{"report_id":"63b1f2d8-5608-4e88-b830-efbb62a4bb06","version":0,"status":"done","tags":[],"date":"2026-06-11T12:42:34Z","url":{"schema":"http","addr":"bet365f.vip","fqdn":"bet365f.vip","domain":"bet365f.vip","tld":"vip"},"ip":{"addr":"223.26.61.234","port":0,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"title":"bet365","dom":{"size":15954,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (6257)","md5":"2cef6558d50d8259238f544b642d5c41","sha1":"5ac9b90adc136bae14e3a232f1047573524b2dd2","sha256":"2ba6f6e98805fc7045afb61d9f1b9903a3b433eaf4badf9fbc38de9bd7864d65","sha512":"cb9fd8cb307320a7528fadbd5b5f5429e0d5047c4a6a023bdfcd1673b7986b2d8f27a011d0009896f21c73921d9580413687bd8cd3da8c234c7ad7f0f78fe792","ssdeep":"384:0w/Dn0zuOJVX2p3pcRQclNIgz8kFWm4xRsnw:X/Dn0zHGpZcRQe1FWPSnw","tlshash":"de625bbaa9b35c4a2a2764345bbeba0e3de04c1b4614cd48ff8c6550af91b904c537fc","dom_hash":"domhash77fd731d34cf2dfc60b97218efc13c56","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"bet365f.vip","fqdn":"bet365f.vip","domain":"bet365f.vip","tld":"vip"},"ip":{"addr":"223.26.61.234","port":0,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-16T12:42:34Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":5}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"3656.tstdmn.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"bet365f.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"bet365f.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"bet365f.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"bet365f.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"43.199.49.99","ip":{"addr":"43.199.49.99","port":887,"asn":16509,"as":"AMAZON-02","country":"Hong Kong","country_code":"HK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":772,"sent_data":562,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}]},{"fqdn":"223.26.52.240","ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":4,"received_data":213993,"sent_data":1914,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"3656.tstdmn.cc","ip":{"addr":"34.92.23.236","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Hong Kong","country_code":"HK"},"domain_registered":"2024-06-07","domain_rank":0,"first_seen":"2024-08-10T21:14:31Z","last_seen":"2026-02-08T10:47:42.844645Z","alert_count":2,"request_count":2,"received_data":67883,"sent_data":1388,"comment":"","tags":null,"fingerprints":[{"name":"PHP:7.4.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"bet365f.vip","ip":{"addr":"223.26.61.234","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2018-07-02","domain_rank":0,"first_seen":"2019-05-02T08:01:40Z","last_seen":"2024-09-20T10:26:42Z","alert_count":4,"request_count":1,"received_data":498,"sent_data":480,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"223.26.52.240:36013/jquery-1.11.2.min.js","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"87e69028f78d75ca225b3dc54d233239","sha1":"b33ee3b42b988eef9d4d62495b6e54e23dd642fd","sha256":"d4ec583c7604001f87233d1fe0076cbd909f15a5f8c6b4c3f5dd81b462d79d32","sha512":"6679e3ee7d02d17cf5b5d93a8a1dfd58f9b79120936442a75ffed668d6f2496ec615bc128cee6bf7fb8e0062cc6e0bfa96523519d8210bbc5d690b05512b4cd7","ssdeep":"1536:5P1vk7i6GUHdXXeyQazBu+4HhiO2AEeLNFoqqhJ7SerN5sVI6xcBgPv7E+nzms9l:A4Ud4qhJvNPqcB47MfWWca98Hrh","tlshash":"d093e8d9b7d67062977730b850bf510bb13a98eab80c4c60f1a4d8e47e74a89507bf2d","size":95966,"data":"","first_seen":"2023-03-07T01:10:31Z","last_seen":"2026-06-16T17:13:18.02908Z","times_seen":1795,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"8f64422c82db9cf8c1041dc81bd69a65","sha1":"fb0fed5603ea15ae26afd390e63e68fb2ca6b1a0","sha256":"3f345cd57b006006170633dcee01f450335637d3d3a87206114548371c3f101f","sha512":"5d08467b35708f760f9d633c7615de07f3624701664df86aa991e862cdecf4234c8865f1ae2b5af5964e26c50b2f40bfc8f228aff81781688a9c1450fea180e7","ssdeep":"","tlshash":"c5f0501159ef1dfd613a927e6d7e892972ab28159060c5446d8194155db15814650288","size":501,"data":"","first_seen":"2026-06-11T12:42:43.219933Z","last_seen":"2026-06-11T13:19:30.232567Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"6bd43cf0ae158526c6ab93dc3be79f28","sha1":"15c289e342bd3fdf5b1e95f7abf25a2bc78bf357","sha256":"7a13d5ae0755d86c09084ec300c4a0f1a0a06921f74d9980eba9d966ff17ad38","sha512":"5190eb107c27f5d655eab378cd468228aa031d088f59082f257f41d464a29fbdb23594043afe89a3f9b63ce86d91efad6c2901c816d85196389293a6a5a28521","ssdeep":"","tlshash":"df90040100513554711530d00134c3dd157df075dc4dd335754f57004040405c53c401","size":40,"data":"","first_seen":"2023-03-07T01:02:07Z","last_seen":"2026-06-17T16:52:43.645177Z","times_seen":23337,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"cc870e475e94fa012287b422948c4c6d","sha1":"baef94c0703951c1e186b83443364fa9e686318e","sha256":"e45572ffb8d4a36af31fca47c7b4ee042c67689ea383408e3fc54ce0f8d953b6","sha512":"b50a6b1a8bd4b4898a2668066b72e532dd4f82096ed6f2b5d66260a14f15182e018ed8be092cc384caba4b8b8950f30f5558a380ddc65342a3e58d31ac9c2a9c","ssdeep":"","tlshash":"b94133afbce304ba2c5368b20b7f690e25b044271510d440ba2c9a447fa5f181c7aaec","size":1937,"data":"","first_seen":"2026-06-11T12:42:43.230289Z","last_seen":"2026-06-11T13:19:30.234763Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"e54191262d724ccf19032cfac313db7d","sha1":"e334c4da7fc1c5cb714e625f9a2ace7418d2602e","sha256":"3044f8d0211a1705eda74880de7a11ca2bb0994df808b2a6da51ad3d36a20b31","sha512":"87841d6a7240d47192026c7bde9f8d872e5cd93aaf51bf138b3a7d364cee9d6747b5ae93830fff3e0f69b0a2f28571da12af4955a41ed624b45f42be62d3ac54","ssdeep":"","tlshash":"7c11e3fabc720cf6081358765bbf964e20b048771512d040bb5c4e5c7f21f180c2d69c","size":1018,"data":"","first_seen":"2026-06-11T12:42:43.233116Z","last_seen":"2026-06-11T13:19:30.237147Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/h.js","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"87e69028f78d75ca225b3dc54d233239","sha1":"b33ee3b42b988eef9d4d62495b6e54e23dd642fd","sha256":"d4ec583c7604001f87233d1fe0076cbd909f15a5f8c6b4c3f5dd81b462d79d32","sha512":"6679e3ee7d02d17cf5b5d93a8a1dfd58f9b79120936442a75ffed668d6f2496ec615bc128cee6bf7fb8e0062cc6e0bfa96523519d8210bbc5d690b05512b4cd7","ssdeep":"1536:5P1vk7i6GUHdXXeyQazBu+4HhiO2AEeLNFoqqhJ7SerN5sVI6xcBgPv7E+nzms9l:A4Ud4qhJvNPqcB47MfWWca98Hrh","tlshash":"d093e8d9b7d67062977730b850bf510bb13a98eab80c4c60f1a4d8e47e74a89507bf2d","size":95966,"data":"","first_seen":"2023-03-07T01:10:31Z","last_seen":"2026-06-16T17:13:18.02908Z","times_seen":1795,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"43.199.49.99:887/?u=aHR0cHM6Ly9iZXQzNjVmLnZpcC8%3D\u0026p=Lw==","fqdn":"43.199.49.99","domain":"43.199.49.99","tld":""},"ip":{"addr":"43.199.49.99","port":887,"asn":16509,"as":"AMAZON-02","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"e23c5100aae3735566095a1de80a534e","sha1":"3ff32ef5b849ee410c28c91b9da2ec9313f9ae47","sha256":"06339ff2a95bb98ef89e3a34fac0ad3477ab332b2595b4094f16b1abc4f6506e","sha512":"8b3f2d5ace206cad9b95a6375577ca93f240f50ac458f331d322ce4f3e22357afce97d1b4209ff0eff8a57fb0c4f9a3655eb062d9fb2bb05f9062134a184b20c","ssdeep":"","tlshash":"17d02ba33081487449a4316f3326e38e399109833f60708480590c02882ce05c978fa0","size":264,"data":"","first_seen":"2026-06-11T12:42:43.242312Z","last_seen":"2026-06-11T13:19:30.238197Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"8f64422c82db9cf8c1041dc81bd69a65","sha1":"fb0fed5603ea15ae26afd390e63e68fb2ca6b1a0","sha256":"3f345cd57b006006170633dcee01f450335637d3d3a87206114548371c3f101f","sha512":"5d08467b35708f760f9d633c7615de07f3624701664df86aa991e862cdecf4234c8865f1ae2b5af5964e26c50b2f40bfc8f228aff81781688a9c1450fea180e7","ssdeep":"","tlshash":"c5f0501159ef1dfd613a927e6d7e892972ab28159060c5446d8194155db15814650288","size":501,"data":"","first_seen":"2026-06-11T12:42:43.219933Z","last_seen":"2026-06-11T13:19:30.232567Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"6bd43cf0ae158526c6ab93dc3be79f28","sha1":"15c289e342bd3fdf5b1e95f7abf25a2bc78bf357","sha256":"7a13d5ae0755d86c09084ec300c4a0f1a0a06921f74d9980eba9d966ff17ad38","sha512":"5190eb107c27f5d655eab378cd468228aa031d088f59082f257f41d464a29fbdb23594043afe89a3f9b63ce86d91efad6c2901c816d85196389293a6a5a28521","ssdeep":"","tlshash":"df90040100513554711530d00134c3dd157df075dc4dd335754f57004040405c53c401","size":40,"data":"","first_seen":"2023-03-07T01:02:07Z","last_seen":"2026-06-17T16:52:43.645177Z","times_seen":23337,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"cc870e475e94fa012287b422948c4c6d","sha1":"baef94c0703951c1e186b83443364fa9e686318e","sha256":"e45572ffb8d4a36af31fca47c7b4ee042c67689ea383408e3fc54ce0f8d953b6","sha512":"b50a6b1a8bd4b4898a2668066b72e532dd4f82096ed6f2b5d66260a14f15182e018ed8be092cc384caba4b8b8950f30f5558a380ddc65342a3e58d31ac9c2a9c","ssdeep":"","tlshash":"b94133afbce304ba2c5368b20b7f690e25b044271510d440ba2c9a447fa5f181c7aaec","size":1937,"data":"","first_seen":"2026-06-11T12:42:43.230289Z","last_seen":"2026-06-11T13:19:30.234763Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"e54191262d724ccf19032cfac313db7d","sha1":"e334c4da7fc1c5cb714e625f9a2ace7418d2602e","sha256":"3044f8d0211a1705eda74880de7a11ca2bb0994df808b2a6da51ad3d36a20b31","sha512":"87841d6a7240d47192026c7bde9f8d872e5cd93aaf51bf138b3a7d364cee9d6747b5ae93830fff3e0f69b0a2f28571da12af4955a41ed624b45f42be62d3ac54","ssdeep":"","tlshash":"7c11e3fabc720cf6081358765bbf964e20b048771512d040bb5c4e5c7f21f180c2d69c","size":1018,"data":"","first_seen":"2026-06-11T12:42:43.233116Z","last_seen":"2026-06-11T13:19:30.237147Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"8f64422c82db9cf8c1041dc81bd69a65","sha1":"fb0fed5603ea15ae26afd390e63e68fb2ca6b1a0","sha256":"3f345cd57b006006170633dcee01f450335637d3d3a87206114548371c3f101f","sha512":"5d08467b35708f760f9d633c7615de07f3624701664df86aa991e862cdecf4234c8865f1ae2b5af5964e26c50b2f40bfc8f228aff81781688a9c1450fea180e7","ssdeep":"","tlshash":"c5f0501159ef1dfd613a927e6d7e892972ab28159060c5446d8194155db15814650288","size":501,"data":"","first_seen":"2026-06-11T12:42:43.219933Z","last_seen":"2026-06-11T13:19:30.232567Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"6bd43cf0ae158526c6ab93dc3be79f28","sha1":"15c289e342bd3fdf5b1e95f7abf25a2bc78bf357","sha256":"7a13d5ae0755d86c09084ec300c4a0f1a0a06921f74d9980eba9d966ff17ad38","sha512":"5190eb107c27f5d655eab378cd468228aa031d088f59082f257f41d464a29fbdb23594043afe89a3f9b63ce86d91efad6c2901c816d85196389293a6a5a28521","ssdeep":"","tlshash":"df90040100513554711530d00134c3dd157df075dc4dd335754f57004040405c53c401","size":40,"data":"","first_seen":"2023-03-07T01:02:07Z","last_seen":"2026-06-17T16:52:43.645177Z","times_seen":23337,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"cc870e475e94fa012287b422948c4c6d","sha1":"baef94c0703951c1e186b83443364fa9e686318e","sha256":"e45572ffb8d4a36af31fca47c7b4ee042c67689ea383408e3fc54ce0f8d953b6","sha512":"b50a6b1a8bd4b4898a2668066b72e532dd4f82096ed6f2b5d66260a14f15182e018ed8be092cc384caba4b8b8950f30f5558a380ddc65342a3e58d31ac9c2a9c","ssdeep":"","tlshash":"b94133afbce304ba2c5368b20b7f690e25b044271510d440ba2c9a447fa5f181c7aaec","size":1937,"data":"","first_seen":"2026-06-11T12:42:43.230289Z","last_seen":"2026-06-11T13:19:30.234763Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"e54191262d724ccf19032cfac313db7d","sha1":"e334c4da7fc1c5cb714e625f9a2ace7418d2602e","sha256":"3044f8d0211a1705eda74880de7a11ca2bb0994df808b2a6da51ad3d36a20b31","sha512":"87841d6a7240d47192026c7bde9f8d872e5cd93aaf51bf138b3a7d364cee9d6747b5ae93830fff3e0f69b0a2f28571da12af4955a41ed624b45f42be62d3ac54","ssdeep":"","tlshash":"7c11e3fabc720cf6081358765bbf964e20b048771512d040bb5c4e5c7f21f180c2d69c","size":1018,"data":"","first_seen":"2026-06-11T12:42:43.233116Z","last_seen":"2026-06-11T13:19:30.237147Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"8f64422c82db9cf8c1041dc81bd69a65","sha1":"fb0fed5603ea15ae26afd390e63e68fb2ca6b1a0","sha256":"3f345cd57b006006170633dcee01f450335637d3d3a87206114548371c3f101f","sha512":"5d08467b35708f760f9d633c7615de07f3624701664df86aa991e862cdecf4234c8865f1ae2b5af5964e26c50b2f40bfc8f228aff81781688a9c1450fea180e7","ssdeep":"","tlshash":"c5f0501159ef1dfd613a927e6d7e892972ab28159060c5446d8194155db15814650288","size":501,"data":"","first_seen":"2026-06-11T12:42:43.219933Z","last_seen":"2026-06-11T13:19:30.232567Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"6bd43cf0ae158526c6ab93dc3be79f28","sha1":"15c289e342bd3fdf5b1e95f7abf25a2bc78bf357","sha256":"7a13d5ae0755d86c09084ec300c4a0f1a0a06921f74d9980eba9d966ff17ad38","sha512":"5190eb107c27f5d655eab378cd468228aa031d088f59082f257f41d464a29fbdb23594043afe89a3f9b63ce86d91efad6c2901c816d85196389293a6a5a28521","ssdeep":"","tlshash":"df90040100513554711530d00134c3dd157df075dc4dd335754f57004040405c53c401","size":40,"data":"","first_seen":"2023-03-07T01:02:07Z","last_seen":"2026-06-17T16:52:43.645177Z","times_seen":23337,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"cc870e475e94fa012287b422948c4c6d","sha1":"baef94c0703951c1e186b83443364fa9e686318e","sha256":"e45572ffb8d4a36af31fca47c7b4ee042c67689ea383408e3fc54ce0f8d953b6","sha512":"b50a6b1a8bd4b4898a2668066b72e532dd4f82096ed6f2b5d66260a14f15182e018ed8be092cc384caba4b8b8950f30f5558a380ddc65342a3e58d31ac9c2a9c","ssdeep":"","tlshash":"b94133afbce304ba2c5368b20b7f690e25b044271510d440ba2c9a447fa5f181c7aaec","size":1937,"data":"","first_seen":"2026-06-11T12:42:43.230289Z","last_seen":"2026-06-11T13:19:30.234763Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"e54191262d724ccf19032cfac313db7d","sha1":"e334c4da7fc1c5cb714e625f9a2ace7418d2602e","sha256":"3044f8d0211a1705eda74880de7a11ca2bb0994df808b2a6da51ad3d36a20b31","sha512":"87841d6a7240d47192026c7bde9f8d872e5cd93aaf51bf138b3a7d364cee9d6747b5ae93830fff3e0f69b0a2f28571da12af4955a41ed624b45f42be62d3ac54","ssdeep":"","tlshash":"7c11e3fabc720cf6081358765bbf964e20b048771512d040bb5c4e5c7f21f180c2d69c","size":1018,"data":"","first_seen":"2026-06-11T12:42:43.233116Z","last_seen":"2026-06-11T13:19:30.237147Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3656.tstdmn.cc/matomo.js","fqdn":"3656.tstdmn.cc","domain":"tstdmn.cc","tld":"cc"},"ip":{"addr":"34.92.23.236","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"97b41888a87c22615114d73c91cc70a3","sha1":"a9e02fdb328a29bd8753e7000d0afe6ef635aad1","sha256":"f2e8975ed834c578c50d3923ceb26de04d4fa44f74380f45f147585d909a874d","sha512":"0023e6fd1e095cb37ffd94393f583f9a1ad1fe18a03b72bd035d431401038b48cc9689e2bbf4b0bbee5b6082e77db6e2bdd55b4d5ffb1c45f86e0f330789c10f","ssdeep":"1536:ATgnSINAJrRJqerEKlFXhuXEy+XzsyWbuds06Vdda8EbdAAOV4ITzvBCQaFLa:AT+Z2fuULzsyWbbVdda8EbdAA0XvBv5","tlshash":"0263d5ca72c275398bca6074603f1187b17aada7144cc4a4f56ac4fa3c3891e957bf78","size":67460,"data":"","first_seen":"2024-05-09T17:51:40Z","last_seen":"2026-06-17T16:09:01.217005Z","times_seen":5118,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet365f.vip/","fqdn":"bet365f.vip","domain":"bet365f.vip","tld":"vip"},"ip":{"addr":"223.26.61.234","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"63c9d3c360bcd308f340081448ecbd84","sha1":"e3de6d70a29e49c3e515d5cbd730a09b8bc13e31","sha256":"6234a0460650008321f66ba33533235bb911f22bdf6d14c94bbc5a44e457fbcf","sha512":"908e7741070de0949f9ee1e6b99dfdcd9bdb0fef425e8cdc9bd934bf178aee03bf9f58ac5d5671c6cee56ad3b2bebdf4787ff4c136671cf920f64e4211820d20","ssdeep":"","tlshash":"d5f0e7087aa066109ab114894b5f351950df52479989d81df95e87b44f9325705301fa","size":584,"data":"","first_seen":"2026-06-11T12:42:43.244092Z","last_seen":"2026-06-11T13:19:30.23989Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"43.199.49.99:887/?u=aHR0cHM6Ly9iZXQzNjVmLnZpcC8%3D\u0026p=Lw==","fqdn":"43.199.49.99","domain":"43.199.49.99","tld":""},"ip":{"addr":"43.199.49.99","port":887,"asn":16509,"as":"AMAZON-02","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-11T12:42:12.110Z","timestamp":1781181732110,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"43.199.49.99","organization":""},"issuer":{"commonName":"ZeroSSL RSA DV SSL CA 2","organization":"ZeroSSL GmbH"},"validity":{"start":"Thu, 28 May 2026 00:00:00 GMT","end":"Wed, 26 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A3:80:4C:DB:E6:23:6D:25:E3:C9:BF:10:D2:8D:E6:4A:66:CF:D2:B0","sha256":"52:CA:66:DA:E1:32:95:46:7D:A9:64:6B:B3:37:1D:FA:A8:F3:A4:36:F4:A8:E5:E3:99:1A:0C:77:E6:DC:BF:6B"}}},"request":{"raw":"GET /?u=aHR0cHM6Ly9iZXQzNjVmLnZpcC8%3D\u0026p=Lw== HTTP/1.1\r\nHost: 43.199.49.99:887\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bet365f.vip/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: openresty\r\ndate: Thu, 11 Jun 2026 12:42:13 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer-when-downgrade\r\ncontent-security-policy: default-src 'self' http: https: data: blob: 'unsafe-inline'; frame-ancestors 'self';\r\npermissions-policy: interest-cohort=()\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":332,"size_decoded":686,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (330), with CRLF line terminators","md5":"828f24a8351dd46a814d7f1b1e408aec","sha1":"63bb3f3f6ac45224f9790f68f8ce82fab781374e","sha256":"5d19565df2a9e28ecf73d0fe1f3d7be7e3a20b2850d6db870cfa4a2462b70d76","sha512":"7bb99dc5b881ef1fa05e5822c3bd3a450537fc1c6e74879efb106d1d305b1d75616dd8c0dc226f252161dc74b92f94cf79568cae8806cbe21d43dd6dda89d1d3","ssdeep":"","tlshash":"50e026a32c8288749aa0316fb737eb8d358159822b60e08480994c17945cf49cd38fd0","first_seen":"2026-06-11T12:42:43.21443Z","last_seen":"2026-06-11T13:19:30.228655Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1067,"timings":{"blocked":-1,"dns":0,"connect":264,"send":0,"wait":270,"receive":0,"ssl":532},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/jquery-1.11.2.min.js","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://223.26.52.240:36013/","date":"2026-06-11T12:42:14.533Z","timestamp":1781181734533,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"223.26.52.240","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 20 Mar 2026 00:00:00 GMT","end":"Thu, 18 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:68:D3:14:99:21:9F:B8:4A:EB:F7:FF:DC:52:E8:53:A9:EB:D4:97","sha256":"C7:5E:82:7E:D1:56:DE:F6:2F:58:FE:B3:8B:46:5A:58:FD:AF:46:8E:CD:F1:03:D4:55:65:4A:0C:9C:F1:FD:E8"}}},"request":{"raw":"GET /jquery-1.11.2.min.js HTTP/1.1\r\nHost: 223.26.52.240:36013\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://223.26.52.240:36013/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 11 Jun 2026 12:42:14 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Tue, 24 Jun 2025 09:38:21 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"685a720d-176de\"\r\nCache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0\r\nPragma: no-cache\r\nExpires: 0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":95966,"size_decoded":33958,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32047)","md5":"87e69028f78d75ca225b3dc54d233239","sha1":"b33ee3b42b988eef9d4d62495b6e54e23dd642fd","sha256":"d4ec583c7604001f87233d1fe0076cbd909f15a5f8c6b4c3f5dd81b462d79d32","sha512":"6679e3ee7d02d17cf5b5d93a8a1dfd58f9b79120936442a75ffed668d6f2496ec615bc128cee6bf7fb8e0062cc6e0bfa96523519d8210bbc5d690b05512b4cd7","ssdeep":"1536:5P1vk7i6GUHdXXeyQazBu+4HhiO2AEeLNFoqqhJ7SerN5sVI6xcBgPv7E+nzms9l:A4Ud4qhJvNPqcB47MfWWca98Hrh","tlshash":"d093e8d9b7d67062977730b850bf510bb13a98eab80c4c60f1a4d8e47e74a89507bf2d","first_seen":"2023-03-07T01:10:31Z","last_seen":"2026-06-16T17:13:18.02908Z","times_seen":1795,"resource_available":true,"data":null}},"time_used":546,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":275,"receive":271,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3656.tstdmn.cc/matomo.js","fqdn":"3656.tstdmn.cc","domain":"tstdmn.cc","tld":"cc"},"ip":{"addr":"34.92.23.236","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://223.26.52.240:36013/","date":"2026-06-11T12:42:14.762Z","timestamp":1781181734762,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3656.tstdmn.cc","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 11:08:05 GMT","end":"Mon, 24 Aug 2026 11:08:04 GMT"},"fingerprint":{"sha1":"D5:27:E6:4F:30:E3:76:3F:CE:57:4B:67:A5:AE:82:D0:6C:B6:F6:F6","sha256":"6D:AF:1C:A8:61:75:06:7F:8C:7B:FE:A7:04:F3:B1:23:1E:A3:82:73:00:0B:28:74:A9:AE:DB:1E:6A:FE:EB:6E"}}},"request":{"raw":"GET /matomo.js HTTP/1.1\r\nHost: 3656.tstdmn.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://223.26.52.240:36013/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 11 Jun 2026 12:42:16 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":67460,"size_decoded":22091,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2854)","md5":"97b41888a87c22615114d73c91cc70a3","sha1":"a9e02fdb328a29bd8753e7000d0afe6ef635aad1","sha256":"f2e8975ed834c578c50d3923ceb26de04d4fa44f74380f45f147585d909a874d","sha512":"0023e6fd1e095cb37ffd94393f583f9a1ad1fe18a03b72bd035d431401038b48cc9689e2bbf4b0bbee5b6082e77db6e2bdd55b4d5ffb1c45f86e0f330789c10f","ssdeep":"1536:ATgnSINAJrRJqerEKlFXhuXEy+XzsyWbuds06Vdda8EbdAAOV4ITzvBCQaFLa:AT+Z2fuULzsyWbbVdda8EbdAA0XvBv5","tlshash":"0263d5ca72c275398bca6074603f1187b17aada7144cc4a4f56ac4fa3c3891e957bf78","first_seen":"2024-05-09T17:51:40Z","last_seen":"2026-06-17T16:09:01.217005Z","times_seen":5118,"resource_available":true,"data":null}},"time_used":1652,"timings":{"blocked":-1,"dns":539,"connect":221,"send":0,"wait":441,"receive":6,"ssl":445},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"3656.tstdmn.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/favicon.ico","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://223.26.52.240:36013/","date":"2026-06-11T12:42:15.268Z","timestamp":1781181735268,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"223.26.52.240","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 20 Mar 2026 00:00:00 GMT","end":"Thu, 18 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:68:D3:14:99:21:9F:B8:4A:EB:F7:FF:DC:52:E8:53:A9:EB:D4:97","sha256":"C7:5E:82:7E:D1:56:DE:F6:2F:58:FE:B3:8B:46:5A:58:FD:AF:46:8E:CD:F1:03:D4:55:65:4A:0C:9C:F1:FD:E8"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 223.26.52.240:36013\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://223.26.52.240:36013/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 11 Jun 2026 12:42:15 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 4286\r\nLast-Modified: Tue, 24 Jun 2025 09:38:21 GMT\r\nConnection: keep-alive\r\nETag: \"685a720d-10be\"\r\nCache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0\r\nPragma: no-cache\r\nExpires: 0\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4286,"size_decoded":4633,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"1ba2ae710d927f13d483fd5d1e548c9b","sha1":"c0605efed936ee2600284e6480521d06fa64f872","sha256":"db74ab0b78338c1f778f8398c45f4103c99aea0e845a3118a7750b4eeafd3445","sha512":"f933cd352eaba92f509b3863353ddfefadfada26a4152ecdc4727d450bbf35e7b10fb3038fe8db340d5c63d74e608c1560ec84d0f6ffc8ccd940c9e0d7533544","ssdeep":"48:i3H5R5hLOR4kt38PduMoglJrd6qTrp9hweFC0+6Ga:ipHFUs4MLBvuyCda","tlshash":"ee9175df61c388d9c1b1977f78c449a14f6fd951ba28351f55cf30622e5d75818c1c46","first_seen":"2023-04-18T17:42:03Z","last_seen":"2026-06-17T17:04:30.018366Z","times_seen":6297,"resource_available":false,"data":null}},"time_used":272,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-11T12:42:13.310Z","timestamp":1781181733310,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"223.26.52.240","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 20 Mar 2026 00:00:00 GMT","end":"Thu, 18 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:68:D3:14:99:21:9F:B8:4A:EB:F7:FF:DC:52:E8:53:A9:EB:D4:97","sha256":"C7:5E:82:7E:D1:56:DE:F6:2F:58:FE:B3:8B:46:5A:58:FD:AF:46:8E:CD:F1:03:D4:55:65:4A:0C:9C:F1:FD:E8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: 223.26.52.240:36013\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://43.199.49.99:887/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 11 Jun 2026 12:42:14 GMT\r\nContent-Type: text/html\r\nLast-Modified: Tue, 24 Jun 2025 09:38:21 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"685a720d-3f8d\"\r\nCache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0\r\nPragma: no-cache\r\nExpires: 0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16269,"size_decoded":7489,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (6257), with CRLF line terminators","md5":"c495f0d9715dac25fd4f3ab30ae917d4","sha1":"c6bcb2f8dc75c22874129625bbccde3a4d998a41","sha256":"87bfd876a14e0c217c3cfe1b32b8e0a5d009f7de51e2804b9c5b6272a0b59421","sha512":"f9596256169648607d9f5f1c9d78e22534bc2fcf91f5fb8ce46745895810c8046b513c06fcf29caa6f09200afc332e7ec0257add1b9b2465e5d7e8871021e09f","ssdeep":"384:5y42lKuUUhtb2p3pcRQclNIgzt4kT5J2YrEO:042lKd6CpZcRQei2XrEO","tlshash":"8172397aa5045c4a1a3757349bb6aa0efde4182b4711c288fe8c66522fb0a504c13ffc","first_seen":"2025-08-31T07:57:37.92391Z","last_seen":"2026-06-11T13:19:30.221129Z","times_seen":5,"resource_available":true,"data":null}},"time_used":1104,"timings":{"blocked":-1,"dns":0,"connect":272,"send":0,"wait":272,"receive":0,"ssl":560},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"223.26.52.240:36013/h.js","fqdn":"223.26.52.240","domain":"223.26.52.240","tld":""},"ip":{"addr":"223.26.52.240","port":36013,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://223.26.52.240:36013/","date":"2026-06-11T12:42:14.535Z","timestamp":1781181734535,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"223.26.52.240","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 20 Mar 2026 00:00:00 GMT","end":"Thu, 18 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"81:68:D3:14:99:21:9F:B8:4A:EB:F7:FF:DC:52:E8:53:A9:EB:D4:97","sha256":"C7:5E:82:7E:D1:56:DE:F6:2F:58:FE:B3:8B:46:5A:58:FD:AF:46:8E:CD:F1:03:D4:55:65:4A:0C:9C:F1:FD:E8"}}},"request":{"raw":"GET /h.js HTTP/1.1\r\nHost: 223.26.52.240:36013\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://223.26.52.240:36013/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 11 Jun 2026 12:42:14 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Tue, 24 Jun 2025 09:38:21 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"685a720d-176de\"\r\nCache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0\r\nPragma: no-cache\r\nExpires: 0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":95966,"size_decoded":33958,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32047)","md5":"87e69028f78d75ca225b3dc54d233239","sha1":"b33ee3b42b988eef9d4d62495b6e54e23dd642fd","sha256":"d4ec583c7604001f87233d1fe0076cbd909f15a5f8c6b4c3f5dd81b462d79d32","sha512":"6679e3ee7d02d17cf5b5d93a8a1dfd58f9b79120936442a75ffed668d6f2496ec615bc128cee6bf7fb8e0062cc6e0bfa96523519d8210bbc5d690b05512b4cd7","ssdeep":"1536:5P1vk7i6GUHdXXeyQazBu+4HhiO2AEeLNFoqqhJ7SerN5sVI6xcBgPv7E+nzms9l:A4Ud4qhJvNPqcB47MfWWca98Hrh","tlshash":"d093e8d9b7d67062977730b850bf510bb13a98eab80c4c60f1a4d8e47e74a89507bf2d","first_seen":"2023-03-07T01:10:31Z","last_seen":"2026-06-16T17:13:18.02908Z","times_seen":1795,"resource_available":true,"data":null}},"time_used":563,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":562,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3656.tstdmn.cc/matomo.php?action_name=bet365\u0026idsite=2\u0026rec=1\u0026r=925385\u0026h=12\u0026m=42\u0026s=16\u0026url=https%3A%2F%2F223.26.52.240%3A36013%2F\u0026urlref=https%3A%2F%2F43.199.49.99%3A887%2F\u0026_id=7e76f517fbc4c6bf\u0026_idn=1\u0026send_image=0\u0026_refts=1781181736\u0026_ref=https%3A%2F%2F43.199.49.99%3A887%2F\u0026pv_id=C7idMY\u0026pf_net=844\u0026pf_srv=271\u0026pf_tfr=2\u0026pf_dm1=718\u0026uadata=%7B%7D\u0026pdf=1\u0026qt=0\u0026realp=0\u0026wma=0\u0026fla=0\u0026java=0\u0026ag=0\u0026cookie=1\u0026res=1280x1024","fqdn":"3656.tstdmn.cc","domain":"tstdmn.cc","tld":"cc"},"ip":{"addr":"34.92.23.236","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://223.26.52.240:36013/","date":"2026-06-11T12:42:16.441Z","timestamp":1781181736441,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3656.tstdmn.cc","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 11:08:05 GMT","end":"Mon, 24 Aug 2026 11:08:04 GMT"},"fingerprint":{"sha1":"D5:27:E6:4F:30:E3:76:3F:CE:57:4B:67:A5:AE:82:D0:6C:B6:F6:F6","sha256":"6D:AF:1C:A8:61:75:06:7F:8C:7B:FE:A7:04:F3:B1:23:1E:A3:82:73:00:0B:28:74:A9:AE:DB:1E:6A:FE:EB:6E"}}},"request":{"raw":"POST /matomo.php?action_name=bet365\u0026idsite=2\u0026rec=1\u0026r=925385\u0026h=12\u0026m=42\u0026s=16\u0026url=https%3A%2F%2F223.26.52.240%3A36013%2F\u0026urlref=https%3A%2F%2F43.199.49.99%3A887%2F\u0026_id=7e76f517fbc4c6bf\u0026_idn=1\u0026send_image=0\u0026_refts=1781181736\u0026_ref=https%3A%2F%2F43.199.49.99%3A887%2F\u0026pv_id=C7idMY\u0026pf_net=844\u0026pf_srv=271\u0026pf_tfr=2\u0026pf_dm1=718\u0026uadata=%7B%7D\u0026pdf=1\u0026qt=0\u0026realp=0\u0026wma=0\u0026fla=0\u0026java=0\u0026ag=0\u0026cookie=1\u0026res=1280x1024 HTTP/1.1\r\nHost: 3656.tstdmn.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/x-www-form-urlencoded; charset=utf-8\r\nContent-Length: 0\r\nSec-Fetch-Storage-Access: none\r\nOrigin: https://223.26.52.240:36013\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://223.26.52.240:36013/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 204 No Response\r\nDate: Thu, 11 Jun 2026 12:42:16 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nConnection: keep-alive\r\nX-Powered-By: PHP/7.4.33\r\nAccess-Control-Allow-Origin: https://223.26.52.240:36013\r\nAccess-Control-Allow-Credentials: true\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Response","fingerprints":[{"name":"PHP:7.4.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":253,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-17T16:31:16.86313Z","times_seen":16488318,"resource_available":true,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"3656.tstdmn.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet365f.vip/","fqdn":"bet365f.vip","domain":"bet365f.vip","tld":"vip"},"ip":{"addr":"223.26.61.234","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-11T12:42:10.233Z","timestamp":1781181730233,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet365f.vip","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Sat, 28 Mar 2026 00:00:00 GMT","end":"Fri, 26 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:66:5E:34:68:F9:1C:0C:F8:BA:C2:00:0F:A9:36:BA:F4:15:35:27","sha256":"3F:9B:15:C5:5E:E9:32:28:17:D1:A3:FF:F8:E1:1F:F8:FA:99:04:87:E3:0F:F8:22:3E:CC:BB:3B:5F:32:8D:B1"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bet365f.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 11 Jun 2026 12:42:11 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\ncache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0\r\npragma: no-cache\r\nexpires: 0\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-17T16:31:16.86313Z","times_seen":16488318,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"bet365f.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"bet365f.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"bet365f.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"bet365f.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}