2:78:F3:AF:75:98:AC:41:5C:58:80:43:5D:A4:53:50:BC:D4:D6:F1:CC:56"}}},"request":{"raw":"GET /s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://coinverify.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 32108\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 05 Apr 2026 14:59:40 GMT\r\nexpires: Mon, 05 Apr 2027 14:59:40 GMT\r\ncache-control: public, max-age=31536000\r\nage: 332659\r\nlast-modified: Thu, 04 Sep 2025 17:18:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":32108,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 32108, version 1.0","md5":"e414fe5664f376c8f145acd792939183","sha1":"5b69d46adc3a06af762193adb2dddbc359b2e786","sha256":"fa31c7981483e52cbb8b8bc1eb0dc6326f160b8699cc0899349f977f0517a9df","sha512":"51c251910e5cce616b3c336bcb63853f83c306e16e9b79e0a18f924a738ba06b3e2cb8132ff9bc6e720527234eb80e90be2625b860e1728b66d4fe86ac9bafe5","ssdeep":"768:gUX6jLkDeuAkZHs27nAflEFIapAgCauwIFPo3zjERcgmcjz:3X6tkpNAf6FIapAgCaMFozInjz","tlshash":"6ee2e14f8beb009ef3828a7812c46b3195b305d569cbfa901eef85d76b5c247c1474a8","first_seen":"2025-09-05T02:25:45.343777Z","last_seen":"2026-04-09T15:16:32.846615Z","times_seen":10720,"resource_available":false,"data":null}},"time_used":222,"timings":{"blocked":86,"dns":1,"connect":28,"send":0,"wait":42,"receive":6,"ssl":56},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:59.728Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:38:49 GMT","end":"Mon, 15 Jun 2026 08:38:48 GMT"},"fingerprint":{"sha1":"37:8D:19:21:5B:E0:E1:BB:D8:7C:65:74:CB:23:05:60:8D:DA:34:48","sha256":"87:F6:F5:DB:75:39:30:F7:7B:2E:F2:78:F3:AF:75:98:AC:41:5C:58:80:43:5D:A4:53:50:BC:D4:D6:F1:CC:56"}}},"request":{"raw":"GET /s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://coinverify.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 32108\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 05 Apr 2026 14:59:40 GMT\r\nexpires: Mon, 05 Apr 2027 14:59:40 GMT\r\ncache-control: public, max-age=31536000\r\nage: 332659\r\nlast-modified: Thu, 04 Sep 2025 17:18:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":32108,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 32108, version 1.0","md5":"e414fe5664f376c8f145acd792939183","sha1":"5b69d46adc3a06af762193adb2dddbc359b2e786","sha256":"fa31c7981483e52cbb8b8bc1eb0dc6326f160b8699cc0899349f977f0517a9df","sha512":"51c251910e5cce616b3c336bcb63853f83c306e16e9b79e0a18f924a738ba06b3e2cb8132ff9bc6e720527234eb80e90be2625b860e1728b66d4fe86ac9bafe5","ssdeep":"768:gUX6jLkDeuAkZHs27nAflEFIapAgCauwIFPo3zjERcgmcjz:3X6tkpNAf6FIapAgCaMFozInjz","tlshash":"6ee2e14f8beb009ef3828a7812c46b3195b305d569cbfa901eef85d76b5c247c1474a8","first_seen":"2025-09-05T02:25:45.343777Z","last_seen":"2026-04-09T15:16:32.846615Z","times_seen":10720,"resource_available":false,"data":null}},"time_used":298,"timings":{"blocked":140,"dns":1,"connect":15,"send":0,"wait":16,"receive":3,"ssl":120},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z8GXhnU0.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:59.744Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:38:49 GMT","end":"Mon, 15 Jun 2026 08:38:48 GMT"},"fingerprint":{"sha1":"37:8D:19:21:5B:E0:E1:BB:D8:7C:65:74:CB:23:05:60:8D:DA:34:48","sha256":"87:F6:F5:DB:75:39:30:F7:7B:2E:F2:78:F3:AF:75:98:AC:41:5C:58:80:43:5D:A4:53:50:BC:D4:D6:F1:CC:56"}}},"request":{"raw":"GET /s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z8GXhnU0.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://coinverify.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 36932\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 09 Apr 2026 02:39:59 GMT\r\nexpires: Fri, 09 Apr 2027 02:39:59 GMT\r\ncache-control: public, max-age=31536000\r\nage: 31440\r\nlast-modified: Wed, 10 Sep 2025 16:31:03 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":36932,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 36932, version 1.0","md5":"7c87a648293fbb5b2924aafaa59e8aea","sha1":"c57593e0adc4cf99dd9e67cb782242220a061a9d","sha256":"9fea608a947e67020c33cad9a6fe3d60c54119dfb8cff87768a8117a15ed7543","sha512":"764ced325a768dca84e1fb0cc458818239ce379dbcbdb324ee8849bbe15f54e3f0254ae6e52ee5a92741840637b4f9885d246a0978af23176b3acfe5b9cec23f","ssdeep":"768:mMQPOAQQKW6GccoXQ+OGpHNzXgtDM0SVu7P3nqtPl9Bf2csDpHUjbYE8j2:mMQz4W5og+tpH6tDJku73EPlPOcs5U/l","tlshash":"c0f2f23e7ea5691487c2b0be506b00935344c9bd37c18121bbb953f44ea67addc5d63c","first_seen":"2025-09-11T17:08:25.889763Z","last_seen":"2026-04-09T15:30:31.242543Z","times_seen":17453,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":49,"dns":0,"connect":0,"send":0,"wait":32,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coinverify.cc/","fqdn":"coinverify.cc","domain":"coinverify.cc","tld":"cc"},"ip":{"addr":"134.122.154.146","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-09T11:23:56.038Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coinverify.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 12:10:37 GMT","end":"Mon, 06 Jul 2026 12:10:36 GMT"},"fingerprint":{"sha1":"01:F2:23:E4:FD:C7:BD:B8:C6:94:53:AE:93:8D:7D:C5:C3:F4:9B:7F","sha256":"6A:8D:BE:2F:6C:E4:57:79:29:C2:90:2A:D7:E9:32:50:D7:CC:1A:17:A8:D4:48:7A:44:DA:11:62:42:3E:7A:28"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: coinverify.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 11:23:56 GMT\r\ncontent-type: text/html\r\ncontent-length: 724\r\nlast-modified: Sat, 04 Apr 2026 16:28:08 GMT\r\netag: \"69d13c18-2d4\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":724,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"7bf11c4f3219872764abb470d3beac70","sha1":"1133ce5f92514b6148cf939acd42530bae64f910","sha256":"5da5b9341b18ed4cd7d4af91fa0ee45440d1291a76f639f74663e62bc1456217","sha512":"928678ff58937c135110844433422df9d568fdaec332c9376a18754f58dde4404a0f8a0dd8dfdb387e2310c84e290f8dfab818d7576acff08f16359c2c67978f","ssdeep":"","tlshash":"6301f4a7a1408506932043a1bc81b51da443d75b4b48ad9065f7d0bdd5d43c58aff6ad","first_seen":"2026-04-09T11:24:25.740598Z","last_seen":"2026-04-09T11:25:41.286915Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1534,"timings":{"blocked":624,"dns":46,"connect":285,"send":0,"wait":285,"receive":0,"ssl":292},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"coinverify.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coinverify.cc/assets/bnb-CeVpde2I.png","fqdn":"coinverify.cc","domain":"coinverify.cc","tld":"cc"},"ip":{"addr":"134.122.154.146","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:59.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coinverify.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 12:10:37 GMT","end":"Mon, 06 Jul 2026 12:10:36 GMT"},"fingerprint":{"sha1":"01:F2:23:E4:FD:C7:BD:B8:C6:94:53:AE:93:8D:7D:C5:C3:F4:9B:7F","sha256":"6A:8D:BE:2F:6C:E4:57:79:29:C2:90:2A:D7:E9:32:50:D7:CC:1A:17:A8:D4:48:7A:44:DA:11:62:42:3E:7A:28"}}},"request":{"raw":"GET /assets/bnb-CeVpde2I.png HTTP/1.1\r\nHost: coinverify.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coinverify.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 11:23:59 GMT\r\ncontent-type: image/png\r\nlast-modified: Sat, 04 Apr 2026 16:28:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d13c18-1ce45\"\r\nexpires: Sat, 09 May 2026 11:23:59 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":118341,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 900 x 900, 8-bit/color RGBA, non-interlaced","md5":"0d61ddc6712ceba3ced9e0dc63e2a9ff","sha1":"5c5eeaa41604ee99f8053dee3c776ad326bf2c30","sha256":"c6d92723f4c839b4ec93ee1a2e29ab1a1b7a56d2f5f8463f9964b718804fbaa2","sha512":"e38fbdcd584b8a57f849693629b01c0eaa06ccc6b48a7a59d5d6382d99fe1009faf71bcf1948f629a6dc8fc2b700baf5fdb2d8c126d4f471d13a288c9b79caf4","ssdeep":"3072:mHP5lnsoMYDSDb1GdL+ePis1wBVtWI7GgD:mv5lsoM/bs+eqs1cVtW/gD","tlshash":"bfc31244270c014cc39359ed7d5fabda53d5e030898169f82456d3652cffbb21e29bae","first_seen":"2026-04-09T11:24:25.742888Z","last_seen":"2026-04-09T11:25:41.281825Z","times_seen":2,"resource_available":false,"data":null}},"time_used":300,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":300,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"coinverify.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coinverify.cc/assets/index-DCM0Hl5U.js","fqdn":"coinverify.cc","domain":"coinverify.cc","tld":"cc"},"ip":{"addr":"134.122.154.146","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:59.706Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coinverify.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 12:10:37 GMT","end":"Mon, 06 Jul 2026 12:10:36 GMT"},"fingerprint":{"sha1":"01:F2:23:E4:FD:C7:BD:B8:C6:94:53:AE:93:8D:7D:C5:C3:F4:9B:7F","sha256":"6A:8D:BE:2F:6C:E4:57:79:29:C2:90:2A:D7:E9:32:50:D7:CC:1A:17:A8:D4:48:7A:44:DA:11:62:42:3E:7A:28"}}},"request":{"raw":"GET /assets/index-DCM0Hl5U.js HTTP/1.1\r\nHost: coinverify.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coinverify.cc/assets/index-Cyrl1wjQ.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 11:23:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 04 Apr 2026 16:28:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d13c18-7ed7\"\r\nexpires: Thu, 09 Apr 2026 23:23:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":32471,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32283)","md5":"7da3178c72d4485632c0c3bfd1bbccc6","sha1":"2f3221dd1ad2388ca583fb6d32a23508464263d4","sha256":"9dc2555c4961b3ab20b0d984c03e8041f0d0316a6cfdd0cc945819effa6528ef","sha512":"d7bdcdccae9090072d2a3c565459ebc5b53eba567f121b8865621d24a64f37b5483a1c96904926e830f2046bf57f8345bedd2c998a5d22ef672acc95ceeab3d8","ssdeep":"768:PNTFhxATrPBlu+jCmsjRcjCmsjrlh6lGUzqaB2UK1RhOKSShW0Hp7wYNVA2HMbmH:xHxirpW3VuqUiRAKSwjF0GE3py","tlshash":"4de20af072af41a4b2811c8c74261610901855b4d909c0797f9e6efad9af781cfeefe6","first_seen":"2026-04-09T11:24:25.745397Z","last_seen":"2026-04-09T11:25:41.285131Z","times_seen":2,"resource_available":true,"data":null}},"time_used":402,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":402,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"coinverify.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:59.731Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:38:49 GMT","end":"Mon, 15 Jun 2026 08:38:48 GMT"},"fingerprint":{"sha1":"37:8D:19:21:5B:E0:E1:BB:D8:7C:65:74:CB:23:05:60:8D:DA:34:48","sha256":"87:F6:F5:DB:75:39:30:F7:7B:2E:F2:78:F3:AF:75:98:AC:41:5C:58:80:43:5D:A4:53:50:BC:D4:D6:F1:CC:56"}}},"request":{"raw":"GET /s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://coinverify.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 32108\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 05 Apr 2026 14:59:40 GMT\r\nexpires: Mon, 05 Apr 2027 14:59:40 GMT\r\ncache-control: public, max-age=31536000\r\nage: 332659\r\nlast-modified: Thu, 04 Sep 2025 17:18:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":32108,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 32108, version 1.0","md5":"e414fe5664f376c8f145acd792939183","sha1":"5b69d46adc3a06af762193adb2dddbc359b2e786","sha256":"fa31c7981483e52cbb8b8bc1eb0dc6326f160b8699cc0899349f977f0517a9df","sha512":"51c251910e5cce616b3c336bcb63853f83c306e16e9b79e0a18f924a738ba06b3e2cb8132ff9bc6e720527234eb80e90be2625b860e1728b66d4fe86ac9bafe5","ssdeep":"768:gUX6jLkDeuAkZHs27nAflEFIapAgCauwIFPo3zjERcgmcjz:3X6tkpNAf6FIapAgCaMFozInjz","tlshash":"6ee2e14f8beb009ef3828a7812c46b3195b305d569cbfa901eef85d76b5c247c1474a8","first_seen":"2025-09-05T02:25:45.343777Z","last_seen":"2026-04-09T15:16:32.846615Z","times_seen":10720,"resource_available":false,"data":null}},"time_used":240,"timings":{"blocked":110,"dns":1,"connect":16,"send":0,"wait":16,"receive":3,"ssl":90},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z8GXhnU0.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:59.736Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:38:49 GMT","end":"Mon, 15 Jun 2026 08:38:48 GMT"},"fingerprint":{"sha1":"37:8D:19:21:5B:E0:E1:BB:D8:7C:65:74:CB:23:05:60:8D:DA:34:48","sha256":"87:F6:F5:DB:75:39:30:F7:7B:2E:F2:78:F3:AF:75:98:AC:41:5C:58:80:43:5D:A4:53:50:BC:D4:D6:F1:CC:56"}}},"request":{"raw":"GET /s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z8GXhnU0.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://coinverify.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 36932\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 09 Apr 2026 02:39:59 GMT\r\nexpires: Fri, 09 Apr 2027 02:39:59 GMT\r\ncache-control: public, max-age=31536000\r\nage: 31440\r\nlast-modified: Wed, 10 Sep 2025 16:31:03 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":36932,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 36932, version 1.0","md5":"7c87a648293fbb5b2924aafaa59e8aea","sha1":"c57593e0adc4cf99dd9e67cb782242220a061a9d","sha256":"9fea608a947e67020c33cad9a6fe3d60c54119dfb8cff87768a8117a15ed7543","sha512":"764ced325a768dca84e1fb0cc458818239ce379dbcbdb324ee8849bbe15f54e3f0254ae6e52ee5a92741840637b4f9885d246a0978af23176b3acfe5b9cec23f","ssdeep":"768:mMQPOAQQKW6GccoXQ+OGpHNzXgtDM0SVu7P3nqtPl9Bf2csDpHUjbYE8j2:mMQz4W5og+tpH6tDJku73EPlPOcs5U/l","tlshash":"c0f2f23e7ea5691487c2b0be506b00935344c9bd37c18121bbb953f44ea67addc5d63c","first_seen":"2025-09-11T17:08:25.889763Z","last_seen":"2026-04-09T15:30:31.242543Z","times_seen":17453,"resource_available":false,"data":null}},"time_used":171,"timings":{"blocked":63,"dns":1,"connect":15,"send":0,"wait":36,"receive":8,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z8GXhnU0.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:59.741Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:38:49 GMT","end":"Mon, 15 Jun 2026 08:38:48 GMT"},"fingerprint":{"sha1":"37:8D:19:21:5B:E0:E1:BB:D8:7C:65:74:CB:23:05:60:8D:DA:34:48","sha256":"87:F6:F5:DB:75:39:30:F7:7B:2E:F2:78:F3:AF:75:98:AC:41:5C:58:80:43:5D:A4:53:50:BC:D4:D6:F1:CC:56"}}},"request":{"raw":"GET /s/dmsans/v17/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K6z8GXhnU0.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://coinverify.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 36932\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 09 Apr 2026 02:39:59 GMT\r\nexpires: Fri, 09 Apr 2027 02:39:59 GMT\r\ncache-control: public, max-age=31536000\r\nage: 31440\r\nlast-modified: Wed, 10 Sep 2025 16:31:03 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":36932,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 36932, version 1.0","md5":"7c87a648293fbb5b2924aafaa59e8aea","sha1":"c57593e0adc4cf99dd9e67cb782242220a061a9d","sha256":"9fea608a947e67020c33cad9a6fe3d60c54119dfb8cff87768a8117a15ed7543","sha512":"764ced325a768dca84e1fb0cc458818239ce379dbcbdb324ee8849bbe15f54e3f0254ae6e52ee5a92741840637b4f9885d246a0978af23176b3acfe5b9cec23f","ssdeep":"768:mMQPOAQQKW6GccoXQ+OGpHNzXgtDM0SVu7P3nqtPl9Bf2csDpHUjbYE8j2:mMQz4W5og+tpH6tDJku73EPlPOcs5U/l","tlshash":"c0f2f23e7ea5691487c2b0be506b00935344c9bd37c18121bbb953f44ea67addc5d63c","first_seen":"2025-09-11T17:08:25.889763Z","last_seen":"2026-04-09T15:30:31.242543Z","times_seen":17453,"resource_available":false,"data":null}},"time_used":195,"timings":{"blocked":81,"dns":1,"connect":28,"send":0,"wait":27,"receive":5,"ssl":50},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Outfit:wght@300;400;500;600;700;800\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:57.109Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:41 GMT","end":"Mon, 08 Jun 2026 08:38:40 GMT"},"fingerprint":{"sha1":"03:81:A0:0E:E1:9B:80:A3:BC:CD:F9:25:A5:7B:8A:43:07:22:C6:00","sha256":"73:8D:9A:B1:F0:C3:6E:8F:EE:C0:2F:99:C8:89:24:16:9A:DB:D1:9C:27:5D:8A:7A:A8:2B:0E:10:42:28:53:7F"}}},"request":{"raw":"GET /css2?family=Outfit:wght@300;400;500;600;700;800\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coinverify.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 09 Apr 2026 11:23:57 GMT\r\ndate: Thu, 09 Apr 2026 11:23:57 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5082,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"ec60e7590df48af1236045a7341f2fad","sha1":"8d5f0abd639cf4379bccbd83cf1b601d1556f9b1","sha256":"1a6b6999f4cdfff8b286152a584c7e871446a75f06279abf60f77404092f6444","sha512":"2f71603630bff01a19ee79a3191d175ba14d09d189741b21cc4b2918fdbccb169b08593e763e682434371b1cae99bd546557c081d52f5b9f4ce09588bd0dca51","ssdeep":"96:cO1aRJc+uwO1aKNNOEaRJc+uwOEaKNNOXaRJc+uwOXaKNNOxMaRJc+uwOxMaKNNS:ShbNh6OhprhwEhXxhWV","tlshash":"dfa1dda1082ba144df970cc222ce7e33ef5f62516444d934affe1899ac6bd5a835770d","first_seen":"2025-09-19T05:39:03.7597Z","last_seen":"2026-04-09T11:51:58.959915Z","times_seen":286,"resource_available":false,"data":null}},"time_used":135,"timings":{"blocked":54,"dns":1,"connect":7,"send":0,"wait":20,"receive":0,"ssl":50},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coinverify.cc/assets/index-BjImQ0Bo.css","fqdn":"coinverify.cc","domain":"coinverify.cc","tld":"cc"},"ip":{"addr":"134.122.154.146","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:57.118Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coinverify.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 12:10:37 GMT","end":"Mon, 06 Jul 2026 12:10:36 GMT"},"fingerprint":{"sha1":"01:F2:23:E4:FD:C7:BD:B8:C6:94:53:AE:93:8D:7D:C5:C3:F4:9B:7F","sha256":"6A:8D:BE:2F:6C:E4:57:79:29:C2:90:2A:D7:E9:32:50:D7:CC:1A:17:A8:D4:48:7A:44:DA:11:62:42:3E:7A:28"}}},"request":{"raw":"GET /assets/index-BjImQ0Bo.css HTTP/1.1\r\nHost: coinverify.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coinverify.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 11:23:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 04 Apr 2026 16:28:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69d13c18-82b3\"\r\nexpires: Thu, 09 Apr 2026 23:23:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33459,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (33458)","md5":"6a1ab584a101292bfa8afbffd87f0cfa","sha1":"48cd23b06560511e4ac344f3549ba149587dddb1","sha256":"3f57282b75bbc8f41d419173739c4eaf89013f963d97a85f23b9286f70b45e90","sha512":"312cd0abd8bcc0f430002d2a68d64b033b62b787fa997baac5ef6f55f5e3bcd2fa29cbcf0642ddb4dd0473977eef343dde0dbc5342d130a72c0b6945827d8836","ssdeep":"384:h4SNrkjxCuukr6TzT0TyTo6n+8MK5jlzp1XNjCA+puA9a0XP6yjCfC2pxlwAi7Kr:RNIjxbjwo6+8MK5jlzph+puA9TK","tlshash":"0de2d5656160313cf93bd4377698968eb114d543e9274beaec94a23ac8cb3f31a3178c","first_seen":"2026-04-09T11:24:25.748761Z","last_seen":"2026-04-09T11:25:41.28363Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1172,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1172,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"coinverify.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:23:59.711Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:38:49 GMT","end":"Mon, 15 Jun 2026 08:38:48 GMT"},"fingerprint":{"sha1":"37:8D:19:21:5B:E0:E1:BB:D8:7C:65:74:CB:23:05:60:8D:DA:34:48","sha256":"87:F6:F5:DB:75:39:30:F7:7B:2E:F2:78:F3:AF:75:98:AC:41:5C:58:80:43:5D:A4:53:50:BC:D4:D6:F1:CC:56"}}},"request":{"raw":"GET /s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://coinverify.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 32108\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 05 Apr 2026 14:59:40 GMT\r\nexpires: Mon, 05 Apr 2027 14:59:40 GMT\r\ncache-control: public, max-age=31536000\r\nage: 332659\r\nlast-modified: Thu, 04 Sep 2025 17:18:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":32108,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 32108, version 1.0","md5":"e414fe5664f376c8f145acd792939183","sha1":"5b69d46adc3a06af762193adb2dddbc359b2e786","sha256":"fa31c7981483e52cbb8b8bc1eb0dc6326f160b8699cc0899349f977f0517a9df","sha512":"51c251910e5cce616b3c336bcb63853f83c306e16e9b79e0a18f924a738ba06b3e2cb8132ff9bc6e720527234eb80e90be2625b860e1728b66d4fe86ac9bafe5","ssdeep":"768:gUX6jLkDeuAkZHs27nAflEFIapAgCauwIFPo3zjERcgmcjz:3X6tkpNAf6FIapAgCaMFozInjz","tlshash":"6ee2e14f8beb009ef3828a7812c46b3195b305d569cbfa901eef85d76b5c247c1474a8","first_seen":"2025-09-05T02:25:45.343777Z","last_seen":"2026-04-09T15:16:32.846615Z","times_seen":10720,"resource_available":false,"data":null}},"time_used":195,"timings":{"blocked":81,"dns":0,"connect":15,"send":0,"wait":16,"receive":17,"ssl":63},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coinverify.cc/vite.svg","fqdn":"coinverify.cc","domain":"coinverify.cc","tld":"cc"},"ip":{"addr":"134.122.154.146","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coinverify.cc/","date":"2026-04-09T11:24:00.114Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coinverify.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 12:10:37 GMT","end":"Mon, 06 Jul 2026 12:10:36 GMT"},"fingerprint":{"sha1":"01:F2:23:E4:FD:C7:BD:B8:C6:94:53:AE:93:8D:7D:C5:C3:F4:9B:7F","sha256":"6A:8D:BE:2F:6C:E4:57:79:29:C2:90:2A:D7:E9:32:50:D7:CC:1A:17:A8:D4:48:7A:44:DA:11:62:42:3E:7A:28"}}},"request":{"raw":"GET /vite.svg HTTP/1.1\r\nHost: coinverify.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coinverify.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 11:24:00 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-09T15:28:25.345122Z","times_seen":482700,"resource_available":true,"data":null}},"time_used":285,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":285,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"coinverify.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}