{"report_id":"66143919-4d6f-4cdc-94a5-f1535525f0d2","version":6,"status":"done","tags":[],"date":"2026-04-18T14:03:22Z","url":{"schema":"http","addr":"aicloudcmp.vip","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":0,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"https","addr":"aicloudcmp.vip/","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"title":"TrustDefi","dom":{"size":91429,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (65536), with no line terminators","md5":"f3c216385ec0652b05e4fb0b38628fca","sha1":"fc2152da64f52ea460622723ea5b1251b7aad000","sha256":"d815ebd3216bea38cb8d8fd62287240529540e23386993fc81bad19447903569","sha512":"28179338118480f4f88813f870b794f1cdb77fb4df17ac48a65e902b5c330c0abf577b3ea0dacfe9aaf90808329b7cd714f16187ca93d79a67dc99d64bcda9bb","ssdeep":"1536:x4723yzI4nPVZBiXwYrO92oK1IcAIWPjlaKnD3rDCSd5gEnVN2Dp3i/jHfnAg73l:x4ii04ewYO92oQzAHEKD3rn5xNep0jx","tlshash":"6b93c031741a2d6f42a7c8d0b4a2af8e3c63da0fc45751466eed93096fcbef0ac59560","dom_hash":"domhash7cca9959e3e532278f61fde87582e3a6","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"aicloudcmp.vip","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":0,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-23T14:03:22Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"aicloudcmp.vip","ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"domain_registered":"2025-07-27","domain_rank":0,"first_seen":"2026-04-18T14:03:23.651802Z","last_seen":"2026-04-18T14:03:23.651802Z","alert_count":0,"request_count":13,"received_data":1530557,"sent_data":5717,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"api.trustdefi.vip","ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"domain_registered":"2025-05-16","domain_rank":0,"first_seen":"2026-04-18T14:03:23.647803Z","last_seen":"2026-04-18T14:03:23.647803Z","alert_count":28,"request_count":14,"received_data":23304,"sent_data":7041,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"aicloudcmp.vip/js/app.698566db.js","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"bc778361f1367e1428a107e896a2dd2f","sha1":"f681645b1e4327f7c67cb6a075cb1f1e53046905","sha256":"73fa2272a456bb75203325bd0f19d7cb4e35a28c560a13ef98ee9f1b89b8b132","sha512":"11106719d768940253374eeb766a29075c416e24c981a068b62a0b7f7f13a365c772f92c0bc6b7997644e97a550a8c9ca254629adf0fb7801595221251494875","ssdeep":"3072:242sgmttQfUJRqEnDRSL/WlJDUWkXIPmbk6Mkpo8LVnxGf0CZ/yoMj2r1UL7WBgz:Sfk9tUWk7MkpDL506dGw","tlshash":"75146e0523d629bb879153c6d0e76b066bbc00f9a34ec72614fddd7e60ed160a07ba1e","size":199422,"data":"","first_seen":"2026-04-18T14:03:28.959419Z","last_seen":"2026-04-18T14:05:24.604466Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/js/chunk-vendors.30285293.js","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"bfb9221738b15b73e8884f2e904b6ef5","sha1":"f8a273639cbb664a966f9cbe7f07dc96488a17f3","sha256":"9c278138dbd71a293d2cbc4bb2272f20b8e3f0c55c0312c2dbd8ccdaa45fb43d","sha512":"171aeecd02ac5807aafffe2e63d044eddc88d28612e5a8824bc44eab01a5abec451be78495316f8a1de5d07657dabcc6d32e6a791041874b0a4ac549f667da93","ssdeep":"24576:rAiYmisq7mgP9xnoKHhcYddEIvanmqLyx0:rAtmisq7mgP9xnoKHhcYddhvanmq2m","tlshash":"d3153ac5b292f0a547ea11e150bb1006f3396e58740e84a4f1bde8db3d6ad899277f3c","size":956638,"data":"","first_seen":"2026-04-18T14:03:28.921268Z","last_seen":"2026-04-18T14:05:24.602469Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/js/996.1406c87f.js","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"177cceb647ba9079684e2a1c907f25c5","sha1":"8a6b0a5fc35671f73145021b6fcdc19e9136eadc","sha256":"b7b01202481b2658b5918e76ae61857a6c659f5693cd72c01b9f72d53fd56fee","sha512":"e00d7905c497a09165a1cc81805624f70475d068a7a56b323543e3bc5f7bc39f02d893fa7148c27c4076bda22048f2121deb27b22ad3651f9cfa49d08c89ee88","ssdeep":"768:9BM8wZ/1I7cu72TbFFw3vd5grnSUtN2Dp3i/jgLcGnlzKTjO92o2lBHAclLOXwun:01IcAILSd5grnVN2Dp3i/jTrO92o2Bi/","tlshash":"b823d0793e3b384d81a5c2acb0d7641c3d65ad8f54802ba7f05da726ec4bff689025b4","size":47032,"data":"","first_seen":"2026-04-18T14:03:28.934382Z","last_seen":"2026-04-18T14:05:24.592598Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/js/346.ebd5239d.js","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"d3064ef9b3aeb042a67b0279db3c19b6","sha1":"11fc87690b68fff00007024e14c9af83ea23c7d4","sha256":"2a330db359e7cda6001577713a8325d75018f6bdb40dcb934f5fae4e8859eb81","sha512":"db8c4b9e2e82244c9f9a479a12783948e88679a19cbfdb62abc691aeceed4ca35475e452af968fae393b466f3023f616eb10df8cebd3d0033a47bc19e5157f69","ssdeep":"768:KeViDL2OxE8HiiPRTYuYJVV1a3Hwh+jVmyzap5LFFnPVOX1sfC77HgJO:IMpyzIhnPVJC","tlshash":"60c28f60e502a99ef6f341dc99cb546436163fc9704944ad77acec07678bca8e13df21","size":28088,"data":"","first_seen":"2026-04-18T14:03:28.936257Z","last_seen":"2026-04-18T14:05:24.585563Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"aicloudcmp.vip/js/chunk-vendors.30285293.js","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:01.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aicloudcmp.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:51:49 GMT","end":"Mon, 22 Jun 2026 11:51:48 GMT"},"fingerprint":{"sha1":"B1:69:E0:7E:88:FE:6A:2B:7C:1A:C9:3F:A3:13:AB:30:28:BA:C2:C4","sha256":"4A:0C:7F:9A:CE:87:41:B3:34:E3:8E:DD:60:7E:87:EB:E7:2B:1F:92:B4:47:6D:CB:30:21:D7:DB:48:53:81:31"}}},"request":{"raw":"GET /js/chunk-vendors.30285293.js HTTP/1.1\r\nHost: aicloudcmp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:01 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 24 Jul 2025 14:48:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"688247c3-e98de\"\r\nexpires: Sun, 19 Apr 2026 02:03:01 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":956638,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (40328)","md5":"bfb9221738b15b73e8884f2e904b6ef5","sha1":"f8a273639cbb664a966f9cbe7f07dc96488a17f3","sha256":"9c278138dbd71a293d2cbc4bb2272f20b8e3f0c55c0312c2dbd8ccdaa45fb43d","sha512":"171aeecd02ac5807aafffe2e63d044eddc88d28612e5a8824bc44eab01a5abec451be78495316f8a1de5d07657dabcc6d32e6a791041874b0a4ac549f667da93","ssdeep":"24576:rAiYmisq7mgP9xnoKHhcYddEIvanmqLyx0:rAtmisq7mgP9xnoKHhcYddhvanmq2m","tlshash":"d3153ac5b292f0a547ea11e150bb1006f3396e58740e84a4f1bde8db3d6ad899277f3c","first_seen":"2026-04-18T14:03:28.921268Z","last_seen":"2026-04-18T14:05:24.602469Z","times_seen":2,"resource_available":true,"data":null}},"time_used":435,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":435,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/js/app.698566db.js","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:01.163Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aicloudcmp.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:51:49 GMT","end":"Mon, 22 Jun 2026 11:51:48 GMT"},"fingerprint":{"sha1":"B1:69:E0:7E:88:FE:6A:2B:7C:1A:C9:3F:A3:13:AB:30:28:BA:C2:C4","sha256":"4A:0C:7F:9A:CE:87:41:B3:34:E3:8E:DD:60:7E:87:EB:E7:2B:1F:92:B4:47:6D:CB:30:21:D7:DB:48:53:81:31"}}},"request":{"raw":"GET /js/app.698566db.js HTTP/1.1\r\nHost: aicloudcmp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:01 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 24 Jul 2025 14:48:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"688247c3-30afe\"\r\nexpires: Sun, 19 Apr 2026 02:03:01 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":199422,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (28468), with NEL line terminators","md5":"be34986cbb5d24786b660ad01bb3a2ad","sha1":"93743bf6e04beae21cddbd8ed970547122f136f6","sha256":"0ca3f02084aaddbb08fb8d94353aabec8e575c46e13e3b05d91b0310a2aece8d","sha512":"8fba62f77cf98f0f1b9a7c0f8acfc7177c64b5dd4889092f9ce4635b7cac93b1a453aa871eef495fd86649f5f29a56fca8a4b10e150ad65c0aacd366d985e71e","ssdeep":"3072:242sgRyQQGGzHDqClJDUWkXIPmbk6Mkpo8LVnxGf0CZ/dtO1Y6tip7Bgg+:v5tUWk7MkpDL50mZ+w","tlshash":"a1244b0662a617ba86a507c2b0e71b816f7cc0f9d38d872f02ecdb7d60dd3d0617665a","first_seen":"2026-04-18T14:03:28.922738Z","last_seen":"2026-04-18T14:03:28.922738Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1179,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/api/defi/index/index","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:04.774Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"POST /api/defi/index/index HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 27\r\nOrigin: https://aicloudcmp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":27,"data":"{\"address\":\"\",\"type\":\"trx\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:04 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://aicloudcmp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: language=en; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":165,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"456eb18d53b08dd54562fbc89fde802b","sha1":"316e1822530a9cdac2abcc5c4a66fe9273f60334","sha256":"171dab6a53c7a1310e904fcbf59c235d2dc874ea6be73ac291ce3e4893d3ec6d","sha512":"89e01d9097f73e9d1babc560f9359c27afcadc5cdab356041105d3df3e802ae82a374f9bfb28347e96560cd286422193147d8693698e5ff3af50c6a149775cbf","ssdeep":"","tlshash":"06c08c44053c2e4fab28c08984cb0287029c60153c8bca218b6eed9c4e5c8a9a312536","first_seen":"2026-04-18T14:03:28.924343Z","last_seen":"2026-04-18T14:03:28.924343Z","times_seen":1,"resource_available":false,"data":null}},"time_used":291,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":291,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/api/defi/index/get_trc","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:07.771Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"POST /api/defi/index/get_trc HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://aicloudcmp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:07 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://aicloudcmp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: language=en; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":876,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"4c4d487aa4660116533651e5477a8e40","sha1":"856847d44085207a0026188f99a2e44eb61a6d86","sha256":"462cbc9b20f4b04bc3c435ed9a40b2f599a950dd0c40a80e453ea8f5ed401ba6","sha512":"67486640022f1b69a4596ff7f721c4ce8ef13e036f3ad7043f26f46484f5280a77ea527ea53e9fd2ad0e209027eeb9b553d96bca499628d36607e38ce1eec58a","ssdeep":"","tlshash":"83112c8906f93bb67426b61e503bad4145d471c1e58fc40a049cee2653d3438eda3639","first_seen":"2026-04-18T14:03:28.925681Z","last_seen":"2026-04-18T14:03:28.925681Z","times_seen":1,"resource_available":false,"data":null}},"time_used":290,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/api/defi/index/get_trc","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:13.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"POST /api/defi/index/get_trc HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://aicloudcmp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:13 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://aicloudcmp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: language=en; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":874,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"e754893b193d748da293d5a24d54e280","sha1":"c800914cd286f24d643e1e47121f3776d2957834","sha256":"3aab90674164b9abda2cb71f5f4737fd0126f9bf32411c532736db889381502e","sha512":"0bdafc6ffcf104a2be5734a9d767e4f9e1d2b3b116f93b68741a4503563ade24ea42b6ff06d08643878524df34137010bff3c7c01968043b669a62d57f28dd35","ssdeep":"","tlshash":"34118c4452ed3bbbd12af58a501fad4489d8b4c0f09e8c5e589c9e2d03e3038dda3238","first_seen":"2026-04-18T14:03:28.926786Z","last_seen":"2026-04-18T14:03:28.926786Z","times_seen":1,"resource_available":false,"data":null}},"time_used":288,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":288,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/api/defi/index/get_trc","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:15.771Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"POST /api/defi/index/get_trc HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://aicloudcmp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:15 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://aicloudcmp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: language=en; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":877,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"4518d9d9c03a122d668d4c4328dee5d9","sha1":"f6b7e521d14a76048a19c1e7403325cea4b11aea","sha256":"d24d7d7077d8da47c29acd9d910b950aa76a4836bda222bdf7e5f2f57e75cef9","sha512":"ceefb1d4d2c25cba82c6f85639af572d4470d52d06b54cd9ec6c3fb5b58486c09e3cb39862738017dd5889a7477d22670e1e57e65adb3b725bee193390a19638","ssdeep":"","tlshash":"09118c4821dd3bfa6026f61e162bae05c9c4b1d0e18e890d589ca93953d7038e523239","first_seen":"2026-04-18T14:03:28.928004Z","last_seen":"2026-04-18T14:03:28.928004Z","times_seen":1,"resource_available":false,"data":null}},"time_used":302,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":302,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/api/defi/init/index","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:04.354Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"POST /api/defi/init/index HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://aicloudcmp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:04 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://aicloudcmp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: language=en; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3592,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"9a43ce82130209a99168405b61fc525b","sha1":"eec5321be324cfe8176a20df0bedbe1407a4e49a","sha256":"6687d407da4154007a249e2b861b4834f11b353c7b8b2678d34bc6b81a5809ac","sha512":"67d7a012c38786b8de8104b0de83ae144ae2bac1e9dc8b2df4b9eb4f31af3ee09f6f31283152bc8a68454d62bbc005ff745b77eeafa479e7c80b2a0f51b129ee","ssdeep":"","tlshash":"4d718db3d354492e57d9b7c138cf7929581ba242bf837a6c5f5ad6fa80011a2d42b037","first_seen":"2026-04-18T14:03:28.929367Z","last_seen":"2026-04-18T14:03:28.929367Z","times_seen":1,"resource_available":false,"data":null}},"time_used":422,"timings":{"blocked":102,"dns":0,"connect":0,"send":0,"wait":320,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/css/app.4b4d1efd.css","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:01.166Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aicloudcmp.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:51:49 GMT","end":"Mon, 22 Jun 2026 11:51:48 GMT"},"fingerprint":{"sha1":"B1:69:E0:7E:88:FE:6A:2B:7C:1A:C9:3F:A3:13:AB:30:28:BA:C2:C4","sha256":"4A:0C:7F:9A:CE:87:41:B3:34:E3:8E:DD:60:7E:87:EB:E7:2B:1F:92:B4:47:6D:CB:30:21:D7:DB:48:53:81:31"}}},"request":{"raw":"GET /css/app.4b4d1efd.css HTTP/1.1\r\nHost: aicloudcmp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:01 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 24 Jul 2025 14:48:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"688247c3-65e\"\r\nexpires: Sun, 19 Apr 2026 02:03:01 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1630,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1630), with no line terminators","md5":"bdd37b0996f0ba0c0ff421d429c4275b","sha1":"0fbf7944fffeedf914d0b32c0caf98323e0f1e8b","sha256":"5191cdbc6f72e2632a5ef9152c442f9dd772dd09db34ab89c186784023dec540","sha512":"fc043511115501eef2c855e0ef25e8239a96a11d62c90af27ca803dc81afe3006c8bf866e18e3a48a2b3d14d00c4b1ac3894df95cb11c5946ad276e7a2794073","ssdeep":"","tlshash":"3d3134119296313cb69fb1a2e8e19ece712e5503e303876d757a303f86c3196c171b45","first_seen":"2026-04-18T14:03:28.930576Z","last_seen":"2026-04-18T14:05:24.589377Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1178,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1178,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/api/defi/index/get_trc","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:03.780Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"POST /api/defi/index/get_trc HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://aicloudcmp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:04 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://aicloudcmp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: language=en; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":875,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"f7e86da639367ad350ca7fab62c7fa8a","sha1":"aa7ded0d9b84ae3b277ba90e68089bdf444a3061","sha256":"116b5c283e3aabc75fc477dc17cbbd95830effdf4ab8ffb0a53a14b1f0126914","sha512":"8cbd87616e6f965746c9b82c9aa396c3149329329ffa4e3ae9d29e611dc085b54b1637b1b90b6137a03ff97a58f207259ffa2cbdd227feb01b5e9cd48696f38a","ssdeep":"","tlshash":"64118c8456ec77b6a11ab60a652f7d4585c0f6c5a08f8d0a188caa2642d7478f832236","first_seen":"2026-04-18T14:03:28.931719Z","last_seen":"2026-04-18T14:03:28.931719Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1683,"timings":{"blocked":676,"dns":251,"connect":213,"send":0,"wait":324,"receive":0,"ssl":215},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/js/996.1406c87f.js","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:03.783Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aicloudcmp.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:51:49 GMT","end":"Mon, 22 Jun 2026 11:51:48 GMT"},"fingerprint":{"sha1":"B1:69:E0:7E:88:FE:6A:2B:7C:1A:C9:3F:A3:13:AB:30:28:BA:C2:C4","sha256":"4A:0C:7F:9A:CE:87:41:B3:34:E3:8E:DD:60:7E:87:EB:E7:2B:1F:92:B4:47:6D:CB:30:21:D7:DB:48:53:81:31"}}},"request":{"raw":"GET /js/996.1406c87f.js HTTP/1.1\r\nHost: aicloudcmp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 24 Jul 2025 14:48:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"688247c3-b7b8\"\r\nexpires: Sun, 19 Apr 2026 02:03:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47032,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (46991)","md5":"177cceb647ba9079684e2a1c907f25c5","sha1":"8a6b0a5fc35671f73145021b6fcdc19e9136eadc","sha256":"b7b01202481b2658b5918e76ae61857a6c659f5693cd72c01b9f72d53fd56fee","sha512":"e00d7905c497a09165a1cc81805624f70475d068a7a56b323543e3bc5f7bc39f02d893fa7148c27c4076bda22048f2121deb27b22ad3651f9cfa49d08c89ee88","ssdeep":"768:9BM8wZ/1I7cu72TbFFw3vd5grnSUtN2Dp3i/jgLcGnlzKTjO92o2lBHAclLOXwun:01IcAILSd5grnVN2Dp3i/jTrO92o2Bi/","tlshash":"b823d0793e3b384d81a5c2acb0d7641c3d65ad8f54802ba7f05da726ec4bff689025b4","first_seen":"2026-04-18T14:03:28.934382Z","last_seen":"2026-04-18T14:05:24.592598Z","times_seen":2,"resource_available":true,"data":null}},"time_used":252,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/js/346.ebd5239d.js","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:03.785Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aicloudcmp.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:51:49 GMT","end":"Mon, 22 Jun 2026 11:51:48 GMT"},"fingerprint":{"sha1":"B1:69:E0:7E:88:FE:6A:2B:7C:1A:C9:3F:A3:13:AB:30:28:BA:C2:C4","sha256":"4A:0C:7F:9A:CE:87:41:B3:34:E3:8E:DD:60:7E:87:EB:E7:2B:1F:92:B4:47:6D:CB:30:21:D7:DB:48:53:81:31"}}},"request":{"raw":"GET /js/346.ebd5239d.js HTTP/1.1\r\nHost: aicloudcmp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 24 Jul 2025 14:48:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"688247c3-6db8\"\r\nexpires: Sun, 19 Apr 2026 02:03:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":28088,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (28047)","md5":"d3064ef9b3aeb042a67b0279db3c19b6","sha1":"11fc87690b68fff00007024e14c9af83ea23c7d4","sha256":"2a330db359e7cda6001577713a8325d75018f6bdb40dcb934f5fae4e8859eb81","sha512":"db8c4b9e2e82244c9f9a479a12783948e88679a19cbfdb62abc691aeceed4ca35475e452af968fae393b466f3023f616eb10df8cebd3d0033a47bc19e5157f69","ssdeep":"768:KeViDL2OxE8HiiPRTYuYJVV1a3Hwh+jVmyzap5LFFnPVOX1sfC77HgJO:IMpyzIhnPVJC","tlshash":"60c28f60e502a99ef6f341dc99cb546436163fc9704944ad77acec07678bca8e13df21","first_seen":"2026-04-18T14:03:28.936257Z","last_seen":"2026-04-18T14:05:24.585563Z","times_seen":2,"resource_available":true,"data":null}},"time_used":443,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":443,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/img/message.9cc69601.svg","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:04.254Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aicloudcmp.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:51:49 GMT","end":"Mon, 22 Jun 2026 11:51:48 GMT"},"fingerprint":{"sha1":"B1:69:E0:7E:88:FE:6A:2B:7C:1A:C9:3F:A3:13:AB:30:28:BA:C2:C4","sha256":"4A:0C:7F:9A:CE:87:41:B3:34:E3:8E:DD:60:7E:87:EB:E7:2B:1F:92:B4:47:6D:CB:30:21:D7:DB:48:53:81:31"}}},"request":{"raw":"GET /img/message.9cc69601.svg HTTP/1.1\r\nHost: aicloudcmp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:04 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 1781\r\nlast-modified: Thu, 24 Jul 2025 14:48:35 GMT\r\netag: \"688247c3-6f5\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1781,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c6fccae59fd8b839eabbb44c7d26eeef","sha1":"a0fd36ae57ecb4295b1a31b4bbf5a407478bad55","sha256":"1e3e4bc96762c9e2b3c26ecd44c0de8cf36dc32529a78ab0a3c00fd095132c6a","sha512":"84639ed7a43f1256e85df3e3c1e5590d6ab34eb04d33b9bf233e3bd103bc39567f59476c481b173168be74db091c8e8ef4205906d716ef65a16f945b5622f71c","ssdeep":"","tlshash":"2b3161bdd78c2974ad1887dcf32d07892a3e108ad9d29e2ec9815f718ac76590f109ac","first_seen":"2025-07-05T21:31:41.852069Z","last_seen":"2026-04-18T14:05:24.59446Z","times_seen":3,"resource_available":false,"data":null}},"time_used":233,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":233,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/api/defi/index/index","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:04.356Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"OPTIONS /api/defi/index/index HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://aicloudcmp.vip/\r\nOrigin: https://aicloudcmp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:04 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://aicloudcmp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: content-type\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-01T20:39:36.43473Z","times_seen":14491076,"resource_available":true,"data":null}},"time_used":417,"timings":{"blocked":100,"dns":0,"connect":0,"send":0,"wait":317,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/api/defi/index/index","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:04.802Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"POST /api/defi/index/index HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 27\r\nOrigin: https://aicloudcmp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":27,"data":"{\"address\":\"\",\"type\":\"trx\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:04 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://aicloudcmp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: language=en; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":165,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"456eb18d53b08dd54562fbc89fde802b","sha1":"316e1822530a9cdac2abcc5c4a66fe9273f60334","sha256":"171dab6a53c7a1310e904fcbf59c235d2dc874ea6be73ac291ce3e4893d3ec6d","sha512":"89e01d9097f73e9d1babc560f9359c27afcadc5cdab356041105d3df3e802ae82a374f9bfb28347e96560cd286422193147d8693698e5ff3af50c6a149775cbf","ssdeep":"","tlshash":"06c08c44053c2e4fab28c08984cb0287029c60153c8bca218b6eed9c4e5c8a9a312536","first_seen":"2026-04-18T14:03:28.924343Z","last_seen":"2026-04-18T14:03:28.924343Z","times_seen":1,"resource_available":false,"data":null}},"time_used":290,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/css/346.d6fd59ff.css","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:03.784Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aicloudcmp.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:51:49 GMT","end":"Mon, 22 Jun 2026 11:51:48 GMT"},"fingerprint":{"sha1":"B1:69:E0:7E:88:FE:6A:2B:7C:1A:C9:3F:A3:13:AB:30:28:BA:C2:C4","sha256":"4A:0C:7F:9A:CE:87:41:B3:34:E3:8E:DD:60:7E:87:EB:E7:2B:1F:92:B4:47:6D:CB:30:21:D7:DB:48:53:81:31"}}},"request":{"raw":"GET /css/346.d6fd59ff.css HTTP/1.1\r\nHost: aicloudcmp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:03 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 24 Jul 2025 14:48:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"688247c3-1358\"\r\nexpires: Sun, 19 Apr 2026 02:03:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4952,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (4952), with no line terminators","md5":"556b5ac8e3feff18484dd9d99be49761","sha1":"e84f21039ced47a83614aa23f549cc2c50f97498","sha256":"7c4621b9d51dea22826120ee2b9a158ced26fd7a5d1c5af10c6366832f09ea7d","sha512":"98c9774ddcde200af925db57692bb68c4c31c8d38af16f420efa51e2446ad80235064f8d3ced84f3ff3c13ae1945f74d138cd0bb651851c29bb2aa00f6f931f8","ssdeep":"96:4I64vEP24DGXS2+DEwB09d6DDZUVcYhfRejexeODhF6:4jcEPGw0IDA1hfRejexeeu","tlshash":"18a165137e99202eb1bfe155e8e099ce7215b783c01247b9ee937435ce8b1d33696b48","first_seen":"2026-04-18T14:03:28.940245Z","last_seen":"2026-04-18T14:05:24.593231Z","times_seen":2,"resource_available":false,"data":null}},"time_used":280,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":280,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/images/trx.png","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:04.258Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aicloudcmp.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:51:49 GMT","end":"Mon, 22 Jun 2026 11:51:48 GMT"},"fingerprint":{"sha1":"B1:69:E0:7E:88:FE:6A:2B:7C:1A:C9:3F:A3:13:AB:30:28:BA:C2:C4","sha256":"4A:0C:7F:9A:CE:87:41:B3:34:E3:8E:DD:60:7E:87:EB:E7:2B:1F:92:B4:47:6D:CB:30:21:D7:DB:48:53:81:31"}}},"request":{"raw":"GET /images/trx.png HTTP/1.1\r\nHost: aicloudcmp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:04 GMT\r\ncontent-type: image/png\r\ncontent-length: 5116\r\nlast-modified: Thu, 24 Jul 2025 14:48:35 GMT\r\netag: \"688247c3-13fc\"\r\nexpires: Mon, 18 May 2026 14:03:04 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5116,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit colormap, non-interlaced","md5":"f42230854676e92743a3eb4fc8318afc","sha1":"bf91139cbd46a7fe293757bd4c6230e6601ea35f","sha256":"df4592c9d04214ef5325c4e62ea48284ed6bb100754dc8dbc7eae4ef132802fb","sha512":"b769ac7884ff0fdf09b313730f0f86ffa9c1502f7c0be5c57738cc1c78b7645e0ec5eac3cd3a0c0c32d81787145eea287db2bd22c67d714a33d9aa092d35dbc8","ssdeep":"96:vMYTxkWd3ZkVJejP2ueqW+pj7SX+2jE+5PIsQPLN:vMgxNJC6P23qW+teX+215PnQPx","tlshash":"e9b19f6b6f6cb5b9ed1fcf321b84180c1010bde34079dfae942470249c12542c887f92","first_seen":"2026-04-18T14:03:28.942638Z","last_seen":"2026-04-18T14:05:24.59526Z","times_seen":2,"resource_available":false,"data":null}},"time_used":235,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":234,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/img/ejc6gag014.9a7fe869.png","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:04.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aicloudcmp.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:51:49 GMT","end":"Mon, 22 Jun 2026 11:51:48 GMT"},"fingerprint":{"sha1":"B1:69:E0:7E:88:FE:6A:2B:7C:1A:C9:3F:A3:13:AB:30:28:BA:C2:C4","sha256":"4A:0C:7F:9A:CE:87:41:B3:34:E3:8E:DD:60:7E:87:EB:E7:2B:1F:92:B4:47:6D:CB:30:21:D7:DB:48:53:81:31"}}},"request":{"raw":"GET /img/ejc6gag014.9a7fe869.png HTTP/1.1\r\nHost: aicloudcmp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:04 GMT\r\ncontent-type: image/png\r\ncontent-length: 10177\r\nlast-modified: Thu, 24 Jul 2025 14:48:35 GMT\r\netag: \"688247c3-27c1\"\r\nexpires: Mon, 18 May 2026 14:03:04 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10177,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 240 x 134, 8-bit/color RGBA, non-interlaced","md5":"53b0c01c8a10c52ae6b9deb21ace5c91","sha1":"5e95e84be452d5442db24738e9cedf3b5a32b731","sha256":"84e4bcf3e237e323a2e8774e3427ae3855211a03dde213452b6b07a093a032e0","sha512":"2d813f1f2b488c7a9c9038b03e8a62115e7ca2946aaedcb0ebdf04c308ae5e4da5715cb85d78726b9b0d8e72db00f28e37dc9416e05990f86e6e7e3a795f4764","ssdeep":"192:1MZwww2lHkqQdbF22u7B7G8G+XdPVGpPC9tgbq2KmFxDIL/gUj:14www2m5hFXu7B68R7Cq9tgbq2K+xDqj","tlshash":"e622c0c72bc12a3eeff6ae12b1819ec6bd1967467bbc83d4485479d6679c6f8d200900","first_seen":"2025-07-05T21:31:41.925443Z","last_seen":"2026-04-18T14:05:24.595867Z","times_seen":4,"resource_available":false,"data":null}},"time_used":410,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":410,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/api/defi/index/index","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:04.358Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"OPTIONS /api/defi/index/index HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://aicloudcmp.vip/\r\nOrigin: https://aicloudcmp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:04 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://aicloudcmp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: content-type\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-01T20:39:36.43473Z","times_seen":14491076,"resource_available":true,"data":null}},"time_used":385,"timings":{"blocked":99,"dns":0,"connect":0,"send":0,"wait":286,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/favicon.ico","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:05.073Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aicloudcmp.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:51:49 GMT","end":"Mon, 22 Jun 2026 11:51:48 GMT"},"fingerprint":{"sha1":"B1:69:E0:7E:88:FE:6A:2B:7C:1A:C9:3F:A3:13:AB:30:28:BA:C2:C4","sha256":"4A:0C:7F:9A:CE:87:41:B3:34:E3:8E:DD:60:7E:87:EB:E7:2B:1F:92:B4:47:6D:CB:30:21:D7:DB:48:53:81:31"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: aicloudcmp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:05 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 9662\r\nlast-modified: Thu, 24 Jul 2025 14:48:35 GMT\r\netag: \"688247c3-25be\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9662,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel","md5":"930c979c639d03137475ffcc09f25efd","sha1":"2b8c0d75a4ccb0da37b2c767401792bf43ec7ff6","sha256":"7417add0501a26e9c01e4b69da28205b0144beb670d6f8d702abc6f59e986cd2","sha512":"36003c0b4d24f024624829321dac12d0b0655546ed567cdaac95a8493fd8f850474b6f8d2b8828e4721ca57cafe6c8520b9c17185720fbe8ad87323ef004d28c","ssdeep":"96:9ma2AHi1DvFW9999zu3nLKujmNLxgzfPtJjOVuiH15VwoPzYcLeUy:s6H8DY9999i3n2ujmNLxgzntAioPzJu","tlshash":"c3121fc7e3cb37a8c565b2724364cdff9ff2082b6251aa7652317451b651b00c282bc5","first_seen":"2026-04-18T14:03:28.946083Z","last_seen":"2026-04-18T14:05:24.600202Z","times_seen":2,"resource_available":false,"data":null}},"time_used":219,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":218,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/api/defi/index/get_trc","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:05.769Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"POST /api/defi/index/get_trc HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://aicloudcmp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:05 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://aicloudcmp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: language=en; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":873,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"4cfeb629cc32bd709a99dde41c8b55d5","sha1":"35945aa72a9687d52c27e82f0e652806d3be7168","sha256":"624a56ebb9a8a0c5a51f5c30c0b8fdd9266e3135c18b171d0adcaa04c8175a38","sha512":"baeb9121e7a3d1b273dfc0d0fffe3de19d05a43494da6a5ea75c57201f8274a81df31acb8b074cab57c296f6a81a8da5831926ece6a0a13316915625e1daffe9","ssdeep":"","tlshash":"4511408443ed37f69466b54a112fae0285d4f2d0e18e481a58dcca2906e2178e863375","first_seen":"2026-04-18T14:03:28.94751Z","last_seen":"2026-04-18T14:03:28.94751Z","times_seen":1,"resource_available":false,"data":null}},"time_used":286,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":286,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/api/defi/index/get_trc","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:09.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"POST /api/defi/index/get_trc HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://aicloudcmp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:09 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://aicloudcmp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: language=en; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":875,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"fa6f2cad01b45da984db5e00e871a7f2","sha1":"fa8605129cac1221fa8e50e3a86429ddee7690ee","sha256":"9957f59ad5744151e7b9f796d0f0d91d6fcc99e3dc98deaae8c0c461ea2548ca","sha512":"ccf1ea57108c74b15bd68b92606914d0b8c6c827b5f9d28edf9afc4d5ee5fe0af3be32bc80e858ab95fcbc42e0d168282102b5eb1720dadf1271a0265d2f9456","ssdeep":"","tlshash":"5b115c8846dc37baa015f54d122fad42c9d5b2c1b19e8a0658cc893a22e2428e95313d","first_seen":"2026-04-18T14:03:28.948676Z","last_seen":"2026-04-18T14:03:28.948676Z","times_seen":1,"resource_available":false,"data":null}},"time_used":305,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":305,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/api/defi/index/get_trc","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:11.771Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"POST /api/defi/index/get_trc HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://aicloudcmp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:11 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://aicloudcmp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: language=en; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":876,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"c7dd1f8ad70cd765164978b98a29c0a4","sha1":"207c23dfd5c5e42711c02f25f35457de23f4b5a8","sha256":"313d6c6be62b0091a5daafe864820de7e99cf73bf3da8ae7e35dd245a8d721d1","sha512":"043aa457e1e8c81eae4aa38e6b3b7e534524a365949e4f6c2dfd269e3683ce2daa2035d0c562d820ccf543ed23853c880f712fac9bedfa5116b0d41ce6efd240","ssdeep":"","tlshash":"06118c8842ed3bbb7816b94a116bad05c9d0b2d0a04ecc0e188c8f7e12d3124e97213d","first_seen":"2026-04-18T14:03:28.949653Z","last_seen":"2026-04-18T14:03:28.949653Z","times_seen":1,"resource_available":false,"data":null}},"time_used":289,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":289,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-18T14:03:00.171Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aicloudcmp.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:51:49 GMT","end":"Mon, 22 Jun 2026 11:51:48 GMT"},"fingerprint":{"sha1":"B1:69:E0:7E:88:FE:6A:2B:7C:1A:C9:3F:A3:13:AB:30:28:BA:C2:C4","sha256":"4A:0C:7F:9A:CE:87:41:B3:34:E3:8E:DD:60:7E:87:EB:E7:2B:1F:92:B4:47:6D:CB:30:21:D7:DB:48:53:81:31"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: aicloudcmp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:00 GMT\r\ncontent-type: text/html\r\ncontent-length: 656\r\nlast-modified: Thu, 24 Jul 2025 14:48:35 GMT\r\netag: \"688247c3-290\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":656,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (656), with no line terminators","md5":"0d28cba89dad426b2d4f9ab12b2ad7f5","sha1":"d51e152272b31410cae46b32c548a0e5af669013","sha256":"db1f9f1775010d4492ebff08db8165afeede25d1b9486adf0d27cbc5663ddb69","sha512":"fe0f4ff22e046f7cfc52ca2121868f3fd117ca2e78d3f5fffd5ee9b6860afff0f71d481affedf0311073e4c34c757729b093e535f3983a79cdbb51a673854af2","ssdeep":"","tlshash":"9ef0dd82cc10948d57a01e96bdb0f32ed8cbad4c8a21acd071f9817d0de4fc99e5a804","first_seen":"2026-04-18T14:03:28.950805Z","last_seen":"2026-04-18T14:05:24.597928Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1271,"timings":{"blocked":526,"dns":77,"connect":224,"send":0,"wait":219,"receive":0,"ssl":222},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/css/chunk-vendors.14d2b275.css","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:01.164Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aicloudcmp.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:51:49 GMT","end":"Mon, 22 Jun 2026 11:51:48 GMT"},"fingerprint":{"sha1":"B1:69:E0:7E:88:FE:6A:2B:7C:1A:C9:3F:A3:13:AB:30:28:BA:C2:C4","sha256":"4A:0C:7F:9A:CE:87:41:B3:34:E3:8E:DD:60:7E:87:EB:E7:2B:1F:92:B4:47:6D:CB:30:21:D7:DB:48:53:81:31"}}},"request":{"raw":"GET /css/chunk-vendors.14d2b275.css HTTP/1.1\r\nHost: aicloudcmp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:01 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 24 Jul 2025 14:48:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"688247c3-3072e\"\r\nexpires: Sun, 19 Apr 2026 02:03:01 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":198446,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"163c1d7867ff996dd02f098c3764cba6","sha1":"1da52d1654a43ca3adb4f3f40826a64512310d16","sha256":"6b41fc0059fe07e5140a51737f2b5a505c5fc7a643509abcb967d27a823199e5","sha512":"8a8c8e36061aa7f1fa64ca0fa8a4e6c5b537ccca07dc3397b287096ff0b87f0dc1ff1436b13e8a1611834f412fbc0dd1cbdf98c5d19a649b1c8e697df43bc21f","ssdeep":"1536:nKQbFNJ+jqkiHckCwsBlDOFIxuVoxy0n6crxrAbpaIzg7sVgV5Ya:nfClDsIxuVSq5q7aa","tlshash":"901473a9e690a17c7f27f1759b8b96dcf13cf960ed01daa4f10191580ec7bf1062362a","first_seen":"2025-05-28T12:54:32.710776Z","last_seen":"2026-04-28T21:04:05.097457Z","times_seen":20,"resource_available":false,"data":null}},"time_used":1179,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aicloudcmp.vip/img/banner.6a18f455.png","fqdn":"aicloudcmp.vip","domain":"aicloudcmp.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:04.265Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aicloudcmp.vip","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:51:49 GMT","end":"Mon, 22 Jun 2026 11:51:48 GMT"},"fingerprint":{"sha1":"B1:69:E0:7E:88:FE:6A:2B:7C:1A:C9:3F:A3:13:AB:30:28:BA:C2:C4","sha256":"4A:0C:7F:9A:CE:87:41:B3:34:E3:8E:DD:60:7E:87:EB:E7:2B:1F:92:B4:47:6D:CB:30:21:D7:DB:48:53:81:31"}}},"request":{"raw":"GET /img/banner.6a18f455.png HTTP/1.1\r\nHost: aicloudcmp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:04 GMT\r\ncontent-type: image/png\r\ncontent-length: 62623\r\nlast-modified: Thu, 24 Jul 2025 14:48:35 GMT\r\netag: \"688247c3-f49f\"\r\nexpires: Mon, 18 May 2026 14:03:04 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":62623,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 240 x 198, 8-bit/color RGBA, non-interlaced","md5":"b9ccf8b36c55413ed150e94168a29dc4","sha1":"747f2e2c2108508af048d88d358259914330eb94","sha256":"6ebd37724d44e445249cb37aba60ec71b5315f89ba8cd6b79c8347e5aabf54d2","sha512":"f3cb2eb132c08eb144b50bc0ca83032ae7e8a41ae134dfba8f7f003827d3ba4065f66383f0e47ff7cae7e8fd8a124e08015b33bc3337d12fa2bba0fa6c6db7cc","ssdeep":"1536:6FAI6H8d62gRB8aM75yq2HHIeutlOZ7Cuo6NSXTcfMZe:ACHggRB83d32HoeujOZ7CnYSQ/","tlshash":"0f5302073295ab6586d296229bd94c1ca0a084b4be478c6250eff7b077ce377366773c","first_seen":"2025-07-05T21:31:41.9181Z","last_seen":"2026-04-18T14:05:24.59384Z","times_seen":3,"resource_available":false,"data":null}},"time_used":328,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":258,"receive":70,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/uploads/20250405/c5375bd9f0734d6c28405429ba3aa2a6.png","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:04.810Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"GET /uploads/20250405/c5375bd9f0734d6c28405429ba3aa2a6.png HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:04 GMT\r\ncontent-type: image/png\r\ncontent-length: 7414\r\nlast-modified: Sat, 05 Apr 2025 13:17:08 GMT\r\netag: \"67f12d54-1cf6\"\r\nexpires: Mon, 18 May 2026 14:03:04 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7414,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"c5375bd9f0734d6c28405429ba3aa2a6","sha1":"1dd3105eaef8d1e343ccff1caea72719b2cb0403","sha256":"e4c6b63e97161e3275388578c9d5db6f0c68bda201ac299403728be88ca124af","sha512":"2453090d007e3c55c93efd77dc39d2943189e12855a5b2cb410b403b38f3bf9a7fa0e5731e4a13ef423003684fb12e24da4419a7b672d37a0d7711e7610d6d4b","ssdeep":"192:2rZF3TK2T/TLiTHWnM5vFCvDSCTMAGTk3U5Xqc:2rzhL4WOdCnQAGSmXqc","tlshash":"ece1ae99619239c5ad9bc6f304a27c7bacebc5700b761e91005a14f8abc707d6c5a21f","first_seen":"2025-06-06T16:58:32.61004Z","last_seen":"2026-04-18T14:05:24.597288Z","times_seen":103,"resource_available":false,"data":null}},"time_used":219,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":219,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.trustdefi.vip/api/defi/index/get_trc","fqdn":"api.trustdefi.vip","domain":"trustdefi.vip","tld":"vip"},"ip":{"addr":"39.109.40.21","port":443,"asn":140224,"as":"STARCLOUD GLOBAL PTE., LTD.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aicloudcmp.vip/","date":"2026-04-18T14:03:17.771Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.aicloudcmp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Mar 2026 11:52:03 GMT","end":"Sun, 07 Jun 2026 11:52:02 GMT"},"fingerprint":{"sha1":"FB:5A:21:44:34:7D:47:67:D2:B6:B9:AC:35:D3:3F:0D:E8:27:0A:1A","sha256":"F6:F8:12:B6:79:D3:6C:7F:BC:35:FC:68:C7:D7:AC:15:60:F3:1C:92:4C:97:58:8D:9B:A4:04:83:B6:EB:79:E0"}}},"request":{"raw":"POST /api/defi/index/get_trc HTTP/1.1\r\nHost: api.trustdefi.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://aicloudcmp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aicloudcmp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 18 Apr 2026 14:03:17 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://aicloudcmp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: language=en; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":876,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"9ea24a62d8ae9225447bd1638d36dc49","sha1":"94bc0ad36ebd57d9cc94ece0df67eef9d7a4181f","sha256":"6f3170c39612b385919adf82b171eeab81ec0e13befe8a781377254187166d6b","sha512":"cea54ae32f232c8410b80416982ee263e5dbfa1529543f0b46f0acc5865684624d7c6f5e0ffd60bae0f212cbbeb3f9ebce0e8cb364b9c2ceaa323477b21a9ef2","ssdeep":"","tlshash":"01115c4812ed3bfab41ab54a042bad4185c0b2c4e14e88461cdc9d2703d742cf972639","first_seen":"2026-04-18T14:03:28.958312Z","last_seen":"2026-04-18T14:03:28.958312Z","times_seen":1,"resource_available":false,"data":null}},"time_used":294,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":294,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"api.trustdefi.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.trustdefi.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}