{"report_id":"5bcb0951-03d8-4d3a-bd13-97b57012fe31","version":6,"status":"done","tags":[],"date":"2026-04-30T10:28:00Z","url":{"schema":"http","addr":"aebtceth.com","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":0,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"title":"Revolut⛏️ Mining Center","dom":{"size":106488,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1273)","md5":"c39115d95f592fe7b42e68aceece5078","sha1":"8dde68839a6f8bb9b478c7ae550a4be1f3fcb217","sha256":"fbf183ae9392c06e6fc1d6dac2bfe3d64f87d69bb22a86cf9b88fee3ebe81899","sha512":"db66bd7b98bbc269009ca8d92ffc917aece54bae16c299966ddba5df5f2d5bee502de0be085e458df580d6e9739a92d12d3c0ac378a39ac9e81e9c1ea413f559","ssdeep":"1536:KSdhZCjrLuyktmY+St1fC0cSwhVH+QDyHLPKvf9kYznfuGyD:nhZOLuJgrhBLf9DDuGc","tlshash":"6aa3f860e7ac0d3a20a350cb97a5a3d575baa433e627c0453abe46506fc7c48d9337bd","dom_hash":"domhashb0d1e4743b643f136ea6695689aeeeca","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"aebtceth.com","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":0,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-04T10:28:00Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"cdn.staticfile.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"cdn.staticfile.org","ip":{"addr":"202.181.25.19","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2013-03-29","domain_rank":851278,"first_seen":"2013-08-23T08:51:19Z","last_seen":"2026-04-25T13:02:42.03511Z","alert_count":2,"request_count":2,"received_data":178554,"sent_data":859,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-04-26T22:35:53.043088Z","alert_count":0,"request_count":3,"received_data":330370,"sent_data":1526,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"aebtceth.com","ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":150,"request_count":75,"received_data":2594942,"sent_data":35005,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:1.10.2","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"ThinkPHP","description":"ThinkPHP is an open-source PHP framework with MVC structure developed and maintained by Shanghai Topthink Company.","website":"https://www.thinkphp.cn","common_platform_enumeration":"cpe:2.3:a:thinkphp:thinkphp:*:*:*:*:*:*:*:*","icon":"ThinkPHP.png","categories":["Web frameworks"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Bootstrap:4.5.0","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-04-26T22:20:29.825994Z","alert_count":0,"request_count":1,"received_data":6149,"sent_data":467,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"7cf9c31c5d51a88a3f1d2db4b631566a","sha1":"d469064f040e4e6acd1f746d04854269bd82ce13","sha256":"f69b365e304a46bf70393725c072e3ebcccd0bfc160e5f64203731a69ebc7b54","sha512":"7e71b59d269fa35dfebe7ef94051318b09904cbfecf531c9770739cf03a769e94841206418f8a71c4060ebeb99f0ca718ec7a1622649291f80736b7f47de3932","ssdeep":"","tlshash":"de3100c0c0000c03f0cc003c0cc0c00030300000f0c0c0300c00f0c0000c0c3c03cc0c","size":1686,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.834642Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"cfd05225431ff742050d51d8fd7ea66d","sha1":"0a27d8ee9dba0c014d87efc3b4631be5a0e8d33f","sha256":"459404db127a05e2bfd766740904dfb277e25daecd1844b36c94fd89ec7d6ffa","sha512":"85f74fe61b54a5123aa5483cba72c3bcc3d39e51fa26a94d2279ce704a012a81d8c8abba09fdbe04274bbae57e2bab98ddefcff28d0b2c97d9dcd608b9b6d288","ssdeep":"","tlshash":"ec3100e0c08e0c22808080380cb0000220208000c8c08000080080800008002800080c","size":1700,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.835935Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"b9052fa3d099ca0a8934c35cfe2a00cc","sha1":"fee21bd711e61710b960a2cd82069a6cc28266a8","sha256":"8f72e1744242d42579ce55cce67e8192047f0395b95449f48cebff9ffae6b70f","sha512":"47299852c9bc0233a5c20215364b9adf56ea7e755f558d95ae5ac7ce5d71b2677d2369f448a2c3bcdb424fb0dbc1e5e450eef29dcc9bdb62478906d0d9ff9c93","ssdeep":"","tlshash":"17310080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1684,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.837304Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/js/layer/layer.js","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"666f4437565d197e9459e19a29f58315","sha1":"afc5c0a1369137e52b37ad5fb63f48202ce31368","sha256":"4a49651ad86a83ecbd9c2ad34e7f5c906b46ae2c4c93c1c8585148f936b7e100","sha512":"1e659ff6c47458dbbaf7e7561402c12441286c255ddec048bf654388e8666a9ceca344e166657c29fce4a08b46470b44c47e8f1c6f577adc2a4e4f4f0e7e1e90","ssdeep":"384:DQ8cuj0z4VfS7ShA3BMJOoM6bs7hwI9b4Zrxy:DQtu8CfS793QODbcI","tlshash":"5f92c85ab5503593216390a9911fa90f30f24d22eb078958f16bf1fd1ebcda562b3f0b","size":19831,"data":"","first_seen":"2023-04-11T09:52:52Z","last_seen":"2026-04-30T15:45:58.663827Z","times_seen":13458,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/js/layer/layer.js","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"666f4437565d197e9459e19a29f58315","sha1":"afc5c0a1369137e52b37ad5fb63f48202ce31368","sha256":"4a49651ad86a83ecbd9c2ad34e7f5c906b46ae2c4c93c1c8585148f936b7e100","sha512":"1e659ff6c47458dbbaf7e7561402c12441286c255ddec048bf654388e8666a9ceca344e166657c29fce4a08b46470b44c47e8f1c6f577adc2a4e4f4f0e7e1e90","ssdeep":"384:DQ8cuj0z4VfS7ShA3BMJOoM6bs7hwI9b4Zrxy:DQtu8CfS793QODbcI","tlshash":"5f92c85ab5503593216390a9911fa90f30f24d22eb078958f16bf1fd1ebcda562b3f0b","size":19831,"data":"","first_seen":"2023-04-11T09:52:52Z","last_seen":"2026-04-30T15:45:58.663827Z","times_seen":13458,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"b9052fa3d099ca0a8934c35cfe2a00cc","sha1":"fee21bd711e61710b960a2cd82069a6cc28266a8","sha256":"8f72e1744242d42579ce55cce67e8192047f0395b95449f48cebff9ffae6b70f","sha512":"47299852c9bc0233a5c20215364b9adf56ea7e755f558d95ae5ac7ce5d71b2677d2369f448a2c3bcdb424fb0dbc1e5e450eef29dcc9bdb62478906d0d9ff9c93","ssdeep":"","tlshash":"17310080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1684,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.837304Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"d35426eb9611cc990db5da70b583a297","sha1":"fed4e0b623194ae459877ae7a6fad2b2d75ce6af","sha256":"cac75cbc66d4e0421302963c10b3fcdb60060ece6ad2dcee0e4195e47ddd94ee","sha512":"fa3c6ebf56209a1e83d093607866bc7d0e6f5bedc547bb2be6844f970c8aa370d34cb31fab742792eb10b77de7996d4586979190c5eb52db3fbc6f00ff03d7bc","ssdeep":"","tlshash":"603100f0c0000c00c0c0303c0cc0cc0030330c00c000c0300c00f0c0000c033c00cc0c","size":1688,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.838998Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"1662e841d01f5954e7011fbdfae78fef","sha1":"a2779ceb142c34f271bf90a1fedc563e88eb5896","sha256":"875f639d01e7126a5f73b362aff2d3841f38b7dd4cbfc7ff91a63246db9758e5","sha512":"7596199d98fdebf408f1b2df5c2a4cf49c31ed33423856499e2ebe6d2ab8da509d559eaf18a15a32500a613763482c35b808df416de776f670e42d576d4310b7","ssdeep":"","tlshash":"b4310080c020cc00808000382cc2000220300000c00288300c008080000c823c0a8808","size":1691,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.840712Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.staticfile.org/jquery/2.1.1/jquery.min.js","fqdn":"cdn.staticfile.org","domain":"staticfile.org","tld":"org"},"ip":{"addr":"202.181.25.19","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"d021c983bd6e7291b43a5cc1fb2ebe99","sha1":"ffe47a16e4b1550ddfba3577cc9cc9fdc8643aff","sha256":"c0d4098bc8b34c6f87a3d7723988ae81214a53a0bb4a1d4d36a67640f98ed079","sha512":"0b01d408ae79a4e3630f1bcf6507aec0aa71a2cf263f212ff601ae582f15af4df9ec9dae5e0d4fc9c1833cd0fd1207689121531ba920480a680e3f4e336da4b3","ssdeep":"1536:kPEkjP+iADIOr/NEe876nmBu3HvF38Nd+uJO1z6/A4TqAub0i4ULvguEhjzXpa9G:7NMnJiz6oAQKP5a98HrB","tlshash":"5983d6d9b6c27062977734b850bf410bb17a98dab80c8c60f0a4d5e47eb4a8d517bf2d","size":84280,"data":"","first_seen":"2023-03-07T12:01:55Z","last_seen":"2026-04-30T14:42:03.866388Z","times_seen":9925,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"14f76c1741e3bd4ed7ad945c94dd79f9","sha1":"746e5d51e3ab22ffdd6a6c81116de3946f913814","sha256":"232fa58eed5d4bb4e045bfb5d919de41ba9adb038a35afffd9e489fdbaa9f8d3","sha512":"c1d7313fc0de20417538eeafd7d13af1408adc666aa33db1f60e7847a56e8025531f056a1864cebcd27653faaffa988506f8def4637237ec2ec14b924cb19f8a","ssdeep":"384:ubYpA2XqL6zn7D49JZuJIGuKDeqw4ONIdhQzyHfjvsDVWxmpv3kMFBJYlYAENF+R:uH+SwZUDyHrvssKvfrJkYeaPZnfbs","tlshash":"b6e21291eb7c9b3602a6015fa6cec2e2e735a069263b854d395cc11827d6d3c87b73f4","size":31327,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.842323Z","times_seen":658,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"20523e78bae2cebbef388c9ef84ec2f9","sha1":"29093cf5f97a20d8297b3554d07f2926d8df98d2","sha256":"8a6cfe4c6857b79cfcf6f200c8d00b064aa443b7e529332cbf064cb183c938cc","sha512":"182e396a3aafaf2b5f18070a8ed0e76efc7e8f1cb8eb37865ac4b294f0a8c933c3e9a72531506bfc732fa9f5f3a4acaa7a1a21adbb0849c63870b3f2e934a2f6","ssdeep":"192:Z+9wKCCBm9wKCC1u9wKCCXO9wKCC9u9wKCCssxI9wKCC7O9wKCCeQi9wKCCTo9ww:Z+vm7uVOrur+JOAQihoTuhK5Mh8N","tlshash":"1822b46cf993286c789334258f6f005438e87547cb49d4193eada8c26f8850da5bbfde","size":10286,"data":"","first_seen":"2023-04-30T10:40:57Z","last_seen":"2026-04-30T10:28:11.844399Z","times_seen":2901,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"d35426eb9611cc990db5da70b583a297","sha1":"fed4e0b623194ae459877ae7a6fad2b2d75ce6af","sha256":"cac75cbc66d4e0421302963c10b3fcdb60060ece6ad2dcee0e4195e47ddd94ee","sha512":"fa3c6ebf56209a1e83d093607866bc7d0e6f5bedc547bb2be6844f970c8aa370d34cb31fab742792eb10b77de7996d4586979190c5eb52db3fbc6f00ff03d7bc","ssdeep":"","tlshash":"603100f0c0000c00c0c0303c0cc0cc0030330c00c000c0300c00f0c0000c033c00cc0c","size":1688,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.838998Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"e027d3f86bc0ba7dca86520d6876b449","sha1":"763ebb9fa952541e2d77eac82302caeda03e21e6","sha256":"598ad0b6697c78f865fa51172330dce32f20772a1194a1880911a2d8850b1daa","sha512":"4b56789149d16d503100f39c728376d607d821e7f8ff0f24cbaee68d3535c68414e1bded898a185754a9c747120ef6688220350c7cd396b6c8d671256670ea69","ssdeep":"","tlshash":"7a3100c0c0003c00c0c3003c0cf00000f0300000c030c0000c0cc0cc00ccc33c000c0c","size":1704,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.845286Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/js/jquery.SuperSlide.2.1.1.js","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"0b9bc63ab05e21e3830da5bbb4ccee67","sha1":"d162156bdaf14217d76d920e0e57b86d8feb1d97","sha256":"349e46b2c65028736d0bbff7b829c7fc6fbdebc1fb1e8b12365a0ca2e6e9e848","sha512":"bdfa220da1f08e29f05a9984c4999d7e742bea10ad86b7e497a0d112c7992cc52b7f1e9f5430b4286f14bb2336110f85cbdc3164a92121caaf5c91961f7e69c9","ssdeep":"192:j+K3bxH+nqfhD9VUVjIItpfg5uXG3+1tSCl+7flvSXwaHxImISLTNSfYXH7Le2HE:jNcnqflKFgEWulE8REcS3j/CkR1Xh3","tlshash":"9532c65fb66635ca4597b3f1107f940d222b5965fc8a8ca0b17082c0adb9a1c243bfed","size":11264,"data":"","first_seen":"2023-04-05T11:06:31Z","last_seen":"2026-04-30T10:28:11.825996Z","times_seen":13402,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"39d4f19f9c0926dc38317fdf3f7b8fde","sha1":"128672a3e06b80d958284f3cb65a4fba41776c7b","sha256":"9edfe06057d81559a8045e1fdca8bbd51d78fb238d39e50a42e0e70182b45918","sha512":"293d0ca6d88e91703c076e7e8e2096d170455a198393f63e42af06ade1194ce80aff62e551ede237514a9b5f12810be3013cfd1e7d164b74ad86d339ee4091e2","ssdeep":"","tlshash":"9c116b05a70b2cd828f3996f1f5384120c3624136887ca243f4d97e09fe9e939469d5d","size":1090,"data":"","first_seen":"2023-04-30T10:40:57Z","last_seen":"2026-04-30T10:28:11.847513Z","times_seen":1095,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"7cf9c31c5d51a88a3f1d2db4b631566a","sha1":"d469064f040e4e6acd1f746d04854269bd82ce13","sha256":"f69b365e304a46bf70393725c072e3ebcccd0bfc160e5f64203731a69ebc7b54","sha512":"7e71b59d269fa35dfebe7ef94051318b09904cbfecf531c9770739cf03a769e94841206418f8a71c4060ebeb99f0ca718ec7a1622649291f80736b7f47de3932","ssdeep":"","tlshash":"de3100c0c0000c03f0cc003c0cc0c00030300000f0c0c0300c00f0c0000c0c3c03cc0c","size":1686,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.834642Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Static/bootstrap5Slide/scripts.js","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"48477ea73f8709a6c29d7cde0cc83e55","sha1":"5dc30fab107725dd71ab343d70b9e6267ea68cf1","sha256":"fd67e1f083236a6c171d2275401174ea62a6f24fc81193d55653080a236a209a","sha512":"0932287b99d7c96929e7464b6684fe399dfcaaea787dcab28fa0879094b5eb4d92139260fecde4ffe430eca3986430f98a72fc523332c4e476bee9ea2226b1b3","ssdeep":"","tlshash":"1ee0cd91761d4f9d1ccc3257996092c576841524e401f06790374c6c0a9584225fb7fc","size":298,"data":"","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-04-30T10:28:11.793657Z","times_seen":6109,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"fbbb012e519b910a02da83ac6d3112da","sha1":"a03af70ac8200203516bb605834e1e3a1a061948","sha256":"b3f004b5887b020f0abc7d1046d655e1b275a9eb354f05212175561521105a47","sha512":"5c76b4a0f8abfa543ae0c28835d8685715b0899a787e39f251d28a06484c9f51a0de7dc1fc258b4891080768550ee830e5b0594bbac8a8e61594d117ce751b80","ssdeep":"","tlshash":"6cf0c96e0a1ed7ff70a80235532aa2ef70cd4baa90076807fe87021716ac118bc01ea1","size":527,"data":"","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-04-30T10:28:11.84931Z","times_seen":6971,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"b9052fa3d099ca0a8934c35cfe2a00cc","sha1":"fee21bd711e61710b960a2cd82069a6cc28266a8","sha256":"8f72e1744242d42579ce55cce67e8192047f0395b95449f48cebff9ffae6b70f","sha512":"47299852c9bc0233a5c20215364b9adf56ea7e755f558d95ae5ac7ce5d71b2677d2369f448a2c3bcdb424fb0dbc1e5e450eef29dcc9bdb62478906d0d9ff9c93","ssdeep":"","tlshash":"17310080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1684,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.837304Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"b9052fa3d099ca0a8934c35cfe2a00cc","sha1":"fee21bd711e61710b960a2cd82069a6cc28266a8","sha256":"8f72e1744242d42579ce55cce67e8192047f0395b95449f48cebff9ffae6b70f","sha512":"47299852c9bc0233a5c20215364b9adf56ea7e755f558d95ae5ac7ce5d71b2677d2369f448a2c3bcdb424fb0dbc1e5e450eef29dcc9bdb62478906d0d9ff9c93","ssdeep":"","tlshash":"17310080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1684,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.837304Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"d8916159752d4546ba94553fa4618897","sha1":"5dfe667c97e5e6845c8c458e375ba855023285c4","sha256":"1cba8cfa4772fd5d27f96b8f6ee314c18df5cdf9e9f6ee11f04365032f89ce30","sha512":"6ae4926cd87e194ab72a7d346096bc3db0b7a60ed66553f1db3063c84053c9115d7f55db69a0e51573673069dd1be9ff1f8334dfeae165ad7e16cf8e2b3179f1","ssdeep":"","tlshash":"e83133c4cb1e11acc94553f92a6e82dc063d2a702c338c657d199e38ac98ebed61dd79","size":1627,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.849953Z","times_seen":189,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"3141c18a9605b1422295c9e48d668c9d","sha1":"0e035fdbc893334e85d674527229f5d2fd9c8036","sha256":"1c439327512b5147799af88283ca39d0f13d331bea70d2ec3e479177c6c595c9","sha512":"9de6cc7247eb894a1a5a05a3cad42883bb7478bd38bb37e22c7ac97ae476b6a843adb97e0ed0c1ba44db35687a637a8ada2d6197fdf51b66ac1e46fb0d0863d0","ssdeep":"","tlshash":"05d05ec3ab4d2058587f319784eb15cc005c467288920d89bc3d91908ca01ec5371f2d","size":255,"data":"","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-04-30T10:28:11.852199Z","times_seen":5210,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"7cf9c31c5d51a88a3f1d2db4b631566a","sha1":"d469064f040e4e6acd1f746d04854269bd82ce13","sha256":"f69b365e304a46bf70393725c072e3ebcccd0bfc160e5f64203731a69ebc7b54","sha512":"7e71b59d269fa35dfebe7ef94051318b09904cbfecf531c9770739cf03a769e94841206418f8a71c4060ebeb99f0ca718ec7a1622649291f80736b7f47de3932","ssdeep":"","tlshash":"de3100c0c0000c03f0cc003c0cc0c00030300000f0c0c0300c00f0c0000c0c3c03cc0c","size":1686,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.834642Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"7cf9c31c5d51a88a3f1d2db4b631566a","sha1":"d469064f040e4e6acd1f746d04854269bd82ce13","sha256":"f69b365e304a46bf70393725c072e3ebcccd0bfc160e5f64203731a69ebc7b54","sha512":"7e71b59d269fa35dfebe7ef94051318b09904cbfecf531c9770739cf03a769e94841206418f8a71c4060ebeb99f0ca718ec7a1622649291f80736b7f47de3932","ssdeep":"","tlshash":"de3100c0c0000c03f0cc003c0cc0c00030300000f0c0c0300c00f0c0000c0c3c03cc0c","size":1686,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.834642Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"21170fa0cc2394468c16f407139ef7d9","sha1":"6e46eeda69ade6d439b005f2748076b13dc7f7a7","sha256":"b0384a94328fe2563fd28bb06e2fd10b3ee2be481c79c149d2d2dd70abef9810","sha512":"6363cb2766eae9cb769dbbdb13fb987b11df6740d045fbda14b2ddb60955655aceff1302ecae372b0a53c61cee4e51a96343d877571c392d4eb3c8dee257337d","ssdeep":"","tlshash":"d4310080c8000c00808000b82c82003020202020c00080000800808022080028a0080a","size":1692,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.853097Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"f134a9f4b7a6e6be5c9e394f9080105c","sha1":"4e100b0fc4c292645d923691e5bc4839d936ecfe","sha256":"bfaaacca67506522297ff8e41eb90c3d356f2bdaa5008a2b96f6521fa55a06d9","sha512":"69e552f3a82e8d5db5db1153fe563395f851cb1bb5d54fbe1f3f8effa6e24755acfdbeb946529854aa8027c8441ff9125a741a40f43c70df33e38d4246ec3dfd","ssdeep":"","tlshash":"36310082c000082880a000380c82000020200000c00280200c0880e000280228002c08","size":1698,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.856412Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.staticfile.org/jquery/1.10.2/jquery.min.js","fqdn":"cdn.staticfile.org","domain":"staticfile.org","tld":"org"},"ip":{"addr":"202.181.25.19","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"e0e0559014b222245deb26b6ae8bd940","sha1":"e2f3603e23711f6446f278a411d905623d65201e","sha256":"89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e","sha512":"60740da8f871b8263675db2421b0e565fc18e95c772f7c3d5916f224263cd71a6a2e6acceab2f6f8ba1c0607951f0198f525d87d0589fa57045b1d5f292dacf0","ssdeep":"1536:q4mCgi8DyCuXXFiJ+L0kJQsJVPEKLQRZdC/RlfDknv+p0WzH/IoSZ7qABZnu0sFv:qGsKXlI2p0WPSbDrstfam","tlshash":"ba93f8ddb2d1b06257bb21bd006f540ff236195e280d8850f129e8eabc74a4d9277fad","size":93100,"data":"","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-04-30T15:52:51.099627Z","times_seen":19343,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"d35426eb9611cc990db5da70b583a297","sha1":"fed4e0b623194ae459877ae7a6fad2b2d75ce6af","sha256":"cac75cbc66d4e0421302963c10b3fcdb60060ece6ad2dcee0e4195e47ddd94ee","sha512":"fa3c6ebf56209a1e83d093607866bc7d0e6f5bedc547bb2be6844f970c8aa370d34cb31fab742792eb10b77de7996d4586979190c5eb52db3fbc6f00ff03d7bc","ssdeep":"","tlshash":"603100f0c0000c00c0c0303c0cc0cc0030330c00c000c0300c00f0c0000c033c00cc0c","size":1688,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.838998Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"b9052fa3d099ca0a8934c35cfe2a00cc","sha1":"fee21bd711e61710b960a2cd82069a6cc28266a8","sha256":"8f72e1744242d42579ce55cce67e8192047f0395b95449f48cebff9ffae6b70f","sha512":"47299852c9bc0233a5c20215364b9adf56ea7e755f558d95ae5ac7ce5d71b2677d2369f448a2c3bcdb424fb0dbc1e5e450eef29dcc9bdb62478906d0d9ff9c93","ssdeep":"","tlshash":"17310080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1684,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.837304Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"b9052fa3d099ca0a8934c35cfe2a00cc","sha1":"fee21bd711e61710b960a2cd82069a6cc28266a8","sha256":"8f72e1744242d42579ce55cce67e8192047f0395b95449f48cebff9ffae6b70f","sha512":"47299852c9bc0233a5c20215364b9adf56ea7e755f558d95ae5ac7ce5d71b2677d2369f448a2c3bcdb424fb0dbc1e5e450eef29dcc9bdb62478906d0d9ff9c93","ssdeep":"","tlshash":"17310080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1684,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.837304Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"7cf9c31c5d51a88a3f1d2db4b631566a","sha1":"d469064f040e4e6acd1f746d04854269bd82ce13","sha256":"f69b365e304a46bf70393725c072e3ebcccd0bfc160e5f64203731a69ebc7b54","sha512":"7e71b59d269fa35dfebe7ef94051318b09904cbfecf531c9770739cf03a769e94841206418f8a71c4060ebeb99f0ca718ec7a1622649291f80736b7f47de3932","ssdeep":"","tlshash":"de3100c0c0000c03f0cc003c0cc0c00030300000f0c0c0300c00f0c0000c0c3c03cc0c","size":1686,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.834642Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Static/bootstrap5Slide/bootstrap.bundle.min.js","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"8831aa095cdec88f66c2e46c339cf352","sha1":"5db4c40dbc6bd3d9623ee98a2061dd265885cf2e","sha256":"79d443b15f542c8a8acca8e937f2a3c90ecba78bd49fdbac6c9b878c7f1293e9","sha512":"b07f093e128951e03d3d693778e70e97c53e95f65382d0570f8d6ae9c3bfb25c311870b129c5b8e4ae283c25211c6ecd301e266ca11d75598fb935eda5b09b14","ssdeep":"1536:GaPTJR2t4PqiiyuL5FehgTr1voCBZx6wVlLBkS:4OANBZVV5","tlshash":"0f73c5493254b87309ee15a68037460bf7256d94b14b802cb5bdacde2b3dc8672b7f78","size":78748,"data":"","first_seen":"2023-03-07T01:34:42Z","last_seen":"2026-04-30T15:49:57.8828Z","times_seen":7555,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"b9052fa3d099ca0a8934c35cfe2a00cc","sha1":"fee21bd711e61710b960a2cd82069a6cc28266a8","sha256":"8f72e1744242d42579ce55cce67e8192047f0395b95449f48cebff9ffae6b70f","sha512":"47299852c9bc0233a5c20215364b9adf56ea7e755f558d95ae5ac7ce5d71b2677d2369f448a2c3bcdb424fb0dbc1e5e450eef29dcc9bdb62478906d0d9ff9c93","ssdeep":"","tlshash":"17310080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1684,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.837304Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"87b7fd22081dbb658a4774138b9cbe54","sha1":"9e83e9635dc3c74ad915b30a4d25bc3735c48cca","sha256":"f5ccaed2405944901c1f28d2034a3868254997b1e2b5a581c9bcefabb58accb2","sha512":"d0de8592ad24228a5903c20e598767f8da8ce7ef4d9f405175e0697c5beb704ea59db463bdcd887348bb5daa44fb969f7a8963797f9843cdd31032b7db93d431","ssdeep":"","tlshash":"653100c0c0003c00c0c000fc0cc00000f0300000c0c0c0300c03c0c0c00c003c03cc0c","size":1694,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.85895Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"b9052fa3d099ca0a8934c35cfe2a00cc","sha1":"fee21bd711e61710b960a2cd82069a6cc28266a8","sha256":"8f72e1744242d42579ce55cce67e8192047f0395b95449f48cebff9ffae6b70f","sha512":"47299852c9bc0233a5c20215364b9adf56ea7e755f558d95ae5ac7ce5d71b2677d2369f448a2c3bcdb424fb0dbc1e5e450eef29dcc9bdb62478906d0d9ff9c93","ssdeep":"","tlshash":"17310080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1684,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.837304Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"introduction_type":"domTimer","is_inline":false,"md5":"1662e841d01f5954e7011fbdfae78fef","sha1":"a2779ceb142c34f271bf90a1fedc563e88eb5896","sha256":"875f639d01e7126a5f73b362aff2d3841f38b7dd4cbfc7ff91a63246db9758e5","sha512":"7596199d98fdebf408f1b2df5c2a4cf49c31ed33423856499e2ebe6d2ab8da509d559eaf18a15a32500a613763482c35b808df416de776f670e42d576d4310b7","ssdeep":"","tlshash":"b4310080c020cc00808000382cc2000220300000c00288300c008080000c823c0a8808","size":1691,"data":"","first_seen":"2024-06-02T01:55:27Z","last_seen":"2026-04-30T10:28:11.840712Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"aebtceth.com/Public/Static/bootstrap5Slide/bootstrap.min.css","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.181Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Static/bootstrap5Slide/bootstrap.min.css HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: text/css\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-2f10e\"\r\nExpires: Thu, 30 Apr 2026 22:27:39 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":192782,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65184)","md5":"f90da32f1c1f746c2cd0f58d736b6959","sha1":"bbf9e498530c04f372a8378a2eeb14a39fc1f0dd","sha256":"420bc9f4ab4b731e3f8cbf7919fe0da12b758657df696855d6e97a841ee654db","sha512":"4dae3486758ef50a0625073424b44d662d6e8dae0cf3f11d5240795265cba345a92f1c22360c6e301ab5a80854525ca26b77a8c202842bc627d00e8d0d645c18","ssdeep":"1536:qQvFA+QbGwz48MIEtQ12c2Jsj+aaHYAVmJz600I40Yw:qQvqAVmJz600I40Yw","tlshash":"431492a7f581201ee493c10995d2bffd057f9586d3021baaf42737b44b452eb8a63e4c","first_seen":"2023-09-10T10:46:21Z","last_seen":"2026-04-30T10:28:11.752143Z","times_seen":1470,"resource_available":false,"data":null}},"time_used":235,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":156,"receive":79,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/imgs/icon_etf.svg","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.320Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/imgs/icon_etf.svg HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/svg+xml\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-55f\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1375,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"6e432564e65f8779c665055d5bf9f563","sha1":"dc529670e33c8baace696f7ed4c3ef3bbe9cad90","sha256":"2df7417ef0acff023bffea1bf0c6366884770c1dab4d191f24ec29c84d2b7031","sha512":"cec79f984f55609c45347e0a6b9e885fec23baadfb00fca179eeed2b2902e5a8659649b6e4d7c0711a40bff90b8acfb7b8823a89beb53f9e836211ef89f17c3e","ssdeep":"","tlshash":"cf21e9fd204aaa29b35dc352ab2961f4184610fe1f35e4c1dbf855143c1cbfe495a1db","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.755395Z","times_seen":2550,"resource_available":false,"data":null}},"time_used":1509,"timings":{"blocked":1356,"dns":0,"connect":0,"send":0,"wait":153,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Nunito:wght@400;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.450Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:36:48 GMT","end":"Mon, 22 Jun 2026 08:36:47 GMT"},"fingerprint":{"sha1":"1A:63:7B:F3:04:6F:4C:E4:F3:15:87:E8:E7:FA:DD:B1:F7:7E:89:49","sha256":"5E:36:5D:D1:35:3B:0A:E9:8A:55:91:DC:12:B0:50:4A:AE:D9:A7:97:06:7C:0D:D7:F0:23:3E:8A:B2:08:19:00"}}},"request":{"raw":"GET /css2?family=Nunito:wght@400;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 30 Apr 2026 10:27:38 GMT\r\ndate: Thu, 30 Apr 2026 10:27:38 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5463,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"721a040ea564a6f1097d3c9fc78e4478","sha1":"969b3a763c65bbea8dd653387efe6482fd53f614","sha256":"1eab5e802b5f0457aaad88e630b825da8ed3ba340a35a34b5f6901d9d84bdad1","sha512":"44cce6feb92211ced4be081e6a2c9c0c63b0fc22a7243396544d0d88b4736d6e6d62ee3cad5136dda1b21e3f4eac55d6b465a0b28922df3565bc5bef366db625","ssdeep":"96:BOEabTxOEa7FZOOOEaKOEaQJc+uaOEaENqOxMabTxOxMa7FZOOOxMaKOxMaQJc+m:OH+yptkUkH0yXLkeLHbywkkdH","tlshash":"5eb17891045bd400aa432cc667cf7f37ed4e62113464c57aebfd9898ecabd272264b1e","first_seen":"2025-09-17T11:57:27.939025Z","last_seen":"2026-04-30T11:08:41.230653Z","times_seen":1190,"resource_available":false,"data":null}},"time_used":268,"timings":{"blocked":117,"dns":1,"connect":21,"send":0,"wait":33,"receive":0,"ssl":93},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_btc","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:53.766Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:55 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"944b06636705fb347d424b8ce0364a6c","sha1":"cba00edb406d9059aaf58d8278f8dffdac4f9d24","sha256":"407d4575e166d79926f1227f28999dd877d22defaa2f94e0071b171e5d14c748","sha512":"9cb12368d10ce59fce25e0e7b753272abda291a9c207174f2e55b945ed6942fddae1da40dcfff4a85423a6fae66d50a60e712433da27ba3134bd2c69615061c6","ssdeep":"","tlshash":"f7d023d07d36101d117197c258fc073e546dc041c0c5420195edcaa1765c4047345d12","first_seen":"2026-04-30T10:28:11.758129Z","last_seen":"2026-04-30T10:28:11.758129Z","times_seen":1,"resource_available":false,"data":null}},"time_used":333,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":333,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Static/bootstrap5Slide/style.css","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.183Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Static/bootstrap5Slide/style.css HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: text/css\r\nContent-Length: 589\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nConnection: keep-alive\r\nETag: \"69ef211a-24d\"\r\nExpires: Thu, 30 Apr 2026 22:27:39 GMT\r\nCache-Control: max-age=43200\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":589,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (589), with no line terminators","md5":"df62cb99d119a66bcd5f06547d96ecb7","sha1":"a6d0e097db0919f47977c33510359bc08ec88a9c","sha256":"afca52e1c0203f27bf8165e8fcf92b2674f084f6372f12cc1e7bb3edaee35f03","sha512":"59d599c3a25a64cfae94e1b2f1328abffb199a503c0e8904a3e4a574c101cb6b72d09e94a7b2afaa3f8cbd1a55b92cb2b2bdc33b528ee6c953d30fa3b622cf0f","ssdeep":"","tlshash":"a2f07f42b71a596e5d872300a9d213abf10c7f319709097992f3211d8f29a85237df4e","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-04-30T10:28:11.760689Z","times_seen":6095,"resource_available":false,"data":null}},"time_used":428,"timings":{"blocked":125,"dns":1,"connect":151,"send":0,"wait":151,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Static/bootstrap5Slide/bootstrap.bundle.min.js","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.432Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Static/bootstrap5Slide/bootstrap.bundle.min.js HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-1339c\"\r\nExpires: Thu, 30 Apr 2026 22:27:39 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":78748,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65299)","md5":"8831aa095cdec88f66c2e46c339cf352","sha1":"5db4c40dbc6bd3d9623ee98a2061dd265885cf2e","sha256":"79d443b15f542c8a8acca8e937f2a3c90ecba78bd49fdbac6c9b878c7f1293e9","sha512":"b07f093e128951e03d3d693778e70e97c53e95f65382d0570f8d6ae9c3bfb25c311870b129c5b8e4ae283c25211c6ecd301e266ca11d75598fb935eda5b09b14","ssdeep":"1536:GaPTJR2t4PqiiyuL5FehgTr1voCBZx6wVlLBkS:4OANBZVV5","tlshash":"0f73c5493254b87309ee15a68037460bf7256d94b14b802cb5bdacde2b3dc8672b7f78","first_seen":"2023-03-07T01:34:42Z","last_seen":"2026-04-30T15:49:57.8828Z","times_seen":7555,"resource_available":true,"data":null}},"time_used":330,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":157,"receive":173,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_doge","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:46.759Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_doge HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=doge"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:48 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":213,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"96aaebd128848020cec57b75f826b87a","sha1":"41bbd88c9c5b3a488d3c4e1f6b215a7e36809f24","sha256":"837aee17ee1e4181993919c8c738f6461db396d351364ee43fcf6378bf0f348a","sha512":"d4515b117bf24150dfd29fec237f556419efd87bb77de2c0a21e09a4769ae01f9612d25e467ce84a1497cc71e311526a01891f784fc27fb48a99c7c50666c364","ssdeep":"","tlshash":"afd0a9e03f78121200b2bbd168f82b6ed99cc0c6848182066bbdcb202a5882cb218e06","first_seen":"2026-04-30T10:28:11.763156Z","last_seen":"2026-04-30T10:28:11.763156Z","times_seen":1,"resource_available":false,"data":null}},"time_used":252,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_eth","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:48.757Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_eth HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eth"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:50 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":205,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"df2463ecbf29a334146a356fcbd65f8c","sha1":"70bfe9c7f32336003021c67deb300b3dd4a35955","sha256":"3079ec24a3d21fda275928d9f3c8c6c8a25c12c108e213cf892dcab1961e9b6a","sha512":"b4b9540baafeba5e26eb62db92a1e71575856c0f118e91240e29f8ec4bf5ee85b2e0e6cc150b978c63cc4c0a269f1b1bd5bc9b224c283234f5d733696447c816","ssdeep":"","tlshash":"d2d0a788af3904290871e3d068d91a1d184b4486d081c10456fddd64151840c3351d17","first_seen":"2026-04-30T10:28:11.76535Z","last_seen":"2026-04-30T10:28:11.76535Z","times_seen":1,"resource_available":false,"data":null}},"time_used":441,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":441,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-30T10:27:37.608Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nSet-Cookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nPragma: no-cache\r\nCache-control: private\r\nX-Powered-By: ThinkPHP\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery:1.10.2","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"ThinkPHP","description":"ThinkPHP is an open-source PHP framework with MVC structure developed and maintained by Shanghai Topthink Company.","website":"https://www.thinkphp.cn","common_platform_enumeration":"cpe:2.3:a:thinkphp:thinkphp:*:*:*:*:*:*:*:*","icon":"ThinkPHP.png","categories":["Web frameworks"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Bootstrap:4.5.0","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]}],"data":{"size":103959,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1268), with CRLF, LF line terminators","md5":"89d6abac06d2fa3928c1bf71bcc41282","sha1":"d309e970e0995adabc7621689bd458a0bda1d05e","sha256":"ff710d7fc29b0f751b245463cdb05d02fefaf0e9e3ad671456b0a815c6a438dc","sha512":"5de3993ae3c2c66b933933f292fbc37d7e40226d791b2dd746a1673af4e6c50ff36004fd62ad7b1464da4ce055a984c235492e65c5193a562f6c1c3faa88fa2e","ssdeep":"1536:ygqS/ys5M+ocyVVevSwhVH+QDyHLPKvf9kYznfKt423z:ygj5M+ocyV+rhBLf9DDKt423z","tlshash":"3ea3b460b75c493920b3518bd7b49799fabae033861781043afc53722fb7c18d563ae9","first_seen":"2026-04-30T10:28:11.767378Z","last_seen":"2026-04-30T10:28:11.767378Z","times_seen":1,"resource_available":true,"data":null}},"time_used":687,"timings":{"blocked":152,"dns":1,"connect":151,"send":0,"wait":214,"receive":168,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Upload/public/638ba51cb093e.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.185Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Upload/public/638ba51cb093e.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: text/html\r\nContent-Length: 507\r\nConnection: keep-alive\r\nETag: \"69ef211a-1fb\"\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":507,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"20ad8643e0f96e0e144783b2dc091d45","sha1":"68f4ebc8a633a8eac8c8ccbadb1d1c0622dcd67e","sha256":"cb02e90d4b062aee81ccbf3e95faab53f1547f5295067a03bc759c7653074a1e","sha512":"a64a5fef0354bbabefcfe0dbc164f97aa3cd24fd23eb95a58cb3fb93eb278f80ab18e491a7c14e8527b113cb78f4b1014f0210b58ffd905a9508ed31a7beddc9","ssdeep":"","tlshash":"8ff09e8340d2881d111041301a9061051e4b7e97db5b4d4579af71bfdfd7a85c9735cd","first_seen":"2024-12-05T21:33:47.112809Z","last_seen":"2026-04-30T10:28:11.769311Z","times_seen":61,"resource_available":false,"data":null}},"time_used":715,"timings":{"blocked":561,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Upload/public/629c72d268234.jpeg","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.299Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Upload/public/629c72d268234.jpeg HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/jpeg\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-16932\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":92466,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x300, components 3","md5":"d2ec614dd56337288a48c3504872d752","sha1":"1fa9772c7f2eb6e93fe1edeacef816b6850507fa","sha256":"d4ca7b176180c645d813c294b8174fe3c58a9cf83db951b5b8fb6f1ba9cb2cfd","sha512":"ffbee79889cffadad6106cf0535965fb5a5ce7e39b16a1998084d38aad60f4ecdb1ff0d2281fd34e999ccdd04c3d2cc25bd7aec119a58c18e5cd91b8174118a3","ssdeep":"1536:M9qKZoxlS00K5Xr6B7rdSKgWoCL8DyWKl7mfmxnyKqhvYPZmXxilegMMCdDIDG7:QZygKUFlgWnLV7ImxnV/P9C1r7","tlshash":"72931296b38a4919e7697732485ec1e073f29ea0be451fae51f3c478c8dd032b117a39","first_seen":"2023-05-21T16:18:43Z","last_seen":"2026-04-30T10:28:11.771077Z","times_seen":4428,"resource_available":false,"data":null}},"time_used":1008,"timings":{"blocked":459,"dns":0,"connect":0,"send":0,"wait":156,"receive":393,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/xm/5fc.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.309Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /xm/5fc.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-a86\"\r\nExpires: Sat, 30 May 2026 10:27:39 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2694,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"6ad5509616a5fca9f389801052bea3fe","sha1":"5b53d204b7e6066409067fba9fce5202ff20e9d6","sha256":"6becc3abea448b67731610708852a70c3ceb99059b2dee98da3711dc0620218a","sha512":"18729e5d7521224c032a2a7f18c154b1d02905dda6a06dc3a1af5d876bc5f651b78699589772cd6158bc1bfa75aead83b084bca2b06539a3e4cc9b4a6d476ded","ssdeep":"","tlshash":"ed512be6a252222ac78335be8a25f1dbdf560afb123220858088c13aa40f750c98a573","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.771826Z","times_seen":18571,"resource_available":false,"data":null}},"time_used":449,"timings":{"blocked":292,"dns":0,"connect":0,"send":0,"wait":152,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/xm/fil.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.313Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /xm/fil.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-8bf\"\r\nExpires: Sat, 30 May 2026 10:27:39 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2239,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced","md5":"bc0baed91ad63da79ebfd092f42c76dd","sha1":"8a4f9cb9ee821242971e3f29a770e5078218bdf9","sha256":"ac4d8dcc1a755104c19551dcd96fbf097a93e529f86f540d8e0d55328c09a16d","sha512":"7cd155866ec8308b41049d32de0fa72b16dd774355f36ffba0f8256b1acaa2fe9fc5ae6695166f22c655aefe314b161d525f1cd8eb78ed746c3374905b0406bd","ssdeep":"","tlshash":"0e413eb67b9fc403c77f858708ed5e6544225f0a69248d50051a7e6ebd2f1e8c5915cc","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.772624Z","times_seen":3527,"resource_available":false,"data":null}},"time_used":441,"timings":{"blocked":289,"dns":0,"connect":0,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/xm/4558.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.314Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /xm/4558.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-48b0\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18608,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 199, 16-bit/color RGBA, non-interlaced","md5":"c7e59bbd0ca773c704b906e229ca8383","sha1":"e191e030bfffacaa1b53ea83121a03955fd080ba","sha256":"22e62f07c3d37c4e0b8f717bda7ac0c60362fb80380c9f6def693dd4f9b4567c","sha512":"69dfd5a8bec0c1533adde28c322e96dcf9236b934a21668bc435f55f3284258881937ff92573a64188b4cd3ccd52f6d485eb4d864d4da0806753c71e385212db","ssdeep":"384:KR6xVqHk99Lm0m9/zkJMPoqgN09WuJFNFHaV2zbj69VmO:tvQk99K0m9/zQLqGeDJ9HHzbjnO","tlshash":"d682e0a4850add63e0b15bb72bad2753cd3d3a2020d4b2b53ebb09b468f090657a4ec4","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.77335Z","times_seen":3363,"resource_available":false,"data":null}},"time_used":1208,"timings":{"blocked":985,"dns":0,"connect":0,"send":0,"wait":155,"receive":68,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.staticfile.org/jquery/1.10.2/jquery.min.js","fqdn":"cdn.staticfile.org","domain":"staticfile.org","tld":"org"},"ip":{"addr":"202.181.25.19","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.323Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"staticfile.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 23 Apr 2026 23:24:03 GMT","end":"Wed, 22 Jul 2026 23:24:02 GMT"},"fingerprint":{"sha1":"0B:B2:4A:D1:B2:4F:80:EC:A1:3E:DC:31:8E:AF:70:08:98:03:FD:7A","sha256":"EC:CA:82:C7:1E:7A:EE:30:88:D6:06:B1:9A:F4:66:5E:A0:31:39:1F:4C:AE:88:1A:13:30:32:8F:7D:7C:47:1C"}}},"request":{"raw":"GET /jquery/1.10.2/jquery.min.js HTTP/1.1\r\nHost: cdn.staticfile.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With,token\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-origin: *\r\ncache-control: no-cache, no-store, must-revalidate\r\ncontent-encoding: gzip\r\ncontent-type: text/javascript; charset=utf-8\r\ndate: Thu, 30 Apr 2026 10:27:38 GMT\r\nexpires: 0\r\npragma: no-cache\r\nserver: nginx\r\nx-cache: BYPASS\r\nx-cdntype: readnode-007\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":93100,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (32072)","md5":"e0e0559014b222245deb26b6ae8bd940","sha1":"e2f3603e23711f6446f278a411d905623d65201e","sha256":"89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e","sha512":"60740da8f871b8263675db2421b0e565fc18e95c772f7c3d5916f224263cd71a6a2e6acceab2f6f8ba1c0607951f0198f525d87d0589fa57045b1d5f292dacf0","ssdeep":"1536:q4mCgi8DyCuXXFiJ+L0kJQsJVPEKLQRZdC/RlfDknv+p0WzH/IoSZ7qABZnu0sFv:qGsKXlI2p0WPSbDrstfam","tlshash":"ba93f8ddb2d1b06257bb21bd006f540ff236195e280d8850f129e8eabc74a4d9277fad","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-04-30T15:52:51.099627Z","times_seen":19343,"resource_available":true,"data":null}},"time_used":1500,"timings":{"blocked":522,"dns":214,"connect":209,"send":0,"wait":333,"receive":0,"ssl":219},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"cdn.staticfile.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap-icons@1.3.0/font/fonts/bootstrap-icons.woff?4601c71fb26c9277391ec80789bfde9c","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.687Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/bootstrap-icons@1.3.0/font/fonts/bootstrap-icons.woff?4601c71fb26c9277391ec80789bfde9c HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.jsdelivr.net/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: font/woff\r\nx-jsd-version: 1.3.0\r\nx-jsd-version-type: version\r\netag: W/\"1a13c-GxDOCA4lYqi36DlQRNPKg9wRKZk\"\r\naccept-ranges: bytes\r\ndate: Thu, 30 Apr 2026 10:27:38 GMT\r\nage: 1645281\r\nx-served-by: cache-fra-eddf8230120-FRA, cache-hel1410033-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 106812\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":106812,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 106812, version 1.0","md5":"df7de9fe96a30f78c7f652f5b00ae016","sha1":"1b10ce080e2562a8b7e8395044d3ca83dc112999","sha256":"011ae1fe8e56c310d82ec3795cb8f86b9dea521dd0bc560a0ae0c2e87baedd4b","sha512":"d8cd580ed4119b0d31c9f3b7ea1b2002ccef31ba26cc6791114e5017e9ccffbfbf57b8611aafa52a8b3e76fc8f77b0d51d333dfcd5b293ddde61da3bbbbda47e","ssdeep":"1536:IEGBxy7wyLnYmvpdgacZtaiLBug50yslpdHfaKoGS3MUt7jCP/KgpL+HoEf7HhDt:0zy7pnYm/zcZta+UNoGS3gpL+Zwul","tlshash":"8fa302c0688d7e9ade37df31a226826373d3094a637c2d6f26997852c946e0f7637341","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.775Z","times_seen":10305,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":3,"dns":0,"connect":0,"send":0,"wait":14,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/imgs/advantage_phone_ui2.03eb46c4.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.681Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/imgs/advantage_phone_ui2.03eb46c4.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-1fc3\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8131,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 620 x 414, 8-bit colormap, non-interlaced","md5":"03eb46c414ca4054d6aa8bcc6146e203","sha1":"1ad3fe2ee83e35506f404b3dc6110540539e32c6","sha256":"98f20bbbd1c55089292d663c5a641e6cb4d02e91149bd3b1dbfa3dc87168d1fd","sha512":"e59d6713424efe87e45984399aab1739b3b1ff7cde9fff91c83582110c669f9bf299ccb30a7286bec64c48243f887f701f27051f9e6e8b4445c9e927505db019","ssdeep":"192:vri1p22NLEFORfDwDmxiEVHkmrogfcftKLatznubkt:vriOMR8DmxiEVkafc4czuu","tlshash":"2ef1afc2d9d35ddf9d9c0b2b34cbf454844249d0eac68d05d74245a8f8be082abe3d9d","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.775766Z","times_seen":5477,"resource_available":false,"data":null}},"time_used":589,"timings":{"blocked":421,"dns":0,"connect":0,"send":0,"wait":152,"receive":16,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_bch","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:39.805Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_bch HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=bch"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:41 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":202,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"8866294fb329e36b864ed81e3c9e7918","sha1":"2e3282bf5fb743e8d3ee58310aa8b79c3992434f","sha256":"0fc85a2106dc27f67d7f74fdc62deab3363c00e7d1aa7b7cd05e03517c866a23","sha512":"7f06fec489c9572e91ff2bebef88eaa1125ae152edc6e1670b8377207504926f5e9746faab972187229a5c1e8f3743c7c277856788c075a2b9db8f905a9df8d1","ssdeep":"","tlshash":"34d02280af3885390c31f7e1b8da172e304e0083c1c882091afd8b7a646c12c3a23c3a","first_seen":"2026-04-30T10:28:11.777791Z","last_seen":"2026-04-30T10:28:11.777791Z","times_seen":1,"resource_available":false,"data":null}},"time_used":448,"timings":{"blocked":24,"dns":0,"connect":0,"send":0,"wait":424,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_ht","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:39.819Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_ht HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 7\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":7,"data":"coin=ht"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:41 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"68ac40a84898f40747d958e0c0941c75","sha1":"a033ad6d2dddc4dcbabdf38740c1a8cd192dcf0d","sha256":"232ef71afd2e2d3a4a886bd164ac9ae400955e7f71505d3570e31635b2ecc00e","sha512":"0707d815ab13b1d6804fdee766d93c98b78e2ceddafbecda34f34372d1d689ada7e8777adf7264eb03a393dafa59e80ce9810cb74592580f0be1ac8ef4f453c2","ssdeep":"","tlshash":"ec70000002afa8a3028200288c0f000000ac28882ca080008c2822288a200028a00020","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.780204Z","times_seen":311,"resource_available":false,"data":null}},"time_used":1000,"timings":{"blocked":435,"dns":0,"connect":0,"send":0,"wait":565,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_usdz","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:39.820Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_usdz HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=usdz"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:41 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":219,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"1f8551fe319d666b366d1c34166d412c","sha1":"343357ec908087649806630e256cd317bfc44481","sha256":"2d07b31aa0c24241261de33e22767d0680405fbd854208d363d1398f6a074475","sha512":"b7cf3e953012c133fedd6d8a2c6cb48666b2af8b8183737e58d10c1f23c177c2acb9c408a64ffa011675f8c42fdbb9a45819c27c2f2a0eab9738284518201d34","ssdeep":"","tlshash":"b5d0a7d02e34552190f3a7c174f923abe44cb845c0c0430597fec760296c0157329d16","first_seen":"2024-08-29T17:46:19.430936Z","last_seen":"2026-04-30T10:28:11.781029Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1017,"timings":{"blocked":527,"dns":0,"connect":0,"send":0,"wait":490,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_eos","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:44.758Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_eos HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eos"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:46 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"68ac40a84898f40747d958e0c0941c75","sha1":"a033ad6d2dddc4dcbabdf38740c1a8cd192dcf0d","sha256":"232ef71afd2e2d3a4a886bd164ac9ae400955e7f71505d3570e31635b2ecc00e","sha512":"0707d815ab13b1d6804fdee766d93c98b78e2ceddafbecda34f34372d1d689ada7e8777adf7264eb03a393dafa59e80ce9810cb74592580f0be1ac8ef4f453c2","ssdeep":"","tlshash":"ec70000002afa8a3028200288c0f000000ac28882ca080008c2822288a200028a00020","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.780204Z","times_seen":311,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_ltc","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:50.775Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_ltc HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=ltc"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:52 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":203,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"1cc4721499ec3428c85d98d0524d1bae","sha1":"ecb84498f377c4223a6c56d017de4425f9fb36be","sha256":"4b305c93589442382875d656ca597c6cfcd1ea15a352a95116a3cb34c1e46759","sha512":"a2a904b9325897dcf543d593e26f57090c354ce1f1fabed2553dc62c2d5919dc5218122dd93469757b6decac198a64a030155dac66ddf98119ad465546401d24","ssdeep":"","tlshash":"9cd022e0af78001a00b26bc664fc07bf988d8449c0814389ebaec7702a98508710cc0a","first_seen":"2026-04-30T10:28:11.783435Z","last_seen":"2026-04-30T10:28:11.783435Z","times_seen":1,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":265,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_iota","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:52.766Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_iota HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=iota"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:54 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":199,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"1d03a1d8f163502e8b809de7d1e8f1c8","sha1":"b851549125267fac38e362ecaa5d94611992d498","sha256":"0b4cee2a26f8f30c85f5d980873e074f13820b6287fe6a60c30af526e89627a3","sha512":"5545505648f338697c7cc847a381a7ace011172617f5f902b8611df2ff90190e920ca6e70285f805b5ede2f039ef843e71f2071343bd4f707fc0bd96edde549d","ssdeep":"","tlshash":"81d023d07e3d04150861f3d154f41bff608d4441804086041afd8f7c555c1183521c17","first_seen":"2026-04-30T10:28:11.785164Z","last_seen":"2026-04-30T10:28:11.785164Z","times_seen":1,"resource_available":false,"data":null}},"time_used":275,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":274,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aebtceth.com/","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-30T10:27:37.128Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-30T16:35:17.594717Z","times_seen":14431416,"resource_available":true,"data":null}},"time_used":316,"timings":{"blocked":316,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/xm/1613786496962262.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.306Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /xm/1613786496962262.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-a83\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2691,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"2edf1ef8b333c40979976d1a49bc234c","sha1":"d75ac12795b4a9575c874e1b190712cd62a87afc","sha256":"50a1901684f223bf26594dd3415b1e50f184820a16daa810cc5452911e9117a9","sha512":"f697a1fa0786316fc01003f72621920932e2657e4acf5a471e35d02717c42c9db5a12df311895a776a563dcae9b8fc0b6721833529a054b9dbfff4c52fc564d3","ssdeep":"","tlshash":"2b515ee60252267980d32438616db1e178beabb2c3021ded6c1444954acc4b62555cfa","first_seen":"2023-05-01T18:49:36Z","last_seen":"2026-04-30T10:30:02.84875Z","times_seen":21295,"resource_available":false,"data":null}},"time_used":988,"timings":{"blocked":832,"dns":0,"connect":0,"send":0,"wait":151,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/xm/1594057379245582.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.312Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /xm/1594057379245582.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-c13\"\r\nExpires: Sat, 30 May 2026 10:27:39 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3091,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"033d340b5a4a22d8e8590b98409158f3","sha1":"098ef5ee4b44f780df7f39c022ea491cacb32e7f","sha256":"0b53847e742884cbfbc563109bb99cacbc75fbb1bca892a1dbf68982e68778a0","sha512":"60de2b9014037bbd2f081ffe295d2cd0d0772bfc9b878986404981aff8df34a51611ffe2d214e0ce8f3849f9f9bda9e52b650d50db089953fde9bbb5b9725339","ssdeep":"","tlshash":"03512bcb908c59b6afe24ea002945ce48021c177ad3b4726963ae91e9f742f6070dc62","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.788115Z","times_seen":3291,"resource_available":false,"data":null}},"time_used":445,"timings":{"blocked":290,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/js/layer/layer.js","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.324Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/js/layer/layer.js HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-4d83\"\r\nExpires: Thu, 30 Apr 2026 22:27:39 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19843,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (19752)","md5":"666f4437565d197e9459e19a29f58315","sha1":"afc5c0a1369137e52b37ad5fb63f48202ce31368","sha256":"4a49651ad86a83ecbd9c2ad34e7f5c906b46ae2c4c93c1c8585148f936b7e100","sha512":"1e659ff6c47458dbbaf7e7561402c12441286c255ddec048bf654388e8666a9ceca344e166657c29fce4a08b46470b44c47e8f1c6f577adc2a4e4f4f0e7e1e90","ssdeep":"384:DQ8cuj0z4VfS7ShA3BMJOoM6bs7hwI9b4Zrxy:DQtu8CfS793QODbcI","tlshash":"5f92c85ab5503593216390a9911fa90f30f24d22eb078958f16bf1fd1ebcda562b3f0b","first_seen":"2023-04-11T09:52:52Z","last_seen":"2026-04-30T15:45:58.663827Z","times_seen":13458,"resource_available":true,"data":null}},"time_used":311,"timings":{"blocked":-1,"dns":1,"connect":154,"send":0,"wait":155,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_btc","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:49.765Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:51 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":209,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"e5a2413bf1de57935714d2ea39a6a2e1","sha1":"dc592540611ddbfe76878931365c088cb5105292","sha256":"f26cd8c30a39e00d9fc982e72d6454bb7383ea36a4948c5289b535c5fa31f521","sha512":"1624dd1046e264f0f4fcf179570351236d97cc05532f6579a3a3e5fd470f755c1f71a734f4ad87c51df2f44c824388871214b4e60a267b33a2f3e6c2c2de1363","ssdeep":"","tlshash":"bbd023d0be35541d41719fc254fc173e949dc041c0c5420595edc6a1365c4047249c23","first_seen":"2026-04-30T10:28:11.78949Z","last_seen":"2026-04-30T10:28:11.78949Z","times_seen":1,"resource_available":false,"data":null}},"time_used":331,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":331,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_btc","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:51.762Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:53 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"944b06636705fb347d424b8ce0364a6c","sha1":"cba00edb406d9059aaf58d8278f8dffdac4f9d24","sha256":"407d4575e166d79926f1227f28999dd877d22defaa2f94e0071b171e5d14c748","sha512":"9cb12368d10ce59fce25e0e7b753272abda291a9c207174f2e55b945ed6942fddae1da40dcfff4a85423a6fae66d50a60e712433da27ba3134bd2c69615061c6","ssdeep":"","tlshash":"f7d023d07d36101d117197c258fc073e546dc041c0c5420195edcaa1765c4047345d12","first_seen":"2026-04-30T10:28:11.758129Z","last_seen":"2026-04-30T10:28:11.758129Z","times_seen":1,"resource_available":false,"data":null}},"time_used":616,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":616,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_itc","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:39.818Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_itc HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=itc"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:41 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"68ac40a84898f40747d958e0c0941c75","sha1":"a033ad6d2dddc4dcbabdf38740c1a8cd192dcf0d","sha256":"232ef71afd2e2d3a4a886bd164ac9ae400955e7f71505d3570e31635b2ecc00e","sha512":"0707d815ab13b1d6804fdee766d93c98b78e2ceddafbecda34f34372d1d689ada7e8777adf7264eb03a393dafa59e80ce9810cb74592580f0be1ac8ef4f453c2","ssdeep":"","tlshash":"ec70000002afa8a3028200288c0f000000ac28882ca080008c2822288a200028a00020","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.780204Z","times_seen":311,"resource_available":false,"data":null}},"time_used":916,"timings":{"blocked":352,"dns":0,"connect":0,"send":0,"wait":564,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_eth","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:45.761Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_eth HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eth"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:47 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":205,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"df2463ecbf29a334146a356fcbd65f8c","sha1":"70bfe9c7f32336003021c67deb300b3dd4a35955","sha256":"3079ec24a3d21fda275928d9f3c8c6c8a25c12c108e213cf892dcab1961e9b6a","sha512":"b4b9540baafeba5e26eb62db92a1e71575856c0f118e91240e29f8ec4bf5ee85b2e0e6cc150b978c63cc4c0a269f1b1bd5bc9b224c283234f5d733696447c816","ssdeep":"","tlshash":"d2d0a788af3904290871e3d068d91a1d184b4486d081c10456fddd64151840c3351d17","first_seen":"2026-04-30T10:28:11.76535Z","last_seen":"2026-04-30T10:28:11.76535Z","times_seen":1,"resource_available":false,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_doge","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:53.761Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_doge HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=doge"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:55 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":213,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"96aaebd128848020cec57b75f826b87a","sha1":"41bbd88c9c5b3a488d3c4e1f6b215a7e36809f24","sha256":"837aee17ee1e4181993919c8c738f6461db396d351364ee43fcf6378bf0f348a","sha512":"d4515b117bf24150dfd29fec237f556419efd87bb77de2c0a21e09a4769ae01f9612d25e467ce84a1497cc71e311526a01891f784fc27fb48a99c7c50666c364","ssdeep":"","tlshash":"afd0a9e03f78121200b2bbd168f82b6ed99cc0c6848182066bbdcb202a5882cb218e06","first_seen":"2026-04-30T10:28:11.763156Z","last_seen":"2026-04-30T10:28:11.763156Z","times_seen":1,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":255,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/xm/5f8738fd439bc57.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.308Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /xm/5f8738fd439bc57.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-9a9\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2473,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"430e14fa7ab62df82c9858bfa2682ece","sha1":"aa845a9abbffcbceee99934123b8e4e94b9ee52d","sha256":"20aa97f93b13e2de6de053d1d96a51ef8746a758973515f93b3f6e905c98f716","sha512":"bebb827e0a4525c0f7d3213a28fbde13be283e82d41ff86cfb216c98cdd5fa6515cd3403e2b0b2237635f46b0703c22359e797ca5bb0d3f660c4a1a287d600f5","ssdeep":"","tlshash":"f5511bd8fcdd3065d094b87b6b2121a25a831bc4f2807ae6f426c4495233c69076cfed","first_seen":"2023-05-01T18:49:36Z","last_seen":"2026-04-30T10:28:11.791062Z","times_seen":4978,"resource_available":false,"data":null}},"time_used":991,"timings":{"blocked":837,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/xm/2251.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.316Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /xm/2251.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-a79\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2681,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"184102c922a16b09ff0787ccafe5af69","sha1":"691a0ffc4f3ae3b1b69d8ea6281f2d678ea32580","sha256":"f9e6d63f3a0bd0794865a9a05f24d5183f930a5c8e6f71fbf49a6ac3824e98da","sha512":"e3abe6725a8d79c1cc05cea33354d65f4c2e930e1689c44600be3892d66ff955a7d27bafc60df573cb7e9e5fe43e27f831c028b9e5dda11d700781d3cdd4e698","ssdeep":"","tlshash":"7d514b2131989cf4e1075ca36ef048d4b4d171d7eab1a25efa3450c5c5284a15cdd3b4","first_seen":"2023-05-21T16:18:43Z","last_seen":"2026-04-30T10:28:11.79177Z","times_seen":200,"resource_available":false,"data":null}},"time_used":1262,"timings":{"blocked":1106,"dns":0,"connect":0,"send":0,"wait":151,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Static/bootstrap5Slide/scripts.js","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.434Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Static/bootstrap5Slide/scripts.js HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 298\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nConnection: keep-alive\r\nETag: \"69ef211a-12a\"\r\nExpires: Thu, 30 Apr 2026 22:27:39 GMT\r\nCache-Control: max-age=43200\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":298,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"48477ea73f8709a6c29d7cde0cc83e55","sha1":"5dc30fab107725dd71ab343d70b9e6267ea68cf1","sha256":"fd67e1f083236a6c171d2275401174ea62a6f24fc81193d55653080a236a209a","sha512":"0932287b99d7c96929e7464b6684fe399dfcaaea787dcab28fa0879094b5eb4d92139260fecde4ffe430eca3986430f98a72fc523332c4e476bee9ea2226b1b3","ssdeep":"","tlshash":"1ee0cd91761d4f9d1ccc3257996092c576841524e401f06790374c6c0a9584225fb7fc","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-04-30T10:28:11.793657Z","times_seen":6109,"resource_available":true,"data":null}},"time_used":155,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/js/layer/layer.js","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:39.543Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/js/layer/layer.js HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-4d83\"\r\nExpires: Thu, 30 Apr 2026 22:27:40 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19843,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (19752)","md5":"666f4437565d197e9459e19a29f58315","sha1":"afc5c0a1369137e52b37ad5fb63f48202ce31368","sha256":"4a49651ad86a83ecbd9c2ad34e7f5c906b46ae2c4c93c1c8585148f936b7e100","sha512":"1e659ff6c47458dbbaf7e7561402c12441286c255ddec048bf654388e8666a9ceca344e166657c29fce4a08b46470b44c47e8f1c6f577adc2a4e4f4f0e7e1e90","ssdeep":"384:DQ8cuj0z4VfS7ShA3BMJOoM6bs7hwI9b4Zrxy:DQtu8CfS793QODbcI","tlshash":"5f92c85ab5503593216390a9911fa90f30f24d22eb078958f16bf1fd1ebcda562b3f0b","first_seen":"2023-04-11T09:52:52Z","last_seen":"2026-04-30T15:45:58.663827Z","times_seen":13458,"resource_available":true,"data":null}},"time_used":160,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":155,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_fil","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:39.809Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_fil HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=fil"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:41 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":206,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d9c1acdfaff7702a46004e175376b697","sha1":"3497ae79b72de512234b61c8c1ff37eaa5b3f240","sha256":"5b9e26ee91bf95a27691ed35e8a2187b0fe7f7466f186cdac1308c04d73f02b2","sha512":"515156dfccf575d200fd84179a1666779adeb062cee5f0a6b059393c3154dd746d06a1445099c72ccf9531a8373d58df6b83b243c1d332db3b920f62f58c871a","ssdeep":"","tlshash":"68d0a9d02e35092a01a16bd228f9177a90ac8089848182059beecb6835d81197208c12","first_seen":"2026-04-30T10:28:11.800122Z","last_seen":"2026-04-30T10:28:11.800122Z","times_seen":1,"resource_available":false,"data":null}},"time_used":642,"timings":{"blocked":88,"dns":0,"connect":0,"send":0,"wait":554,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_eth","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:42.756Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_eth HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eth"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:44 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":205,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"df2463ecbf29a334146a356fcbd65f8c","sha1":"70bfe9c7f32336003021c67deb300b3dd4a35955","sha256":"3079ec24a3d21fda275928d9f3c8c6c8a25c12c108e213cf892dcab1961e9b6a","sha512":"b4b9540baafeba5e26eb62db92a1e71575856c0f118e91240e29f8ec4bf5ee85b2e0e6cc150b978c63cc4c0a269f1b1bd5bc9b224c283234f5d733696447c816","ssdeep":"","tlshash":"d2d0a788af3904290871e3d068d91a1d184b4486d081c10456fddd64151840c3351d17","first_seen":"2026-04-30T10:28:11.76535Z","last_seen":"2026-04-30T10:28:11.76535Z","times_seen":1,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_bch","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:48.763Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_bch HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=bch"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:50 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":202,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"8866294fb329e36b864ed81e3c9e7918","sha1":"2e3282bf5fb743e8d3ee58310aa8b79c3992434f","sha256":"0fc85a2106dc27f67d7f74fdc62deab3363c00e7d1aa7b7cd05e03517c866a23","sha512":"7f06fec489c9572e91ff2bebef88eaa1125ae152edc6e1670b8377207504926f5e9746faab972187229a5c1e8f3743c7c277856788c075a2b9db8f905a9df8d1","ssdeep":"","tlshash":"34d02280af3885390c31f7e1b8da172e304e0083c1c882091afd8b7a646c12c3a23c3a","first_seen":"2026-04-30T10:28:11.777791Z","last_seen":"2026-04-30T10:28:11.777791Z","times_seen":1,"resource_available":false,"data":null}},"time_used":874,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":874,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_eth","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:54.765Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_eth HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eth"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:56 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":205,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"df2463ecbf29a334146a356fcbd65f8c","sha1":"70bfe9c7f32336003021c67deb300b3dd4a35955","sha256":"3079ec24a3d21fda275928d9f3c8c6c8a25c12c108e213cf892dcab1961e9b6a","sha512":"b4b9540baafeba5e26eb62db92a1e71575856c0f118e91240e29f8ec4bf5ee85b2e0e6cc150b978c63cc4c0a269f1b1bd5bc9b224c283234f5d733696447c816","ssdeep":"","tlshash":"d2d0a788af3904290871e3d068d91a1d184b4486d081c10456fddd64151840c3351d17","first_seen":"2026-04-30T10:28:11.76535Z","last_seen":"2026-04-30T10:28:11.76535Z","times_seen":1,"resource_available":false,"data":null}},"time_used":342,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":342,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/xm/1613786513998262.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.307Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /xm/1613786513998262.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-adc\"\r\nExpires: Sat, 30 May 2026 10:27:39 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2780,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"856bfdb63dc0d6fad6b92fc6a29719e1","sha1":"2fed2e3409ce1bbbfb37f6da4abeecc30cefc021","sha256":"eebe29898b8b7de5c9e47daab474152be8095e3ab42d768b84b085c5a12b95c6","sha512":"a61c0a108d63c89ae62a2b03108480b5c08bda0e80049089a2a84cd7973bd9e94dcd2902e166b92e1d7ad5b7356357c9b181cb1b6051dd25913e82d2420154f0","ssdeep":"","tlshash":"51518cc7a707f33a9c866161bed44509f244d80a8160b31c0f33a7572c8a83ea4f324f","first_seen":"2023-05-01T18:49:36Z","last_seen":"2026-04-30T10:28:11.802246Z","times_seen":21077,"resource_available":false,"data":null}},"time_used":451,"timings":{"blocked":295,"dns":0,"connect":0,"send":0,"wait":156,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/xm/jst.svg","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.315Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /xm/jst.svg HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/svg+xml\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-4b7b\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19323,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b993b0a39d50c323edbb5886a19d56cb","sha1":"8e183944ff4dd3741c2b18f3a2d8962b1662b1a4","sha256":"450fcc35ab762f1b121f48150a7465b6a506fee918e24a80811134ee3a1d88c6","sha512":"754b0b31db60b3b2b0b2dcbc5f32e950bd8245c08d60d4d84a8bfd7a887167dd636d8f001232639952575ac6d2ac97103c66e04a016502472412283cffd680e6","ssdeep":"192:cu7OzkWdAPKtyK2Pe+6fsKO2uY/E4vVAAm7gbK1QQlS/exkPXGmZ7ayFePl5a0FJ:cuiz5dU7h2QuagXq36Np2aE/ao54Cgq","tlshash":"6a82238d9f564f6a9485b3fdafea5050648740ec39a8e2f4e7b44473f80c6a50c48de7","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.803244Z","times_seen":3150,"resource_available":false,"data":null}},"time_used":1207,"timings":{"blocked":992,"dns":0,"connect":0,"send":0,"wait":156,"receive":59,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/imgs/home_head_bg.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.660Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/imgs/home_head_bg.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-cf649\"\r\nExpires: Sat, 30 May 2026 10:27:39 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":849481,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 4336 x 1428, 8-bit/color RGBA, non-interlaced","md5":"1cbfba6198f4e4ff700eb43de61092ac","sha1":"ff03b54f67e1a0ae20c274c3d06ee52c3dd6ee50","sha256":"618a8249a51b933013f55571d8cdcb16e26863c921c82170e79fcbcb582eea95","sha512":"cb12167584983054c4911ee8604171dc08c8f89fef64c97ef3eb8dca7f424ce7d34b87924419f0e76e7a4b23f231371bef37231639bbb36c71950fdebbae40cd","ssdeep":"24576:2nw3WzrNqGPQiPxmnC+YarisIgK+Xy/6Nn/WMISk:2n+iQGhPxmrY651qGn2","tlshash":"7405224ca0eef889cc125b351ddbcf8d52a430b498ef6719bb63bd20895d9cd6877620","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.804159Z","times_seen":3640,"resource_available":false,"data":null}},"time_used":983,"timings":{"blocked":94,"dns":0,"connect":0,"send":0,"wait":153,"receive":736,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/imgs/community_bg.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.682Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/imgs/community_bg.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-3c99c\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":248220,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2892 x 936, 8-bit/color RGBA, non-interlaced","md5":"3107a5d7de66ac526ba295a6ccb85e2f","sha1":"7ca2f1ffe3ed6dfd6260e8a47643d30d6223aeb9","sha256":"1021f5b23b901a121fcf0f78866fb66c978411d309aef421c54af4cb09ff1b6f","sha512":"262a6554428da7f2bffcc71915ee13f5e9a504a2e76af61499ba7ec68713fdbba8b2f52d9b6ff8a9b13ae649103c6aaeb2e89f0dcf5411ec636a7c6ca5c26f7d","ssdeep":"3072:2cI5zu8n4youkJkjKrt88rRhc0ZmoZ/UYO5+90yCOo9XHhNkHLfuZVrD0BMdJ2oo:2V5b4G0ks8ybkwT9vBo9R2iP30BPdb9","tlshash":"73341284fd1e6df6cdf40db008629f4c7935a6ad8835d713a3b6e15d9eb754008be680","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.80673Z","times_seen":5130,"resource_available":false,"data":null}},"time_used":1214,"timings":{"blocked":994,"dns":0,"connect":0,"send":0,"wait":156,"receive":64,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_doge","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:39.778Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_doge HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=doge"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:41 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":213,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"96aaebd128848020cec57b75f826b87a","sha1":"41bbd88c9c5b3a488d3c4e1f6b215a7e36809f24","sha256":"837aee17ee1e4181993919c8c738f6461db396d351364ee43fcf6378bf0f348a","sha512":"d4515b117bf24150dfd29fec237f556419efd87bb77de2c0a21e09a4769ae01f9612d25e467ce84a1497cc71e311526a01891f784fc27fb48a99c7c50666c364","ssdeep":"","tlshash":"afd0a9e03f78121200b2bbd168f82b6ed99cc0c6848182066bbdcb202a5882cb218e06","first_seen":"2026-04-30T10:28:11.763156Z","last_seen":"2026-04-30T10:28:11.763156Z","times_seen":1,"resource_available":false,"data":null}},"time_used":307,"timings":{"blocked":50,"dns":0,"connect":0,"send":0,"wait":257,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_flow","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:39.810Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_flow HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=flow"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:41 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":209,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"9c1b6192a2d4a8d13e2254dfeea35b8e","sha1":"ac0c5a377a428832d80e02857cf92dd4ae41e5cf","sha256":"9d174d2066417dc2b4e3d5b1997b2db614d606bfe5033fa305cecef04823d999","sha512":"232fbf9899322d8cdbde99a5d89a54f578c85d31877e5493c2de10f4e755a080f88e74c062d1e746b4999a6898db211657caf76f99033b10a409d5e007214b66","ssdeep":"","tlshash":"85d022e43f3c440e00b2bbc2adfc137f98e9c882c08192099ebdca313ba8108711de02","first_seen":"2026-04-30T10:28:11.808838Z","last_seen":"2026-04-30T10:28:11.808838Z","times_seen":1,"resource_available":false,"data":null}},"time_used":741,"timings":{"blocked":187,"dns":0,"connect":0,"send":0,"wait":554,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap-icons@1.3.0/font/bootstrap-icons.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.173Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/bootstrap-icons@1.3.0/font/bootstrap-icons.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 1.3.0\r\nx-jsd-version-type: version\r\netag: W/\"edbb-Du3MPQ7GnRobCfGvnAP4Uqb5QVI\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Thu, 30 Apr 2026 10:27:38 GMT\r\nage: 131965\r\nx-served-by: cache-fra-etou8220023-FRA, cache-hel1410031-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 8017\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":60859,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"dbf1248779dc682a91ba529b5efe0ffc","sha1":"0eedcc3d0ec69d1a1b09f1af9c03f852a6f94152","sha256":"32cc4a47b370e278072a6440249872e681efa1d992600420c03a9631da885d70","sha512":"2e96320bb785273c91c136a4aba02268e2c9ebcc92998c24160331ec14f0f902132d21f4ac4cb130771dd20758bef407d589b1f8e3175796622edb162a517098","ssdeep":"384:vaqJVm8OAL1M+hQokEYm47U7yH2CYEjOnm4zH7fZ6aXoso1v/:Sqnm8OAL1Mzocm4KyH2CYEjOnm874soh","tlshash":"2c53cebad18f05f59341e4d92743674293a9ba7ce1817c7ad342399ee3c06188ad73ec","first_seen":"2023-04-05T06:29:21Z","last_seen":"2026-04-30T10:28:11.810675Z","times_seen":14866,"resource_available":false,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":26,"send":0,"wait":27,"receive":2,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/xm/5f87397132a8b02.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.310Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /xm/5f87397132a8b02.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-998\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2456,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"bdaeb947a2eb31bae0a170559df9013c","sha1":"7fc8496c9bf51eea98dc9060262f87a792a24a43","sha256":"3225172adc122cc7f8f09fbcc94757061330651a485f17091f41726767f7ea3f","sha512":"710a1ac11f6fdb3915479bf6b9eccf34f4dedd8f30e6bed5275f52d1ec634a754b252e385eb9cd388a5a69c64aaf5818c13cb783090ae68a8696af067cb67341","ssdeep":"","tlshash":"9e512b90d3f3d98a7d930935f8b27a34cfda87da97098523ea834854e279442cd24943","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.811547Z","times_seen":18082,"resource_available":false,"data":null}},"time_used":1136,"timings":{"blocked":984,"dns":0,"connect":0,"send":0,"wait":151,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/imgs/advantage_bg.a5d6d444.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.674Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/imgs/advantage_bg.a5d6d444.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-77e9\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":30697,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1392 x 1048, 8-bit colormap, non-interlaced","md5":"a5d6d444c8524a6d8e39fa1618582284","sha1":"4fda97683b94717d7597718b1e01c4a091f78ff2","sha256":"b2503b762cb8bf80f11571c1a10ac888258b78cc2a3a847780dfecef23dbb39b","sha512":"cfaf1fb56063ecbfc8d8a07ca56e6be8663b32188308ea349debd55b57e847c8005dbcbb1d72dfb8a7ca7873da81e44ed4b993345d673cf78bb3d3045f5cca11","ssdeep":"768:J1+dBPa7fkey90Yf5vWOjCuMg4+26RwDN1OvagerN6gA30Mh:3+dVa7fke7YlV14+d/vageR6gI","tlshash":"dad2e1dcf0f1d689567b11af43f47e48f5a5377e223344a05bade009a28095b3a7b41e","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.812296Z","times_seen":5410,"resource_available":false,"data":null}},"time_used":469,"timings":{"blocked":225,"dns":0,"connect":0,"send":0,"wait":155,"receive":89,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_jst","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:39.817Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_jst HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=jst"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:41 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":211,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"14bef30f541c72be87d3ffa0ec1cfb33","sha1":"f840a5929690edaa03e67f1c0fbdc54435a4ec9c","sha256":"fe12e2170849db55223df4c389e0696f372c3c89523f4722a49e2ca381776117","sha512":"226b19aa153281986474cc7ad8743745fd2a2be335f27b6e0fd14adebed9730468170cef804aaee994e48dc4f682e5e23aef45b92dc6a0c014ae5348b33f4fad","ssdeep":"","tlshash":"18d0a9e42e38000601a1abd164fa036aa898c8818480e605abbec6342aaa01db20ad06","first_seen":"2026-04-30T10:28:11.813134Z","last_seen":"2026-04-30T10:28:11.813134Z","times_seen":1,"resource_available":false,"data":null}},"time_used":827,"timings":{"blocked":269,"dns":0,"connect":0,"send":0,"wait":558,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Upload/public/629c72d72bea1.jpeg","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.301Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Upload/public/629c72d72bea1.jpeg HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/jpeg\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-2044a\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":132170,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 750x300, components 3","md5":"dfde2097912178e1ade955a1479e4158","sha1":"2a46f5160255b5b99a32ffc7c0dbec89a2ff98dc","sha256":"09dce8313f5e10579c1f58032cc3397cb4b253cf9d4c8a0b858402cef5d397a0","sha512":"34b2608914c24f8754a8097b7cb752fa1960934c3be9270110cdc6d492ba99ddbf086d4c61c29789527849041d824979186f6e0af199f8efd181a22a11d2cb07","ssdeep":"3072:aJmM1CFqby70UZh28jBlZQZLoSMi60EL5+DuWXqT1mBkOZw0C1oPSnWnWnWnWGH:9MGw+FjBl6LoSMi/Ed+DuWXqTox5CSPb","tlshash":"8fd3f130ebcbdb061b9f446888fdac23076a19f811de90166f250df5f5cabb554424bd","first_seen":"2023-05-21T16:18:43Z","last_seen":"2026-04-30T10:28:11.814704Z","times_seen":4455,"resource_available":false,"data":null}},"time_used":1695,"timings":{"blocked":1396,"dns":0,"connect":0,"send":0,"wait":156,"receive":143,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Upload/public/629c72dbe18e2.jpeg","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.303Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Upload/public/629c72dbe18e2.jpeg HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:41 GMT\r\nContent-Type: image/jpeg\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-219f6\"\r\nExpires: Sat, 30 May 2026 10:27:41 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":137718,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 750x300, components 3","md5":"96abd4588e557e6a37f5d3c213f0dd52","sha1":"6647c6a4e45c0963d31ed26ffd3fbf47d8891dc1","sha256":"62fca4cd746244e0a048bec7fe7d714efd224221851c3a91ffe8d1daee2bb8b3","sha512":"a7a2e192d4e25de386ba726c28b53c5321687450227e70fd77ee4a25fa26e8d52e5e8bbc81c18e33e85095fb3cdef51c8a0fcd3ca3b553e18d8bea383546f267","ssdeep":"3072:lFn4afMToBiTo/Nk/AU9MfbHpEbxsUNuJdL0:l2wBikAAUzVuJh0","tlshash":"5cd3f1a2ebfbeb2b4b5b56bc826dfd3b535019c828d69663185b0d12f908f31564703c","first_seen":"2023-05-21T16:18:43Z","last_seen":"2026-04-30T10:28:11.815541Z","times_seen":4440,"resource_available":false,"data":null}},"time_used":2340,"timings":{"blocked":2148,"dns":0,"connect":0,"send":0,"wait":157,"receive":35,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.staticfile.org/jquery/2.1.1/jquery.min.js","fqdn":"cdn.staticfile.org","domain":"staticfile.org","tld":"org"},"ip":{"addr":"202.181.25.19","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.429Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"staticfile.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 23 Apr 2026 23:24:03 GMT","end":"Wed, 22 Jul 2026 23:24:02 GMT"},"fingerprint":{"sha1":"0B:B2:4A:D1:B2:4F:80:EC:A1:3E:DC:31:8E:AF:70:08:98:03:FD:7A","sha256":"EC:CA:82:C7:1E:7A:EE:30:88:D6:06:B1:9A:F4:66:5E:A0:31:39:1F:4C:AE:88:1A:13:30:32:8F:7D:7C:47:1C"}}},"request":{"raw":"GET /jquery/2.1.1/jquery.min.js HTTP/1.1\r\nHost: cdn.staticfile.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With,token\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-origin: *\r\ncache-control: no-cache, no-store, must-revalidate\r\ncontent-encoding: gzip\r\ncontent-type: text/javascript; charset=utf-8\r\ndate: Thu, 30 Apr 2026 10:27:38 GMT\r\nexpires: 0\r\npragma: no-cache\r\nserver: nginx\r\nx-cache: BYPASS\r\nx-cdntype: readnode-007\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":84280,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (32061)","md5":"d021c983bd6e7291b43a5cc1fb2ebe99","sha1":"ffe47a16e4b1550ddfba3577cc9cc9fdc8643aff","sha256":"c0d4098bc8b34c6f87a3d7723988ae81214a53a0bb4a1d4d36a67640f98ed079","sha512":"0b01d408ae79a4e3630f1bcf6507aec0aa71a2cf263f212ff601ae582f15af4df9ec9dae5e0d4fc9c1833cd0fd1207689121531ba920480a680e3f4e336da4b3","ssdeep":"1536:kPEkjP+iADIOr/NEe876nmBu3HvF38Nd+uJO1z6/A4TqAub0i4ULvguEhjzXpa9G:7NMnJiz6oAQKP5a98HrB","tlshash":"5983d6d9b6c27062977734b850bf410bb17a98dab80c8c60f0a4d5e47eb4a8d517bf2d","first_seen":"2023-03-07T12:01:55Z","last_seen":"2026-04-30T14:42:03.866388Z","times_seen":9925,"resource_available":true,"data":null}},"time_used":758,"timings":{"blocked":322,"dns":0,"connect":0,"send":0,"wait":218,"receive":0,"ssl":218},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"cdn.staticfile.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/js/layer/skin/layer.css","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:39.480Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/js/layer/skin/layer.css HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: text/css\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-36e0\"\r\nExpires: Thu, 30 Apr 2026 22:27:40 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14048,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (13967), with CRLF line terminators","md5":"1673a003559ea1607dd77e6467a4baed","sha1":"954f4afa17e3d1c057101e62950f6c9506245550","sha256":"9748f440829e0b76d70f344e9c989f6d2302eba81aeea03211d40ef5f29fe62a","sha512":"5f9b8254fe18cdc329ca87a4852b7cb5520dcf3c406c5b3d755e99d0e7ddd618cd5ca2b455868ae14d896431cea2252b60d79d5fdd9e404a1fb8685a05ceb955","ssdeep":"192:9OcW0PmLeWVNrzztBm0T9zBKgwBnsY5Cb+RX:9PW0ijV1JbTyGY5CGX","tlshash":"1c5202e144811299b0278611d6dcbeba32f88d53e5630dbef2573c1f874c6dba2b6247","first_seen":"2025-04-07T11:37:37.344268Z","last_seen":"2026-04-30T10:28:11.817062Z","times_seen":3195,"resource_available":false,"data":null}},"time_used":194,"timings":{"blocked":40,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_btc","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:55.765Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:57 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"944b06636705fb347d424b8ce0364a6c","sha1":"cba00edb406d9059aaf58d8278f8dffdac4f9d24","sha256":"407d4575e166d79926f1227f28999dd877d22defaa2f94e0071b171e5d14c748","sha512":"9cb12368d10ce59fce25e0e7b753272abda291a9c207174f2e55b945ed6942fddae1da40dcfff4a85423a6fae66d50a60e712433da27ba3134bd2c69615061c6","ssdeep":"","tlshash":"f7d023d07d36101d117197c258fc073e546dc041c0c5420195edcaa1765c4047345d12","first_seen":"2026-04-30T10:28:11.758129Z","last_seen":"2026-04-30T10:28:11.758129Z","times_seen":1,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/xm/1613791952263794.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.317Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /xm/1613791952263794.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-a6c\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2668,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"d569a0c6c11b94ac63dc47b7baf58764","sha1":"b9c4f7fbd430b1ee1fe5a633a0a244c494cfda73","sha256":"645cdc8b30ba984f083d0f3a3a94dc6f7ea19e5bb7a9e09f65c5b03306c9e97c","sha512":"a566d71cfd8b73d2893dc861f1ac207ef44776a21babddf95d3f511c601983564bc6a3f1ad5b572a8fe58ea778dde45e27ec73277faa6dd3a9e784759595fafa","ssdeep":"","tlshash":"97515e9c71e2b274c793d07b8a014f3d9656447b2ee2333d8d0887c247097671d211f9","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.818905Z","times_seen":1026,"resource_available":false,"data":null}},"time_used":1286,"timings":{"blocked":1130,"dns":0,"connect":0,"send":0,"wait":151,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/imgs/ios_down.e011cb37.svg","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.669Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/imgs/ios_down.e011cb37.svg HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/svg+xml\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-2edd\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11997,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e011cb37e1cdc749fa40e455f952c628","sha1":"c102a94a6beb0a26de83c2e21ab6ab409f265e88","sha256":"5b8c67057adbf739c8bbe363ef30d3e57638991690cd9930aa237e5b408849ac","sha512":"a92a160de1026815ca8078f6cc059fb8fba29284a5c792295a9755e8f6e3c10ae138c90b0cac9774f35cdf430106e4a7ccb5c88729e9750e867cf826479001fa","ssdeep":"192:sb39cIK/24cUfDfcFDOlozy6RWSmwQn0F3TRe3nclNXAJdlIPprWl:2mIK+OrcFKozy6RrIni+nKNXAXlI0l","tlshash":"9b3255f79354c0c4791e99e5cc3f1ae93a0ef0fb9a81a08832ade841e753ddd865ad44","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.819855Z","times_seen":4088,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":90,"dns":0,"connect":0,"send":0,"wait":167,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_btc","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:43.757Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:45 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"83add8a14fe29c5d2619eef08db3296f","sha1":"18548319476d1d1618e49cc5cf7f73713c3dfff2","sha256":"7b626a755edfd2abb0cd97b7faacb54a11c210f74fa9c0becac33b7ac9107e1d","sha512":"8b1b7bf5a4b73d7289fa1e11a0a0a92986e563e3de623aa758ab9d8bf736a1edeb6b3c313981329582652a07bf314c59e76d187fb0bc4421ab3a86cf685f79fd","ssdeep":"","tlshash":"88d022e0be3a101d01b2abc368fc0b3f64aec041c0c54205aaeec7a27a9c4047249d22","first_seen":"2026-04-30T10:28:11.82162Z","last_seen":"2026-04-30T10:28:11.82162Z","times_seen":1,"resource_available":false,"data":null}},"time_used":281,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":281,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/imgs/icon_margin.svg","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.318Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/imgs/icon_margin.svg HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/svg+xml\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-654\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1620,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"283d6ddfb29042011328571a509df448","sha1":"3e486c50cfe119efc43c68ffafa349670c9f919c","sha256":"e88581cf4375fb6f9e7d94b4f9df4a667677d0d96384227c9a9228b1329f3308","sha512":"78e85634891dbc1423281f54e43c362b9cf8c75c83a070c34b36676b72b7b71e7793b2224c6d820eb870a0f7d854b336334b8ba0bca9125854139aaf2a97bc91","ssdeep":"","tlshash":"4e3120883a7ac39ce500e7ad981bb5ac3e1e04e96684c5d9c3e22c1078d2a59dc98dd7","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.823258Z","times_seen":2534,"resource_available":false,"data":null}},"time_used":1511,"timings":{"blocked":1359,"dns":0,"connect":0,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/imgs/icon_contract.svg","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.319Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/imgs/icon_contract.svg HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/svg+xml\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-487\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1159,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8be2edf2728aa394553b4fd9a44471f0","sha1":"1afec38a2c761fbd902e1de55d280424335aeeca","sha256":"306f962a6980e05ac92e3e8d3b1818e864f5557237541ab81cf2a15c44a190aa","sha512":"cd25567c0782132f9dcf858b252b11d1343a57a747b1bdbb7094b31baa1074528bc86fafeb66ac71997b4f4ae50e20c56373774f0f79fbf4b2ed339be8000ed4","ssdeep":"","tlshash":"b421ce69623543b9f04a82b212c9f47f353e06d8f1cb44c9e5671e20206e82ebca96c3","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.823968Z","times_seen":2554,"resource_available":false,"data":null}},"time_used":1510,"timings":{"blocked":1357,"dns":0,"connect":0,"send":0,"wait":152,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_eos","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:49.758Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_eos HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eos"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:51 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"68ac40a84898f40747d958e0c0941c75","sha1":"a033ad6d2dddc4dcbabdf38740c1a8cd192dcf0d","sha256":"232ef71afd2e2d3a4a886bd164ac9ae400955e7f71505d3570e31635b2ecc00e","sha512":"0707d815ab13b1d6804fdee766d93c98b78e2ceddafbecda34f34372d1d689ada7e8777adf7264eb03a393dafa59e80ce9810cb74592580f0be1ac8ef4f453c2","ssdeep":"","tlshash":"ec70000002afa8a3028200288c0f000000ac28882ca080008c2822288a200028a00020","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.780204Z","times_seen":311,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/imgs/hot-2.svg","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.187Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/imgs/hot-2.svg HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:41 GMT\r\nContent-Type: image/svg+xml\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-1ade\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6878,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"dd9279cfb541640afabd1d33527f1df4","sha1":"6d828472cfaa863044b92e5c884ea8d658df4d36","sha256":"6466ed8936ba729058d7e2ae3bc93a7d8f3fb8ec385d7e3c29f21968cbd5aaef","sha512":"53a3ddf98f9ea97b18e73e5ca308a452a16142e672dcf3d1c86e61cc83e94729651eb41301bc902cc2510178e0c708fb5b66f3bf1e4ccde0fcf5f61aff77fcf5","ssdeep":"96:QRslJ3A7/H2wd9Qci3A7/H2wd9Qccra97a9tx+duKNBBbNwKDNlUs7vkSqD:QWS/Zd9z/Zd9ia97a9tKblLs","tlshash":"96e197f7e1b8b993d246c771ed52485528aa84fbeb810391c2e8ff9a6135cc04c4edd4","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.824674Z","times_seen":5042,"resource_available":false,"data":null}},"time_used":2519,"timings":{"blocked":2364,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/imgs/tg.webp","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.322Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/imgs/tg.webp HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/webp\r\nContent-Length: 4944\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nConnection: keep-alive\r\nETag: \"69ef2119-1350\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4944,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"25709790dbdb2969c5827c0290589584","sha1":"d51c70a49478ec976a218dc730dbfb19476a9d79","sha256":"699d5e9257bcf16512e33439d676405ffeb48710c4851b86c9c3b9101172d511","sha512":"9e2387e1c92a0a8071260b1c3fa8d4a9b64ff33169bfa10eb197d5d3ce6b4e7bfb8f99d3693fab8f0278ee543edc7978874dd75e894b25d735d0d2e77f5a150c","ssdeep":"96:q11/q+jb2s095ANyq6CWer7WRTDt4n3MNE3O00EHH:UA+/2p5MIMWRTR43MNE3tn","tlshash":"1aa18f15183af26e88f9ed78406fa70235a3508d3b61f7d760e29e8436bd42a3b520f0","first_seen":"2023-09-10T10:46:22Z","last_seen":"2026-04-30T10:28:11.825309Z","times_seen":1784,"resource_available":false,"data":null}},"time_used":1516,"timings":{"blocked":1354,"dns":0,"connect":0,"send":0,"wait":154,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/js/jquery.SuperSlide.2.1.1.js","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.430Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/js/jquery.SuperSlide.2.1.1.js HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-2c9e\"\r\nExpires: Thu, 30 Apr 2026 22:27:39 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11422,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10855), with CRLF line terminators","md5":"0b9bc63ab05e21e3830da5bbb4ccee67","sha1":"d162156bdaf14217d76d920e0e57b86d8feb1d97","sha256":"349e46b2c65028736d0bbff7b829c7fc6fbdebc1fb1e8b12365a0ca2e6e9e848","sha512":"bdfa220da1f08e29f05a9984c4999d7e742bea10ad86b7e497a0d112c7992cc52b7f1e9f5430b4286f14bb2336110f85cbdc3164a92121caaf5c91961f7e69c9","ssdeep":"192:j+K3bxH+nqfhD9VUVjIItpfg5uXG3+1tSCl+7flvSXwaHxImISLTNSfYXH7Le2HE:jNcnqflKFgEWulE8REcS3j/CkR1Xh3","tlshash":"9532c65fb66635ca4597b3f1107f940d222b5965fc8a8ca0b17082c0adb9a1c243bfed","first_seen":"2023-04-05T11:06:31Z","last_seen":"2026-04-30T10:28:11.825996Z","times_seen":13402,"resource_available":true,"data":null}},"time_used":152,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/imgs/android_down.d99dd6cc.svg","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.672Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/imgs/android_down.d99dd6cc.svg HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/svg+xml\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-2d6a\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11626,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d99dd6cc9eeb67a17b5f64eee801202c","sha1":"6e11cb75b0529af92236763785b69749f62fee4d","sha256":"dc8a78d121b34f655fc063f43d4ef8cec3581d8539369f35f2ae0258a5735954","sha512":"fea5046497f492375a2bde60559ebfb91f67e52685d5b8055c2fd585809cfc98c3bf1a2bb0b20aa00e390c75533ba327d1b66194709fffe3c236fea363c0aed1","ssdeep":"192:Wt1zfau5v7dYMyr8R0tjFnR0tmWi2C/FNNW6xX8jVCZVzLQTsMH6IL:MzfhzS8+pn+mW4FNNFXZZJvw6IL","tlshash":"693255e793a4c0d0690fd5b5cd3b5ae43e1b70fbafc19058326dd944eb429d68b06e48","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.826668Z","times_seen":4106,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":87,"dns":0,"connect":0,"send":0,"wait":168,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/imgs/advantage_phone.511b5ee0.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.676Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/imgs/advantage_phone.511b5ee0.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-4ddc\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19932,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 1038, 8-bit colormap, non-interlaced","md5":"511b5ee00b739dea06dc9e55011afa57","sha1":"eb4ebfdfc46829471c2b86dc94b2e6bc83037fb3","sha256":"31b768d13aee263d4de7af1b5527bded34ad208284df0544dfe5fca9d00a41e0","sha512":"54e06fd802883d46f47e6f59f3d795d893ea797d8295c1cbb506b91a46d0d1efa79751a454049c3e6b2ac06dd5a312950658d96fa9f8c3cefd1d46f73e5ebda4","ssdeep":"384:/M6qoHUBFHYEFyqYA3ar7vWF6cCf9X+VFMsTB:vXHULHpFyRxc0X+Q0B","tlshash":"fc92d0c78eb6894efba7c47c81508bf2617a282190e61dd5fa61e3a3b432645db36071","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.827287Z","times_seen":5434,"resource_available":false,"data":null}},"time_used":461,"timings":{"blocked":251,"dns":0,"connect":0,"send":0,"wait":151,"receive":59,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_ltc","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:39.806Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_ltc HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=ltc"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:41 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":203,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"1cc4721499ec3428c85d98d0524d1bae","sha1":"ecb84498f377c4223a6c56d017de4425f9fb36be","sha256":"4b305c93589442382875d656ca597c6cfcd1ea15a352a95116a3cb34c1e46759","sha512":"a2a904b9325897dcf543d593e26f57090c354ce1f1fabed2553dc62c2d5919dc5218122dd93469757b6decac198a64a030155dac66ddf98119ad465546401d24","ssdeep":"","tlshash":"9cd022e0af78001a00b26bc664fc07bf988d8449c0814389ebaec7702a98508710cc0a","first_seen":"2026-04-30T10:28:11.783435Z","last_seen":"2026-04-30T10:28:11.783435Z","times_seen":1,"resource_available":false,"data":null}},"time_used":363,"timings":{"blocked":23,"dns":0,"connect":0,"send":0,"wait":340,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_eth","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:51.759Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_eth HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eth"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:53 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":205,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"df2463ecbf29a334146a356fcbd65f8c","sha1":"70bfe9c7f32336003021c67deb300b3dd4a35955","sha256":"3079ec24a3d21fda275928d9f3c8c6c8a25c12c108e213cf892dcab1961e9b6a","sha512":"b4b9540baafeba5e26eb62db92a1e71575856c0f118e91240e29f8ec4bf5ee85b2e0e6cc150b978c63cc4c0a269f1b1bd5bc9b224c283234f5d733696447c816","ssdeep":"","tlshash":"d2d0a788af3904290871e3d068d91a1d184b4486d081c10456fddd64151840c3351d17","first_seen":"2026-04-30T10:28:11.76535Z","last_seen":"2026-04-30T10:28:11.76535Z","times_seen":1,"resource_available":false,"data":null}},"time_used":427,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":427,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap@4.5.0/dist/css/bootstrap.min.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.171Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/bootstrap@4.5.0/dist/css/bootstrap.min.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 4.5.0\r\nx-jsd-version-type: version\r\netag: W/\"27293-TxSgmmBsmaEfj9oVVk72b3BAKCY\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Thu, 30 Apr 2026 10:27:38 GMT\r\nage: 4172796\r\nx-served-by: cache-fra-etou8220176-FRA, cache-hel1410033-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 24869\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":160403,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65324)","md5":"3afe15e976734d9daac26310110c4594","sha1":"4f14a09a606c99a11f8fda15564ef66f70402826","sha256":"680af6669abc319f9803f0fa26d443df1b6bc29133d88a8e4bea560ffed7288c","sha512":"aced925c428148809afc07f28442b966a58508ea24d6b7203d87c63aab57df93b28ab68183a5dae0d9c12705e0a484685de5a370099c42788c869db686d0dcea","ssdeep":"1536:2THqIJOT7SyEIA1pDEBi8yNcuSEeA1/uypq3SYiLENM6HN26H:YH9vGGq3SYiLENM6HN26H","tlshash":"03f353a6f5a0312de4a7c61964d0bafd152f8245d7224bfbf8273b6447892c70a73e4c","first_seen":"2023-04-05T04:00:44Z","last_seen":"2026-04-30T15:00:44.949331Z","times_seen":22965,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":-1,"dns":1,"connect":13,"send":0,"wait":13,"receive":6,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Static/qrcode/FanamLa.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.188Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Static/qrcode/FanamLa.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:41 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-7f87\"\r\nExpires: Sat, 30 May 2026 10:27:41 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":32647,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced","md5":"663b0c447697d27ec8856409f214b021","sha1":"8ea144fca3fb898c5f1a0d5c192084f46bb6c9c8","sha256":"5459d52c41be57926ab568e4d5e75d2f77d0d88739e1903884925ea178bb2ccb","sha512":"a0b604b05527127d0db4a9e89bf2bf3b9dd38574e5f50b33206570e01646c77d30711ee80b2ba0614c946595c5e0661f55fef48464a410677c819ed7ff4c33c5","ssdeep":"768:vM3rxJS1gfgBIa2hthzfVc2PztvWHMr5cR2a:e10nIXth5xyMdi2a","tlshash":"32e2e0f55c59a86d2d8444b00b685e75abfa80c21d8ae1dfec8013dffa260ef4be0565","first_seen":"2023-06-09T02:38:16Z","last_seen":"2026-04-30T10:28:11.828505Z","times_seen":459,"resource_available":false,"data":null}},"time_used":2618,"timings":{"blocked":2455,"dns":0,"connect":0,"send":0,"wait":155,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Upload/public/629c72e4af37b.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.305Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Upload/public/629c72e4af37b.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-68eea\"\r\nExpires: Sat, 30 May 2026 10:27:39 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":429802,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1140 x 465, 8-bit/color RGBA, non-interlaced","md5":"225ca6bb404d12e23b7b386fad845b9d","sha1":"5867c40e357d614354b83402482c4587ec910544","sha256":"670d66f9a6d3a2428280c04d570de82d99bd3c254888abafb92882cfae08ed44","sha512":"91cc1f7d6e940496ccd1d6285188e9b0c8150c39a24e724152ad53401be977259b6a8f66fc0d3e5cf17b19c31dad8370fb4d81d20f8b7b591da332aeff0790b8","ssdeep":"12288:JuQM20o9QXiA45lDD1mpVl09MrFrJVh+y5:t9lDJmnr5vhV","tlshash":"4d942395c5c6bc3391c6d10c9ab712b1b2239a7998af5bd506997e8c144cccac3fe24f","first_seen":"2023-05-21T16:18:43Z","last_seen":"2026-04-30T10:28:11.830071Z","times_seen":4433,"resource_available":false,"data":null}},"time_used":1214,"timings":{"blocked":297,"dns":0,"connect":0,"send":0,"wait":155,"receive":762,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/favicon.ico","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:40.842Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:42 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 4286\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nConnection: keep-alive\r\nETag: \"69ef211a-10be\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"745f9a07d758f53a550dcafbee190841","sha1":"a91a6236e162189f91aa426d69515afddaf33503","sha256":"1ee19848d055fe11ee8df3a07cf3b8f94699afab0564858a5605833f6f3a6758","sha512":"5e7443da9d0490b1df450bb4e71f7c67566ef3ecd0cec859b974ea752ff7b544f65966f2342925376e79c922fa193a847a6c3b297c4a1ea59ee54e9f40911ed2","ssdeep":"48:1ssjc4eJrYD9DnB4TGf/1MarP1Mp6UbKCAF8ubl3fR86dWWi6q6l:FK8DZBSGqgPGU7zpEWBl","tlshash":"cb915362e2154b0ade3bca3a473fa7e9ba22fde6d24009c29144305e59753de0216799","first_seen":"2024-08-10T20:11:45Z","last_seen":"2026-04-30T10:28:11.830659Z","times_seen":133,"resource_available":false,"data":null}},"time_used":154,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_btc","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:45.764Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:47 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"83add8a14fe29c5d2619eef08db3296f","sha1":"18548319476d1d1618e49cc5cf7f73713c3dfff2","sha256":"7b626a755edfd2abb0cd97b7faacb54a11c210f74fa9c0becac33b7ac9107e1d","sha512":"8b1b7bf5a4b73d7289fa1e11a0a0a92986e563e3de623aa758ab9d8bf736a1edeb6b3c313981329582652a07bf314c59e76d187fb0bc4421ab3a86cf685f79fd","ssdeep":"","tlshash":"88d022e0be3a101d01b2abc368fc0b3f64aec041c0c54205aaeec7a27a9c4047249d22","first_seen":"2026-04-30T10:28:11.82162Z","last_seen":"2026-04-30T10:28:11.82162Z","times_seen":1,"resource_available":false,"data":null}},"time_used":338,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":338,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_btc","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:47.763Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:49 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"83add8a14fe29c5d2619eef08db3296f","sha1":"18548319476d1d1618e49cc5cf7f73713c3dfff2","sha256":"7b626a755edfd2abb0cd97b7faacb54a11c210f74fa9c0becac33b7ac9107e1d","sha512":"8b1b7bf5a4b73d7289fa1e11a0a0a92986e563e3de623aa758ab9d8bf736a1edeb6b3c313981329582652a07bf314c59e76d187fb0bc4421ab3a86cf685f79fd","ssdeep":"","tlshash":"88d022e0be3a101d01b2abc368fc0b3f64aec041c0c54205aaeec7a27a9c4047249d22","first_seen":"2026-04-30T10:28:11.82162Z","last_seen":"2026-04-30T10:28:11.82162Z","times_seen":1,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":257,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_eos","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:54.761Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_eos HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eos"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:56 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"68ac40a84898f40747d958e0c0941c75","sha1":"a033ad6d2dddc4dcbabdf38740c1a8cd192dcf0d","sha256":"232ef71afd2e2d3a4a886bd164ac9ae400955e7f71505d3570e31635b2ecc00e","sha512":"0707d815ab13b1d6804fdee766d93c98b78e2ceddafbecda34f34372d1d689ada7e8777adf7264eb03a393dafa59e80ce9810cb74592580f0be1ac8ef4f453c2","ssdeep":"","tlshash":"ec70000002afa8a3028200288c0f000000ac28882ca080008c2822288a200028a00020","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.780204Z","times_seen":311,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/css/base.css","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.175Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/css/base.css HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:39 GMT\r\nContent-Type: text/css\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-6332\"\r\nExpires: Thu, 30 Apr 2026 22:27:39 GMT\r\nCache-Control: max-age=43200\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25394,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (846)","md5":"7bfc7f3518042fcff5d50e0c4f9cad21","sha1":"2a2b5fcebcdb6fd84bbc9555017af9f23f63c2d3","sha256":"a0fa16f1aca23bff6b7805edc0f7f9e5738b84945247d9da6c9b1ece51cd60c2","sha512":"334184d060a412defa0168217ba6dc02078311f970dc3bc8f6f6ea339954721c436f37236b072e910e45a35c4843efb5130a5eaca922a16db5415a7adc348bce","ssdeep":"384:/HFiOTTjRmNi2RoLy6IbRiWc2FDwFxYorvRnEkEZ58s8BXR8G8LrB888t7jL5ZBb:U4cN39FDwFx9EZS9YzqtRB8TFI8dU","tlshash":"61b284a69fa30901b81bc5a41ff9ab15236dc017910bdebd7fc53648cf4b2d894a27c6","first_seen":"2023-09-10T10:46:21Z","last_seen":"2026-04-30T10:28:11.831734Z","times_seen":92,"resource_available":false,"data":null}},"time_used":383,"timings":{"blocked":78,"dns":1,"connect":151,"send":0,"wait":152,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/xm/doge.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.308Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /xm/doge.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef211a-838\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2104,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 61 x 60, 8-bit/color RGBA, non-interlaced","md5":"ff0c62c872d877837881793431cf064c","sha1":"8ee9cdfe43cfba24078529fa23984ab9e9d99a76","sha256":"c146f8822178b5581dd5eb80071e9824e1634252a4cd0d25b9675b0cb3da570e","sha512":"2416ae2389993012befe574c4ee91c47b6101f3e89b7582d25ce214e248e5305f327183c2a7222259b9aeae09ff7315edeae1ff11c8be3304ca11d5cefeb09ff","ssdeep":"","tlshash":"b0416e07f3ddbe79ccd66bb71348e024d01ff7e1b8010b98a42a4c565258c6f215c44b","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.832317Z","times_seen":5337,"resource_available":false,"data":null}},"time_used":1113,"timings":{"blocked":962,"dns":0,"connect":0,"send":0,"wait":151,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Public/Home/static/imgs/advantage_phone_ui1.7a062617.png","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:38.678Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /Public/Home/static/imgs/advantage_phone_ui1.7a062617.png HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:40 GMT\r\nContent-Type: image/png\r\nLast-Modified: Mon, 27 Apr 2026 08:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69ef2119-1fde\"\r\nExpires: Sat, 30 May 2026 10:27:40 GMT\r\nCache-Control: max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8158,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 620 x 384, 8-bit colormap, non-interlaced","md5":"7a06261784d3908ab66f836816376de0","sha1":"3ea8a00b11b016e46703e0b873f005eb5e70adf3","sha256":"c6aa1f5b958419cbaa53682faf70d19d2737d2fc3ec58aeda3f83de3802ac4d0","sha512":"fd838b02e21d15d948d357fcea888bc7fe11bbe2d268d82f6b5f14341b2f253f5ffc6f8f34bac7beb7cead9c4780f6d4ee0b1e73db99ad3c681839965c886572","ssdeep":"192:RCD7357jDYAgAY0UKt/wetdU7BxeTKgPG2ZgwPhlTAAAAAI+GpYSTOFgWsh:RC3357ZXt67reegPG2ZvPDgGhCCWU","tlshash":"4df1ae00e21cefc3fdfce446b5a9916f24b44271323294ce50a39b65d8f459fa7966b0","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-04-30T10:28:11.833046Z","times_seen":5419,"resource_available":false,"data":null}},"time_used":424,"timings":{"blocked":254,"dns":0,"connect":0,"send":0,"wait":151,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_iota","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:39.808Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_iota HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=iota"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:41 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":199,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"67ea6f3b94ed2ccd2152e79adb99c416","sha1":"d695875ae0567d68fe45767fe5d23e987619e4e3","sha256":"20f0431b443a442e68e5689259f04e8c3576b47ad1f9e041de61dfcd142d1532","sha512":"80dfd76b536268b3baca1386f93c7a8d3cfb70c11e519e41d0a883bf3b60b299b804c5fc40fb7ab2fa92f1902354ce1a31373c60522e9bb51611a76fc389ebb9","ssdeep":"","tlshash":"fdd022903f3c082608a1f3d0a8e81fff608e8482c080c2595afece7ca9582183232d26","first_seen":"2026-04-30T10:28:11.833623Z","last_seen":"2026-04-30T10:28:11.833623Z","times_seen":1,"resource_available":false,"data":null}},"time_used":539,"timings":{"blocked":31,"dns":0,"connect":0,"send":0,"wait":508,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_btc","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:41.758Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:43 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"83add8a14fe29c5d2619eef08db3296f","sha1":"18548319476d1d1618e49cc5cf7f73713c3dfff2","sha256":"7b626a755edfd2abb0cd97b7faacb54a11c210f74fa9c0becac33b7ac9107e1d","sha512":"8b1b7bf5a4b73d7289fa1e11a0a0a92986e563e3de623aa758ab9d8bf736a1edeb6b3c313981329582652a07bf314c59e76d187fb0bc4421ab3a86cf685f79fd","ssdeep":"","tlshash":"88d022e0be3a101d01b2abc368fc0b3f64aec041c0c54205aaeec7a27a9c4047249d22","first_seen":"2026-04-30T10:28:11.82162Z","last_seen":"2026-04-30T10:28:11.82162Z","times_seen":1,"resource_available":false,"data":null}},"time_used":296,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":296,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"aebtceth.com/Ajaxtrade/obtain_fil","fqdn":"aebtceth.com","domain":"aebtceth.com","tld":"com"},"ip":{"addr":"45.207.157.163","port":80,"asn":135357,"as":"HONG KONG KOWLOON TELECOMMUNICATIONS CO.,LIMITED","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://aebtceth.com/","date":"2026-04-30T10:27:54.767Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /Ajaxtrade/obtain_fil HTTP/1.1\r\nHost: aebtceth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: http://aebtceth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://aebtceth.com/\r\nCookie: PHPSESSID=cd9qvi66svhkf39kvi3iuh8d10\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=fil"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 30 Apr 2026 10:27:56 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":206,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d9c1acdfaff7702a46004e175376b697","sha1":"3497ae79b72de512234b61c8c1ff37eaa5b3f240","sha256":"5b9e26ee91bf95a27691ed35e8a2187b0fe7f7466f186cdac1308c04d73f02b2","sha512":"515156dfccf575d200fd84179a1666779adeb062cee5f0a6b059393c3154dd746d06a1445099c72ccf9531a8373d58df6b83b243c1d332db3b920f62f58c871a","ssdeep":"","tlshash":"68d0a9d02e35092a01a16bd228f9177a90ac8089848182059beecb6835d81197208c12","first_seen":"2026-04-30T10:28:11.800122Z","last_seen":"2026-04-30T10:28:11.800122Z","times_seen":1,"resource_available":false,"data":null}},"time_used":428,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":428,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"aebtceth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}