{"report_id":"6aa27ab2-6f16-4f5d-8e1f-84b5de6279bb","version":6,"status":"done","tags":["malicious","clickfix"],"date":"2026-02-13T21:42:00Z","url":{"schema":"https","addr":"bitvalley.exchange/","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":0,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"final":{"url":{"schema":"https","addr":"bitvalley.exchange/","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"title":"Buy \u0026 Sell Bitcoin, Ethereum | Cryptocurrency Exchange | BitValley","dom":{"size":355087,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (4764)","md5":"7d21d16c9628975189d18a54e00ce420","sha1":"e7953f5dfe2f9556cd4377848892e82c17eb4a2d","sha256":"59694e2f0ec63631345536cdeab22768e14d712ca634d9d9bc8b8ce73256a9ff","sha512":"c0c09a2e63a7318581722e01c92d4268ad04f960815371cd2981bd65a76256abe91bcb9f63bbb457de5e61a2bbe76aee8e93413dea4626bd280296af581e9065","ssdeep":"1536:0W4fMalB444sFBIvLwliu3XYRBPANA/3/3AnZckc+IH++JgZPnZckc+IH++JgZB/:j3ltlZ0emqfs8HBpRGGO5DV","tlshash":"db740ae863f452f0a002d3e4da3655763e1678fba741c654f7ac1e84af9288dcd87887","dom_hash":"domhashdb7203ff8a71077c8dac3035d356dfea","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"bitvalley.exchange/","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":0,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-20T21:42:00Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Malicious - Copy/Paste Social Engineering (ClickFix)","verdict":"malicious","severity":"medium","comment":"","tags":["malicious","clickfix"],"meta":null},{"sensor_name":"urlquery","alert":"Malicious - Copy/Paste Social Engineering (ClickFix)","verdict":"malicious","severity":"medium","comment":"","tags":["malicious","clickfix"],"meta":null}]},"summary":[{"fqdn":"api.binance.com","ip":{"addr":"108.157.231.57","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2017-04-01","domain_rank":543119,"first_seen":"2017-12-19T18:31:49Z","last_seen":"2026-02-09T15:25:51.444622Z","alert_count":0,"request_count":9,"received_data":41079,"sent_data":4344,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-02-08T22:25:44.117365Z","alert_count":0,"request_count":1,"received_data":347631,"sent_data":497,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":4915,"first_seen":"2012-05-21T17:28:02Z","last_seen":"2026-02-08T22:46:54.368985Z","alert_count":0,"request_count":1,"received_data":88168,"sent_data":459,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-02-08T22:17:48.645662Z","alert_count":0,"request_count":1,"received_data":34196,"sent_data":480,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"bitvalley.exchange","ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-02-12T22:01:45.570205Z","last_seen":"2026-02-12T22:01:45.570205Z","alert_count":160,"request_count":53,"received_data":5868744,"sent_data":27373,"comment":"","tags":null,"fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"Chart.js","description":"Chart.js is an open-source JavaScript library that allows you to draw different types of charts by using the HTML5 canvas element.","website":"https://www.chartjs.org","common_platform_enumeration":"","icon":"Chart.js.svg","categories":["JavaScript graphics"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-02-08T22:32:21.331091Z","alert_count":0,"request_count":1,"received_data":209296,"sent_data":420,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-02-08T22:14:51.234086Z","alert_count":0,"request_count":3,"received_data":122886,"sent_data":1659,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Malicious - Copy/Paste Social Engineering (ClickFix)","verdict":"malicious","severity":"medium","comment":"","tags":["malicious","clickfix"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"bitvalley.exchange/assets/js/main.js?v=5","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"6409d98ed3cbf6db97d351f0423f42f7","sha1":"6052163324873f34d80ddb789c07a279013e9394","sha256":"ea0d7e711fb8baa35e5c6483f6e339b3c92b4f6f01877ec4fc659594e43a26c8","sha512":"f3ef128d5c31b477f5bb3c7ef3da3a103e74323e7d87b7f64f6c8c6e37e930cdae90b52b4bee1370779e9505a51d72ea1eff3627e7cbbf32f2816c1ce9dbe9b7","ssdeep":"384:GXKlo7s8RElXRnwlWsjdKjHYc4NtZYK7roO:GXKlo7s8RElXRnwlWYd0Qr","tlshash":"4ba28298b22129aa813b7379be775646fb380027d341d349bd6c1de11fb2480d993f6e","size":21541,"data":"","first_seen":"2025-02-15T17:58:10.504157Z","last_seen":"2026-04-24T09:21:43.575405Z","times_seen":116,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/js/toastr.js","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"a02ccbbcf3073559037a62af82bfdd24","sha1":"4d5f7b3f3f280698aa26b10e1d7c6dd5708d64aa","sha256":"27f959b17ddfe77ca20a31b9950ebc3fbe8030c3ac376eec7355b2d7925e364c","sha512":"35acaadcc160935be74fb1492b1b0ca205aed6b61d8bd8edf4e26254c7772da02941ec53de59e3d66ce1695cc12de4ed9cf32b750e04659c7c0e2521b4697f22","ssdeep":"192:JJZWM9gzM3t3QrpJvxl6Xs8cZ9tID6CqQwPjOoOg6yS21tl3jWq5T14:JY45Kk7cZDItqLNO6S21tNA","tlshash":"deb20a08695263654cb7737c8aab800cfb769323458a96067dbc92d82f70714d6f6fec","size":24854,"data":"","first_seen":"2023-07-07T00:40:59Z","last_seen":"2026-06-07T23:46:49.515699Z","times_seen":915,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/chart.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e6452e2b454b091f857a45cce7624eae","sha1":"cb555814104cfb8bf88e4d1b21033b495c3c5a77","sha256":"48444a82d4edcb5bec0f1965faacdde18d9c17db3063d042abada2f705c9f54a","sha512":"5a85622a1283e2a2365abb9266abfdfa4bcce167c585431008b3784250d3b79694e7a7cb432da0628c5622a9449d7a89cbff80739abf864d6859faa730387030","ssdeep":"6144:Iy2IGjjkD/6w7tKuhSGmexa2FiKqU/1eFRQ1T9mkb0h3N+2HJ8l/mXI:v+kD/6w74uhSGmexa2FiBeeFRQ1T9mCH","tlshash":"3d14f5d53342b12282e256d2583a050ae33666483547899cf6bc5ddf3c6a98b71fff38","size":208522,"data":"","first_seen":"2025-10-13T17:57:35.280368Z","last_seen":"2026-06-08T01:44:23.32388Z","times_seen":4831,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.7.1.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2c872dbe60f4ba70fb85356113d8b35e","sha1":"ee48592d1fff952fcf06ce0b666ed4785493afdc","sha256":"fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a","sha512":"bf6089ed4698cb8270a8b0c8ad9508ff886a7a842278e98064d5c1790ca3a36d5d69d9f047ef196882554fc104da2c88eb5395f1ee8cf0f3f6ff8869408350fe","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKr:sHNwcv9VBQpLl88SMBQ47GKr","tlshash":"3983f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","size":87533,"data":"","first_seen":"2023-08-31T16:03:19Z","last_seen":"2026-06-08T03:30:15.271637Z","times_seen":166354,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"f9ae0154def1dc2821e00d9853d85bd2","sha1":"b5cabc8f31799a5e5a0fd3244d5cad40b2cf4ce8","sha256":"2ccbb3cbc0409d3002a3092bb23d33fdf171aa10968126bfc329f2f5b5c082ac","sha512":"37fa4bc032794604f7bc56231d1b20bb72320105a7f4cd79680151954484ed02ec272289a63a866884e2542cfa0cf41ba565570b46f870b89a82785cdf01976c","ssdeep":"","tlshash":"3ef0491b1c5360ba22e9507ae73b6e0a22152a876551c4537dacc0286fd08246fadbdd","size":644,"data":"","first_seen":"2025-06-23T06:41:51.794175Z","last_seen":"2026-04-06T12:02:02.584031Z","times_seen":56,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/js/noti.js?v=3","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"e41b40a921ac2e0885d4dbf8ca353bd1","sha1":"69314d61d27169fd89b5e6dad9f67d0ab223f9bf","sha256":"0a576e75e08eeeafa512a817ca2deb694603cc52fe2df865fd797b2218d597b7","sha512":"27a9111206e88b91360618e2c708952e8b335202711b32926910f61997201765abb65dbdea7077b98a2fe5689f96e652918998801e686ef834efb87480936d88","ssdeep":"192:Pu2zR+wyioZAP34P+AN7bkaJPLYFdack34PT7rjaR7FbOgSLdqa34P17rjaR7Fb8:moz/ARdJTYD5exFbRSJ4exFboSzVqeT6","tlshash":"6442715420ca1922457f63b8da925a5dfb22d20b93072aa13afc46d32ff7c54c6c3b1d","size":12105,"data":"","first_seen":"2025-05-02T21:59:25.0883Z","last_seen":"2026-04-09T20:03:33.943451Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"f0bb4a658ec804d3bc0630aafeebebed","sha1":"d57080dacf80b236281287675a7f40b347c413a5","sha256":"bc933a0f568aef5b7e4672d88dba7ccb98e42d24e7c940b470a8f448e9f931df","sha512":"791f376d6e5eab23e7199fd6ffc2f11214a0abd7ce3a3f751c78f3430d761900119429c1e9db2a76646c6b7bd1ac0edbaf4c8d4f041f75b3b3d8acb1e9a29475","ssdeep":"","tlshash":"4a61456c99ba192c507770eb1a9f460a9055e10b3ac6dde97a0c43505fb607cd4fb38a","size":3464,"data":"","first_seen":"2025-06-23T06:41:51.796124Z","last_seen":"2026-04-06T12:02:02.588732Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/untitled-app-modal.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.914Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/untitled-app-modal.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 9947\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-525bae3ee4e2e4a1af49fb0981d7d914-cf18897c82a59f29-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9947,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 345 x 252, 8-bit colormap, non-interlaced","md5":"5559668af3e553fc871a55adf3347819","sha1":"4a699964c855c8f83c2610de0af2419a71257c8c","sha256":"8ac5dfb6306149a3edebaf77bc100de9ffa8af46e56b8bc79716fc701e207617","sha512":"e0edab55aac4f8d743e98bbb7d52ed7c5b1f5b32c84e8cc271015c10d57333c2b458f30b4eb5e41e0c7e91b02dd46a8cf30b9653a3e932949413f85021485967","ssdeep":"96:JHrmqk0gW4mwLtat2J2wx1Q4Hs3NGlGzribeTnSodQNDirGQ0rNpV6x/ddcEoSa8:JHrmqk6QoqeTSoao4pVCdHahAob+8RLE","tlshash":"3b225ba49f9578c0975e1e73b5e5004548330ae7cdc2bd4abdce542a0f28b819f2b9d7","first_seen":"2024-12-06T22:27:57.026807Z","last_seen":"2026-06-05T15:12:51.600657Z","times_seen":385,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/js/noti.js?v=3","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.916Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/js/noti.js?v=3 HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\ncontent-length: 12105\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-fe44528b626a53a6f6628ad7dfd832b7-890c8a6a95b52031-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 1158\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:22:18+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":12105,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (344), with CRLF line terminators","md5":"e41b40a921ac2e0885d4dbf8ca353bd1","sha1":"69314d61d27169fd89b5e6dad9f67d0ab223f9bf","sha256":"0a576e75e08eeeafa512a817ca2deb694603cc52fe2df865fd797b2218d597b7","sha512":"27a9111206e88b91360618e2c708952e8b335202711b32926910f61997201765abb65dbdea7077b98a2fe5689f96e652918998801e686ef834efb87480936d88","ssdeep":"192:Pu2zR+wyioZAP34P+AN7bkaJPLYFdack34PT7rjaR7FbOgSLdqa34P17rjaR7Fb8:moz/ARdJTYD5exFbRSJ4exFboSzVqeT6","tlshash":"6442715420ca1922457f63b8da925a5dfb22d20b93072aa13afc46d32ff7c54c6c3b1d","first_seen":"2025-05-02T21:59:25.0883Z","last_seen":"2026-04-09T20:03:33.943451Z","times_seen":65,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/chart.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.923Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/chart.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=604800, s-maxage=43200\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: application/javascript; charset=utf-8\r\nx-jsd-version: 4.5.1\r\nx-jsd-version-type: version\r\netag: W/\"32e8a-y1VYFBBM+4v4jk0bIQM7SVw8Wnc\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\nage: 12082\r\nx-served-by: cache-fra-etou8220052-FRA, cache-hel1410028-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 71722\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208522,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (56990)","md5":"e6452e2b454b091f857a45cce7624eae","sha1":"cb555814104cfb8bf88e4d1b21033b495c3c5a77","sha256":"48444a82d4edcb5bec0f1965faacdde18d9c17db3063d042abada2f705c9f54a","sha512":"5a85622a1283e2a2365abb9266abfdfa4bcce167c585431008b3784250d3b79694e7a7cb432da0628c5622a9449d7a89cbff80739abf864d6859faa730387030","ssdeep":"6144:Iy2IGjjkD/6w7tKuhSGmexa2FiKqU/1eFRQ1T9mkb0h3N+2HJ8l/mXI:v+kD/6w74uhSGmexa2FiBeeFRQ1T9mCH","tlshash":"3d14f5d53342b12282e256d2583a050ae33666483547899cf6bc5ddf3c6a98b71fff38","first_seen":"2025-10-13T17:57:35.280368Z","last_seen":"2026-06-08T01:44:23.32388Z","times_seen":4831,"resource_available":true,"data":null}},"time_used":162,"timings":{"blocked":8,"dns":2,"connect":13,"send":0,"wait":44,"receive":40,"ssl":28},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.345Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"C0:70:82:EC:9D:28:B5:4B:51:02:7A:C7:BE:63:94:B1:DC:64:29:FF","sha256":"5E:E3:2A:C0:F5:10:AE:D1:9D:11:A4:88:D0:66:44:3B:31:B7:05:05:0D:A7:35:66:17:B5:35:88:23:3C:E3:F1"}}},"request":{"raw":"GET /s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://bitvalley.exchange\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 13 Feb 2026 03:10:51 GMT\r\nexpires: Sat, 13 Feb 2027 03:10:51 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 18 Nov 2025 19:00:07 GMT\r\ncontent-type: font/woff2\r\nage: 66646\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-06-08T03:34:53.074152Z","times_seen":872850,"resource_available":false,"data":null}},"time_used":384,"timings":{"blocked":162,"dns":1,"connect":39,"send":0,"wait":47,"receive":13,"ssl":119},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/fonts/inter/Inter-Bold.ttf","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.380Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /fonts/inter/Inter-Bold.ttf HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/assets/css/root.css\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\ncontent-type: font/ttf;charset=UTF-8\r\ncontent-length: 316100\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-6a31bd15fc07359b74fe814f1f367cd0-e5d3d688669fd840-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\ncache: MISS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":316100,"size_decoded":0,"mime_type":"font/ttf; charset=UTF-8","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 34 names, Microsoft, language 0x409, Copyright 2020 The Inter Project Authors (https://github.com/rsms/inter)InterBold3.019;RSMS;Inte","md5":"275bfea5dc74c33f51916fee80feae67","sha1":"48747b7a60086f97af0d373febcbd1f1bee87f17","sha256":"790c108befe859dac2ddbd20af3fbb6917c601b3d544c8a05761519f3b5508fe","sha512":"0b82f93805dff2769bad25a503c6264094df6f403a636b039a8917aa2a1580b0c70c70ff4eb5135dda83aff0c3092e2a707216920685162ef52b395f82a86c11","ssdeep":"3072:kAkl4i5ZELTzK/PxMJ2YkGIKpqjw0K2pgm0J2Rrq41tIW+yMaf/J7oPHUGHYI9LN:VLTnJ2CW9BpW2RW1JaZWRRnQzSF","tlshash":"08647c03f313c35dc9172d3a8b92c7a0b327bc926b12e10ab7243a55c99b4f85e6b5d5","first_seen":"2023-05-10T15:50:10Z","last_seen":"2026-06-07T04:35:04.621248Z","times_seen":1423,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":5,"dns":0,"connect":0,"send":0,"wait":42,"receive":37,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/intro/user-two.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.881Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/intro/user-two.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 23949\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-5cff0302c0c7f35a29e97cf8ed3c1946-ad44bcd40f45fc42-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23949,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 112 x 112, 8-bit/color RGBA, non-interlaced","md5":"4eb5ede6037cd6600a06af6f190c6744","sha1":"fbb184cfeda91b2ed92ba29b57e4acc9e95bfd44","sha256":"90f45998e0e5d069f9fb5540fa2185b6d36a296c2f0ed1bd1e76d561d073af42","sha512":"d3f19d858f5b1c5f4827ff983c3366fdef2989032b9f7fe4247b4ce318ad506dc72b0761f077b159f99fb6388833475e092df8e6316eaa618b2a6107560e92b2","ssdeep":"384:e7FGFVAyYCWTZk3YGOtriuRjhD4ehV90qpwCPP6/jyWUWUD07oavHKUTlipKZ79J:e4uH2APRjd4ehVqqiCPP6/jJHRipKR9J","tlshash":"5eb2e1d1bd27e27b4a196d73d0498ab8e4ad504caf6c3824fb8867f1f17180117b4b9e","first_seen":"2025-06-23T06:41:39.288137Z","last_seen":"2026-04-06T12:02:02.534091Z","times_seen":59,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/intro/podium.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.894Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/intro/podium.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 238565\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-24c7f9821bb69512ef79c7c84b52301d-7e90f800fb79cd60-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":238565,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 1594 x 654, 8-bit colormap, non-interlaced","md5":"35296227e4be78daa5240e6d0e6d30e3","sha1":"edcf094147c90405ed4ae33c846786b062e52440","sha256":"65c74d0e44b1ea95dccb30b2058022c519905cb19e576e95ad14b2dd8c964733","sha512":"f4032d198eaa1c19d7548e3d08d0f3dc4a83a9a0493bb562770592d45388b0cc50bde7c111d74947a0c5428c453f5d979c16ac27bfe76d69785ab4e5d124b328","ssdeep":"6144:4xd2tsaRXWtCIqmxtKVGpLd1ZM/Qgy9rX8xfkYrX8:c6jM7L1M/QH1QfkYA","tlshash":"f13423c0e972f206fc342b3576e85dd276c8d0b899535dd8d2b0ce75a3e8d66a3b0225","first_seen":"2025-06-23T06:41:39.339281Z","last_seen":"2026-04-06T12:02:02.572939Z","times_seen":58,"resource_available":false,"data":null}},"time_used":81,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":48,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/js/toastr.js","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.914Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/js/toastr.js HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\ncontent-length: 24855\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-f5bfe711cedf842bd1217f082fddd60d-197ce42e3e0af696-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":24855,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (327), with CRLF line terminators","md5":"a02ccbbcf3073559037a62af82bfdd24","sha1":"4d5f7b3f3f280698aa26b10e1d7c6dd5708d64aa","sha256":"27f959b17ddfe77ca20a31b9950ebc3fbe8030c3ac376eec7355b2d7925e364c","sha512":"35acaadcc160935be74fb1492b1b0ca205aed6b61d8bd8edf4e26254c7772da02941ec53de59e3d66ce1695cc12de4ed9cf32b750e04659c7c0e2521b4697f22","ssdeep":"192:JJZWM9gzM3t3QrpJvxl6Xs8cZ9tID6CqQwPjOoOg6yS21tl3jWq5T14:JY45Kk7cZDItqLNO6S21tNA","tlshash":"deb20a08695263654cb7737c8aab800cfb769323458a96067dbc92d82f70714d6f6fec","first_seen":"2023-07-07T00:40:59Z","last_seen":"2026-06-07T23:46:49.515699Z","times_seen":915,"resource_available":true,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/logo.svg","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.702Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/logo.svg HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F; lang=en\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\ncontent-length: 1228\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-c10fc8101e23cb3347dd48ceeb17b28c-01bb07840e8bdb01-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 10\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1228,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"8de8bf461d9961680647e78f69eac5ae","sha1":"cf5ea57c7f73e047b66a5199302eff1e958fc26e","sha256":"606375a97e3c2a44350ef2887d186d385e34bcf8e853c61c6dd547c7cc3b46b2","sha512":"1ea1093ea3a124a8322e0956d483aedea0f4d9924e737dbe03433b7df7e6882610e9c481dd533bd61f84343428ec84a1c3709bd942802a3d4519adcf7d399a72","ssdeep":"","tlshash":"fb21df6ed3185c3bf02bc36cd6f0801652a66149e6c9c7e5f7a8b71f6515ca31c29788","first_seen":"2024-12-06T22:27:57.075232Z","last_seen":"2026-06-05T15:12:51.539296Z","times_seen":220,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.binance.com/api/v3/klines?symbol=TONUSDT\u0026interval=1h\u0026limit=24","fqdn":"api.binance.com","domain":"binance.com","tld":"com"},"ip":{"addr":"108.157.231.57","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.817Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.binance.com","organization":"Binance Holdings Limited"},"issuer":{"commonName":"GeoTrust TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 09 Dec 2025 00:00:00 GMT","end":"Sat, 09 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"B3:E9:9C:BE:88:3B:90:E1:A2:3A:98:81:FA:0E:51:08:F0:80:5E:57","sha256":"B4:FC:8D:3D:AB:BE:3E:3B:A7:86:50:B8:92:3B:52:62:7C:FE:48:A9:1F:28:F2:45:AB:CC:DE:F7:68:0C:44:BB"}}},"request":{"raw":"GET /api/v3/klines?symbol=TONUSDT\u0026interval=1h\u0026limit=24 HTTP/1.1\r\nHost: api.binance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bitvalley.exchange/\r\nOrigin: https://bitvalley.exchange\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 1136\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\nserver: nginx\r\nx-mbx-uuid: cba9b52a-604e-4acc-9be9-f94721b788f9\r\nx-mbx-used-weight: 14\r\nx-mbx-used-weight-1m: 14\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\ncontent-security-policy: default-src 'self'\r\nx-content-security-policy: default-src 'self'\r\nx-webkit-csp: default-src 'self'\r\ncache-control: no-cache, no-store, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\naccess-control-allow-origin: *\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 d009c4305a73ef1e26138117423d6076.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: hcYCsgoYpcsAjaT57jASagzH7Z1s17qo2ymt0t_CPHavWTBOtIKfoQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3878,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"88f6992970b75da5b7a640a141a5f053","sha1":"1d98b1152c3bd0cc84270938da20bb30782d5158","sha256":"dbb151a80e5456b9ad7e8ec2b674ca8866c8deb15597a9108811b3acada69f8b","sha512":"a1dcf679528b9cc4a1b1ce1b31fe9283221a9a730b5495d11a39b9d564b9d4be688bdb75de5b479cebea06b2a8bfdfbaf033ed5eeace5a21c3aa5c2cf35a91d6","ssdeep":"","tlshash":"f6811642179cc278fe36890a339db9a54ae7346bbdca1fd099a0293378e50b1c70cf15","first_seen":"2026-02-13T21:42:07.654169Z","last_seen":"2026-02-13T21:42:07.654169Z","times_seen":1,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/header/cross-rates.svg","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.874Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/header/cross-rates.svg HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\ncontent-length: 2959\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-be110a678705342f39b440cd494d001f-53194c47430cb40b-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2959,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"9197cda83fe8496d926173548214b18a","sha1":"275be8becf5bf35748b30715fa16a23a3b1fab61","sha256":"f10b465bb31a5e56f2cffb2e43b2dd222b17387ed9ac48e0c8669ee0abceae0b","sha512":"b4ffd9827f1dfdd795497d16dcc6bf068f132162ffadc7f7ce641171e7478e933efd49b8c56e53a33b1810bc6c57060b8245b52378d557178a274fd5c88829bc","ssdeep":"","tlshash":"30510a43e378e674bb4cae5d71503a50667114bbfa30808887b61f6e1c437d7b284d35","first_seen":"2024-12-06T22:27:57.041928Z","last_seen":"2026-04-24T09:21:43.524964Z","times_seen":255,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.binance.com/api/v3/klines?symbol=BNBUSDT\u0026interval=1h\u0026limit=24","fqdn":"api.binance.com","domain":"binance.com","tld":"com"},"ip":{"addr":"108.157.231.57","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.810Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.binance.com","organization":"Binance Holdings Limited"},"issuer":{"commonName":"GeoTrust TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 09 Dec 2025 00:00:00 GMT","end":"Sat, 09 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"B3:E9:9C:BE:88:3B:90:E1:A2:3A:98:81:FA:0E:51:08:F0:80:5E:57","sha256":"B4:FC:8D:3D:AB:BE:3E:3B:A7:86:50:B8:92:3B:52:62:7C:FE:48:A9:1F:28:F2:45:AB:CC:DE:F7:68:0C:44:BB"}}},"request":{"raw":"GET /api/v3/klines?symbol=BNBUSDT\u0026interval=1h\u0026limit=24 HTTP/1.1\r\nHost: api.binance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bitvalley.exchange/\r\nOrigin: https://bitvalley.exchange\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 1271\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\nserver: nginx\r\nx-mbx-uuid: 20398630-d864-40d8-846d-9ea91776168a\r\nx-mbx-used-weight: 6\r\nx-mbx-used-weight-1m: 6\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\ncontent-security-policy: default-src 'self'\r\nx-content-security-policy: default-src 'self'\r\nx-webkit-csp: default-src 'self'\r\ncache-control: no-cache, no-store, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\naccess-control-allow-origin: *\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 d009c4305a73ef1e26138117423d6076.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: Y4MuJ2MdPX_0eCQWTICBZM6hkuJ5JP0l_mBZDDBJv33LJhKMoRKzAA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":4095,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"210835b5a3d6d3913e930600d7fa1a74","sha1":"0d051b518d74bd9451096439c61bd1a52d63356d","sha256":"49976b5dd714f01a03708e11a0464a5a4e84172250df8b7af454bbb5318c2fc6","sha512":"acce8bda02be008d98662967c520e9ed355d1b8d1d3fa17ed041e87eee8418fb9bdcfb327683b341daafb6e8ac2e2e7248f03cea70935b436c44e0a97d7c0f61","ssdeep":"","tlshash":"bf81285227b486a4fa37cc0a27d2b8d9196630bbadcf0dc08ad165778df53b54b0cb19","first_seen":"2026-02-13T21:42:07.659269Z","last_seen":"2026-02-13T21:42:07.659269Z","times_seen":1,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.binance.com/api/v3/klines?symbol=XRPUSDT\u0026interval=1h\u0026limit=24","fqdn":"api.binance.com","domain":"binance.com","tld":"com"},"ip":{"addr":"108.157.231.57","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.813Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.binance.com","organization":"Binance Holdings Limited"},"issuer":{"commonName":"GeoTrust TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 09 Dec 2025 00:00:00 GMT","end":"Sat, 09 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"B3:E9:9C:BE:88:3B:90:E1:A2:3A:98:81:FA:0E:51:08:F0:80:5E:57","sha256":"B4:FC:8D:3D:AB:BE:3E:3B:A7:86:50:B8:92:3B:52:62:7C:FE:48:A9:1F:28:F2:45:AB:CC:DE:F7:68:0C:44:BB"}}},"request":{"raw":"GET /api/v3/klines?symbol=XRPUSDT\u0026interval=1h\u0026limit=24 HTTP/1.1\r\nHost: api.binance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bitvalley.exchange/\r\nOrigin: https://bitvalley.exchange\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 1224\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\nserver: nginx\r\nx-mbx-uuid: 5a2139a2-d6aa-4563-9989-bc9ae15d92b1\r\nx-mbx-used-weight: 8\r\nx-mbx-used-weight-1m: 8\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\ncontent-security-policy: default-src 'self'\r\nx-content-security-policy: default-src 'self'\r\nx-webkit-csp: default-src 'self'\r\ncache-control: no-cache, no-store, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\naccess-control-allow-origin: *\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 d009c4305a73ef1e26138117423d6076.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: 7dUKmdoyN4yg-seQAqZUujGlTpOLFzm6LtiLaRxWB4wPYvBIWxG9qg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4043,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"a26a1b1c39b166363ae95c2fc320db87","sha1":"bfbfb92a841196199af559c17b5eeb30ad50f1cb","sha256":"7842b9167d99967036aff195157af284231d0430a91139cfa4822b2429367aeb","sha512":"000f9652c3032f96e0a3f80bd359546191042972ecd400622e716d682e0f53fd8cae4923f34b838c24926fdc93886e39e7e2b390e7f42ba8492141f768dcc107","ssdeep":"","tlshash":"70811c92179d867cf93a4d0a23a5b9a515fa30befdde1fc454a0293378f5076a708f40","first_seen":"2026-02-13T21:42:07.661367Z","last_seen":"2026-02-13T21:42:07.661367Z","times_seen":1,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.350Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"C0:70:82:EC:9D:28:B5:4B:51:02:7A:C7:BE:63:94:B1:DC:64:29:FF","sha256":"5E:E3:2A:C0:F5:10:AE:D1:9D:11:A4:88:D0:66:44:3B:31:B7:05:05:0D:A7:35:66:17:B5:35:88:23:3C:E3:F1"}}},"request":{"raw":"GET /s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://bitvalley.exchange\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 13 Feb 2026 03:10:51 GMT\r\nexpires: Sat, 13 Feb 2027 03:10:51 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 18 Nov 2025 19:00:07 GMT\r\ncontent-type: font/woff2\r\nage: 66646\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-06-08T03:34:53.074152Z","times_seen":872850,"resource_available":false,"data":null}},"time_used":346,"timings":{"blocked":143,"dns":2,"connect":31,"send":0,"wait":48,"receive":14,"ssl":99},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/MaterialDesign-Webfont/7.4.47/css/materialdesignicons.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.852Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/MaterialDesign-Webfont/7.4.47/css/materialdesignicons.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 42396\r\ncf-ray: 9cd77da94f845ebd-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"658b77e4-a59c\"\r\nlast-modified: Wed, 27 Dec 2023 01:03:32 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 163642\r\nexpires: Wed, 03 Feb 2027 21:41:36 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=AGjwSCqpJB%2FXpEJ7E97InQ1pHVbpo0UiZ2MLO1OJJX72DygtU8BZNP9TbME3WvoDvuLNV8u0q998i%2FlOaoEa294ocGKiQ6ISop8gA50khjNgqu%2FYeTMhcu3jgg%2FJ26UMuYKklWea\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":346626,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"2c83c4bce691e18f82409f87b2bf84e4","sha1":"3958d951f073022975e50de0c711a17bfa1b703f","sha256":"03fe3caba05e65b14e4035139eee89b12be87cd0bcf342ac3886770eec3a9962","sha512":"fe4eb9f06e94b02bdb906441def3d7a6c3c781679db89c225863c2192d78210c37c69afadc010c740f273181b68266245e2b50c434e7ea288aff67c3e13f3ba8","ssdeep":"3072:LRA3YkpX8O2wOBZuRVOh01y7xBqlaOznO3oDmCleSI5B1H3n/ZdhI97:LRAI64wN89BqZnODweSgH3n/hIB","tlshash":"b5742de5d04d24e3f733c85fd740b798458bf2b2d6690e05f68b660d09cba221687f6a","first_seen":"2023-12-27T17:19:29Z","last_seen":"2026-06-08T01:32:25.659077Z","times_seen":5810,"resource_available":false,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":1,"connect":1,"send":0,"wait":32,"receive":1,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/header/market-cap.svg","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.873Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/header/market-cap.svg HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\ncontent-length: 2411\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-b0e9725c090fac7f8e1a9c4d20124e20-84aadb7d2c3253b2-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2411,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"9a158803d2e19c53560b0e584bac9d31","sha1":"8d8d86d15def4ad67061bee3077535cbabe7c2e2","sha256":"2e7b555e20af3a2eafb5cf7ad235d99ce39c58818c7dc4acec36acf808e04dc7","sha512":"a6fd891b73b76b772aa2e64065edee3fcb77b22f7247d1310e7724cd375568afbf9665c903da61521ce31efedc5dfadb0f2b69b15a314f2844609fd35d732440","ssdeep":"","tlshash":"b44145e80765473e56489f055eb94e9574206092bf62418cf37e3d2bffc2e9b208cc65","first_seen":"2025-06-02T07:00:29.898514Z","last_seen":"2026-04-24T09:21:43.493818Z","times_seen":246,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/header/heat-map.svg","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.875Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/header/heat-map.svg HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\ncontent-length: 2031\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-e2a56ede85b06798236cad94c824863a-1e574fc22b9cbc61-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2031,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"38072961af3da72b8380c6bda9044a91","sha1":"77be88133c31a4fa727474e58e9c35e9c7225465","sha256":"aaafa49ae82df38a2e0e0f1ea10250fa3a8413ea51f17647df955166800ec3ac","sha512":"11ed3d0c9f5aa9b3ce174685ed7fbae5e64b8329bc89e84a8a5632b265d3639dcba5be2db03c59f8ce36ea002e6a3de230618bed077c8d567e3ef44fba92c1eb","ssdeep":"","tlshash":"d341b8e9173985790b08d72c5a797a061ef214d7667084acfb2e283a3783dd310c0f98","first_seen":"2024-12-06T22:27:57.04065Z","last_seen":"2026-04-24T09:21:43.514235Z","times_seen":253,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/intro/user-three.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.882Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/intro/user-three.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 22182\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-fa44711b2b4125e81101d54c398e963f-f2fba9042cae7a8c-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":22182,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 112 x 112, 8-bit/color RGBA, non-interlaced","md5":"60eb8806fea8509c527e6423a6921123","sha1":"d1ce7ae162d0d97b3742c5d2f2878950789880fd","sha256":"1f26e533d65fe39f82e5291c490016f270098a1d8f71700409a5e7119acee1f5","sha512":"ea8a76bb126a87c4604a06737527deeec85592dbe47e7d35423681d915f65f61f01180f80fab454a32cce857bce952eca7bb31ebab020ebcdb0a5c012454d17b","ssdeep":"384:smA0ndyLXiH73EgfOd0uowGGdoKT3fi/CNPs56XTYS6bYeA5BbtBYfryNH0Lfy79:slyiXiHDZ4zPVPammWd1Hbb8oULtmT","tlshash":"a0a2e1f98843b4c7e3623a7238745ca7df766d3548619da0bd359408609bc296bff03a","first_seen":"2025-06-23T06:41:39.284681Z","last_seen":"2026-04-06T12:02:02.536209Z","times_seen":59,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/intro/user-four.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.886Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/intro/user-four.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 20751\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-18bea7e1ca60490714ef5ace6059ec6d-cf6728b2288236a7-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20751,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 112 x 112, 8-bit/color RGBA, non-interlaced","md5":"972276c35ffcc2cadc09d21b6624b526","sha1":"2177572f755c4f9a7650bff9b57adf6c1d6d74a6","sha256":"821382a71904241e2a5899c6c3dfc4c2feecf58d511cf934123a1859779e9d8c","sha512":"3275931bdd3e0069619f604d11ef8b0104bd694fac9883d530d2263118cdcd03f7f767b27d0f5648a7aee9f2587e78f7907fa5384f57b2145696e8fed7fb2c7d","ssdeep":"384:qhsxLFgTJIowL2OT7GRZxKVr0xEM2+tgGnwXXU/fxc:IA9oVYZLMt7wU/S","tlshash":"2092e126fce3258400634b3f8ba4f16165eb02fc1cf22190810339e551afe687e36e32","first_seen":"2025-06-23T06:41:39.290271Z","last_seen":"2026-04-06T12:02:02.502424Z","times_seen":59,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/intro/phone-two.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.896Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/intro/phone-two.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 175737\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-f83ea9d95f1ca8ab5bd4439150220f54-1e3cbf5e9280f8bf-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":175737,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 506 x 1064, 8-bit/color RGBA, non-interlaced","md5":"ed194f1fb2db13c7bca251c155734fbf","sha1":"a9f1d90f88d72f38bf39a3a00cd325794dd00ed5","sha256":"93dcdc60a1473b6d229b2741a2a38fd9b2489ae34b6007c8219de6db7106c2d7","sha512":"1cecd8e4a17964e35180c97f4b0a6afedd9c1caee4b799ee37082221daa6a87878a338b7a549d8b95629bba01b8a1177be2c351af2dfefc38c75c726dc94abed","ssdeep":"3072:HRXbNdwU9Y9qvGXsIvqQbcKjJCcU4y9NJ7ZkuO4dq/AagbpJTWps29t:XoRXCccLTv9a+dq/AjbpREs29t","tlshash":"d6041264d4c1e9fe9ea0ce374bdc627150dec847ae9136a2e11c96a01b77c3c48ed639","first_seen":"2025-06-23T06:41:39.313083Z","last_seen":"2026-04-06T12:02:02.578273Z","times_seen":58,"resource_available":false,"data":null}},"time_used":69,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":40,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/coins/TRX.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.909Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/coins/TRX.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 1315\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-e2a61ca6aaef3d51528912d6eeaaaadc-0b9dd3ef8adb7d27-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":1315,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"79cbcbdfcc32e9ed14054fb9f306d76b","sha1":"d0fe46ecc0664340d7027500d23cb6ee7b8de4f6","sha256":"ac3824adc2a37e25d5e63fe30c4de623c0985730450f3e12b58bcc58677d107d","sha512":"98eb00b634f4214e5d546aff3c51c6e889a337ed9e9a59d96b2dc189bb822352d01d2d53e02db22255c2c3f44836ce30c52c8e22199eca10c8e431d17560cedd","ssdeep":"","tlshash":"1f21f8b87b5d652cc209c890e8364aa77098f9ae0512041e3830ec3dfee098be2567c3","first_seen":"2023-05-04T03:36:11Z","last_seen":"2026-06-06T23:47:44.189054Z","times_seen":1032,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/chat.svg","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.909Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/chat.svg HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\ncontent-length: 1143\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-73534d7fe82d8a167171347ae588191f-7bbc135a584eb748-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1143,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"856a385d230e560529fe4f70a442cea9","sha1":"c9669d3c47705149e26efd24e0d3ed738fc03069","sha256":"c2b05ce3c22fd9b07bc627c2ace70217eb0e3dc2183d9d4aa58bd482dcd8d7d5","sha512":"10308be3d10aa5ea28b1c8a026b6008c530aea11658680ca9b54af0e06e4f7e7d7b1831326d13cc915f83bbc4d1e8b5e67e630a42b8bb898c713875ee3fb2959","ssdeep":"","tlshash":"fd2168e66fec96a6d35e833063f41fa62b4730bdb6408d5f8680dfb0db051aa4144ad8","first_seen":"2025-02-15T17:58:10.491189Z","last_seen":"2026-06-05T15:12:51.530116Z","times_seen":487,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.7.1.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.869Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 26 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:36:FB:D3:E0:9E:71:88:98:A4:C9:34:94:9B:43:3A:C4:C5:1E:BE","sha256":"9A:64:20:6F:F5:DC:F1:8A:D6:B2:D0:93:C2:7E:62:86:0B:1A:D5:24:CF:CE:4A:9F:4C:0D:F1:FB:F2:A0:A8:1E"}}},"request":{"raw":"GET /jquery-3.7.1.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bitvalley.exchange\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-155ed\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\nage: 3940165\r\nx-served-by: cache-lga21978-LGA, cache-hel1410024-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 27, 13156\r\nx-timer: S1771018897.044181,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 30336\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":87533,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"2c872dbe60f4ba70fb85356113d8b35e","sha1":"ee48592d1fff952fcf06ce0b666ed4785493afdc","sha256":"fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a","sha512":"bf6089ed4698cb8270a8b0c8ad9508ff886a7a842278e98064d5c1790ca3a36d5d69d9f047ef196882554fc104da2c88eb5395f1ee8cf0f3f6ff8869408350fe","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKr:sHNwcv9VBQpLl88SMBQ47GKr","tlshash":"3983f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","first_seen":"2023-08-31T16:03:19Z","last_seen":"2026-06-08T03:30:15.271637Z","times_seen":166354,"resource_available":true,"data":null}},"time_used":392,"timings":{"blocked":154,"dns":1,"connect":36,"send":0,"wait":27,"receive":10,"ssl":161},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/header/p2p.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.879Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/header/p2p.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 5440\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-65f00ea53ebcb22cb5bbea9705dd47d8-c8df44629d3f46a2-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5440,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"ecf394d33dfc28501d3f92f99d490660","sha1":"0a51f4e56a04e40a05eae931cd68d86750a2c43e","sha256":"e003384304ceacbe2ab8f0abdf2ef74e1c8fc3b2a58c93a43d46afc0c3499eca","sha512":"c7489bf8a174dd7b4ee4ac736be0384eaf9a8601e60f777faa9d6c8803967400e579dcf81536182ddd4535667f252c5818038c9c2270c768f937c0d6eb66d42a","ssdeep":"96:+cVYcgk0I8QIMIat2wU9bmdT5DdlBa6hUGDN:wcgkrMa7HBaqZ","tlshash":"62b1d91ef92231d0224dae7725ec61155f3381979a81ac94f9cf48521f142ab1c9b6fe","first_seen":"2025-02-15T17:58:10.485235Z","last_seen":"2026-06-05T15:12:51.674029Z","times_seen":383,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.binance.com/api/v3/klines?symbol=TRXUSDT\u0026interval=1h\u0026limit=24","fqdn":"api.binance.com","domain":"binance.com","tld":"com"},"ip":{"addr":"108.157.231.57","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.819Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.binance.com","organization":"Binance Holdings Limited"},"issuer":{"commonName":"GeoTrust TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 09 Dec 2025 00:00:00 GMT","end":"Sat, 09 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"B3:E9:9C:BE:88:3B:90:E1:A2:3A:98:81:FA:0E:51:08:F0:80:5E:57","sha256":"B4:FC:8D:3D:AB:BE:3E:3B:A7:86:50:B8:92:3B:52:62:7C:FE:48:A9:1F:28:F2:45:AB:CC:DE:F7:68:0C:44:BB"}}},"request":{"raw":"GET /api/v3/klines?symbol=TRXUSDT\u0026interval=1h\u0026limit=24 HTTP/1.1\r\nHost: api.binance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bitvalley.exchange/\r\nOrigin: https://bitvalley.exchange\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 1159\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\nserver: nginx\r\nx-mbx-uuid: 80ac9b2e-a42f-486b-8697-8cc698cf644c\r\nx-mbx-used-weight: 16\r\nx-mbx-used-weight-1m: 16\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\ncontent-security-policy: default-src 'self'\r\nx-content-security-policy: default-src 'self'\r\nx-webkit-csp: default-src 'self'\r\ncache-control: no-cache, no-store, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\naccess-control-allow-origin: *\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 d009c4305a73ef1e26138117423d6076.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: ZiJweOwTxoys3VuhaQdxUcq2dVc9FFQRA8bnIgfIN4n9ctJNMeBNPw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":4006,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"872c6fac97ef33067b2a01516910750c","sha1":"5b8dbabbd1f49dca5e6e097faa277e0cdef62816","sha256":"8d07be14f50f4a067929602c1a78cc8fe992382142b906bef88132aaeb8b6e1a","sha512":"9b24e1ea5b36e54c69d2ba53bfeabb251d7b8c07aa0baffb5dfbd71478bfa12f31691814bba34bdb49402f37f64d77dababb248f66e8692c5a2910181ad5f141","ssdeep":"","tlshash":"ec81f651166182d0fe7e481e23aaf8e52a6b706eaedb8fc48ed156735ce44f10b5cf04","first_seen":"2026-02-13T21:42:07.675244Z","last_seen":"2026-02-13T21:42:07.675244Z","times_seen":1,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/js/main.js?v=5","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.918Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/js/main.js?v=5 HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\ncontent-length: 21541\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-d4792c83f111843bf2bab15d926affb7-10beb802ed2cc74b-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21541,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (430), with CRLF line terminators","md5":"6409d98ed3cbf6db97d351f0423f42f7","sha1":"6052163324873f34d80ddb789c07a279013e9394","sha256":"ea0d7e711fb8baa35e5c6483f6e339b3c92b4f6f01877ec4fc659594e43a26c8","sha512":"f3ef128d5c31b477f5bb3c7ef3da3a103e74323e7d87b7f64f6c8c6e37e930cdae90b52b4bee1370779e9505a51d72ea1eff3627e7cbbf32f2816c1ce9dbe9b7","ssdeep":"384:GXKlo7s8RElXRnwlWsjdKjHYc4NtZYK7roO:GXKlo7s8RElXRnwlWYd0Qr","tlshash":"4ba28298b22129aa813b7379be775646fb380027d341d349bd6c1de11fb2480d993f6e","first_seen":"2025-02-15T17:58:10.504157Z","last_seen":"2026-04-24T09:21:43.575405Z","times_seen":116,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Malicious - Copy/Paste Social Engineering (ClickFix)","verdict":"malicious","severity":"medium","comment":"","tags":["malicious","clickfix"],"meta":null}]}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/css/intro.css","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.858Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/css/intro.css HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/css;charset=UTF-8\r\ncontent-length: 3900\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-ea0de3493293bdb75d4b258e372b560b-11244ff7da8c5bd4-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 12\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:24+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3900,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text","md5":"0681593826fc2840f3e0355167a46bc9","sha1":"b76ccc028308eadd16b902890e12264e74caba82","sha256":"9afb39b2e96a7c707cdb41b2692d70258be799383b5c4b55df8494b04f62bf8d","sha512":"ce9db1ac307076d3cb623d075df70fe1381fab54795ba71ecbde8bcad958d29e54afbfd15c27d7cb3fdc899229ee7156dfa6ad2aae36f66875ca83d76de83875","ssdeep":"","tlshash":"a6819f572df30a68d50fe4583faa5714132c5093d2aed8667f8d225ccfca2d89523b8d","first_seen":"2025-06-23T06:41:39.276925Z","last_seen":"2026-04-06T12:02:02.568161Z","times_seen":63,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/css/trading.css","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.864Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/css/trading.css HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/css;charset=UTF-8\r\ncontent-length: 4475\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-8828420139be9770d5c6c4f2852c242e-e8201522c02ade71-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 12\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:24+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4475,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text","md5":"674019064ceb9fcac9df08d15a57303e","sha1":"0abb7f5a60a7f04e6bf5a9ae1239da74b2cf4de5","sha256":"38216c5600c2474b4179255cfefb5bdae7a88e6cedaebdb4475812b2ea0a3df1","sha512":"a6e736defe55d23b3a9dc21452ffbf4405cbfac065ecc2ad10840cf8746b36c8f971233ef57284ff6b3da3c744bb751bdfda5687c3583486b3491940cf4765c3","ssdeep":"96:HuW9xXyQhC9yP/Xyz45OA6P9MO4XykQzRq:HuW9xXyQhC9iXyz45V6P9f4XykQRq","tlshash":"4591cfd24a577d0a320bb5787beb4354616c30d3e20acaed7f8e1684cf46594c973aac","first_seen":"2025-06-23T06:41:39.279333Z","last_seen":"2026-04-06T12:02:02.530603Z","times_seen":63,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/coins/ETH.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.902Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/coins/ETH.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 1100\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-cb27a526ec74eece5cf35f7744edf88c-2829fdb7d04ea187-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1100,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"8658d5935ab59ee39d15c39226279d46","sha1":"27463866eb9fa6fe4b6d2bd2cd3d6fd88392cb43","sha256":"595a7c97f329934d40fa297958ccbb31d3cd101c2965b02a32a7c96fd49c9e11","sha512":"0179fd67c6baa7d46fba32986a8f6fe1586f2d9d3c57161bc33ecae609d6e608e8d9bfcdad0459bf41ba087843955a45ce5daca8ea223cb33138de6b4c8b13db","ssdeep":"","tlshash":"f211b6b64261eec7905c8a22da820b38ed2d9718f01c3f06ef73efb39225b045105d0a","first_seen":"2023-05-25T23:01:30Z","last_seen":"2026-06-07T20:45:47.996325Z","times_seen":1644,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/coins/DOGE.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.907Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/coins/DOGE.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 2808\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-ca811400ff05fef4566adb8698c470e6-cc7f0a9611f6c986-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2808,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"d55dd75446d505958e5210985b246bed","sha1":"df83b77aa8f8647f67f478e02c23f864a592f6d6","sha256":"8abf24f47bc3b4def59a6e6441a9f2dbb8d20c953c2c5373f219ab614a8f208d","sha512":"b65c5b9eca2ac0bef1dfdf742eb6ce365c3368650b37cd847ce12b955e683d3843cdeab9ec25beed31976e9b3ab571e59d4c66431e44345e7c57347a72bb758f","ssdeep":"","tlshash":"a6515c150736fcaac55846a3889f0970c8ee362be160571a7664cc17ff949494a17743","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-06-07T23:37:29.545597Z","times_seen":915,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/support-logo-chat.svg","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.910Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/support-logo-chat.svg HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\ncontent-length: 1834\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-6842068188a13ada3a8100a481644024-3a1a5f8d3b55a9dc-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":1834,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"911003c9a49f882d73fe4c40511816f8","sha1":"240e8d2f0cf44da1b1cf801a1e3eab472d081e34","sha256":"1192299763868ea940054d1bb7529b95620f02490f8f42aba8590a9df6d394b8","sha512":"e1221ebb601b7d8723f7d84c6e9c91aff64ffbc75d66ff89dba9f4499c1c8ef0f09e9819a00573c8302b295228c40cee0f306b92ebdf8522a41ea6156ea1236f","ssdeep":"","tlshash":"363124f9f7edb5d4f91887d0539a56b07b5b21fa7623c50807d21ea0f24162e04a988d","first_seen":"2025-05-02T21:59:25.084344Z","last_seen":"2026-06-05T15:12:51.64523Z","times_seen":424,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/intro/user-one.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.881Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/intro/user-one.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 21906\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-a3017a0ca89a48e93c6c38af67dddaac-ab42c84416373b77-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21906,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 112 x 112, 8-bit/color RGBA, non-interlaced","md5":"c321342181c591dea6c7a50b6f1edd56","sha1":"e2cf308c608d100651322199ebb5977320066cbf","sha256":"db5f282f930688db57c007791f24fb823549b20bedd18bcf42e161b02a39a361","sha512":"88d77199976a8a4889f14a1e63df5c1bf716c17b905840b39a2157c20b562ca3a7ecf4ca21d0d33ee0008b503e15e96f982d998223000de252865bb99b5947ab","ssdeep":"384:HhH7N4MtaDcP5NsLR/JsUT723yccUkqRWI0yjQwm/ohjAyp2jIcp8CAO:cMtcxJnPgyfOkr1AOS2kcp87O","tlshash":"e4a2e18ca699cde63b0f759cd4513ab8d457c33060eb4a328b76601910badd934d4bb6","first_seen":"2025-06-23T06:41:39.341366Z","last_seen":"2026-04-06T12:02:02.520765Z","times_seen":59,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/features/phone.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.897Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/features/phone.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 762457\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-37546eb7c22d15dc9455b54c15705699-786bd9b79b5cc489-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":762457,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 994 x 1744, 8-bit/color RGBA, non-interlaced","md5":"eddb1f3aa8ecae27498b0e92b155015d","sha1":"436ddf383866044f420d4d12f33b170a3b0fceb1","sha256":"701fc65ec8cb0c5cbf8d2470483966fcdbfe9394841e596e164e9fe3f8bb4da8","sha512":"2b907dd59e499850b8c3c16e150105bba15b47fcac9f18c5496398052013001c0c6ec44604cf93bc0d79c030df33531513e74d737bd2107c5a0cdf8874febc96","ssdeep":"12288:E7rTyCchk7uu6Zp3xTIA+HTKRBpl1ajZKjxPCdFYM1OeOqDt1+uOYN6a3lS5u:EOWqu6ZZxTH+Y/lkV2qdSTeOq51+uOpU","tlshash":"def4234566b6d9afdbe420b557a04930aff6e363d11228010476b3125f86a5ecf3bcec","first_seen":"2025-06-23T06:41:39.29251Z","last_seen":"2026-04-06T12:02:02.491602Z","times_seen":58,"resource_available":false,"data":null}},"time_used":114,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":86,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/coins/XRP.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.905Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/coins/XRP.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 953\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-83b0886d1712add9c23229188211dd6c-60be8ec20c13c97b-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":953,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"92f9d15be55070c0f267e7b9609211da","sha1":"d25e8395244487e169b16cb9508e434ea1ea61dd","sha256":"0e7d0965ce52308846834de79ad8305ea31542444a1ba54888843fc0214418f4","sha512":"d39d1087b689cf8f8d543a282dfc802e0e996ddbdb0553b7376958b0be63dd8f6230451cc3cd3df7d63748ab2165e8e82433c35d4131a7a2c137445ecfeee95b","ssdeep":"","tlshash":"e91188a14b659e01632bcd7fcb2a0142b20b22efb465d716a88f533d0795d871059f85","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-06-05T15:12:51.676417Z","times_seen":1508,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/choice/bg.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.341Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/choice/bg.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/assets/landings/1/css/choice.css\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 169266\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-a29c117febf6a4d40b6c8640c78cb682-61002f3627f11612-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 5\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:32+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":169266,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 2428 x 1308, 8-bit/color RGBA, non-interlaced","md5":"e5fc8cd9bb4843edd9f8b6af66c43738","sha1":"4f6d55b1ee75b9a56362b1535de3f17d56ad36bb","sha256":"48e0f03c9f6b2df4bfa1ba5b0b5c3830f791111f54aa5129c2ebae1aa7d97540","sha512":"d3a6957404298724ca408d41fb2f3462bae91814937ca8a101ec5188d3ac9a2042ba09d639a6d7e91ae5f80793e3147c7b7cec9cb72023e8292e365dc1b74899","ssdeep":"3072:uUH67Sm+Wb9SdgZYXBYofBZ/2hrJVNgaEpxy/p3CeFQL6LM4H+DLsYiowVkbg5RC:u77hAgEUrJsLUtCe+LF4eDckbhZ","tlshash":"21f312102e3b48fec8149a70f839dfb9fb308da93518e6c7533596919d8b03b81a7257","first_seen":"2025-06-23T06:41:39.32074Z","last_seen":"2026-04-06T12:02:02.573777Z","times_seen":57,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":24,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/api/getLocale?v=2\u0026lang=en","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.409Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /api/getLocale?v=2\u0026lang=en HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 79545\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-0e5dab301a8db9dfeff428685b41f9d4-6b7b42fa276cc08d-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nset-cookie: lang=en; Path=/; SameSite=Lax\r\ncache-control: max-age=10800, public\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\ncache: MISS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79545,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"480e39d0561e0e27ca5728232a3d29fe","sha1":"67999db002ccbbbeabd87096b1fdeef11227e491","sha256":"678e0ebd612637f1ff3112993d93c17861050c0223c169c6b1704288e3c0fa37","sha512":"7880baa82e12646e393898423007463155d46e04fdff194c432cf4d068e3adf6ea55d94db0101e7f649dbb07c39371ec84541982035e3b207ec364087117c43c","ssdeep":"768:z7p/iImdbdEbMVlzhLqwxeAxa9w6ucD4aEIMfUOhBKGBEVSQdsoQcCSZBjsJUoLc:i9dI8JUOEprEZUO+GBEVSUycPDsiseF","tlshash":"0173ea0b991e3d720bc61391bcfe5ddc75fd024091e1906a1afe84ac16adec9c2e7897","first_seen":"2025-06-23T06:49:58.332269Z","last_seen":"2026-04-09T20:03:33.991878Z","times_seen":55,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":49,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.binance.com/","fqdn":"api.binance.com","domain":"binance.com","tld":"com"},"ip":{"addr":"108.157.231.57","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.440Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.binance.com","organization":"Binance Holdings Limited"},"issuer":{"commonName":"GeoTrust TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 09 Dec 2025 00:00:00 GMT","end":"Sat, 09 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"B3:E9:9C:BE:88:3B:90:E1:A2:3A:98:81:FA:0E:51:08:F0:80:5E:57","sha256":"B4:FC:8D:3D:AB:BE:3E:3B:A7:86:50:B8:92:3B:52:62:7C:FE:48:A9:1F:28:F2:45:AB:CC:DE:F7:68:0C:44:BB"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: api.binance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bitvalley.exchange/\r\nOrigin: https://bitvalley.exchange\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 77\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\naccept-ranges: bytes\r\nserver: nginx\r\nlast-modified: Thu, 23 Jan 2025 11:52:55 GMT\r\netag: \"67922d97-4d\"\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\ncontent-security-policy: default-src 'self'\r\nx-content-security-policy: default-src 'self'\r\nx-webkit-csp: default-src 'self'\r\ncache-control: no-cache, no-store, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 d009c4305a73ef1e26138117423d6076.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: C0V6UwKoAsANXu02XGcp6ksOC3yI1MvH58mDrsdTEYdnAW3JT3qZ6A==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":77,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"136f5552348d90a36b6c9a49046926c1","sha1":"b992325f95e0076c147ebf6593433f938b244f4e","sha256":"a60bafa499acbab1b73b92511707557400155adf5fd6a186cd56a2b822935ba7","sha512":"b790d85cf0597615435cf72e9384f8e640642a1cc3cc3564010a006eedbf5bcb956120cb81ebef9254d4675e785091a07d2cd79c66381fdc39b80ee5f4e48b8e","ssdeep":"","tlshash":"baa001f9a5a62009e92076c01cd532941c8983a030d24a102ac13969b55562ada06299","first_seen":"2023-12-04T13:46:15Z","last_seen":"2026-06-05T15:12:51.645977Z","times_seen":496,"resource_available":false,"data":null}},"time_used":381,"timings":{"blocked":63,"dns":39,"connect":9,"send":0,"wait":254,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/logo.svg","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.700Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/logo.svg HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F; lang=en\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\ncontent-length: 1228\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-eb394fd70fb870fc6c0a52064955a532-603643df1b6e4eea-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 10\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1228,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"8de8bf461d9961680647e78f69eac5ae","sha1":"cf5ea57c7f73e047b66a5199302eff1e958fc26e","sha256":"606375a97e3c2a44350ef2887d186d385e34bcf8e853c61c6dd547c7cc3b46b2","sha512":"1ea1093ea3a124a8322e0956d483aedea0f4d9924e737dbe03433b7df7e6882610e9c481dd533bd61f84343428ec84a1c3709bd942802a3d4519adcf7d399a72","ssdeep":"","tlshash":"fb21df6ed3185c3bf02bc36cd6f0801652a66149e6c9c7e5f7a8b71f6515ca31c29788","first_seen":"2024-12-06T22:27:57.075232Z","last_seen":"2026-06-05T15:12:51.539296Z","times_seen":220,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-13T21:41:36.511Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/html;charset=UTF-8\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-3027368bf62314a498639970b3e62c97-fab9c2f9af332ccd-01\r\nset-cookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F; Path=/; HttpOnly\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-language: en\r\nx-id: am3-hw-edge-gpig-gc96\r\ncache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"Chart.js","description":"Chart.js is an open-source JavaScript library that allows you to draw different types of charts by using the HTML5 canvas element.","website":"https://www.chartjs.org","common_platform_enumeration":"","icon":"Chart.js.svg","categories":["JavaScript graphics"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":355913,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (4764), with CRLF line terminators","md5":"8e313be2f1184ffd1a693cee949f4afb","sha1":"237dd0fa2a73e2674ee301c9abf1a5f57fc81a36","sha256":"adaed271fb3320dc4c51d02efe825ad53bac068e44939179dcab57e88b36931a","sha512":"ef3cb370dadddf45574418888755a5229d41fc180e719ebd365f17f9d37574d52d50522187db57d15228db65e1beb00cac6330b74adf473175289bde59bc7b77","ssdeep":"1536:MwRENJqS444k5ivoVzkie3h5gB/esAv3X3p6pPTc+1k/+JKZ66pPTc+1k/+JKZPK:d/MBMwyyzn4l9YuOsv","tlshash":"447409e953d4a2e0a012d3e4da3645b5fe1764f76742c654b3ec2e82afb184ccd87c86","first_seen":"2026-02-13T21:42:07.692558Z","last_seen":"2026-02-13T21:42:07.692558Z","times_seen":1,"resource_available":false,"data":null}},"time_used":169,"timings":{"blocked":68,"dns":26,"connect":15,"send":0,"wait":30,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/css/root.css","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.870Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/css/root.css HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/css;charset=UTF-8\r\ncontent-length: 1468155\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-50388d8b7415c6b44094ffc68df79561-bfc218b8ad3ebe9b-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 12\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:24+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":1468155,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (11070), with CRLF line terminators","md5":"59242cb5b6bb61f01d3b7070a90a4621","sha1":"131ad5461b5774e708e8156104ab3a4824771956","sha256":"b787ac09c6133685da2992361eafd7940b9fd76b81f35642d394b7fcf64294d2","sha512":"8759017736fe7cfa70a40b33becc421789ec0ecd181aceb2ca39f18e8921a3064f3b5a84740a6d65437139da9b161006bfa67d5b421341261a10dacdd4fb9317","ssdeep":"12288:mMlXqMlJMlXqMlXOMlX6MlaMl9lQbjM9MleMl7MlUMlkOMlJMlMMleMlX7MlXfMC:5","tlshash":"5a2583b7e546140341739a7b9bd3a378db7c40278b0160a639eeb5448ff42958b93e8f","first_seen":"2025-07-31T10:51:21.614465Z","last_seen":"2026-04-09T20:03:33.956426Z","times_seen":46,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":159,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/intro/Trust-Pilot.svg","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.880Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/intro/Trust-Pilot.svg HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\ncontent-length: 23256\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-6da20d3dab4dddc6ccfe13478afad5e2-1674f1035d29a4b0-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":23256,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"bc345d8d1db7c9b0ee85fb317187c337","sha1":"9e92fcfbc6547a1bef64261f66fc2e3ba8234862","sha256":"baf74c665ed00b1aa38e94634c779a4fad85de479b1df199b6ade596ccf4fd15","sha512":"063d4b4eddfe246976dcf5f1803182ca0c0c09afcb978199e83b8a6dba69197530d49ac3d71edfbc71489af9d97b1f667ca0a65a0e8807059ff90b768d5e4f07","ssdeep":"384:HMSLO1NATIUFMhgxRAW7M2JcG0SEgipGM1CQJZZxTJ+GvaQNoM:Xq1u8Uu4V7MLG0BRRJZnsqNd","tlshash":"1ca273ff5be431e5e882e7e16d02856d39a770fb375acf1ac708ce896752418989c8c1","first_seen":"2025-06-23T06:41:39.282251Z","last_seen":"2026-04-06T12:02:02.520182Z","times_seen":59,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/intro/statistic.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.890Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/intro/statistic.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 60536\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-914fbc7c4c84991c27cea028f22ba30d-6a8033684ec4b145-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":60536,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 450 x 408, 8-bit/color RGBA, non-interlaced","md5":"275af816a2462804ba2ecd26d800f56e","sha1":"9f659866261153133d20b562d8568749d20eb47c","sha256":"88c3edc56bdaa43e57e9728478254087e81e9d61de88bcf6b0fed7c0f261653e","sha512":"87b4e8aea3705feab368fbc67338e0573ce89090432fd1581dbd4086ad75cdd21cc6d606719cb85554177b876e1fe59190611fc732435134bbaccb37a3788bee","ssdeep":"1536:7vzexWy4h+9Wsy+G0XiSvXoDjVqpn95CCNgCkHrz1C719:r6xF4h+lGWiSwjy9/gCkLy9","tlshash":"034302a6c2c358bd82a91d8c083d769b773f9a73549d09b579f1f8dd8e43892810fb12","first_seen":"2025-06-23T06:41:39.346544Z","last_seen":"2026-04-06T12:02:02.577577Z","times_seen":58,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/intro/bg.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.337Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/intro/bg.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/assets/landings/1/css/intro.css\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 757906\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-d6c7420fb2dbc7a533126aee6e739f52-a7ebc8582c6c9ea2-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 6\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:31+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":757906,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 3180 x 1538, 8-bit colormap, non-interlaced","md5":"119427170d0ab3c22f4c91e9c3614f0d","sha1":"2a1f05caa0213698e212bfc697e3eacaebb5cf61","sha256":"60b8e25d5895c36b010d4bcc607036c2b6b0db42db91481cbf7f8d69d12e429b","sha512":"fb0014f46b6054843f184812824b65e76f91c9fb1523d7566a6276233c8e81dcd8c4d1804ec154546768c22a913228e959315ae80b1199ee71390a7aa92aeb42","ssdeep":"12288:F1ANGa99y+YR2jMGYS8uuypTQ59kYc0eLS3ZRcqS3E8BSYNQG0OUQ4RaO5yqFax:F+NGs0RS1YSOymXA0tpbsEYSYqCt44WE","tlshash":"b9f433a18a3e3485a741c274ba1b41456d19008f1fb8fd9ac96dfdf0d66fb1b1ca0e1b","first_seen":"2025-06-23T06:41:39.311441Z","last_seen":"2026-04-06T12:02:02.4977Z","times_seen":56,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":21,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/header/card.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.877Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/header/card.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 4528\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-7680ecd57f570f431e6f9167638f2009-38e670d70e7a9a87-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":4528,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"787d17f49cc145d078cec3f38989b144","sha1":"8bb854fe7462d3ddc152b958232a952888a14c3f","sha256":"c38f9a1f91724365b80b233a5ddc5b891216bf82bb05f7be521fc2e75bd3cf37","sha512":"8ab4bb5374d3d7133892ba81959d0a0cf9c3adc05328d644b2ef326e602907c6988dd9b1588cb18e595583458628e130943ed8b53d70d13dde7c03fcde4f6ed1","ssdeep":"48:+MvnJralQqxKPbGf3k0IJN5IloAhat2wxrYCrW3ETb92jw1M:ZvnJWlHAjck0IJ7Ifat2wpYkbb92jwm","tlshash":"7891cc06da5235c1664ea9b711d503596c334153cdc19c5cb4cd8829af303e91e6ebdf","first_seen":"2025-02-15T17:58:10.483843Z","last_seen":"2026-06-05T15:12:51.713986Z","times_seen":383,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/choice/phone.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.898Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/choice/phone.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 572642\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-2d265ed26cb39e15a53836515be494db-db033ac6cecc91ef-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":572642,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 946 x 1418, 8-bit/color RGBA, non-interlaced","md5":"60766e3999df518dfb12d46e4a78c9f4","sha1":"48404eac5c99e8c902f504ad46c5344358269596","sha256":"f500164e3d154d81da0e3415a4410ce829a9137e7f2614a78ad24df99da21234","sha512":"70d3e62cb4699a46076fcedc25fb1aa5df70b25bb063d6d0cc01404e07ce5c963f470cb9cb299722824bd0d78ca10deb14f03aa1c9801d5933eae55d83615406","ssdeep":"12288:r/G/6JAbYzG9dIVbL5lxtJfkTueOHcuA1wR6Ocx8O3A5QnRj3kav:rW6JARnIVb9lVsTuevuvbc2OTFUav","tlshash":"3bc4231481d3020663ba729c4f8aea5917c5dbeb663e33353ea1e659b4c331f09325a6","first_seen":"2025-06-23T06:41:39.308364Z","last_seen":"2026-04-06T12:02:02.510018Z","times_seen":57,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":100,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.binance.com/api/v3/klines?symbol=ETHUSDT\u0026interval=1h\u0026limit=24","fqdn":"api.binance.com","domain":"binance.com","tld":"com"},"ip":{"addr":"108.157.231.57","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.802Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.binance.com","organization":"Binance Holdings Limited"},"issuer":{"commonName":"GeoTrust TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 09 Dec 2025 00:00:00 GMT","end":"Sat, 09 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"B3:E9:9C:BE:88:3B:90:E1:A2:3A:98:81:FA:0E:51:08:F0:80:5E:57","sha256":"B4:FC:8D:3D:AB:BE:3E:3B:A7:86:50:B8:92:3B:52:62:7C:FE:48:A9:1F:28:F2:45:AB:CC:DE:F7:68:0C:44:BB"}}},"request":{"raw":"GET /api/v3/klines?symbol=ETHUSDT\u0026interval=1h\u0026limit=24 HTTP/1.1\r\nHost: api.binance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bitvalley.exchange/\r\nOrigin: https://bitvalley.exchange\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 1378\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\nserver: nginx\r\nx-mbx-uuid: f0ca9da4-68c5-432e-b82b-c36b73e08a5b\r\nx-mbx-used-weight: 4\r\nx-mbx-used-weight-1m: 4\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\ncontent-security-policy: default-src 'self'\r\nx-content-security-policy: default-src 'self'\r\nx-webkit-csp: default-src 'self'\r\ncache-control: no-cache, no-store, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\naccess-control-allow-origin: *\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 d009c4305a73ef1e26138117423d6076.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: kYG_bkd8sAyB45NO6U8R3b1Ccite11h9Q0Y1jJ2SHuMD6bvJSMhSSQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4269,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"c3f4c66d4b88c8a007fdb7b430a338ad","sha1":"c5a18941910544a5473cee6da90f5331b8b8d101","sha256":"b4456036ed69f8988a8c14edc494b169502380178790c751ea7a889923ce5b24","sha512":"2ae5c952861ebb2a4556845ef5494acdce34b3edcc0f1c1434c8225ab16eefee0f6c23dbf7358f85a73233a59ccc8fbffaee7e1a264a43712870aba4422601a2","ssdeep":"48:8t2qLwxTGweTNeG8qVSl8gdTzwqakre2A4WayvU65rd/mbmrr7KW7m1wf6/f2AuR:02cjhyASasGGIvvnhoUXS2AROxx","tlshash":"58918c42178887b8fd394c1a3ba5b8e578b634abaede5dd0c5f2633358f14724748b11","first_seen":"2026-02-13T21:42:07.699533Z","last_seen":"2026-02-13T21:42:07.699533Z","times_seen":1,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.binance.com/api/v3/klines?symbol=SOLUSDT\u0026interval=1h\u0026limit=24","fqdn":"api.binance.com","domain":"binance.com","tld":"com"},"ip":{"addr":"108.157.231.57","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.812Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.binance.com","organization":"Binance Holdings Limited"},"issuer":{"commonName":"GeoTrust TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 09 Dec 2025 00:00:00 GMT","end":"Sat, 09 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"B3:E9:9C:BE:88:3B:90:E1:A2:3A:98:81:FA:0E:51:08:F0:80:5E:57","sha256":"B4:FC:8D:3D:AB:BE:3E:3B:A7:86:50:B8:92:3B:52:62:7C:FE:48:A9:1F:28:F2:45:AB:CC:DE:F7:68:0C:44:BB"}}},"request":{"raw":"GET /api/v3/klines?symbol=SOLUSDT\u0026interval=1h\u0026limit=24 HTTP/1.1\r\nHost: api.binance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bitvalley.exchange/\r\nOrigin: https://bitvalley.exchange\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 1276\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\nserver: nginx\r\nx-mbx-uuid: 69e33d08-6cce-4b59-9523-32ab7afa8919\r\nx-mbx-used-weight: 10\r\nx-mbx-used-weight-1m: 10\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\ncontent-security-policy: default-src 'self'\r\nx-content-security-policy: default-src 'self'\r\nx-webkit-csp: default-src 'self'\r\ncache-control: no-cache, no-store, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\naccess-control-allow-origin: *\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 d009c4305a73ef1e26138117423d6076.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: N9odzwMXxlUNhCkgQcbg6wOKUwH7NDZlEp2Z8DhSD7ubPLBfbdCWEQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4067,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"f7f65212d8eab1cfa814a33811fe8064","sha1":"a6c8f740df5bed662be3c81ee5db60eab93c638c","sha256":"96c87205f170b1fc8fbd908e43e52700dd3e4a75f1bb22fbeccf3a6b2b9e4ad6","sha512":"d20a917a78c211734f542cd9da89d2e3c21efe45e546c4c642d8302c8cf4f2a140d9b51a51d7ff4decef51d0584638bb5c0173d36553533d04c51782ea350ae8","ssdeep":"","tlshash":"d6810652279583a0fb7a8c6a37e5f8e5196734baadce0cc08dd0693758e61b3178cb01","first_seen":"2026-02-13T21:42:07.701644Z","last_seen":"2026-02-13T21:42:07.701644Z","times_seen":1,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Roboto:100,300,400,500,700,900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.846Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"09:4B:1C:B6:64:C5:97:5E:E3:CF:D9:FF:1A:01:C4:D8:D7:10:82:7A","sha256":"2F:A7:09:04:89:72:33:DE:1D:F8:A7:A6:EC:9F:0C:74:15:D5:B0:87:85:BE:25:63:1A:0E:73:0C:72:E3:CD:C8"}}},"request":{"raw":"GET /css?family=Roboto:100,300,400,500,700,900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Fri, 13 Feb 2026 21:41:37 GMT\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33510,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"49f2590313831152e2b656ca33b7fc37","sha1":"910db6f788b80561905582e510ed3a09ed752c59","sha256":"591b1c315e1d15fd0a13a83272e68f621d26092559ad6adbf0108012d22d3173","sha512":"65a0b79b9011b31f8b55a7a0ed8a5c6e55f992f775c21592c0502765afa716f01ef5c65e7abbc2d8681bda6ad804f2661072016fc5e529cf5dd007a9c1811837","ssdeep":"768:DDSDjDGDUDB4DiLDZD1D5CJmwBUiRDfMTcfFBhiEymDcTYeBai75tdmtC0BQiVPI:I0rAwyl","tlshash":"3de200a1041750009b838ce223cebf35fe1f52517142d0b5abfdab6badcbc66526936d","first_seen":"2025-11-19T00:32:15.532783Z","last_seen":"2026-02-19T18:58:31.233433Z","times_seen":1940,"resource_available":false,"data":null}},"time_used":682,"timings":{"blocked":310,"dns":9,"connect":8,"send":0,"wait":27,"receive":0,"ssl":324},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/fonts/inter/Inter-Regular.ttf","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.377Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /fonts/inter/Inter-Regular.ttf HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/assets/css/root.css\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\ncontent-type: font/ttf;charset=UTF-8\r\ncontent-length: 309828\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-a250348c02d81133231af57ea3a6dc8a-c4c0a49330257a46-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\ncache: MISS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":309828,"size_decoded":0,"mime_type":"font/ttf; charset=UTF-8","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 33 names, Microsoft, language 0x409, Copyright 2020 The Inter Project Authors (https://github.com/rsms/inter)InterRegular3.019;RSMS;I","md5":"079af0e2936ccb99b391ddc0bbb73dcb","sha1":"7237d9cf55f177702066a28a4dde1e4c7e8ab576","sha256":"41ab0f707a2bfab8133ccdfcdab52282f5f79e5751f43a264805451c7bb95fb8","sha512":"0dc66e3ea9fe00ebdba8636f563842e4170f21fe3dadd57ba59cab416ca3326dc887332644b0ec47cf0911d7396557beb420908d3e90a5ea7830efc4f0a482fa","ssdeep":"6144:AyKMOMxMmABlNGowmBNn6m4zHkA4atw21za0dkh6w/yOjs:AyKfMxMmABlNGwBNn6m4DkJak0fw/w","tlshash":"88645b23f363c35dc5172d3687e2c7a0b367bc512a12e10af7283a55daab1b41d9b4d4","first_seen":"2023-05-09T01:02:40Z","last_seen":"2026-06-07T06:04:07.906009Z","times_seen":4007,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":3,"dns":0,"connect":0,"send":0,"wait":39,"receive":33,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.binance.com/api/v3/klines?symbol=BTCUSDT\u0026interval=1h\u0026limit=24","fqdn":"api.binance.com","domain":"binance.com","tld":"com"},"ip":{"addr":"108.157.231.57","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.800Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.binance.com","organization":"Binance Holdings Limited"},"issuer":{"commonName":"GeoTrust TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 09 Dec 2025 00:00:00 GMT","end":"Sat, 09 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"B3:E9:9C:BE:88:3B:90:E1:A2:3A:98:81:FA:0E:51:08:F0:80:5E:57","sha256":"B4:FC:8D:3D:AB:BE:3E:3B:A7:86:50:B8:92:3B:52:62:7C:FE:48:A9:1F:28:F2:45:AB:CC:DE:F7:68:0C:44:BB"}}},"request":{"raw":"GET /api/v3/klines?symbol=BTCUSDT\u0026interval=1h\u0026limit=24 HTTP/1.1\r\nHost: api.binance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bitvalley.exchange/\r\nOrigin: https://bitvalley.exchange\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 1443\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\nserver: nginx\r\nx-mbx-uuid: 8d959687-d5e8-4263-a051-e957ab0ccda4\r\nx-mbx-used-weight: 2\r\nx-mbx-used-weight-1m: 2\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\ncontent-security-policy: default-src 'self'\r\nx-content-security-policy: default-src 'self'\r\nx-webkit-csp: default-src 'self'\r\ncache-control: no-cache, no-store, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\naccess-control-allow-origin: *\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 d009c4305a73ef1e26138117423d6076.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: EMRUB3-odrFof_Jbt7vUK9u0rK-GVNR3dBTc_Xb2Kn0J-dPh6rbdVw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4308,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"79da790b2b6465803a35ffb5785c6328","sha1":"b3a8734b4118681bf167269aacad1ee44d178c18","sha256":"2dc125aded332e80a1db1dffc559eb14924c3dd26a793c24ccd72cd7f8e90e96","sha512":"d4ece1399b63001425a07e1aea6fc1d8b7c3a468cbd2f29b07df5ef15fd9038f335d5de95521f423248d22dff4bc386778ee643aa2b9c6989cfd047a3a8b3baa","ssdeep":"96:vikTD95zgQ3iL1RTOoQ/Vm/3gadgmJDR57fVRRA:vnF5zfihh+di33/bXy","tlshash":"61919eb627b9d7a0fe3a4e0a23d2b9e9195a30679dcb0dc085d1267788e15f1170cf54","first_seen":"2026-02-13T21:42:07.704937Z","last_seen":"2026-02-13T21:42:07.704937Z","times_seen":1,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.binance.com/api/v3/klines?symbol=DOGEUSDT\u0026interval=1h\u0026limit=24","fqdn":"api.binance.com","domain":"binance.com","tld":"com"},"ip":{"addr":"108.157.231.57","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.815Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.binance.com","organization":"Binance Holdings Limited"},"issuer":{"commonName":"GeoTrust TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 09 Dec 2025 00:00:00 GMT","end":"Sat, 09 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"B3:E9:9C:BE:88:3B:90:E1:A2:3A:98:81:FA:0E:51:08:F0:80:5E:57","sha256":"B4:FC:8D:3D:AB:BE:3E:3B:A7:86:50:B8:92:3B:52:62:7C:FE:48:A9:1F:28:F2:45:AB:CC:DE:F7:68:0C:44:BB"}}},"request":{"raw":"GET /api/v3/klines?symbol=DOGEUSDT\u0026interval=1h\u0026limit=24 HTTP/1.1\r\nHost: api.binance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bitvalley.exchange/\r\nOrigin: https://bitvalley.exchange\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 1192\r\ndate: Fri, 13 Feb 2026 21:41:37 GMT\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\nserver: nginx\r\nx-mbx-uuid: 63887d69-fae3-4935-86b1-c8071946d4d9\r\nx-mbx-used-weight: 12\r\nx-mbx-used-weight-1m: 12\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\ncontent-security-policy: default-src 'self'\r\nx-content-security-policy: default-src 'self'\r\nx-webkit-csp: default-src 'self'\r\ncache-control: no-cache, no-store, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\naccess-control-allow-origin: *\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 d009c4305a73ef1e26138117423d6076.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: f0R9kEZ2bkRzxJBABFLRGgAURJemmGk98P--LRz7Q8zWrbory1sWLg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4052,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"978c76264f9755fee6d18426845fcb59","sha1":"9dbb02238fd12e35a55826a9dc0fcff904e11a5e","sha256":"7c5bce8ad700f4d248e4070a7b9c920cab8691bfaf06e2c7812ecd146f185468","sha512":"48b1d7a03a251b7680b1a40343d730915cb282b74680cf383fa784ffebec5ba5a8db0cbda69dbf5fcc16ece9c582d671cf0d7fba6b8070828330bd5d87b47862","ssdeep":"","tlshash":"9981e1811fa486b0fafa4d0ae7a5f5a52966347fddca1fc089e3102f58e53b61718f10","first_seen":"2026-02-13T21:42:07.706786Z","last_seen":"2026-02-13T21:42:07.706786Z","times_seen":1,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/css/choice.css","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.863Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/css/choice.css HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/css;charset=UTF-8\r\ncontent-length: 2895\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-c77ae86452ae4b456ec469f846732e63-34af06e877dbc520-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 12\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:24+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":2895,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text","md5":"56ce683e2b1a302f08bc11e5189de8aa","sha1":"594abb6baee643d5971d2321598706236f8121e5","sha256":"119fbe9ff0e72400e6bc3856dab57cbb3a5ce8c68f7b6f62f4a869df08ad678d","sha512":"dd17b9d3ccc9226bec5955d8391f2c633429571fcc033af8806eeb6313965049e01de01392bb0c2f86dc167600fd58d5c4075f2b7c6d7f312db11ec529e1960c","ssdeep":"","tlshash":"9e51494f9893291a5817b0449fb903e451788053f24ed9bebecf664cdf899d846b3f88","first_seen":"2025-06-23T06:41:39.296533Z","last_seen":"2026-04-06T12:02:02.480885Z","times_seen":63,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/logo.svg","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.871Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/logo.svg HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\ncontent-length: 1228\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-aea207b344d5ee4399d08fd8484c9469-bb7a621c5735d157-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":1228,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"8de8bf461d9961680647e78f69eac5ae","sha1":"cf5ea57c7f73e047b66a5199302eff1e958fc26e","sha256":"606375a97e3c2a44350ef2887d186d385e34bcf8e853c61c6dd547c7cc3b46b2","sha512":"1ea1093ea3a124a8322e0956d483aedea0f4d9924e737dbe03433b7df7e6882610e9c481dd533bd61f84343428ec84a1c3709bd942802a3d4519adcf7d399a72","ssdeep":"","tlshash":"fb21df6ed3185c3bf02bc36cd6f0801652a66149e6c9c7e5f7a8b71f6515ca31c29788","first_seen":"2024-12-06T22:27:57.075232Z","last_seen":"2026-06-05T15:12:51.539296Z","times_seen":220,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/header/technical-analysis.svg","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.876Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/header/technical-analysis.svg HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\ncontent-length: 5032\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-a880b45abfaa77265bad1132256f9959-473f8adefc8f5beb-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":5032,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"392721e78e0013c0fa96cc574ec5063e","sha1":"45bb4f8eef034d061eae888b3b759f8890d82961","sha256":"e98843f36f8117977e9a636e6d29b9f0ed94e6ed93bbb492d3413dedd8db25e2","sha512":"33707ce4e4feace0dccd38422ee937c42ecc55f80f80148f922fc0d81c1965cfd3a19452eecd3e7ef4e423ed7ec6d3fb3858d9f025dd8e3b648a79a1c2e9900d","ssdeep":"96:+kUAfxrpn/Ilg7arcU7pV7M3qIkLmzKGhsmnJR3UDDVod96:3Ugxr6qOoq0KGXkDhoH6","tlshash":"0ca1728b033cc2f877c86428a9713542367264bf5678a108f3bff8263747f662259d58","first_seen":"2024-12-06T22:27:57.056845Z","last_seen":"2026-04-24T09:21:43.550293Z","times_seen":261,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/coins/SOL.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.904Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/coins/SOL.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 404\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-9cd3773aa32051fb76e68000b68c53d6-cb81eac31101b458-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":404,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"5e22a9302a4383454bfe530f0ddffb53","sha1":"be5b706cd340c21bd9be3a3ce56647ec384d6624","sha256":"b4f74a2541dbe53158395e8b054ec169ffe18124b55a0b5e027ebd9c22b5ba11","sha512":"0d94a417d4f0c678faea64e59463ab5c6cd582168ae7e744d44c1d6878deffec49dec89d5b5ca176bb15767eae10cdf9aa1691d4b033367becb08caf8ec56889","ssdeep":"","tlshash":"c9e0f1f27d245ca97f5642050fe80ff2d03c66f515119c861db2ca2d554105545d5453","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-06-07T20:45:48.014583Z","times_seen":948,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/css/normalize.css","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.854Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/css/normalize.css HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/css;charset=UTF-8\r\ncontent-length: 6259\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-cf017a488130d8faba6fb14bcceca311-5b88a7cf7d5a4a58-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 12\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:24+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":6259,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text","md5":"29f1f42239928aeabc6b9a01e4047691","sha1":"35f988bf000fe802b9ca9ba9b2e8ec31d80cf87e","sha256":"ebb48a2dd4bb49f804117f30050271ec19aee889ef3f144287cb109c9cac7c0b","sha512":"6326998653676e6db3803022a9dbc681ceff3a10ba411f8cadc572a63d8eb139a5e3606a1380b901baff40498f4c813af4e4b5f3412a797a669243b3ebf9c2cf","ssdeep":"96:FIDs/H8+aFDis9Dehcg3p27oS5TdxWqziBGeJxmnAmhOHoNCrELp:FL/H8kcg527okW5BRKAWOHo8rYp","tlshash":"3fd1519017206f6291a60d38676f978973040127873c3cddb4a673e8cf45ba9d769bce","first_seen":"2024-12-03T22:54:49.926566Z","last_seen":"2026-04-21T09:42:09.834125Z","times_seen":108,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/css/features.css","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.862Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/css/features.css HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/css;charset=UTF-8\r\ncontent-length: 4769\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-6a893cf78d0c436dc198cd6a4817642b-299542562172d191-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 12\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:24+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":4769,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text","md5":"1c3195295336a4f9aaf4306a065dba59","sha1":"317500dbfd380f0413fcb92bd13591dd2ed5a452","sha256":"356eef1fa94aeec5edaeab516de65386d568c8b82e8eca068a78e684301d1bd5","sha512":"b67a80fc182f37e4ae03603b13aeb616edd25ef15684901d10d4d6784ca793227de881777593a29b45b380ec9468d136a800d51e01c6a4a91e259730d07225d6","ssdeep":"48:Hn2+kZtjye3enryENxE/O2sJVEM9zGUQ+f9WTq+YxGrKfVw0BxvVWDfKkKQ0a9uN:HAZOr3nEG2uRZGU5f93+1gbxvVWh+WON","tlshash":"29a1afbf69b318095807f07d5bfa4b55352c4093d20ed9a47f8ca74c8fc82d859baac9","first_seen":"2025-06-23T06:41:39.302693Z","last_seen":"2026-04-06T12:02:02.501662Z","times_seen":63,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/css/download.css","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.868Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/css/download.css HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/css;charset=UTF-8\r\ncontent-length: 2806\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-859f9d5eaa464acae0192433b5fbf421-599cc79782b21565-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 12\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:24+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2806,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text","md5":"064e8f1a3eb2c396e141228bc5619a32","sha1":"ac8d2dd25b2edc86e96190015f884ed7e8c0a3b3","sha256":"df31b153041106f66ade72e51785cccd6465055cd1d45505b8ff277eb5defccc","sha512":"1f0b2f563394912fb38f40fa31dd31bd352dc2197c363ca421af40877a5bd5d0e12b1b8f2fa7a82dfd54390adbc58cfc1547df9a8d98659f3283f1c3f4854571","ssdeep":"","tlshash":"fe519a9f2d635c44a90bb0ac1fae071511364893d51fdc567eac138cef896e8c962ecb","first_seen":"2025-06-23T06:41:39.33585Z","last_seen":"2026-04-06T12:02:02.531861Z","times_seen":63,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/intro/phone-one.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.895Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/intro/phone-one.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 279558\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-bb294e0b0c271f64660e71b9e8f40590-823a770887d2dd5b-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":279558,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 476 x 1052, 8-bit/color RGBA, non-interlaced","md5":"15652e86c890a94b3b334b073882b37a","sha1":"7a1644e2f006fe3da2f7a3bcbd9c0ac981b0c54c","sha256":"5840307a4700600ff9cb95a861aa6c785761768726f4b374a1f57b742296888c","sha512":"cac394429e1287dfce400c234983b33703b7ac6eee05216a0b752d764bb141c4883c3a619a650d3d5c847833c2248bacd6010460e554b10b983d0b00bdef6d6b","ssdeep":"6144:ucFzxQJ47VCYC4oXHfgcJDgFSzDsDYM+v7ad/UDokfLxB:vzxQq7VCYbs3DgFu4D0aRmf7","tlshash":"205423932c5c9bbf92535e7bbd45be3d23b34a4b4a03300a15257a5a7cb1fe8407b198","first_seen":"2025-06-23T06:41:39.330919Z","last_seen":"2026-04-06T12:02:02.509024Z","times_seen":57,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":56,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/css/global.css","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.856Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/css/global.css HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/css;charset=UTF-8\r\ncontent-length: 1659\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-acd33f64f5b2632986e47bd9081c3c98-4fc8a6e45c7a6942-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 12\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:24+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1659,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text","md5":"73030eb11d7857bbc4ca3478de437a00","sha1":"2cd2734937cf487b3edd6fe4eb57717373503e18","sha256":"6d010cb2fcd10e780d5849364be211cfe5a18c5a7b21dd906b066ff6aef6c289","sha512":"465b7a0465a259a4348a0466e15b7285ed45d4fd77a8c14a0b365e05a19b5a023fc7e4295fd1eb60f450a32138ea83006c07e20ec9a0bebddf17d34c19ccfef0","ssdeep":"","tlshash":"3f312657e6e30885301b582c676fa7f9766c10175309cf78bb4c77a8df492b6066178c","first_seen":"2025-06-23T06:41:39.316097Z","last_seen":"2026-04-06T12:02:02.540951Z","times_seen":63,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/css/companies.css","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.859Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/css/companies.css HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/css;charset=UTF-8\r\ncontent-length: 443\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-1ed9a52c01ec5d27efbcff6c056297e4-6c3d16cae45519ba-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 12\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:24+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":443,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text","md5":"0d79d57ffe99fbc2506f213b97a51c6b","sha1":"eeb4457e606c1cd0fbf3caba35d99ba0db3c2861","sha256":"59edc0d28b55fb1421980a41d71b61c672658afe189be5150133f7bd8ec763c9","sha512":"5a6c6669cfd1097a6413acd51db9bc919bd6e18af41e37b6f787af00b067dda07fc7091afdff66736ace459d6e3c897ef7893f874dc7a504ff2e6fec543a7f2a","ssdeep":"","tlshash":"b2f02baa40b3281eed06b0801fbc490150c99113c20ecaec798c65cc4fcd29cb4b3684","first_seen":"2025-06-23T06:41:39.327788Z","last_seen":"2026-04-06T12:02:02.574534Z","times_seen":63,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/coins/TON.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/coins/TON.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 24181\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-c514d949d59320532870e101e3b9db12-48d687db1b631904-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":24181,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"1e864e18e2e3a14b3407889b0e7fb1d4","sha1":"6498cdc01f17a9c51007bedb1eed9e28ef98bd90","sha256":"d8ffe78edcfb9ad030ef0f932ea5a25c89acab7c11d6cf03b32cd4913de14053","sha512":"5b0555db16debaafbad44fb6e10cd8f3ee414c8bd272ba47734fcdb44b32a5828cc0776c43dfea0c40c81d9718ebbee8d9f3fbfca17f08a5e45e193cb9497f31","ssdeep":"384:WU5AJju7MoJSV2L783TGNX2H3PLIE0eq8x343eNZCPkArJTMUno/JBWRCrasz5Px:/AA7MoUV2P83TGNGH3PLIE0t8+ONYP4F","tlshash":"40b2e128d57e8291b694f1b827cb5c8f0f738cd23c711e50ee550ea0a7922651cefa0e","first_seen":"2024-12-04T15:05:15.931067Z","last_seen":"2026-06-05T15:12:51.575515Z","times_seen":462,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/css/reputation.css","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.866Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/css/reputation.css HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: text/css;charset=UTF-8\r\ncontent-length: 5123\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-be3fdd7a3786008dc82d417f57cdae83-1ece6249b90aff15-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 12\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:24+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5123,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (451)","md5":"4b3f066e0521057256f50cd0af75656e","sha1":"0bbbfd8c237e34b8a379192f7a0f9ac1a3dd9fdf","sha256":"9ec440ce65a55e9f00e0a00206953582c26b32dde977baf715e15837cf1f1185","sha512":"09a4e5ddd40b1c03a5fcf7c18f82948f6c9a6a27510c4398bd561c9c5df27d434ed94e4944a8da65997b094e55dfe6e2078d4dc3dc788c9b0a187a74c8a0ff93","ssdeep":"96:TuYeooPRQQMEbTNGrPRQQMEmMwdB5efMAu/oEl7M:Tu9ooPjTNGrPuMwdXef5u/oEl7M","tlshash":"cdb166d26e179c097c17fc991ff69725222c8403d40ef8643b9d724c8f8a9cc466b68e","first_seen":"2025-06-23T06:41:39.344561Z","last_seen":"2026-04-06T12:02:02.512109Z","times_seen":63,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/landings/1/img/intro/pointer.svg","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.891Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/landings/1/img/intro/pointer.svg HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\ncontent-length: 12233\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-9be213a5f931b8636ba22bb22442b095-cdc3f30245da738c-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12233,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"38882a19e05ff2b9eb93afb7196623ea","sha1":"e598c0f554bb368770d2e1864904f736685df80d","sha256":"7ffeecd36358f5bce864e57a54c0a490cef9434ca63d09e34dab938ed7c17d6e","sha512":"79809a0807a2ee2eb4589ed93bac577b3a732b656b246b1fb446b3a09b882dc1283cf064a67d28ea32f8a869fee51c19a1597a431f91b45898de0f1be8176f16","ssdeep":"192:HZStAWL60hUSUYcb8kXJOtP6nO21TcmKk/H3mIpcIM7oueFgKFoBbsqPxQ5So8Bd:HZga0hFJEvsE1TcmKkv1pcIp9FgKFXmn","tlshash":"e24285ccd7229afcb014b2f5c537d83c798e9ee959408535c2e40e57a9a20ac5e76cc7","first_seen":"2025-06-23T06:41:39.338251Z","last_seen":"2026-04-06T12:02:02.569209Z","times_seen":58,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/coins/BNB.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.903Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/coins/BNB.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 2560\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-3cc4298613fa49b9208085ebda7d2a03-07229c4c61102a65-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2560,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 192 x 192, 8-bit colormap, non-interlaced","md5":"cb84d3ca48a52e3df1025731a8bef4ec","sha1":"b059f2eb3aaf93145fd62647cb908c5532e06795","sha256":"0f4502d8c5254df1eb0eb8d124c7684b4f02e2a5004525d5bd7acd18a6ebb9fc","sha512":"d7cd5d9aface1bb4718d418d1f7108bbbde7e8e24e926ce4bd4a88f51c715759e55741de3d6b17e7e54dea502761817e093e768a337fc0030a259fe9b4338151","ssdeep":"","tlshash":"7e513a6a47020c971334d44f89fc3eea1d6edc1ad421e0aeee0197fa18101c18dbe343","first_seen":"2023-05-25T23:01:30Z","last_seen":"2026-06-07T23:37:29.553503Z","times_seen":1505,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:37.354Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"C0:70:82:EC:9D:28:B5:4B:51:02:7A:C7:BE:63:94:B1:DC:64:29:FF","sha256":"5E:E3:2A:C0:F5:10:AE:D1:9D:11:A4:88:D0:66:44:3B:31:B7:05:05:0D:A7:35:66:17:B5:35:88:23:3C:E3:F1"}}},"request":{"raw":"GET /s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://bitvalley.exchange\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 13 Feb 2026 03:10:51 GMT\r\nexpires: Sat, 13 Feb 2027 03:10:51 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 18 Nov 2025 19:00:07 GMT\r\ncontent-type: font/woff2\r\nage: 66646\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-06-08T03:34:53.074152Z","times_seen":872850,"resource_available":false,"data":null}},"time_used":327,"timings":{"blocked":137,"dns":0,"connect":35,"send":0,"wait":22,"receive":27,"ssl":100},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/header/market-screener.svg","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.873Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/header/market-screener.svg HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\ncontent-length: 1688\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-c10350c3c57adee7dfd645e2577fe9df-1582237edd00746c-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 9\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:27+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":1688,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"24c7b0b83795ef8461878325122b1499","sha1":"16a34c45d1c3bf263a890fb4689c36b5c48b8db7","sha256":"b08c1bc91d0325fc5fd89b00e9cf7aba49c3341fbeb71f1782013bba8bc37287","sha512":"3137f70bbdbdb7822f6e1f273d22e2516383c0567e92900b6bec7570b4918aecc772f6f7dbe0364490c35f0d7ea06bf9d734a16a87c0f1fd54a65c65f29c60f1","ssdeep":"","tlshash":"8331d1dc50d6c9f9aa64c70417f89f95786238fb3250459cfebc64273b824a4309ced6","first_seen":"2025-06-02T07:00:29.919137Z","last_seen":"2026-04-24T09:21:43.577741Z","times_seen":249,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/coins/BTC.png","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.900Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/coins/BTC.png HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/png;charset=UTF-8\r\ncontent-length: 1125\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-33963c9089dccaf32abe81601b12382c-5fbefffce778a45f-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]}],"data":{"size":1125,"size_decoded":0,"mime_type":"image/png; charset=UTF-8","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"75f196b437f9d87fdc198bc904c66c4c","sha1":"79b6e300761520f7ad41856878999dbc1fafc137","sha256":"f72b9a231c13012613217eec2bec27b923204e8c6cebc2b2ae51485d2b5d679d","sha512":"de4633885db64868d13a4a4699631acf0b00af0b2cda542c5be26b4dce3a1f8b4e071949280ddd9f3c59eb7a236d5d8d7003ffcb9633e0749fb62d46c780ac60","ssdeep":"","tlshash":"2421f9d3df09102ec4029c9cd4730c6bcc287a963410445b5f7c823fcc0b6496864b67","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-06-07T20:45:48.013846Z","times_seen":1636,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bitvalley.exchange/assets/img/arrow-down.svg","fqdn":"bitvalley.exchange","domain":"bitvalley.exchange","tld":"exchange"},"ip":{"addr":"81.28.12.12","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bitvalley.exchange/","date":"2026-02-13T21:41:36.911Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bitvalley.exchange","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 05:01:14 GMT","end":"Wed, 06 May 2026 05:01:13 GMT"},"fingerprint":{"sha1":"B9:78:82:61:1B:7F:E1:95:8A:D8:28:F6:43:30:04:95:B4:46:75:9C","sha256":"D5:DB:9D:99:77:2D:5B:F2:57:B8:36:DC:37:96:A6:BD:09:A8:79:F7:25:31:A4:7C:B7:46:96:C7:05:31:AC:52"}}},"request":{"raw":"GET /assets/img/arrow-down.svg HTTP/1.1\r\nHost: bitvalley.exchange\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bitvalley.exchange/\r\nCookie: JSESSIONID=4964A83AEB2040C2B0BDD823595B4C7F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 13 Feb 2026 21:41:36 GMT\r\ncontent-type: image/svg+xml;charset=UTF-8\r\ncontent-length: 243\r\nx-id-fe: am3-hw-edge-gpig-gc96\r\ntraceparent: 00-3496f33558ef7752beb4facc8fb6d17a-d7a29f6ab89f8c61-01\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 18 Jan 2026 13:49:00 GMT\r\ncache-control: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-id: am3-hw-edge-gpig-gc96\r\nage: 8\r\ncache: HIT\r\nx-cached-since: 2026-02-13T21:41:28+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Gcore","description":"Gcore is a public cloud and content delivery network (CDN) company.","website":"https://gcore.com","common_platform_enumeration":"","icon":"Gcore.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":243,"size_decoded":0,"mime_type":"image/svg+xml; charset=UTF-8","magic":"SVG Scalable Vector Graphics image","md5":"d0be16ce06ea0a66b8c8be201c88f71a","sha1":"03afb7918db67625b2365659d303a057071773eb","sha256":"3e6f14737272b9e9e4b60048aea76d784d99ed190878112b91f2cfba0c6fc77c","sha512":"c26291f4c90c6fe57adfcd466577789d483352812391a587011e19e0e8bf111230722309775ae62ef605ce3ef8bc7efe533b18eef7fbfea696f60205f169c245","ssdeep":"","tlshash":"19d0a79841d84d2ce6664650d7783664f03e10735f894188ea52713ed51a6cd6c339ec","first_seen":"2024-12-06T22:27:57.083257Z","last_seen":"2026-06-05T15:12:51.557656Z","times_seen":426,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-13","alert":"Phishing Block","trigger":"bitvalley.exchange","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"bitvalley.exchange","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}