{"report_id":"633f6601-9160-4ec7-b1ce-5581e63ffe97","version":6,"status":"done","tags":[],"date":"2025-11-27T22:43:35Z","url":{"schema":"http","addr":"poldefi2.cloud/?shiny","fqdn":"poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"104.21.6.158","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/index.html?shiny#/","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"title":"snefzhqs.poldefi2.cloud/index.html?shiny#/","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"poldefi2.cloud/?shiny","fqdn":"poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"104.21.6.158","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-01T22:43:35Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"secure.walletconnect.com","ip":{"addr":"104.18.26.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-12-19","domain_rank":0,"first_seen":"2024-01-29T14:17:12Z","last_seen":"2025-11-09T14:34:25.920806Z","alert_count":0,"request_count":1,"received_data":987,"sent_data":580,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-11-23T22:13:29.69009Z","alert_count":0,"request_count":2,"received_data":98734,"sent_data":1126,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-11-23T22:13:43.05661Z","alert_count":0,"request_count":1,"received_data":10794,"sent_data":482,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"api.web3modal.org","ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2022-11-18","domain_rank":433029,"first_seen":"2023-09-19T09:52:23Z","last_seen":"2025-11-20T20:27:33.717805Z","alert_count":0,"request_count":30,"received_data":45916,"sent_data":19217,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"snefzhqs.poldefi2.cloud","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-11-17","domain_rank":0,"first_seen":"2025-11-27T22:43:37.003776Z","last_seen":"2025-11-27T22:43:37.003776Z","alert_count":32,"request_count":32,"received_data":18065380,"sent_data":16141,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"poldefi2.cloud","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-11-17","domain_rank":0,"first_seen":"2025-11-27T22:43:37.005716Z","last_seen":"2025-11-27T22:43:37.005716Z","alert_count":1,"request_count":1,"received_data":1781,"sent_data":489,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/js/dullnessgp-decisionqn-observatio~dullnessgp-nationehc-screenwrit~dullnessgp-effortlnp-migrantzvl~dullnessgp-educatorph-serverkjs~dullnessgp-educatorph-plumbercps~dullnessgp-lustxbz-mockeryrcm.a5542e86.js","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d13b5ae27487b6fb71d1ece585041247","sha1":"2f998a9ffae9ebf220c1131838e3059dd75f788d","sha256":"70e7df7c621b5f98819f0021243fdf5a4518dfda5e28c7cd09479ca57172a3c8","sha512":"3816a2a04d1e0807600161bbce2e27ebde3dfd55feb679ec95176db0b943e8b962d46b5c39462c61526e64405215df38c95758cd99f4cf0b7143f83b7d62ba4a","ssdeep":"768:udTiqgQnKb6QWm4AmCd0tG8e+W1MAbu7N8ChEAh8sd0Q2Z7wXgkplt7l5u8tT0Qj:UFsYId0FHoMqu7NdEAaM2OwkPN7Prv","tlshash":"18832a84f2585cca17a7ce5e730871adee663916a4881ddcd46e6c2d0ef730250fd6b8","size":83254,"data":"","first_seen":"2025-11-27T22:43:44.703399Z","last_seen":"2025-11-27T22:43:44.703399Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/js/dullnessgp-decisionqn-observatio~dullnessgp-nationehc-screenwrit~dullnessgp-strawberry-legendjwk~dullnessgp-effortlnp-migrantzvl~dullnessgp-vicexwz-believernz~dullnessgp-ordinanceb~nutritionv.50aaff4d.js","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"82590707067804ba55853d1fd1832448","sha1":"7fbf33617635e8aeed48201f8d5177597518f2c0","sha256":"c7a13a63f78624376b4547127377693ec107da4cb3a79f803f0d52cb27be6755","sha512":"fa73183b55fbcbc1a560bb8a773142a063f867a09507a5f61790e4f306e4f2705b30e19321f05253480963d349b5c95d019e54242f9b59375dcf251ffe3cabe7","ssdeep":"768:Cl3c3UDMmxHCA3BmR5vpR/FGhkdaqtnVbBU1d8IEj9aJCYTK5GedDEb1SeKTvCi4:tSanVbK1CM1vw1QyRE","tlshash":"4843f9097ec0d55c034b5ebb761bf0f4e41e2a5e748d06cec2783ca8a496606e6f76b4","size":55911,"data":"","first_seen":"2025-11-27T22:43:44.698415Z","last_seen":"2025-11-27T22:43:44.698415Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/js/dullnessgp-asparagusn-statutewiu~dullnessgp-decisionqn-observatio~dullnessgp-clemencyqi-nutritioni~dullnessgp-clemencyqi-eggyzsu~dullnessgp-policeboi-painnuo~dullnessgp-sponsoryxs~doctortpw.50d21b48.js","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3388acecaf382029eb10263d6cddb7f1","sha1":"b1fb52683d23181dda67c2e900f5c09533b9af3a","sha256":"13b318adb4223691f829aee311585c0fe1d8bfd3fa1d04b647fafe0833083586","sha512":"628c055ce3dc05e6d618c386e17279d37f2829b93c59b7b43ce4285a2252f24bb6a74e79d9b3439c2d8d1ec5d60e821af5d9aa6f4cf042ea5576b5c4a2d89962","ssdeep":"768:OIrQ/x7ZrnC4X0EG1JoreVJ7y+0BX/OEpy+XyxJDwwY/SPxcs2r0:OI8q4reQBX8+XyxJDwwY/SPA0","tlshash":"dad297852fc05958234b9bbf751bb8d8f00a0d6e38484d8ff114aca498d632be5f7676","size":31039,"data":"","first_seen":"2025-11-27T22:43:44.707303Z","last_seen":"2025-11-27T22:43:44.707303Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/js/dullnessgp-decisionqn-observatio.2eb59786.js","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0c58609612953c6873233d39693d6de0","sha1":"e3ee190e334e90022d9a0e1617a635727db3ed94","sha256":"0cb668e1b49d0eb7b0621d059b96c16fb3ccb30beed42ca14248df0378dea40c","sha512":"c1a35243bd702fc0dd50894e12d93471d2e2a0b58e8bd37d799bb81953d1e15d8017c2df9436075406b00c206a65fb56ddf84d588da203d63039e4950379dfd7","ssdeep":"1536:BumdK9xliSi4EENul0sXwh2fuL+ynDdFE9H3CdAwUy94ri1R9mRDt:wmS3EENpOyWi4","tlshash":"5d73b7806e84e15c675b4afb760ef0d5ec07062d168895b5e13dec7071ae31afafa234","size":78126,"data":"","first_seen":"2025-11-27T22:43:44.675531Z","last_seen":"2025-11-27T22:43:44.675531Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/js/dullnessgp-decisionqn-observatio~dullnessgp-nationehc-screenwrit~dullnessgp-effortlnp-migrantzvl~dullnessgp-vicexwz-believernz~dullnessgp-lustxbz-mockeryrcm.e54aaf4b.js","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7bf69b09540b12e4ea3ac2cb1e7dc1da","sha1":"94ff9bd42ac6ae72ee1f243ac2a7c689f89214d0","sha256":"591de96d52a5f58a6d5433d38c408159dbb0343f10687de8d39617ff4fb30925","sha512":"2dd4d7d36cf360dec071b85f32d422dea87d2d71ed2647408f95e96e490aed264d3f5a31a1261e2e1fd9ea39f9c37196abef67c153f9653c27d79931567d73c3","ssdeep":"6144:LN+FpGy37AWX7Wi3zOMWSsMakyKK98I9E9fYZiMSfu0mK9whrlCW+Htnk/9Pyz:LN+FpGy37AWX7JzQSsMajKK98I9E9fYU","tlshash":"ce64c70077c0a49a234f8fb7335bb0e6e81b1d6d38494c9ad298bc645de6717eaf1634","size":315002,"data":"","first_seen":"2025-11-27T22:43:44.673544Z","last_seen":"2025-11-27T22:43:44.673544Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/index.html?shiny","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"5b1d20b34db0ccac17cba8e8a51283f8","sha1":"d404685494a5b31116a986852f5e29bbeabcab71","sha256":"238375b2cedeebb7bf3294763f5ff3cc9821d6297010b0525b27271bebb252aa","sha512":"2440260b951427606cbabfe6a83a68422f0b962dd278eaf52f7ecba6934a6ffaca15b1b31cffa36eae146e8a02bcab685ed45b1fe26defef71a2580d32dfa4d4","ssdeep":"","tlshash":"6cf099c2903d256c0229410db916d28a3a7f0472658328913c9c27ac9df4f0fc12eaa8","size":655,"data":"","first_seen":"2025-08-12T16:39:14.731522Z","last_seen":"2026-04-13T06:23:20.808131Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"3d5272693eb411e5b8b13a243f76c720","sha1":"6a586ab8e0a4bf12bbc60eea6ca9f2418625a22c","sha256":"9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8","sha512":"03fc5614f48fc9a2e3c4a30626fdbacde74c1fda09ffa9d1cde0393d31cd5fe1588e270c241f4cedb473c6e5cc224ff16c141468a29519ea6159accf3e3a18f1","ssdeep":"","tlshash":"a4c08c8350e2080c8210861b848880050b8808b04f9308a22cd85b7ecc9ae88c8f804c","size":148,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-06-07T08:18:02.151537Z","times_seen":15899,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.154Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:57 GMT","end":"Mon, 19 Jan 2026 08:34:56 GMT"},"fingerprint":{"sha1":"A9:72:6E:D8:AB:26:CE:26:35:A4:39:55:24:08:04:0F:24:56:E8:8C","sha256":"65:84:7B:FE:24:02:CE:3E:DB:6E:1C:6B:B8:FC:99:F5:A5:65:83:F1:66:75:ED:20:20:63:06:ED:27:8A:82:FE"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 25 Nov 2025 23:36:19 GMT\r\nexpires: Wed, 25 Nov 2026 23:36:19 GMT\r\ncache-control: public, max-age=31536000\r\nage: 169619\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-11T01:58:33.142149Z","times_seen":207999,"resource_available":false,"data":null}},"time_used":176,"timings":{"blocked":79,"dns":1,"connect":7,"send":0,"wait":8,"receive":10,"ssl":68},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:58 GMT","end":"Mon, 19 Jan 2026 08:34:57 GMT"},"fingerprint":{"sha1":"56:14:7E:EF:FA:D2:CF:DD:3B:30:9C:AE:7A:C9:AD:9E:A7:87:3D:E9","sha256":"72:DD:0F:82:4D:8A:09:2D:BB:5B:E6:1B:6F:09:F8:1E:BD:BD:D3:3E:B8:A4:8C:B9:49:13:4D:DC:D7:EF:EA:77"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 27 Nov 2025 22:43:17 GMT\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10108,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"e85517dadd43448782d60d7f207fddce","sha1":"6cd31f870727ba8090fac9602b42524b4139a619","sha256":"88fbd0b95222be288587a149c324189ecbd8de0d6f0c94f528ec53857e52b66c","sha512":"5edc78df5bb062a9a2e1ea6724c14dd7eb80d77ea0fa9572de4bb0d52bbd0d163815b08a1ae77084f99fbefbb07715da1c61f0bb36fb498710c91387792955f8","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExlONEhYO3RrxGx:vXuM0p2+4","tlshash":"04227792002ba400ab971dc233cf7f3aaece50896085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-10T18:13:11.065101Z","last_seen":"2026-06-11T02:00:42.055633Z","times_seen":29921,"resource_available":false,"data":null}},"time_used":1427,"timings":{"blocked":698,"dns":1,"connect":20,"send":0,"wait":31,"receive":0,"ssl":674},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWallets?page=1\u0026entries=4\u0026include=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.186Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /getWallets?page=1\u0026entries=4\u0026include=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncf-ray: 9a5524c0dbb60b55-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":365,"timings":{"blocked":70,"dns":18,"connect":1,"send":0,"wait":217,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/07ba87ed-43aa-4adf-4540-9e6a2b9cae00","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.195Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /public/getAssetImage/07ba87ed-43aa-4adf-4540-9e6a2b9cae00 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncf-ray: 9a5524c23cad0b55-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":591,"timings":{"blocked":282,"dns":15,"connect":12,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/7c94a262-6d79-464c-bce3-a06f6beca600","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.081Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /getWalletImage/7c94a262-6d79-464c-bce3-a06f6beca600 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/webp\r\ncontent-length: 852\r\nserver: cloudflare\r\ncf-ray: 9a5524c5f914568d-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 56268\r\ncache-control: public, max-age=31536000\r\netag: \"cfid2B_1KOrVnOD9enPdwoepL_fmDcyauXnchu_YTSDQ\"\r\nexpires: Fri, 27 Nov 2026 22:43:18 GMT\r\nvary: Accept, Accept-Encoding\r\ncf-bgj: imgq:86,h2pri\r\ncf-images: internal=ok/- q=0 n=578+3 c=0+2 v=2025.10.15 l=852 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nx-wc-r2-status: HIT\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":852,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"c7c914b343f3c7f6de6c12723495c2b7","sha1":"823cde8535f741586ae87d3b0f684a9bd2a1a924","sha256":"beab5214d5a0e56e700dce3f94470763f4a86bbdac19f88cb019b97c53e29fec","sha512":"6dca804e9882d25866c12852f7c64231d341b8eb0445982ae05a981a511969d8a738667bf9c54db4a7de14c526e0e8e201ae53b06affc8ce89d56c4f87c0f1d1","ssdeep":"","tlshash":"5b0192929e8340689a6cb9a3b8d28423b662d3301beb8942f4c1adec4205923062a802","first_seen":"2025-10-16T06:49:58.237672Z","last_seen":"2026-03-12T17:34:22.38666Z","times_seen":181,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/sbxlhknp.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.112Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/sbxlhknp.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-190aa\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IbgCtgzMcEHM0w68La%2FPitxnhKKkJ3DWWIaH7WLa6TdclNuy2YIxefNUoXtpYQfvMRlsqOGzRzBq3qaodvuqfnBJXstOuyugeXKxlM%2FoKIZ0Y1hwpg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c62cca56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":102570,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"ff16a73d7def0791eea8d2eb593a7184","sha1":"b89b74e2e945fb3fa169f9e33c995ccd6f8c4e27","sha256":"735f68fcda9b5910871c2baa46a91eb05335250065f628f94ca8a5c3325c8ade","sha512":"4be88085ce6bbec75c343fa21e255af2db383879c91336127e952542556d110c501eab40594d2c49adc8a885b8de9a0536571d3ba49213ff898f8b35159fd42c","ssdeep":"1536:dn4CM5iaiWh8I5Z8OC1wfPnftVbTJ2pj8ztXpr6Qhl6ZU7WflIBDwqpb0:BMQaH8I/jaYcpIfWZ8wlIBxg","tlshash":"afa312d49edd42d4ada4c9e060d0710bbf2279033a78304b558f7d8a6e40f61f9e63da","first_seen":"2025-07-01T08:53:06.502996Z","last_seen":"2026-04-13T06:23:20.746179Z","times_seen":23,"resource_available":false,"data":null}},"time_used":603,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":248,"receive":355,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/uploads/10001/20251127/01c5a06cfc03633822e07c488c2d8b1c.jpg","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.450Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /uploads/10001/20251127/01c5a06cfc03633822e07c488c2d8b1c.jpg HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nlast-modified: Wed, 26 Nov 2025 16:13:17 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6927271d-13745\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DeBX4RS%2F%2B7fR1wJrm%2F%2BXoMPZi3q7Vh3Rw8G1517%2FkW%2FFkVTzgdifpW%2FKQZ4F6tPKD5OrKhEPFUewa8yHtWLtMIa6ag9Q79P8rHP%2F1nSoY1OsHOhtoA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c84e5e56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79685,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 640x320, components 3","md5":"8311ad61b4e35a760edd97252556c470","sha1":"04590435c5388af0b03f1f2d6a8af48621db4370","sha256":"452ed070dc30db57374d0052a9a7e324048b95513bb08c8bb8a7f39f42961fb8","sha512":"989f90d16cc0169a44afd8b213aed0a4823b371c014f30d96021f20ec05248689d527718fc24d24b9668cde3cb66ea8274c605b183f2b56b9beb415ced012f9a","ssdeep":"1536:x8K1wexj+5ETTWuck2NpIWeS/lWWgktIYoY/QWrUR3Q7XyRfkiCzlKsyS:xZOeV+5qTW9NjeSg5GIYoYUcyleqS","tlshash":"c673123531963827d44020b9ce08ddfcafe829875ea38e338754d5c693335d9cada76a","first_seen":"2025-11-27T22:43:44.660515Z","last_seen":"2025-11-30T13:25:20.540302Z","times_seen":2,"resource_available":false,"data":null}},"time_used":513,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":247,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/c1bd1250-b97a-4e26-c584-554019bc1d00","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.058Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /getWalletImage/c1bd1250-b97a-4e26-c584-554019bc1d00 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncf-ray: 9a5524c5cfa20b55-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/yvrgfysq.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.104Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/yvrgfysq.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-1388\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6Bn%2FJMXHBvHMH9ClIgSdwgztZT5gLd6gTL4QOvnOUxVw8z3wWssDslZ1Ih1BY0v28L8us6cYMm7sOiUm2vAz9YPx1dYFWUYW50E%2F9P6NIviiT%2FIcEg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c61cbb56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5000,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 81 x 80, 8-bit/color RGBA, non-interlaced","md5":"7fc68d96da8cf883ec1810bde7d2451f","sha1":"dc0068ef6e4a51e8e997a4b113702a9f1e1cb702","sha256":"7f34c9e11542de6461b4e65e6ac555bcd663d91cfc20b687cb6e799b7028e6e2","sha512":"bf131aba9a5b2b7820cdc46ba67d4a59d28f423d2d9bea6882d1ae80338b9e0f6bfc5e65431ced878563ed59dd086aea38803b2341922c8f8d7b5531a889eff5","ssdeep":"96:nQy/LakACZkIdr1CrdxDNLBuq+ksTpaKaIepB8uDuao1acZLSJImYyBvEv:nQyYKwVNL7upvaI0B8KY4ImRBvEv","tlshash":"bca17da1ddcbaaa90e831222566ad409c17587010ea7bbce78b06f6752d5235c607ae4","first_seen":"2025-07-01T08:53:06.488511Z","last_seen":"2026-04-13T06:23:20.782651Z","times_seen":23,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":245,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/6033c33c-0773-48e3-a12f-e7fbf409e700","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.229Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /getWalletImage/6033c33c-0773-48e3-a12f-e7fbf409e700 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2538\r\nserver: cloudflare\r\ncf-ray: 9a5524c6d9dd568d-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 76069\r\ncache-control: public, max-age=31536000\r\netag: \"cfUAub_Er_vI-ZJ66S9RS1_8SffmDcyauXnchu_YTSDQ\"\r\nexpires: Fri, 27 Nov 2026 22:43:18 GMT\r\nvary: Accept, Accept-Encoding\r\ncf-images: internal=ok/- q=0 n=744+4 c=0+3 v=2025.11.2 l=2538 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nx-wc-r2-status: HIT\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2538,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"efe241ae855f4eb2c03263fec2c82e89","sha1":"58bd429d6861753cc6807895cbf2fad4b1add046","sha256":"0f0692f7247d95714c7348d367e88ee81840e456c68722c02e2395f5c0ceac32","sha512":"7359586d8a76601bda2e6776ffa2b5a89eb1582204f498eb17c1fb16a63def773de1764180723122d8e9d111868fc097ef732217e35e7e0373a70976be06b491","ssdeep":"","tlshash":"69515d7c2ca1ca9e37a3ef32562461788d8dd05151539000a5eace21ff278072a52ddb","first_seen":"2025-01-28T05:59:32.017954Z","last_seen":"2026-06-10T12:40:15.863953Z","times_seen":255,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/tabbar/ubcbcpdl.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.139Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/tabbar/ubcbcpdl.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 778\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\netag: \"6928115a-30a\"\r\nexpires: Sat, 27 Dec 2025 22:43:17 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DzdSJvtiemJSjNh%2BUWUg0%2Bf2foG5u3LTS%2FwMLIxIPk3tJaPbGH3ufY%2B3CAKh82biFjbFk%2BVS42oKl5hMplk5S7qTPPfQ1x3mBurF3TDIbMndh48Rdw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c0190656a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":778,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 43 x 41, 8-bit/color RGBA, non-interlaced","md5":"54a495a70622fcf56899759ddee96455","sha1":"b793ed9c8bb812cd44cb5c1781c6133ff038bbcc","sha256":"1a13fde7a0b81cb0cfc1df17214ea64ee238ab0cb70e7328893aa3d70af7b3bf","sha512":"45efc6e042ec5374b5edef983aba04fe5c45fcf7b4ba6cd03ff91cfa4e9493a5a4bdeb9e77978e62cf6e70f082f797ac97478ef22a9f03551d7739387b48ef93","ssdeep":"","tlshash":"be01c5cdfd1becacd611af368ce21ea08836115131e8317d578ab8782a8035a2020fd1","first_seen":"2025-08-12T16:39:14.707922Z","last_seen":"2026-04-13T06:23:20.747106Z","times_seen":17,"resource_available":false,"data":null}},"time_used":335,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":335,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/sgsfbjea.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.110Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/sgsfbjea.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-1d42d\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HnzD4fA1r2WS%2FhdJGbhIbd9zSnVKCs3WERDNOrY28Dkn4e27zIU35DnFDmZe17BfrhxPFQUvMvz1XBUJ%2BZEQO%2FrCaFRis0lU8cRg3pZOYt1TnNdxQQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c61cc656a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":119853,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"6d91dba6fd33695e5b07e3005950ed8c","sha1":"c09d9da1f50ee92e85f298e2a397bab36903132c","sha256":"14b4e6dd54ed3aa457c9267b53f5fe19a53188edfd0c2eb106985e9baae9fd7d","sha512":"5a021a9f72c073030fcaf2ba6ad7b1b5886fcf51305ac4a5b475d069767f3423c4758531c2ff8b936db53a6445b9c33393dd1e70c4ef27475e5f01a1f305a2ec","ssdeep":"3072:mTfWnHBig3a13iZsvX3Mj4pfJHBGKYlDwMf:VnhbMXX3pphhXYlnf","tlshash":"6bc312be3441f7a68a7520f4f9bfc6417e62630c3f46623ca542691da311ffb80595c6","first_seen":"2025-07-01T08:53:06.500755Z","last_seen":"2026-04-13T06:23:20.785316Z","times_seen":23,"resource_available":false,"data":null}},"time_used":576,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":238,"receive":338,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.156Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:57 GMT","end":"Mon, 19 Jan 2026 08:34:56 GMT"},"fingerprint":{"sha1":"A9:72:6E:D8:AB:26:CE:26:35:A4:39:55:24:08:04:0F:24:56:E8:8C","sha256":"65:84:7B:FE:24:02:CE:3E:DB:6E:1C:6B:B8:FC:99:F5:A5:65:83:F1:66:75:ED:20:20:63:06:ED:27:8A:82:FE"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 25 Nov 2025 23:36:19 GMT\r\nexpires: Wed, 25 Nov 2026 23:36:19 GMT\r\ncache-control: public, max-age=31536000\r\nage: 169619\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-11T01:58:33.142149Z","times_seen":207999,"resource_available":false,"data":null}},"time_used":305,"timings":{"blocked":146,"dns":1,"connect":20,"send":0,"wait":8,"receive":5,"ssl":122},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/js/apologyhkp-hegemonyxv.9538e91e.js","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:13.460Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/apologyhkp-hegemonyxv.9538e91e.js HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:58:54 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"692812ce-bb7035\"\r\nexpires: Fri, 28 Nov 2025 10:43:13 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Tk3d%2F469GZC4JSjAyA5iy%2Fc%2BhZ%2Frb8B8gBIvNxngvDGq%2BrMFoXdxp%2Bna5ZcxxuE6kII%2BIpxgh6QK8Os5K%2BTz1AKBGU0ba7srWsr5MIXQC%2BYZG6U6jQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524a9091156a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12283957,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (60698), with no line terminators","md5":"e43b451b5a2fa887a58f1307738007eb","sha1":"2a820e1540584ef981d56dd97a848ab8c6365749","sha256":"0998ad98ab7c88f3785c12293f8669689a9793e8da072a6b52c6718748052f80","sha512":"dd69b074dfc3a8dd627472c20d73a5b8b15da75d29a960cdabcf3d33fcb2fedd6cd5090a15c531cca5bf6a9c32222e8410eb032e8202ab13dc568dbaef62d64e","ssdeep":"12288:i9vrZcfSx3lNjouQ/LYkRgackmzuoO8xXGKjJG:imSx3lNj5Q/LYkRgajmyTCWQJG","tlshash":"f735e8e2970143ef9c06199ff460aa1df5a29d06cac5dbd4facfed59c48c72c11b6288","first_seen":"2025-11-27T22:43:44.669462Z","last_seen":"2025-11-27T22:43:44.669462Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1173,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":236,"receive":937,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/js/apprentice.f9e4dd2e.js","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:13.463Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/apprentice.f9e4dd2e.js HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:59:10 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"692812de-346dfa\"\r\nexpires: Fri, 28 Nov 2025 10:43:13 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mi3Bp%2FQrL3xkH1h9LKZFxSdE0Ro5qF7plqF2XOsEt95%2FmYiViu6%2FTPe6u9YFRb5YQQKQ62Z3%2FdbZX2IYPjzv1VVs1FEZ%2BuuFbQhLH1hfO24ae3efPQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524a9091256a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3436026,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (64710), with no line terminators","md5":"227b3d79643d3df376284eca71266832","sha1":"dfa4546aeb04dff03ea7ffaa07c09c4abbcede07","sha256":"b6c7f2136d800804783097eaa9d665975f7407bf13923d27264eb63eced9e90d","sha512":"de0bb26284f5c250dc57597de559f7b4d3cdf968f7a01fd399598cd8dfc6307adf78baeb4442ff81f7c4cd8de7302e9be63ab41ccfd6438b1049ef4d811570cc","ssdeep":"12288:Ob0fF1eP8PMyHrVjjyeqwGNtv6DVVuyVci/a6Won1Vj/zu0kvBK:OC1eEMyH1FYvg","tlshash":"ca35c483e2c8c3dc06474faba30d31d9e966dd49e6489cc5e2d8ee55fdad604b26c630","first_seen":"2025-11-27T22:43:44.671348Z","last_seen":"2025-11-27T22:43:44.671348Z","times_seen":1,"resource_available":false,"data":null}},"time_used":933,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":692,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/js/dullnessgp-decisionqn-observatio~dullnessgp-nationehc-screenwrit~dullnessgp-effortlnp-migrantzvl~dullnessgp-vicexwz-believernz~dullnessgp-lustxbz-mockeryrcm.e54aaf4b.js","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/dullnessgp-decisionqn-observatio~dullnessgp-nationehc-screenwrit~dullnessgp-effortlnp-migrantzvl~dullnessgp-vicexwz-believernz~dullnessgp-lustxbz-mockeryrcm.e54aaf4b.js HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:59:12 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"692812e0-4d07e\"\r\nexpires: Fri, 28 Nov 2025 10:43:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TAC50BXcBDeVa8c096xtHasLYjQDSbgH%2FNqOhTvE3Vp%2FBHBNAhKcC7GYigtBpJdkiH5A5o%2B8FfLbBFGhyY35mNj3RdXfrHp1DeDaXPM%2FS0FnEOMYfQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524bff8f656a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":315518,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (63752), with no line terminators","md5":"7bf69b09540b12e4ea3ac2cb1e7dc1da","sha1":"94ff9bd42ac6ae72ee1f243ac2a7c689f89214d0","sha256":"591de96d52a5f58a6d5433d38c408159dbb0343f10687de8d39617ff4fb30925","sha512":"2dd4d7d36cf360dec071b85f32d422dea87d2d71ed2647408f95e96e490aed264d3f5a31a1261e2e1fd9ea39f9c37196abef67c153f9653c27d79931567d73c3","ssdeep":"6144:LN+FpGy37AWX7Wi3zOMWSsMakyKK98I9E9fYZiMSfu0mK9whrlCW+Htnk/9Pyz:LN+FpGy37AWX7JzQSsMajKK98I9E9fYU","tlshash":"ce64c70077c0a49a234f8fb7335bb0e6e81b1d6d38494c9ad298bc645de6717eaf1634","first_seen":"2025-11-27T22:43:44.673544Z","last_seen":"2025-11-27T22:43:44.673544Z","times_seen":1,"resource_available":true,"data":null}},"time_used":577,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":345,"receive":232,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/0c2840c3-5b04-4c44-9661-fbd4b49e1800","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.196Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /public/getAssetImage/0c2840c3-5b04-4c44-9661-fbd4b49e1800 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncf-ray: 9a5524c22caa0b55-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":295,"timings":{"blocked":-1,"dns":5,"connect":12,"send":0,"wait":13,"receive":0,"ssl":256},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/js/dullnessgp-decisionqn-observatio.2eb59786.js","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.125Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/dullnessgp-decisionqn-observatio.2eb59786.js HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:59:10 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"692812de-1312e\"\r\nexpires: Fri, 28 Nov 2025 10:43:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=v8vjwra1aF0A8Ay61uFHPqYD5umevJku3WK4dO62lNfVhOZ7z6klOLY6ZCHyIjJ248%2F%2FqA9%2FN1a3HJPRdRM%2BxOLH20id1BEplJ7M84MDFWq0froJlg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524bff8f856a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":78126,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65455), with no line terminators","md5":"0c58609612953c6873233d39693d6de0","sha1":"e3ee190e334e90022d9a0e1617a635727db3ed94","sha256":"0cb668e1b49d0eb7b0621d059b96c16fb3ccb30beed42ca14248df0378dea40c","sha512":"c1a35243bd702fc0dd50894e12d93471d2e2a0b58e8bd37d799bb81953d1e15d8017c2df9436075406b00c206a65fb56ddf84d588da203d63039e4950379dfd7","ssdeep":"1536:BumdK9xliSi4EENul0sXwh2fuL+ynDdFE9H3CdAwUy94ri1R9mRDt:wmS3EENpOyWi4","tlshash":"5d73b7806e84e15c675b4afb760ef0d5ec07062d168895b5e13dec7071ae31afafa234","first_seen":"2025-11-27T22:43:44.675531Z","last_seen":"2025-11-27T22:43:44.675531Z","times_seen":1,"resource_available":true,"data":null}},"time_used":363,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":348,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWallets?page=1\u0026chains=eip155%3A137\u0026entries=4\u0026exclude=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.189Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /getWallets?page=1\u0026chains=eip155%3A137\u0026entries=4\u0026exclude=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncf-ray: 9a5524c0dbb90b55-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":367,"timings":{"blocked":70,"dns":21,"connect":1,"send":0,"wait":213,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/ef1a1fcf-7fe8-4d69-bd6d-fda1345b4400","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /public/getAssetImage/ef1a1fcf-7fe8-4d69-bd6d-fda1345b4400 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncf-ray: 9a5524c0dbbb0b55-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":363,"timings":{"blocked":68,"dns":16,"connect":7,"send":0,"wait":214,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getAnalyticsConfig","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.543Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /getAnalyticsConfig HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: application/json; charset=UTF-8\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=1800, s-maxage=900\r\nx-robots-tag: noindex\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 9a5524c22ca90b55-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":55,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"d624ae72d5da08a9698cf19ed1004a52","sha1":"d2da4fc91b5567dfa523c551f8b8501b43d0384a","sha256":"68df83e68b02e91713d9e5b52a22c297d98ec2d5acda0c37cb47162547cf35db","sha512":"90aa31b4915827753f86420e7b64e4f7685df1bf06908974128eb66b8699e549781120077589005dc68e9fd726c8904fb322695755e997ba1dd28a0b90e77d58","ssdeep":"","tlshash":"9a90020520487596c052c631c21157075d258e732d1460345025090990bb4750841823","first_seen":"2024-07-15T21:15:20Z","last_seen":"2026-06-11T02:40:39.296799Z","times_seen":476,"resource_available":false,"data":null}},"time_used":222,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":222,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/0c2840c3-5b04-4c44-9661-fbd4b49e1800","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.928Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /public/getAssetImage/0c2840c3-5b04-4c44-9661-fbd4b49e1800 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1512\r\nserver: cloudflare\r\ncf-ray: 9a5524c36da90b55-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 55259\r\ncache-control: public, max-age=31536000\r\netag: \"cf3ispWE62A-P6WwAnoXfYmxdffmDcyauXnchu_YTSDQ\"\r\nexpires: Fri, 27 Nov 2026 22:43:17 GMT\r\nvary: Accept, Accept-Encoding\r\ncf-images: internal=ok/- q=0 n=497+7 c=1+5 v=2025.11.5 l=1512 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nx-wc-r2-status: HIT\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1512,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"4d2d4c960bb4cfffa4482fbf2c7f2de9","sha1":"f0362b531e6a030f0af62c88dfbe43fbc8fbb037","sha256":"e03de82996a25e996279f6018e54cddf1e3660d9302c2dc4c9a86421f0c58614","sha512":"6aa82cec09ea0bd75988df0261d636476dc915a2f1497a48504d5c2cf854ad2b12206cd03daa969fa3fe5c6eb302cd7899ecbeff9ea9804fefa45cad198b73a2","ssdeep":"","tlshash":"0a31cc8f6448c0f355b7a03638b503bbe2ac694b321e0455d1126a0ed237d9ecb6d1e6","first_seen":"2024-07-08T23:13:45Z","last_seen":"2026-06-10T23:09:04.379491Z","times_seen":1445,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWallets?page=1\u0026entries=4\u0026include=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.874Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /getWallets?page=1\u0026entries=4\u0026include=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: application/json; charset=UTF-8\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=43200, s-maxage=21600\r\nx-robots-tag: noindex\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 9a5524c30d5f0b55-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4874,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"a13baf8e2d4a66f6ef46efdcf49a2a00","sha1":"7a44350a8678db8ce0d332e791efb06ce806dca4","sha256":"e7a90d1d887078b3f7a942d0c90adad8750a021c9320a153c9ad5eaf379dbdd7","sha512":"caeb07cd4ba4ce8ed89a66c460ae148964d0d0bf1632094f0ec1e90ee6ad4c4526a866a88d01850de8211b4c4946526f306bbf5ede696d48bc4e8c98f0c186d7","ssdeep":"96:dNbhfWUmyvdMrhIuJmdw9vMhD+bvmI3vhhky1QmVvE:hwyfjduuPeUaVc","tlshash":"28a1559f8bc099764f348388e50dfaeed42ed047c2cc58ed64b5893981fdd676201565","first_seen":"2025-11-09T14:34:32.833294Z","last_seen":"2025-12-23T17:02:06.038993Z","times_seen":6,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/6033c33c-0773-48e3-a12f-e7fbf409e700","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.183Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /getWalletImage/6033c33c-0773-48e3-a12f-e7fbf409e700 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncf-ray: 9a5524c699a2568d-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/moorqbsv.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.490Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/moorqbsv.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-1234\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=N5o8oDV7J5sfEWOH6XnD%2Frf2cj7lxLR%2BM558eGpU4b0wDbHmQwPwSkFYSVXTN0VTebKcS70FymEvaX9tn%2FsM9Ivgc%2F2VHWQ4E1mCR6S%2FvtDoFrjAjw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c88e8056a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4660,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"70fbe74b0aaf932d7fedf790fd57e27e","sha1":"551bd28ad17c1ffc334780a45e5ea02885b7f643","sha256":"d745ed2b9145b4b81cf997b15514626a2ad87a0bf00181d832d237d99d8c59f7","sha512":"475f249955ad1034ac609e703b448aaef13ac6f2abe4b5924b65ba13473148f921617fd99b55326746419baf690f54aeac6a9a2762570d3663440be9a5b3123d","ssdeep":"96:LSSYJknmWpYUXsh8SSDkHnn3kHcxAX5FBiAozcxuPvNhqRcUDilTOPRmS5ePnY:LSjJkn9Xs6DkH3kq4hGiONsJ4srOY","tlshash":"e0a14c4cf87085d00426f68df6dde253141f0647d6a0f8a56cdabd42a9b13b4f80d9fa","first_seen":"2025-11-27T22:43:44.67978Z","last_seen":"2026-04-13T06:23:20.787058Z","times_seen":5,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":127,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/index.html?shiny","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-27T22:43:12.969Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /index.html?shiny HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:13 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:57:38 GMT\r\npriority: u=1,i=?0\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dD8cpRDSC9D2xsgRLr7TKmxFLoLUdm1miuY0qhg%2ByA1V4266UIEg6%2Fn1z57TM6%2B1h42oWgTJcOJ0MnR7P9sV18%2FJbk%2F8%2F1osHOASRrDultcz4P%2BlXQ%3D%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9a5524a60e9c56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1155,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (373), with CRLF, LF line terminators","md5":"c25d84d070759a0e6820e060b9b4bac4","sha1":"af216e17e1a3b6e83a1b80c6f49eecd82b21d878","sha256":"aad01155f1a6581477b041b00420ecaabc19237a1d6b2a64be4dc67ea8f79d5e","sha512":"b90f2c76a55aa6c46d40a5b32be34b1da72debe57c880038d9d0bd2c525dde180e33beae969902e0e6fa221f0536dc0cf9dbcf98b1b01e4a6265ab8fff447483","ssdeep":"","tlshash":"732111c37c2ce55c023042057972e25e79afc5b66842a4505c9c29bc98f0b8fca6f990","first_seen":"2025-11-27T22:43:44.681137Z","last_seen":"2025-11-27T22:43:44.681137Z","times_seen":1,"resource_available":false,"data":null}},"time_used":249,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":249,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/07ba87ed-43aa-4adf-4540-9e6a2b9cae00","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.973Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /public/getAssetImage/07ba87ed-43aa-4adf-4540-9e6a2b9cae00 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: image/webp\r\ncontent-length: 3090\r\nserver: cloudflare\r\ncf-ray: 9a5524c47ec30b55-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 57455\r\ncache-control: public, max-age=31536000\r\netag: \"cfmK10fIs0rtXK3D1w_qZdnstVfmDcyauXnchu_YTSDQ\"\r\nexpires: Fri, 27 Nov 2026 22:43:17 GMT\r\nvary: Accept, Accept-Encoding\r\ncf-images: internal=ok/- q=0 n=660+5 c=1+4 v=2025.11.5 l=3090 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nx-wc-r2-status: HIT\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3090,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"b8e093ad4a0e0bf420966897e5d52611","sha1":"90172a764ff649c9553d8e84ada46adcb73f33ed","sha256":"4a00efea74245ceacea37a3e83f0a4a2830236143357d3c57e96c4dd154d593f","sha512":"50b07fcc6d1c5460e69613f4509eb8323b11b6634ea8f268bf541eeec6271bfc5852200c34f385ad82d44c3e3f70122e783f1669d9d356d65be4ee82a20d6546","ssdeep":"","tlshash":"d7515d250e57bb7f0fa7793b2e97c313955320052e06b200b624f75101940863bf35da","first_seen":"2025-01-22T15:25:28.982905Z","last_seen":"2026-06-10T23:09:04.378771Z","times_seen":1153,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/c20e1cec-05e8-4ac6-a086-7ce355092400","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /getWalletImage/c20e1cec-05e8-4ac6-a086-7ce355092400 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1192\r\nserver: cloudflare\r\ncf-ray: 9a5524c5f911568d-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 72510\r\ncache-control: public, max-age=31536000\r\netag: \"cfs6eobn8WxmhFyQ_IbBrw7DUFfmDcyauXnchu_YTSDQ\"\r\nexpires: Fri, 27 Nov 2026 22:43:18 GMT\r\nvary: Accept, Accept-Encoding\r\ncf-images: internal=ok/- q=0 n=468+7 c=1+5 v=2025.7.3 l=1192 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nx-wc-r2-status: HIT\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1192,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4d40ea4af9c48c1d894bf5aabcbdcd8c","sha1":"4b82938b46b8d238553afe63c1f591ce24a562af","sha256":"54656b79cfe70edf0e291967e6aeeec12239fa8042d1d2281efa356889de134f","sha512":"16a8587b3aee0df3406f3464adf437b2e43aba4b87823a4dd3ee1e18f89c725c817f308d38f186e5a9ff12fd69757701ad3a827b36b0360d27c8e40a8cda751e","ssdeep":"","tlshash":"89210ae1123e045cc83bb3fe0f5433e35d9b4921d88228d1684489046dbc0c12301ed2","first_seen":"2024-12-05T15:42:26.551532Z","last_seen":"2026-06-10T12:46:33.637223Z","times_seen":958,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/f6ff957e-7e74-4f43-a3ae-a643bf18a200","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.230Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /getWalletImage/f6ff957e-7e74-4f43-a3ae-a643bf18a200 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1522\r\nserver: cloudflare\r\ncf-ray: 9a5524c6d9e0568d-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 81499\r\ncache-control: public, max-age=31536000\r\netag: \"cfWO9thvxtxbg41N-thM9s_bmtfmDcyauXnchu_YTSDQ\"\r\nexpires: Fri, 27 Nov 2026 22:43:18 GMT\r\nvary: Accept, Accept-Encoding\r\ncf-images: internal=ok/- q=0 n=22+3 c=0+2 v=2025.11.2 l=1522 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nx-wc-r2-status: HIT\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1522,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"6290547a33ac9e9a3cdb7bd693dcfd1c","sha1":"356980fdb86b10c322aed1433f60a3a245e1c48f","sha256":"3d61d02171ec648d5303c71c4513b00df31217fda260e3bf346a91c46034fe4a","sha512":"9a8f3ad6e70e620e7df4f040d16918f33d7eee380843d973576e2c72d61bc1e158f9884d5cfd114fd57c686567b9604def778253197f9933c416b60aedfa823a","ssdeep":"","tlshash":"bf31da5c201518d81d96c1069c241600d7766bba973bba6b7132f27ac24e8ad4cd504d","first_seen":"2025-05-26T15:14:19.567265Z","last_seen":"2026-04-30T11:12:58.931728Z","times_seen":343,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/xxdpdean.png?v=1","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/xxdpdean.png?v=1 HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-d413\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=puWvLHP5ozauY7vrkGqUxA1FrUQ1Xn98QHV63khgtzhuEp%2F%2Bd%2Bcn%2FHsfGxZLCvl%2FIciqHtUYxWVsAi%2B0RAx4ch6Z0cPyVmspYBe5b1vGQPePyQWYMw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c89e8956a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":54291,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"94a8ad85b598e58d124126b03f735cf5","sha1":"960e4f278b86e3195d803ffa0772b47dd1263990","sha256":"33c73f728331357699f92c6ae03582cf50c714b3baf78c4bf005c248ccf59af5","sha512":"d115bb0c49adc7533e9ebcd972ff26dda5c6a7846e9067e63d935d3ba57ac679992a89cf4069f6c0ffbbca807b2b8a1e9a90809a6570f67d56320f45e258a37e","ssdeep":"1536:6ietCnsnE9JV2tX4O/b9Vdx8FZZH6zrG7:FetCn8QOYFHwi","tlshash":"2a330115feacdc18728a09f6a0c93221132777d4f678c3622ec5ea3484066a5c886ef2","first_seen":"2025-11-27T22:43:44.684573Z","last_seen":"2026-03-12T17:43:56.99191Z","times_seen":11,"resource_available":false,"data":null}},"time_used":506,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":260,"receive":246,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"poldefi2.cloud/?shiny","fqdn":"poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-27T22:43:12.574Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /?shiny HTTP/1.1\r\nHost: poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Thu, 27 Nov 2025 22:43:12 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: http://SNEFZHqs.poldefi2.cloud/index.html?shiny\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=E%2F5zYfETEvIwxhJ7ZtMJpnKlwEZvEpYN0fI4lPpES10hHfdgc9Rj%2FMzqxsET2NXXfHz4Cd%2FSPFhIhL8KYKBtYnszRNvNQO8EAi8%2Bzw%3D%3D\"}]}\r\ncf-ray: 9a5524a3caa4b51b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1155,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":317,"timings":{"blocked":35,"dns":14,"connect":1,"send":0,"wait":246,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/ef1a1fcf-7fe8-4d69-bd6d-fda1345b4400","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.915Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /public/getAssetImage/ef1a1fcf-7fe8-4d69-bd6d-fda1345b4400 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1420\r\nserver: cloudflare\r\ncf-ray: 9a5524c34d8f0b55-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 65896\r\ncache-control: public, max-age=31536000\r\netag: \"cfRx5BuyC7eclsMS9LWuzHtxGJfmDcyauXnchu_YTSDQ\"\r\nexpires: Fri, 27 Nov 2026 22:43:17 GMT\r\nvary: Accept, Accept-Encoding\r\ncf-images: internal=ok/- q=0 n=425+3 c=1+2 v=2025.11.5 l=1420 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nx-wc-r2-status: HIT\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1420,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"9df25d84823d34b95221c40c0e0d14fc","sha1":"68c23d619508da07b435f40b755884190a4327f8","sha256":"b51c83c28818cca37e5b74f5fe58f03e1060b10aef0b37563fc1716354be368e","sha512":"59bd12e0c148b6f6685cfe6c305b80df0bf2ef0604d642df50bd316391a5db947c21020a5185027af65a5e072c0ca36e254071e6eb2b2c7583a8f6708c38286e","ssdeep":"","tlshash":"7021e9196d03b8988b2d4c95558ca31315c64b2ced574264e4ab9fded460c19ee4ba40","first_seen":"2025-01-22T15:25:28.961034Z","last_seen":"2026-06-10T23:09:04.38805Z","times_seen":1350,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/c81295d5-363c-4476-16ef-1e8ab557b100","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.058Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /getWalletImage/c81295d5-363c-4476-16ef-1e8ab557b100 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncf-ray: 9a5524c5cfa00b55-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/f6ff957e-7e74-4f43-a3ae-a643bf18a200","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.185Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /getWalletImage/f6ff957e-7e74-4f43-a3ae-a643bf18a200 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncf-ray: 9a5524c6a9a3568d-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/3386dde1-8b24-48c8-4b81-16979e342000","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.233Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /getWalletImage/3386dde1-8b24-48c8-4b81-16979e342000 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1682\r\nserver: cloudflare\r\ncf-ray: 9a5524c6d9e2568d-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 11085\r\ncache-control: public, max-age=31536000\r\netag: \"cfEA-Bw7H9k1gZltgcL-Suew9FfmDcyauXnchu_YTSDQ\"\r\nexpires: Fri, 27 Nov 2026 22:43:18 GMT\r\nvary: Accept, Accept-Encoding\r\ncf-images: internal=ok/- q=0 n=1168+4 c=0+3 v=2025.8.5 l=1682 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nx-wc-r2-status: HIT\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1682,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"12fd7a0bbecec898caf25744ceae7549","sha1":"d4e4685c48987c850c780fd8e99de426fb5b19e8","sha256":"fdd5b72b8c65c37fd0db1c494691dc35794639a66ae8c11240def16c07d6e2ac","sha512":"08feddd7bab4b6b6135ba61fc3f12c7f4df27802d2357d1999ccf0dc17874f3d0a6b43368301389885f21a92273a41b420b729e408c2695d5becfbb8ddd5da8e","ssdeep":"","tlshash":"b8311a477584218d4283591bdbf086459953cc1b4b1c6123c11425b249a95731ee13dc","first_seen":"2025-02-27T06:37:34.817516Z","last_seen":"2026-06-10T20:15:25.929194Z","times_seen":1050,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/mvfkqwza.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:15.222Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/mvfkqwza.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:15 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=6,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-8362\"\r\nexpires: Sat, 27 Dec 2025 22:43:15 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2Fq%2Bekfd3yQgfjNppbHZ7j0mR6hmYUQ6nFaUL1SM1trh04nDRKDOfhTAgcUG4lm2xRxcDc%2Bby4SX5qJdzanp%2FPJAYL20FmNqF0%2BuVY3sPr%2B%2Bcvd3PEw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524b4186556a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":33634,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 275 x 276, 8-bit/color RGBA, non-interlaced","md5":"6781390fda71ebc04bc064509caf78c3","sha1":"e094dee7df7ca047c6616602d9077ef676fee902","sha256":"febb28719cb814bb29786742da273eb5ddd06af0f143403251815e0bb49c78f5","sha512":"986762a56cf59f18b89e6a1d93c5db41a5dea2758026043eac53305b303029aebed7296d4701536cf1d7f27cc25e539af7d549ffa8fcf772ac7c7cd8e63730de","ssdeep":"768:Rk5EVtsqHfmNhF9Kufvgy3KWHsKF25AXema8jQcVuubOtbI7RN0:Rk5+so+jFgyaWMKF2eRFsuuBtbGRN0","tlshash":"cbe20281ceb8dc97aa4cfce5a775c08a9827a194f7a3ec11474340019ca47bf78dda67","first_seen":"2025-08-12T16:39:14.703895Z","last_seen":"2026-04-13T06:23:20.794909Z","times_seen":17,"resource_available":false,"data":null}},"time_used":359,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":243,"receive":116,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/41d04d42-da3b-4453-8506-668cc0727900","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.192Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /public/getAssetImage/41d04d42-da3b-4453-8506-668cc0727900 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncf-ray: 9a5524c0dbbd0b55-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":368,"timings":{"blocked":73,"dns":17,"connect":1,"send":0,"wait":210,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/fpxzsltc.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.109Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/fpxzsltc.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-91d35\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5c5%2F5lqkaHG%2FcpptNMHMiiJKfcPQ%2FXEeeZO0coJn%2B6ehsH19ruG1vBdwIxjSZPYSqLK9rpLNEp2mB2eztrkGFnrBc2m%2FBYxzcz4ZDk25X2sRoPOYpg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c61cc256a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":597301,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1200 x 1200, 8-bit/color RGBA, non-interlaced","md5":"d27862a7fc1f0ec31e42eca40ee7c3c4","sha1":"b3ef604adb60bae3a127df72cabcbd2bfbc8f7b8","sha256":"bc6bcc3e0c90451fe5ca299669ebfb560de2678b68761d00e992c7452eb3540b","sha512":"ee30214252711e12ab20c864b1fa2bcfa9bd5fc2289101ea1ffa7febc29f4caaf0d3391de4f22cdd5c767b9003272d73182ea08869423aa46ab0b99f5d5377ca","ssdeep":"12288:HIt7glSKt3LyLqDeoosp/lJ//fWdYRHCUUDfBq/6xegDESw4CY2n6X:HItMZ5F5TtJ/PRH2E6TEaCYb","tlshash":"bcc401e8fc782440a0ce694507733adcc46e965722d24d6cb722e2361d534b6f1bbe7a","first_seen":"2025-07-01T08:53:06.480354Z","last_seen":"2026-04-13T06:23:20.773489Z","times_seen":23,"resource_available":false,"data":null}},"time_used":819,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":242,"receive":577,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/hwoggpoz.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.111Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/hwoggpoz.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-1a708\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cij0MYEfewDF8Q8NvtnKg42J%2BBDMAzv0LheEQwJu5Zr5%2Bvup2yvmOKro5KqNLpAkU8FqivPUPqziRgam6ombl5ZYdyhBoFEUskU7JMbEG4Byl2uKRA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c62cc956a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":108296,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"bf8fcbebb0733e069265f964783ff195","sha1":"96718a449a59d9cb97e25278249dc2df1d1d431e","sha256":"eebf4a9073ecd4c0e66005eb7009c94df88cc9a81c08f3d6a3e0dcad01f37c5b","sha512":"62687c5456423a131f118d2fabe8ad9e1cf3a78e403dae40ea5e61389dea36d993adc1817afb05a9966c2ba523443e8525b32c78fe2368d27e782297511e761b","ssdeep":"3072:n0IfSYgn9jhzUO/v2x3aHPvJScZGkeMDAenH4O:H6Yg9jWOv21qv4O+MDrYO","tlshash":"84b312c4869284c1ee9528c4f6fd890f8c959cf0909511b94ef9e922c7fb7ee8e53e05","first_seen":"2025-07-01T08:53:06.489401Z","last_seen":"2026-04-13T06:23:20.760485Z","times_seen":23,"resource_available":false,"data":null}},"time_used":575,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":238,"receive":337,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/uploads/10001/20251127/d55cdd3a4904742c9f6cc6ab2d00b60e.jpg","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.451Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /uploads/10001/20251127/d55cdd3a4904742c9f6cc6ab2d00b60e.jpg HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nlast-modified: Wed, 26 Nov 2025 16:13:55 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"69272743-6339\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Fj5vl5vKkm%2FejnwcnhAURwy%2F7qsDXAO2DE4mY8ywx7eCfTLR%2BvzDqFuOTK5k3dOiKc3TTuZai9B8sJ1l%2ByDIjv5f%2FnIG8OJqBi0msYlsyD%2Fj%2FdpAsw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c84e5f56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25401,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"JPG resized with https://ezgif.com/resize\", baseline, precision 8, 640x320, components 3","md5":"3ad4ef1a070b269e5824da97166037af","sha1":"08ade4adedb7f0c3091366505c388dde7d515f7e","sha256":"3a3e94fc90c8cdf4b904e7a355e1c3fbfd39d21cf03b3e9d3e22afbf2f8f689c","sha512":"018f6ff02f5c2aae35771a53b09e699fc93462ee4d0becca376e2beabdd36cdee95cf1d375d3898e7a370334fd5cc9d28e7eee7e870c84a7ed2fbf518ee64b2b","ssdeep":"768:pBNUXGUnnDWKZLcCu4UEx7MBxeVDnghe3D/qN5aF+:pBOWUnnxoCHUEx8VeT/L+","tlshash":"8ab2d0c9b19696e5630032bd5c340a2f130bc56b0ef8c2c771086df6d5e3653e265bca","first_seen":"2025-11-27T22:43:44.690244Z","last_seen":"2025-11-30T13:25:20.590225Z","times_seen":2,"resource_available":false,"data":null}},"time_used":358,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":243,"receive":115,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"snefzhqs.poldefi2.cloud/index.html?shiny","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-27T22:43:12.870Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /index.html?shiny HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Thu, 27 Nov 2025 22:43:12 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nLocation: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nVary: accept-encoding\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ra%2FD4etSllo3Sbw6Yhm8gqHxRkZkM8Om%2F7FM%2BoIWSRgrnM4kyE%2FmGTpUA%2FAqZPPC29dSuxBy%2Ff5UXEsnOHdPFpkxPRuvz33fRjjAIrdfqKHOys%2FJBQ%3D%3D\"}]}\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 9a5524a5bd5b56c6-OSL\r\nalt-svc: h2=\":443\"; ma=60\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1155,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":112,"timings":{"blocked":48,"dns":48,"connect":1,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/tabbar/cejbjxah.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.131Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/tabbar/cejbjxah.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 495\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\netag: \"6928115a-1ef\"\r\nexpires: Sat, 27 Dec 2025 22:43:17 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IJuefA5LpMRDzP7ApSKfL9dN7YhFquhL4bQpciuslrBNmNPv%2FvpmPdGUXf29O2Wz0EW9IIMShvOtEmSrPJurI%2BSvBXsX8%2FAYDF7kPoOOJn6gtbk0Qg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c008fd56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":495,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 39 x 40, 8-bit/color RGBA, non-interlaced","md5":"86d3d3e701e1a028ec1d4303d631beb7","sha1":"86f582f89c17568b714d209fa2e01c7d1095eedd","sha256":"dd02f853eeee38609466f5c7caffdafac3e68c66b8a76dccbe896d62953ca5e9","sha512":"275c7fe581d77ec8efa8d3d8289ea9c0a82989c604617eb9243b9464e590551767838a496453c12db58dd87fa5238f5d94424450b7499d8a74849ed778f0f7b3","ssdeep":"","tlshash":"59f00e55634888b8dfd9d32b49ab8440cee511548a34eee8cfd08076578274d458b8aa","first_seen":"2025-10-21T18:08:52.141276Z","last_seen":"2026-04-13T06:23:20.783458Z","times_seen":16,"resource_available":false,"data":null}},"time_used":341,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":337,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/7c94a262-6d79-464c-bce3-a06f6beca600","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.054Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /getWalletImage/7c94a262-6d79-464c-bce3-a06f6beca600 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncf-ray: 9a5524c5cf9e0b55-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/3d7eb880-7654-431f-ed84-a25712b45200","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.234Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /getWalletImage/3d7eb880-7654-431f-ed84-a25712b45200 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2176\r\nserver: cloudflare\r\ncf-ray: 9a5524c6d9e5568d-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 64686\r\ncache-control: public, max-age=31536000\r\netag: \"cfepCHWB1qkSi-cNd1o8wsvD9BfmDcyauXnchu_YTSDQ\"\r\nexpires: Fri, 27 Nov 2026 22:43:18 GMT\r\nvary: Accept, Accept-Encoding\r\ncf-images: internal=ok/- q=0 n=29+3 c=0+2 v=2025.11.5 l=2176 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nx-wc-r2-status: HIT\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2176,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"7b91b6e5024dfdf6e8a4d61f0f74dd13","sha1":"1614f764ed7b516c7768fae0966abab152ac7d1b","sha256":"00e34844a07301274fc65fdbb65891aa95436b94c4c860d9edfcb96331c5487f","sha512":"c3948fdb40f0f4154fce632acb88cf9cf57ce39d2858e4934d8820c4d5729da238c569448b5bcb6d1780e37f005cb9f5ed60093005cfa451a92270c4c0034566","ssdeep":"","tlshash":"48413ab2c3378c72ce2cb5e3e9b2d5168b449a5a91859afc22413d33a4b145cc4b89e4","first_seen":"2025-01-28T05:59:32.007883Z","last_seen":"2026-06-10T20:15:25.893807Z","times_seen":2968,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/tabbar/uallotvd.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.134Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/tabbar/uallotvd.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 558\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\netag: \"6928115a-22e\"\r\nexpires: Sat, 27 Dec 2025 22:43:17 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=StFvs3iXyNf2h4cIYAv209%2FztQbeUVieDCv3rp6PZkgnxUYN2KC6RCQo%2B4kl36LmXt2Yn%2BCgrCAVDJg%2Bt31qaAtdGrKdtpPDPpv2X4jjPiKjtLmpug%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c008ff56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":558,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 34, 8-bit/color RGBA, non-interlaced","md5":"940e5ab7ee5747ea21ab225cde25f4ea","sha1":"9720b89f64e4e852a92835fdbc33614c151d6775","sha256":"4ff0b70a9486177db8cd7ee2366cde9f4c48b890c41cdc43fd1771147093cac6","sha512":"73fab24a582c70039614fbddfc185203fba378c5ab28c37a350170514ea480f73d80ff0d12b29b53825e6fc2bb5cf56753705fdd4ae8179f01b7c4a1072e0cdc","ssdeep":"","tlshash":"96f0e1a6226463b865ca9177167b21b2aaa4596432700b3b3e93ec2a7f40490d6e4312","first_seen":"2025-08-12T16:39:14.710557Z","last_seen":"2026-04-13T06:23:20.776183Z","times_seen":17,"resource_available":false,"data":null}},"time_used":339,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":339,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/index.php?s=/api/user/article","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.053Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /index.php?s=/api/user/article HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\ncontent-type: application/json;charset=utf-8\r\nplatform: H5\r\nAccess-Token: false\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Xh2deAm%2BLblPnF2hVLP0bvTZsnlv%2BCBS0mI5Fg9JKt2Gt94RqYO5ZbT0rmcg3OYdz66FW1KXoosU6op43oka3FFHye3WByhr4z38Ca38H2Q%2FWSeZyA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c5cc7756a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11527,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"e7e7fb228e615fac9190e17974a163d7","sha1":"6e60913d98afbe9c36abdf14733e32ec9f653196","sha256":"edf8081fc7a503c360f8aa957fb43968da85200689a98e5163ad1f5f069805e0","sha512":"a1c711f4541c5761b5d1ac10c28113be4b3e6c41d3bee7e7a7adeda9e986e83709ef403f4b87e87525c9c4ef13c94211a501ce9ce9898e19ef981e1ceb02f45d","ssdeep":"192:Ii+rS1B6LH4h+Dn2zBhZXUAqAUEUqUrTQUT3i3ZG3I3X6CONANKksNm79J3h7ca:h+riB6LHDT2NP7qdxzlDYSaXtOmqmb1n","tlshash":"0632449fa3b8c560957c89d86a5577fb74c9300e4a084fbe76eccaa8444a2335d332d7","first_seen":"2025-11-27T22:43:44.694618Z","last_seen":"2025-11-27T22:43:44.694618Z","times_seen":1,"resource_available":false,"data":null}},"time_used":319,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":319,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/c20e1cec-05e8-4ac6-a086-7ce355092400","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.056Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /getWalletImage/c20e1cec-05e8-4ac6-a086-7ce355092400 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncf-ray: 9a5524c5cf9f0b55-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/assets/uniicons.b6d3756e.ttf","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.087Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /assets/uniicons.b6d3756e.ttf HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 35760\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\netag: \"6928115a-8bb0\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AE%2FOriK6y1IebbeyKKwAZ4QM3h7lzFJsCO8rtVRntc1g8VJO1d%2Fm3Xb2hZSMntJKGwwJb35m1JzjGM1fy1u3xfbVtT%2B5%2FVWnbq0uvFSm4VK3rNOLyw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c60cab56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":35760,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 11 tables, 1st \"GSUB\", 18 names, Macintosh, Created by iconfontuniiconsRegularuniiconsuniiconsVersion 1.0uniiconsGenerated by svg2ttf from F","md5":"b6d3756ee0e3dd7ecb155b751a233247","sha1":"4e61eda60483fc01548f76ca5741ee838486cc96","sha256":"89ed7d6d732e893a473c6d6b443f854f4dcdf57360a11016306335a2048895ff","sha512":"0dca69f143ce0b6428348a23a9030ae49ae1936d940e28c75b766f89ec3fff44df111e435c300ffab7dac14d3f6b39fef8d8babb490b755c2ed5ec1b3f602cd4","ssdeep":"768:66TDym6KsVBqac6riFK/d8PWenmP7p7+A9cbWL2eRaXNPs:JTDym6nqB6WsdenmP97dqb4lss","tlshash":"2ef28e65176d4e6ad97e59ba188761130f7eff30a0b1ed16ee8ebc5e84080f405e0b1e","first_seen":"2023-04-13T07:38:27Z","last_seen":"2026-06-10T09:17:53.677948Z","times_seen":520,"resource_available":false,"data":null}},"time_used":356,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":240,"receive":116,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/dutuqkxf.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.096Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/dutuqkxf.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-132b1\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jrtxxmO8t1p78Qk3c0eIWA00fO0EADnMB%2B7wf2Rn7NWgXUuTRvu8%2FQ9LYmOssy5r%2FTUH%2BjtwDpm5kxSmHs91fLaFY8Ca8losXgavgiCoDkM%2FE4dA%2Fw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c60cb356a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":78513,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced","md5":"e187a8fe942bff4e9205e0359e911dd2","sha1":"695798141318dce15c657a95f5f3652203d6da0b","sha256":"d8e21fba5cc31a30c3159549e3d433b6276852332361a1075774a3d1e48b139b","sha512":"d0170d99954ddfe6f430854ca43836d10181b2f52df2f7d0cff215aa413ca5b4dcf84b3feabd7fad041792906c46e2a402df9de9fd0503ac5d2dfed637b9078b","ssdeep":"1536:AbThU7LkKdbLRnkpKrfl4eIEPSI7ApF9Lj/wSHLp5w8W9RgtHIV52rMt:QhUEKdpkp6N4xEPSI7IH/9LpS8CaNIzn","tlshash":"5673127ed307bbc2fb55a1e2e027d7ea9000a29c7709434d14ff09837676a9b2499d93","first_seen":"2025-07-01T08:53:06.505755Z","last_seen":"2026-04-13T06:23:20.794099Z","times_seen":23,"resource_available":false,"data":null}},"time_used":482,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":247,"receive":235,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/exjaisvx.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.106Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/exjaisvx.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-135b\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RXx9D6ZS7D01PaE3aIQn%2FOE%2FsXk5bAJ%2BWCfWDxiv9e5Y5en8Ap%2FeM4T1DMwOWD5nCmUqOt0admF1sEIaS98rbb7Lo0i1OTsx5%2F9J9TrJiLIbBBHVnA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c61cbe56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4955,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 81 x 80, 8-bit/color RGBA, non-interlaced","md5":"e433b355ebd34c0f0dcec3f9f7b13df3","sha1":"0408c89d03b52bf53d72008b1c4f9f4d97635532","sha256":"accfc5895bd405f7f60fe11ddb24ee0a58b44334bbf8a7e1a4e9925ea88a8dcf","sha512":"6ce07756813a11235e5767d401f2eb2f162ffb61bef7772876fb5eaacd8f6a070ea8efbcd9e07fbd66ac0183970946c9d8c896441027385a02a0500a1f935442","ssdeep":"96:fFsymOVQjSy9dRzz0RjA6rutiI7Un7ejk68QhTPMHgQj86dZAASLcVZ:fFZo79PzL6SYNb6TJPeo6dZhSLcL","tlshash":"2ba17e221fdf8f391ca6d832d157a6d4768b85112f64a5036453f73b105127b8f81a69","first_seen":"2025-07-01T08:53:06.479447Z","last_seen":"2026-04-13T06:23:20.745257Z","times_seen":23,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/js/dullnessgp-decisionqn-observatio~dullnessgp-nationehc-screenwrit~dullnessgp-strawberry-legendjwk~dullnessgp-effortlnp-migrantzvl~dullnessgp-vicexwz-believernz~dullnessgp-ordinanceb~nutritionv.50aaff4d.js","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.118Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/dullnessgp-decisionqn-observatio~dullnessgp-nationehc-screenwrit~dullnessgp-strawberry-legendjwk~dullnessgp-effortlnp-migrantzvl~dullnessgp-vicexwz-believernz~dullnessgp-ordinanceb~nutritionv.50aaff4d.js HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:59:12 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"692812e0-da67\"\r\nexpires: Fri, 28 Nov 2025 10:43:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6ohgguQqdmWq%2B3qtuoopfcf%2FtYH%2F0nfIUNV7LfEmAnbK4fw%2BBeL2XH4Qcu9GIJMZ5xzdkM9mrGdeGaCsDN698vOWFpzDGMlG6Jw6jq0bl07Ml0Ji7A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524bff8f256a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":55911,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (54775), with no line terminators","md5":"82590707067804ba55853d1fd1832448","sha1":"7fbf33617635e8aeed48201f8d5177597518f2c0","sha256":"c7a13a63f78624376b4547127377693ec107da4cb3a79f803f0d52cb27be6755","sha512":"fa73183b55fbcbc1a560bb8a773142a063f867a09507a5f61790e4f306e4f2705b30e19321f05253480963d349b5c95d019e54242f9b59375dcf251ffe3cabe7","ssdeep":"768:Cl3c3UDMmxHCA3BmR5vpR/FGhkdaqtnVbBU1d8IEj9aJCYTK5GedDEb1SeKTvCi4:tSanVbK1CM1vw1QyRE","tlshash":"4843f9097ec0d55c034b5ebb761bf0f4e41e2a5e748d06cec2783ca8a496606e6f76b4","first_seen":"2025-11-27T22:43:44.698415Z","last_seen":"2025-11-27T22:43:44.698415Z","times_seen":1,"resource_available":true,"data":null}},"time_used":365,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":354,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/tabbar/ihabkadx.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.136Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/tabbar/ihabkadx.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 593\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\netag: \"6928115a-251\"\r\nexpires: Sat, 27 Dec 2025 22:43:17 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GIPWRgxChAj1EHxxrCIFQz9vnxpqqgXJ7k%2BewYzVLKHIogJRZ6EY5m17QSA9%2FRKg7uYj91pBKlsG5fL4cPqFuXR6MgCRDQ2u1rWxukA8i88KFLLo1A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c0090356a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":593,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced","md5":"4eca2e2896f411c4eb69d2e356ea1206","sha1":"78623c927c6eb3324315a329574a32bc4ceff8c0","sha256":"77de81e405b0927c79fa3684b0f7829d6d2552c11b8e2491428a429b567b4b0a","sha512":"85be6714093e91dcafdb9707ff4cf3aec62dee2f64840581cb56bb24bad307f49da28514423260dfd2aab76a2c2257f3a4ec31fdc85b966d48bed9c0ce80355f","ssdeep":"","tlshash":"59f047c64dc89c6bbd459b2307345438ea815c34091d577c14063ebc0234ddbcaeb848","first_seen":"2025-08-12T16:39:14.718182Z","last_seen":"2026-04-13T06:23:20.805888Z","times_seen":17,"resource_available":false,"data":null}},"time_used":337,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":337,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/tabbar/fcygganc.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.141Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/tabbar/fcygganc.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 657\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\netag: \"6928115a-291\"\r\nexpires: Sat, 27 Dec 2025 22:43:17 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MgloShHmX40oLdRqYpcxD2iVPiIpE8nszhe%2B59d%2BQJ%2FBnEzsVKTMt1oGa7ikC43EuL6sJCm8FOzhT%2FJWBFtSG7igRQu7eDwoqqkMfQQj9X%2FhXSQIDw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c0190956a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":657,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 40 x 41, 8-bit/color RGBA, non-interlaced","md5":"5c4c4b0dc05ebfab15dffd2356c883b7","sha1":"dde489316a33eb1d4ac61a8e6dc8a8994abd11fd","sha256":"f9d7e5ab19028d26d85f5600e72f99cc678aaa53a7f00e15f195e3edccd9cb00","sha512":"d8ae0b797f46878e0753835be027ea08fb9f845dc575736d44487de619b40a9f583c9b62790b5bad4e10ec51f9825354eb50585a53060bf43579a8fbe88ff8d7","ssdeep":"","tlshash":"800128cde8e11600cf9986b467670a3369f36134a950a1d12065bdecf46154120cd187","first_seen":"2025-10-21T18:08:52.193944Z","last_seen":"2026-04-13T06:23:20.771097Z","times_seen":16,"resource_available":false,"data":null}},"time_used":332,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":332,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getAnalyticsConfig","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.197Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /getAnalyticsConfig HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncf-ray: 9a5524c0dbb70b55-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":266,"timings":{"blocked":60,"dns":0,"connect":0,"send":0,"wait":12,"receive":194,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/c1bd1250-b97a-4e26-c584-554019bc1d00","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.079Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /getWalletImage/c1bd1250-b97a-4e26-c584-554019bc1d00 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1370\r\nserver: cloudflare\r\ncf-ray: 9a5524c5e90f568d-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 7667\r\ncache-control: public, max-age=31536000\r\netag: \"cfOCQ0sJeY_I0imbFb9m7m6TPgfmDcyauXnchu_YTSDQ\"\r\nexpires: Fri, 27 Nov 2026 22:43:18 GMT\r\nvary: Accept, Accept-Encoding\r\ncf-images: internal=ok/- q=0 n=588+3 c=0+2 v=2025.11.5 l=1370 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nx-wc-r2-status: HIT\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1370,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"3ccdde1acc98f170bbae714264189036","sha1":"446f88f8d6fc575c73cc0cbe7b7e1d0cb6523f2c","sha256":"c4d1f304931ff132f4f8444083fa211e17722d6ad73ce5b766f2ae1031c0b7db","sha512":"66e2792827e8f7f75ccb49debdc6c3d711dbb68c082ca9b1dd6f238c77f0c6444f3203f7c5f5d31d41540123862bb9ea4800ec02978fc349f5410d79ef6c17fa","ssdeep":"","tlshash":"0f21d8a00d148261f74a497db0fc27c0a5a61ff13cd2273e0b541ed14a1fe761d1248a","first_seen":"2025-09-09T19:24:39.887417Z","last_seen":"2026-06-09T02:18:21.355277Z","times_seen":30,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/endeavorxe.ed4a2d2b.css","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:13.450Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/endeavorxe.ed4a2d2b.css HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:13 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-1794e\"\r\nexpires: Fri, 28 Nov 2025 10:43:13 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gKVWCGnYcW0IZl1qAS1Lsikh0skLEjTeeG8Wt13Ug9C2lXMjrBEbk54xdbv524W%2BVp1awC2R3uB5Q4o7GNGFH7aWoRgVwqwc%2FOOXzXnkg0xKpeY4jA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524a8f90f56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":96590,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"d2c05a28c7f2113821d909b7b5b918a3","sha1":"ccac94311f6ac6f580b64f47f7705318f1d226a3","sha256":"695bdbeea38a126c139158967cdd4f3a435e9936b9dff5b002e5f20a10fc7907","sha512":"3b96fbd1a89be8ae0b7479705cd4a2958ffe7f2f3f57ec23f407ad51ed8b447b9960728d77502e8fd8b2b19bf0971682030117559df250ea11c9bc1802364c3c","ssdeep":"1536:qlIApuK7hmVmb2RS1Wu3xdynGJ7eh/nrhlvbc:hApuK7hmVrS1Wu3iG41nrPI","tlshash":"4493f73719012e39e52bcd26b6c1ab5a1e61c033e15307adfba47628cbcf9c9167b345","first_seen":"2025-10-16T12:28:28.877032Z","last_seen":"2026-06-11T01:58:07.512009Z","times_seen":1273,"resource_available":false,"data":null}},"time_used":390,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":268,"receive":122,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/js/dullnessgp-decisionqn-observatio~dullnessgp-nationehc-screenwrit~dullnessgp-effortlnp-migrantzvl~dullnessgp-educatorph-serverkjs~dullnessgp-educatorph-plumbercps~dullnessgp-lustxbz-mockeryrcm.a5542e86.js","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.120Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/dullnessgp-decisionqn-observatio~dullnessgp-nationehc-screenwrit~dullnessgp-effortlnp-migrantzvl~dullnessgp-educatorph-serverkjs~dullnessgp-educatorph-plumbercps~dullnessgp-lustxbz-mockeryrcm.a5542e86.js HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:59:12 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"692812e0-14536\"\r\nexpires: Fri, 28 Nov 2025 10:43:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Mt5EBWUOlMi4wLeKm12qlSj8QxLWBLg6Ss3AfNbms0NHmePMGn6C5eJp%2BVI62ppt%2BysxR5jt02FXJK8ZR%2BJvKBTgO2pQ4c3XPSMB3pG0EjCWob6vow%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524bff8f356a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":83254,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (63920), with no line terminators","md5":"d13b5ae27487b6fb71d1ece585041247","sha1":"2f998a9ffae9ebf220c1131838e3059dd75f788d","sha256":"70e7df7c621b5f98819f0021243fdf5a4518dfda5e28c7cd09479ca57172a3c8","sha512":"3816a2a04d1e0807600161bbce2e27ebde3dfd55feb679ec95176db0b943e8b962d46b5c39462c61526e64405215df38c95758cd99f4cf0b7143f83b7d62ba4a","ssdeep":"768:udTiqgQnKb6QWm4AmCd0tG8e+W1MAbu7N8ChEAh8sd0Q2Z7wXgkplt7l5u8tT0Qj:UFsYId0FHoMqu7NdEAaM2OwkPN7Prv","tlshash":"18832a84f2585cca17a7ce5e730871adee663916a4881ddcd46e6c2d0ef730250fd6b8","first_seen":"2025-11-27T22:43:44.703399Z","last_seen":"2025-11-27T22:43:44.703399Z","times_seen":1,"resource_available":true,"data":null}},"time_used":360,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":349,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/public/getAssetImage/41d04d42-da3b-4453-8506-668cc0727900","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.876Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /public/getAssetImage/41d04d42-da3b-4453-8506-668cc0727900 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1452\r\nserver: cloudflare\r\ncf-ray: 9a5524c32d780b55-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 53053\r\ncache-control: public, max-age=31536000\r\netag: \"cfIBgbS-WAFgZUOOKJGP6fnCtOfmDcyauXnchu_YTSDQ\"\r\nexpires: Fri, 27 Nov 2026 22:43:17 GMT\r\nvary: Accept, Accept-Encoding\r\ncf-bgj: imgq:86,h2pri\r\ncf-images: internal=ok/- q=0 n=294+2 c=0+2 v=2025.7.3 l=1452 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nx-wc-r2-status: HIT\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1452,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"a93dd349a5fd1ed9361de97195e3e09c","sha1":"84c1f402075d3d247d52ba8df9ec30272fca1f58","sha256":"a1e40b02198365213323c48f1ccd4b2ea8945df4ee94617faf8232ba4c19855a","sha512":"b4f12e7697181c9f5045636731012f5df336975d0c4245afd5afea9c628f11d0f1a6b31fb9e4a95e6277d185c2acf471ac4e8a7d32b8958d9659906a116c5ddb","ssdeep":"","tlshash":"4531a743a76c94a24493f4017b88cbce1d24641b7926c8fa22a846c8e5bed41c269cf5","first_seen":"2024-07-07T11:58:42Z","last_seen":"2026-06-10T20:12:42.057116Z","times_seen":1177,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/ozeppakq.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.097Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/ozeppakq.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-13df\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gNTpasdMJttOaZIyUFnEFJAsLdWA%2FW4ofNaUySkj3xDTJrUh8LhBEHePW9qk0Baku%2BdEfBMmhrULIREgNktmH0BQhazyOBbC%2FNvUKgm5zbcJMQ6G%2BQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c60cb556a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5087,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 81 x 80, 8-bit/color RGBA, non-interlaced","md5":"bb8248455cf0a7419f25c102c5086efa","sha1":"829fa152bec78020031c3c317f933f8431c89995","sha256":"09a37322642be8565154fcb17ba43be85c2578e3b6d06780720648cc7dcccba5","sha512":"ab624f0d29e158a37cee093a3fa5d49502d83967482c4cd48ef1816538a771070ebe01fe41358c4852e5f47487a2a2a0dd709b675a9229e864220ba32b123214","ssdeep":"96:Ts7yTemfBLO0Qe0lLWSYBnyZoOQsrmDPQ+1NwZnjxIHvX++:6yvfBLO5lKSYBnHGmp1N+njx23","tlshash":"87a18ccbe4c1935f85791a93d1c84c64d22adc54a872e08220674b26bc7775d4f6f70a","first_seen":"2025-07-01T08:53:06.485368Z","last_seen":"2026-04-13T06:23:20.744264Z","times_seen":23,"resource_available":false,"data":null}},"time_used":246,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":246,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/hfwoakha.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.099Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/hfwoakha.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-1388\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GBMeQo4RZAvhvMkriTOvNFSUquqG%2FngH3%2FdHVUY%2BDceLPQj8kfV75MCTS9snGJ2C43BCs23tOh9B4CW8FCbqisgFG1jm2G3IwkpcswZ4mXpt97uOUg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c60cb756a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5000,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 81 x 80, 8-bit/color RGBA, non-interlaced","md5":"7fc68d96da8cf883ec1810bde7d2451f","sha1":"dc0068ef6e4a51e8e997a4b113702a9f1e1cb702","sha256":"7f34c9e11542de6461b4e65e6ac555bcd663d91cfc20b687cb6e799b7028e6e2","sha512":"bf131aba9a5b2b7820cdc46ba67d4a59d28f423d2d9bea6882d1ae80338b9e0f6bfc5e65431ced878563ed59dd086aea38803b2341922c8f8d7b5531a889eff5","ssdeep":"96:nQy/LakACZkIdr1CrdxDNLBuq+ksTpaKaIepB8uDuao1acZLSJImYyBvEv:nQyYKwVNL7upvaI0B8KY4ImRBvEv","tlshash":"bca17da1ddcbaaa90e831222566ad409c17587010ea7bbce78b06f6752d5235c607ae4","first_seen":"2025-07-01T08:53:06.488511Z","last_seen":"2026-04-13T06:23:20.782651Z","times_seen":23,"resource_available":false,"data":null}},"time_used":247,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":247,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/zwjifyei.png","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.107Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/zwjifyei.png HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:52:42 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6928115a-5d9da\"\r\nexpires: Sat, 27 Dec 2025 22:43:18 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0g2pJvFMyAIZOdTDjdLWv1OJ8duiUG3unF9GlovLrSH7gjCyAT6eiqAYXtvDnY6CQEWjRrOpDBt%2BA1rZY6gaB5SoJPJBQhitr6BcFfZR5HeZT%2Bj47w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524c61cbf56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":383450,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1200 x 1200, 8-bit/color RGBA, non-interlaced","md5":"b2a968f59f83dfddd4d5cf48849a1304","sha1":"807131e5a25148394c64b346282f261f09fc4b5f","sha256":"19ff9235399a3542929f1c974eb2bceb015446abc3dbfc1b4c0f02815135ac64","sha512":"718a9f35a354aec90b3eafbccadbf814c4e450540c751249c65a1e562409015cbac2fa477b6943c833046ef1b2d6eb67459bc4fa5bea859a1ae4dacebd945bdc","ssdeep":"6144:qIjrHdiXRbusc+JmAjSR/CAS9N6BD0qzg9SYTeBwhirw5DpLO:qCHdOuQmAE/NS9cGqzg9SYTWwh9DpLO","tlshash":"288412cce3a885b3b0159954783d018b22265c7bb12ace8517cbf59f6317fb2ad36d42","first_seen":"2025-07-01T08:53:06.500036Z","last_seen":"2026-04-13T06:23:20.742311Z","times_seen":23,"resource_available":false,"data":null}},"time_used":739,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":253,"receive":486,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/3386dde1-8b24-48c8-4b81-16979e342000","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.187Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /getWalletImage/3386dde1-8b24-48c8-4b81-16979e342000 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncf-ray: 9a5524c6a9a6568d-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/3d7eb880-7654-431f-ed84-a25712b45200","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.186Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"OPTIONS /getWalletImage/3d7eb880-7654-431f-ed84-a25712b45200 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-project-id,x-sdk-type,x-sdk-version\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncf-ray: 9a5524c6a9a5568d-OSL\r\naccess-control-allow-origin: *\r\nvary: Access-Control-Request-Headers, Accept-Encoding\r\naccess-control-allow-headers: x-project-id,x-sdk-version,x-sdk-type,x-nonce-jwt,x-otp,Authorization\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,PATCH,DELETE\r\naccess-control-max-age: 86400\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"secure.walletconnect.com/sdk?projectId=27b15e4e5bf5a67b9520b54b6047c3df","fqdn":"secure.walletconnect.com","domain":"walletconnect.com","tld":"com"},"ip":{"addr":"104.18.26.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.050Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure.walletconnect.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 25 Nov 2025 15:32:50 GMT","end":"Mon, 23 Feb 2026 16:32:46 GMT"},"fingerprint":{"sha1":"BB:EF:98:39:1B:9E:0F:92:82:B8:21:B5:7A:E3:12:65:17:85:E8:B9","sha256":"13:36:D9:42:F8:03:4E:FA:1E:E1:56:F5:B3:F9:44:5B:7F:8B:C2:0E:4C:ED:98:41:B0:63:E9:3C:E2:76:55:0D"}}},"request":{"raw":"GET /sdk?projectId=27b15e4e5bf5a67b9520b54b6047c3df HTTP/1.1\r\nHost: secure.walletconnect.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=86400\r\ncontent-security-policy: frame-ancestors  'self' http://localhost:* https://*.pages.dev https://*.vercel.app https://*.ngrok-free.app https://secure-mobile.walletconnect.com https://secure-mobile.walletconnect.org; object-src 'none'\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=cwXnpO%2FQEsa9hHxUCQE3XJb0e3yzBWf59k7djNXI6nCUHZsA74xzZMc2XsDoH11oHV0y%2FQfpQ4AB3IIXPahBuBmtFw1quHCDLTjkd70mdoHTMNiABf09OZODvRbKIbN6rZKtadUZ7NumJj8%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncf-ray: 9a5524bfdbfb5fac-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T01:58:50.778478Z","times_seen":16314134,"resource_available":true,"data":null}},"time_used":471,"timings":{"blocked":49,"dns":30,"connect":1,"send":0,"wait":372,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snefzhqs.poldefi2.cloud/static/js/dullnessgp-asparagusn-statutewiu~dullnessgp-decisionqn-observatio~dullnessgp-clemencyqi-nutritioni~dullnessgp-clemencyqi-eggyzsu~dullnessgp-policeboi-painnuo~dullnessgp-sponsoryxs~doctortpw.50d21b48.js","fqdn":"snefzhqs.poldefi2.cloud","domain":"poldefi2.cloud","tld":"cloud"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.117Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poldefi2.cloud","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 03:01:35 GMT","end":"Thu, 19 Feb 2026 04:00:06 GMT"},"fingerprint":{"sha1":"60:4E:99:63:B6:21:3F:74:9D:6D:49:52:22:92:DA:A6:27:E6:48:5A","sha256":"78:13:59:B1:4F:E9:E8:3A:59:F3:E6:7F:39:90:66:FB:05:61:E2:1F:2E:59:55:CA:4A:E7:C9:D5:A0:FA:17:6D"}}},"request":{"raw":"GET /static/js/dullnessgp-asparagusn-statutewiu~dullnessgp-decisionqn-observatio~dullnessgp-clemencyqi-nutritioni~dullnessgp-clemencyqi-eggyzsu~dullnessgp-policeboi-painnuo~dullnessgp-sponsoryxs~doctortpw.50d21b48.js HTTP/1.1\r\nHost: snefzhqs.poldefi2.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snefzhqs.poldefi2.cloud/index.html?shiny\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 27 Nov 2025 08:59:10 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"692812de-797d\"\r\nexpires: Fri, 28 Nov 2025 10:43:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dNTqxrdEpx7QAvG1WtAaZZAqBQMCpgcIneQKAhmbDEm5hSCaCd10sJX%2F0i4Ew39pNtDxslcArGJrlzEzLZSAJfkEuh6YYBFg3LpYC3pfk%2BnrLxC1kw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a5524bff8f156a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31101,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (30833), with no line terminators","md5":"3388acecaf382029eb10263d6cddb7f1","sha1":"b1fb52683d23181dda67c2e900f5c09533b9af3a","sha256":"13b318adb4223691f829aee311585c0fe1d8bfd3fa1d04b647fafe0833083586","sha512":"628c055ce3dc05e6d618c386e17279d37f2829b93c59b7b43ce4285a2252f24bb6a74e79d9b3439c2d8d1ec5d60e821af5d9aa6f4cf042ea5576b5c4a2d89962","ssdeep":"768:OIrQ/x7ZrnC4X0EG1JoreVJ7y+0BX/OEpy+XyxJDwwY/SPxcs2r0:OI8q4reQBX8+XyxJDwwY/SPA0","tlshash":"dad297852fc05958234b9bbf751bb8d8f00a0d6e38484d8ff114aca498d632be5f7676","first_seen":"2025-11-27T22:43:44.707303Z","last_seen":"2025-11-27T22:43:44.707303Z","times_seen":1,"resource_available":true,"data":null}},"time_used":351,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":351,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-27","alert":"Sinkholed","trigger":"snefzhqs.poldefi2.cloud","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWallets?page=1\u0026chains=eip155%3A137\u0026entries=4\u0026exclude=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:17.872Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /getWallets?page=1\u0026chains=eip155%3A137\u0026entries=4\u0026exclude=c03dfee351b6fcc421b4494ea33b9d4b92a984f87aa76d1663bb28705e95034a%2C38f5d18bd8522c244bdd70cb4a68e0e718865155811c043f052fb9f1c51de662%2C8a0ee50d1f22f6651afcae7eb4253e52a3310b90af5daef78a8c4929a9bb99d4%2C4622a2b2d6af1c9844944291e5e7351a6aa24cd7b23099efac1b2fd875da31a0 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:17 GMT\r\ncontent-type: application/json; charset=UTF-8\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=43200, s-maxage=21600\r\nx-robots-tag: noindex\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 9a5524c2ed450b55-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3840,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"f01e65eeb75bd2549e27a9dbe4a96212","sha1":"a7bf1b0f43925d63769cbb86538b0d79bb109e09","sha256":"850536e15c86b96a74d5b845a274aeb50f40d3920e77147a1d968ec327f4a4b7","sha512":"ee76b8a1e64fc25042d3a33b6b8d62f511f158c153da92b3056bb9d4820ffd62df08031c028287c5c1d00be796cb308213b3da45084c7a74a8401afc41fab096","ssdeep":"","tlshash":"8a8163ab9f949d3a8b244789e5acfcee883f505b82cd2dfc95f0893801f657b3211465","first_seen":"2025-11-27T22:43:44.708788Z","last_seen":"2025-11-27T22:43:44.708788Z","times_seen":1,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.web3modal.org/getWalletImage/c81295d5-363c-4476-16ef-1e8ab557b100","fqdn":"api.web3modal.org","domain":"web3modal.org","tld":"org"},"ip":{"addr":"104.18.19.237","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snefzhqs.poldefi2.cloud/index.html?shiny","date":"2025-11-27T22:43:18.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3modal.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Oct 2025 14:56:57 GMT","end":"Fri, 16 Jan 2026 15:56:55 GMT"},"fingerprint":{"sha1":"8A:E5:8B:9C:1A:82:C9:C1:5B:07:6D:0C:DC:A6:DE:AC:0E:67:55:8E","sha256":"F7:AC:80:42:DC:45:5E:8D:A2:7B:80:B1:60:AC:D4:62:C8:C0:A6:88:CC:7F:6B:6D:5C:22:32:D1:5F:26:1A:6F"}}},"request":{"raw":"GET /getWalletImage/c81295d5-363c-4476-16ef-1e8ab557b100 HTTP/1.1\r\nHost: api.web3modal.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snefzhqs.poldefi2.cloud/\r\nx-project-id: 27b15e4e5bf5a67b9520b54b6047c3df\r\nx-sdk-type: w3m\r\nx-sdk-version: html-wagmi-5.0.0\r\nOrigin: https://snefzhqs.poldefi2.cloud\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 27 Nov 2025 22:43:18 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1740\r\nserver: cloudflare\r\ncf-ray: 9a5524c5e908568d-OSL\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 56268\r\ncache-control: public, max-age=31536000\r\netag: \"cfgLPvenmjJiV2gFIq-um3dPSAfmDcyauXnchu_YTSDQ\"\r\nexpires: Fri, 27 Nov 2026 22:43:18 GMT\r\nvary: Accept, Accept-Encoding\r\ncf-bgj: imgq:86,h2pri\r\ncf-images: internal=ok/- q=0 n=29+6 c=0+5 v=2025.8.5 l=1740 f=false c2=0\r\ncontent-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'; img-src data:;\r\nx-content-type-options: nosniff\r\nx-robots-tag: noindex\r\nx-wc-r2-status: HIT\r\npriority: u=4,i=?0\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1740,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"2583343f5b90bad78538fb913b15c233","sha1":"2c1a24028d97c60d41b5a7dd53c0fee8c009f689","sha256":"d9add9ce99e31c5399f5d1f1616ed1dc79e4ba940a68875233c706646789e8dc","sha512":"8f14afad3e810111b5712a1a6b10d88e6b33e47617c31f7193d7bf915e1ef7f60499fa36800809fc93cf0c39308530a0287417aea9d3a64d187a6d24c2eed824","ssdeep":"","tlshash":"5b312bb102bc3973dc290c3ed14977681571cb12c9674c1280a416e7002e5d49c3e7ac","first_seen":"2025-09-09T19:24:39.813327Z","last_seen":"2026-03-12T17:34:22.345367Z","times_seen":178,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":1,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}