{"report_id":"60b6c617-19ae-4c4e-bfd9-512c46103c50","version":6,"status":"done","tags":[],"date":"2026-05-08T08:44:45Z","url":{"schema":"http","addr":"terminals-megaeth.com","fqdn":"terminals-megaeth.com","domain":"terminals-megaeth.com","tld":"com"},"ip":{"addr":"172.67.162.79","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"terminals-megaeth.com/","fqdn":"terminals-megaeth.com","domain":"terminals-megaeth.com","tld":"com"},"title":"MegaETH | $MEGA","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"terminals-megaeth.com","fqdn":"terminals-megaeth.com","domain":"terminals-megaeth.com","tld":"com"},"ip":{"addr":"172.67.162.79","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-12T08:44:45Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"terminals-megaeth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"terminals-megaeth.com","ip":{"addr":"104.21.58.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-05-07","domain_rank":0,"first_seen":"2026-05-08T08:44:46.694522Z","last_seen":"2026-05-08T08:44:46.694522Z","alert_count":6,"request_count":6,"received_data":3605917,"sent_data":2824,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"terminals-megaeth.com/fetch-3.13.8.js","fqdn":"terminals-megaeth.com","domain":"terminals-megaeth.com","tld":"com"},"ip":{"addr":"104.21.58.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ef158c4ad3e6fba48225c7e431f3584d","sha1":"cf4f62bac4764be5645c47e5f82f51a77590d96d","sha256":"c4099e7451e666cfc38c59b0e5462b92d796d34c53be8ad706e63e87be103f34","sha512":"d6e0deea2303d00d478487425903687bb2ae43f6e793d4567f7f5d78739de2be0c221a1c814d9a4fabe4375d1573ef7b9ff732bae271e5216f6e45efe92cbd19","ssdeep":"768:IdPpUc9shqOpw/Ut4oQ3ZFdnSU5b13Jib75c55SM41cefpRczIqYUb4izQ+0u:TqkwaQJFpSU5dwb7qGtu","tlshash":"9b53b5e9691bd4e58e5220cdd433e919e4240e93cdadf163a53cedc0b81ef66848727b","size":60787,"data":"","first_seen":"2026-05-01T10:51:47.217679Z","last_seen":"2026-05-08T08:47:03.268719Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"terminals-megaeth.com/favicon.ico","fqdn":"terminals-megaeth.com","domain":"terminals-megaeth.com","tld":"com"},"ip":{"addr":"104.21.58.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://terminals-megaeth.com/","date":"2026-05-08T08:44:19.287Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terminals-megaeth.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 11:24:04 GMT","end":"Wed, 05 Aug 2026 11:24:03 GMT"},"fingerprint":{"sha1":"10:DE:9D:14:C0:D8:73:44:CC:10:00:87:8C:3A:A6:ED:8C:B8:F0:CC","sha256":"FF:E4:6E:BB:1D:B7:EC:EF:AE:D8:A5:49:19:23:F4:0E:98:72:B1:FF:DF:A6:DE:F7:07:94:3C:04:90:41:6B:78"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: terminals-megaeth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terminals-megaeth.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 08:44:19 GMT\r\ncontent-type: image/x-icon\r\npriority: u=6,i=?0\r\nlast-modified: Thu, 07 May 2026 12:20:11 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69fc837b-cde\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=35gJ5Q7iIyXuTR6A5lbWvz7FZxyZANCH3WvVyhZzAO0J7PK5l1mVLhHSgGAaBjmkr5pLtD1GbPynYAXDy9t1GwKHHnVVD8fQ9R2qw1T9ih5vPDjj1ogaXEGSnpHYo3Qd1pV%2BEpkmERE%3D\"}]}\r\ncf-ray: 9f872e8c8f14120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3294,"size_decoded":0,"mime_type":"image/x-icon","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"bf57820134b35af7f4f02e9f1ba7cff8","sha1":"7cfb7f2195e3b94f9e53e611524667ddae69041d","sha256":"84a09aa8c59d97079a5125e2c38cdaa5f698eedadefeb9b966c82d15fdf333d6","sha512":"5491a61121fd9a99b3e1ac1e213f774d9a4eedf5e65aeb3ba55bc7c474a50387eed265daee77471fbeadbdbf2c20c90b64ab7dffcefa23f14701e025100cd0b8","ssdeep":"","tlshash":"0f615ddfc812951597290e22bc1fddcaf9ad02f5db30cc61bf926431f62b91d951a138","first_seen":"2025-09-03T17:27:13.432757Z","last_seen":"2026-05-31T22:48:46.878441Z","times_seen":129,"resource_available":false,"data":null}},"time_used":208,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":208,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"terminals-megaeth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terminals-megaeth.com/secureproxy?e=jscdn/getFile","fqdn":"terminals-megaeth.com","domain":"terminals-megaeth.com","tld":"com"},"ip":{"addr":"104.21.58.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://terminals-megaeth.com/","date":"2026-05-08T08:44:19.314Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terminals-megaeth.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 11:24:04 GMT","end":"Wed, 05 Aug 2026 11:24:03 GMT"},"fingerprint":{"sha1":"10:DE:9D:14:C0:D8:73:44:CC:10:00:87:8C:3A:A6:ED:8C:B8:F0:CC","sha256":"FF:E4:6E:BB:1D:B7:EC:EF:AE:D8:A5:49:19:23:F4:0E:98:72:B1:FF:DF:A6:DE:F7:07:94:3C:04:90:41:6B:78"}}},"request":{"raw":"POST /secureproxy?e=jscdn/getFile HTTP/1.1\r\nHost: terminals-megaeth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://terminals-megaeth.com/\r\nContent-Type: application/json\r\nContent-Length: 37\r\nOrigin: https://terminals-megaeth.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":37,"data":"{\"permit_key\":\"0x2b4yxyussfyosuq00d\"}"}},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 08:44:19 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding, origin, access-control-request-method, access-control-request-headers\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block, 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mEphzjt%2BqcoexpNeARpjyUowAIIF0IOx6bzQRcuVSy9wI3d%2BLlT%2FUld6d4HtCC8SD44DyyRG95vfOgy%2FEzO3z2k41DEZf2se818%2BlAiNFvBDV%2BBydgt1QZtHqo5I%2FWVHa9%2BS0iA%3D\"}]}\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\npriority: u=4,i=?0\r\ncf-ray: 9f872e8cbf18120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3408190,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"a002e8d8eacc2b608fcc1803f9f86252","sha1":"ed39365b0274cd48733cd3b25eae3b086f83281e","sha256":"b0581f85a9bc8149569eb2f59cb7cef2b8dfbfc362e31f46bcc8c18212cf4652","sha512":"2174e3eb50301b5ff9bdad75cc5d27fcc7fb8c04d12a04648779e9acad0ee070b46a3d2a4e88326dc1581caf7889d71205a6314cd83b2542ed640a2560d875be","ssdeep":"24576:YV8/8Yae0PgGswPpBroS7InwbjtsJshJuEbdZcODQ:Y7OwPEZJslQ","tlshash":"772533502d67ef9b4f4cada5b477be0365810f43c88ca4cb9a65d9c411ac73602dab2f","first_seen":"2026-05-08T08:44:50.249547Z","last_seen":"2026-05-08T08:47:03.27234Z","times_seen":2,"resource_available":false,"data":null}},"time_used":501,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":163,"receive":338,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"terminals-megaeth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terminals-megaeth.com/195cac5039625554ea1c60fba4b4dec5b512867a.png","fqdn":"terminals-megaeth.com","domain":"terminals-megaeth.com","tld":"com"},"ip":{"addr":"104.21.58.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://terminals-megaeth.com/","date":"2026-05-08T08:44:19.295Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terminals-megaeth.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 11:24:04 GMT","end":"Wed, 05 Aug 2026 11:24:03 GMT"},"fingerprint":{"sha1":"10:DE:9D:14:C0:D8:73:44:CC:10:00:87:8C:3A:A6:ED:8C:B8:F0:CC","sha256":"FF:E4:6E:BB:1D:B7:EC:EF:AE:D8:A5:49:19:23:F4:0E:98:72:B1:FF:DF:A6:DE:F7:07:94:3C:04:90:41:6B:78"}}},"request":{"raw":"GET /195cac5039625554ea1c60fba4b4dec5b512867a.png HTTP/1.1\r\nHost: terminals-megaeth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terminals-megaeth.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 08:44:19 GMT\r\ncontent-type: image/png\r\ncontent-length: 3527\r\ncast-mode: default\r\nlast-modified: Thu, 07 May 2026 12:20:11 GMT\r\netag: \"69fc837b-dc7\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rKDt5Baua5%2B97xwPk1jgAxzrfkyryYfYR2DMw%2BGuWQCePF8%2BNxBK0ZFS9eQBBJTvatDmObcF6595GzXDEKZFEy8baHcOuqsJPnFp32ncrnap85SR1W2ka%2B2zBbGtqDJBw08icnhhE8I%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9f872e8c9f15120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3527,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 140 x 199, 8-bit/color RGBA, non-interlaced","md5":"2c33fbfb488c008ccfbbb48130cba725","sha1":"195cac5039625554ea1c60fba4b4dec5b512867a","sha256":"f8e6df2288a0fe31f89be30641a770fddf2ddd3d4c00ec7e6295c6920258417d","sha512":"57986cf037b5380ae1e8341cedac69ea44256b37609940a9e9cb6ce7376136c598e2fc8a6618d47011c8b6c348268ea7875944260df3e3a5c1e7480b6c1898c8","ssdeep":"","tlshash":"6d714cef2f734b59e048d4c6c3614ac44aaba41d80d618045ffa20eb2e527929e7a589","first_seen":"2026-01-27T10:50:14.750762Z","last_seen":"2026-05-08T08:47:03.271281Z","times_seen":14,"resource_available":false,"data":null}},"time_used":204,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":204,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"terminals-megaeth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terminals-megaeth.com/","fqdn":"terminals-megaeth.com","domain":"terminals-megaeth.com","tld":"com"},"ip":{"addr":"104.21.58.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-08T08:44:18.563Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terminals-megaeth.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 11:24:04 GMT","end":"Wed, 05 Aug 2026 11:24:03 GMT"},"fingerprint":{"sha1":"10:DE:9D:14:C0:D8:73:44:CC:10:00:87:8C:3A:A6:ED:8C:B8:F0:CC","sha256":"FF:E4:6E:BB:1D:B7:EC:EF:AE:D8:A5:49:19:23:F4:0E:98:72:B1:FF:DF:A6:DE:F7:07:94:3C:04:90:41:6B:78"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: terminals-megaeth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 08 May 2026 08:44:18 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Thu, 07 May 2026 12:20:11 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F%2FxUR6XQCFs6%2BQAjztkL89wAFEzmazztoSSV0isL7rXlFeJV4EvmdbP8jKi5Eqf71qGq2AiN%2FwSvvaUK5r5GtwcSaWvRkAdkuAqIsE8U6zLOP6p5xBUad5bX330%2FtWCrW%2Fdq4vzvKzE%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9f872e8818b8c759-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]}],"data":{"size":117619,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (5924)","md5":"946ec838b6fc2a29e2856049101a748e","sha1":"be3b88c3711db3327ac793e2d843a51809012963","sha256":"af4675438b3233b9e21527ff2de005b8dffe01439b183db43d5901a3e733afd1","sha512":"bedc6aec480051f6a5e4073ee8923b6248bb28fd2912335bcddce1d1fc301421dd7868af8db3270b153afa846291f526db2a0a403aa9a134fa5c627958423329","ssdeep":"768:VjF4K7Wk7Qo+jGCIkFpGd9xxxIDMVI2DDamAFfKmXHHIwDCXmCJXYltwJSDVD8lk:VjRWkL+jVIkHexWuCHRd","tlshash":"d4b34482ed9381377a2364af2bd6ee9fb26070035401fb8c7bed11458f856bb95b1718","first_seen":"2026-05-01T10:51:47.216401Z","last_seen":"2026-05-08T08:47:03.274635Z","times_seen":4,"resource_available":true,"data":null}},"time_used":243,"timings":{"blocked":15,"dns":1,"connect":1,"send":0,"wait":213,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"terminals-megaeth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terminals-megaeth.com/css2.css","fqdn":"terminals-megaeth.com","domain":"terminals-megaeth.com","tld":"com"},"ip":{"addr":"104.21.58.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://terminals-megaeth.com/","date":"2026-05-08T08:44:18.928Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terminals-megaeth.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 11:24:04 GMT","end":"Wed, 05 Aug 2026 11:24:03 GMT"},"fingerprint":{"sha1":"10:DE:9D:14:C0:D8:73:44:CC:10:00:87:8C:3A:A6:ED:8C:B8:F0:CC","sha256":"FF:E4:6E:BB:1D:B7:EC:EF:AE:D8:A5:49:19:23:F4:0E:98:72:B1:FF:DF:A6:DE:F7:07:94:3C:04:90:41:6B:78"}}},"request":{"raw":"GET /css2.css HTTP/1.1\r\nHost: terminals-megaeth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terminals-megaeth.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 08:44:19 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 07 May 2026 12:20:11 GMT\r\netag: W/\"69fc837b-1a01\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6langD%2B7ZGZmqGnJtp1yQdoFY2%2FUdjEWcWjRLPx%2BDhu0Z8yimAaxLdPyREWm05ja69Bjzz9fRvhu0YdKzLZ6J1uoI7NwiUal0vBLTqxZDlo3T4v1iQV9ts4Wt8KvkdMLhBOZdtFM4Z8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9f872e8a4ecb120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6657,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"ce7ad8f4ad7ad856c1099fc81b1b7648","sha1":"1ad43c1dcc0a01e0f43ee5385596b6950ccee64a","sha256":"673efc1392c23c179e818ed5a87a15c4c73b015995d1e6d7b021300935ffc337","sha512":"3c99af3c3067d88019bdc48c29b808c8ecdf4ddaa416e40567feae3f5c50f92e525a2202d2caa81bfd49f32daed65767f781c4cea4bd6f45db38ccc934c6d937","ssdeep":"192:9TNe7m34MJD7TOdUm3/TJ8eTrUdm3iWJlk:h/P0NNS","tlshash":"5ed19b91042b5100e7971cc627cf3f366edc2149a049dabc2ffd189aaceadb913a574d","first_seen":"2025-11-16T14:51:55.272416Z","last_seen":"2026-06-04T05:28:11.302317Z","times_seen":47,"resource_available":false,"data":null}},"time_used":212,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":212,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"terminals-megaeth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terminals-megaeth.com/fetch-3.13.8.js","fqdn":"terminals-megaeth.com","domain":"terminals-megaeth.com","tld":"com"},"ip":{"addr":"104.21.58.172","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terminals-megaeth.com/","date":"2026-05-08T08:44:18.926Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terminals-megaeth.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 11:24:04 GMT","end":"Wed, 05 Aug 2026 11:24:03 GMT"},"fingerprint":{"sha1":"10:DE:9D:14:C0:D8:73:44:CC:10:00:87:8C:3A:A6:ED:8C:B8:F0:CC","sha256":"FF:E4:6E:BB:1D:B7:EC:EF:AE:D8:A5:49:19:23:F4:0E:98:72:B1:FF:DF:A6:DE:F7:07:94:3C:04:90:41:6B:78"}}},"request":{"raw":"GET /fetch-3.13.8.js HTTP/1.1\r\nHost: terminals-megaeth.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terminals-megaeth.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 08:44:19 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Thu, 07 May 2026 12:20:11 GMT\r\netag: W/\"69fc837b-ed73\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HbeTe5Z3SKB2yKtHOg0hSejAljWqsOlk9acsJ79zo4e4q2aGk9WPvHNP6qSFqrS%2B1BX1BBdom51sPF6%2FrkumekYOOJY0Exl5vOIgO8XFBl2xNRIlN47ptfQL0Ka63WQaBwlK2l3sW54%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9f872e8a4eca120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":60787,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (60787), with no line terminators","md5":"ef158c4ad3e6fba48225c7e431f3584d","sha1":"cf4f62bac4764be5645c47e5f82f51a77590d96d","sha256":"c4099e7451e666cfc38c59b0e5462b92d796d34c53be8ad706e63e87be103f34","sha512":"d6e0deea2303d00d478487425903687bb2ae43f6e793d4567f7f5d78739de2be0c221a1c814d9a4fabe4375d1573ef7b9ff732bae271e5216f6e45efe92cbd19","ssdeep":"768:IdPpUc9shqOpw/Ut4oQ3ZFdnSU5b13Jib75c55SM41cefpRczIqYUb4izQ+0u:TqkwaQJFpSU5dwb7qGtu","tlshash":"9b53b5e9691bd4e58e5220cdd433e919e4240e93cdadf163a53cedc0b81ef66848727b","first_seen":"2026-05-01T10:51:47.217679Z","last_seen":"2026-05-08T08:47:03.268719Z","times_seen":4,"resource_available":true,"data":null}},"time_used":232,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":212,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"terminals-megaeth.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}