{"report_id":"701b0372-816a-447d-a0c9-b10a059e2b3b","version":6,"status":"done","tags":[],"date":"2026-01-09T00:21:30Z","url":{"schema":"http","addr":"ygdssc.com","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":0,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"ygdssc.com/","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"title":"伟德体育(中文)官方网站","dom":{"size":51469,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1280)","md5":"0d3942b02b7cc13446720caa9d77893a","sha1":"b0c6e41edc51d3614330d1b2a53650e75b41bc11","sha256":"347b08de2b4948e127f6c7224e4d0457ef97f23d04fd82e4b61e6d581e1f23c3","sha512":"3db84f04e914fa6bae9ac7b8c5664d2c97fedd75a3f0db98f0fbd0f2968858b5a932d68ce61b5197f39b63ad447f991a9bfbf4153a5a0b94d6f997aa294fcde2","ssdeep":"1536:RiBo6f2+B8e+Auoci+zs0wzqZ37m71yVfwGPLcKta9di/nm35dq:RiBodAKigs0eqqsVfwScia9di/nm35dq","tlshash":"2233097260082a3f099742e0b720bb2a60e6fb5ac8370686f7f6d7e513d5fd5ae15118","dom_hash":"domhash25d9adb4154de657d7913775c7b44858","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"ygdssc.com","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":0,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-13T00:21:30Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"ygdssc.com","ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"domain_registered":"2025-01-08","domain_rank":0,"first_seen":"2025-07-19T08:13:38.757314Z","last_seen":"2025-07-19T08:13:38.757314Z","alert_count":74,"request_count":37,"received_data":2342632,"sent_data":16772,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:3.2.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Popper","description":"Popper is a positioning engine, its purpose is to calculate the position of an element to make it possible to position it near a given reference element.","website":"https://popper.js.org","common_platform_enumeration":"","icon":"Popper.svg","categories":["Miscellaneous"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Slick","description":"","website":"https://kenwheeler.github.io/slick","common_platform_enumeration":"","icon":"Slick.svg","categories":["JavaScript libraries"]}]},{"fqdn":"sp0.baidu.com","ip":{"addr":"103.235.46.102","port":443,"asn":55967,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"domain_registered":"1999-10-11","domain_rank":220073,"first_seen":"2014-12-05T23:12:12Z","last_seen":"2026-01-05T09:26:56.387796Z","alert_count":0,"request_count":1,"received_data":116,"sent_data":472,"comment":"","tags":null,"fingerprints":null},{"fqdn":"zz.bdstatic.com","ip":{"addr":"157.255.63.48","port":443,"asn":136958,"as":"China Unicom Guangdong IP network","country":"China","country_code":"CN"},"domain_registered":"2011-12-26","domain_rank":365334,"first_seen":"2017-01-30T07:45:48Z","last_seen":"2026-01-05T13:55:50.217731Z","alert_count":0,"request_count":1,"received_data":769,"sent_data":417,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"ygdssc.com/static/js/jquery-3.2.1.min.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c9f5aeeca3ad37bf2aa006139b935f0a","sha1":"1055018c28ab41087ef9ccefe411606893dabea2","sha256":"87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de","sha512":"dcff2b5c2b8625d3593a7531ff4ddcd633939cc9f7acfeb79c18a9e6038fdaa99487960075502f159d44f902d965b0b5aed32b41bfa66a1dc07d85b5d5152b58","ssdeep":"1536:YNhEyjjTikEJO4edXXe9J578go6MWX2xkj8e4c4j2ll2AckaXEP6n15HZ+FhFcQ7:uxc2yjx4j2uX/kcQDU8Cu9","tlshash":"4483e6d9b2c67062977730b950bf410bb17a98dab44c8c60f158d9d47eb8a8d907bf2c","size":86659,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-04T01:34:14.463116Z","times_seen":77178,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/js/feather.min.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"351ac9fd60baf7234f006b492d455184","sha1":"db52005d57d4a7f19efd3ecc089bb0d9ed95d238","sha256":"8bc0e55b113b92fa138312bc64952b7a7016499cbb33ec4d3eb129162db6f96e","sha512":"66555415ed3f29b564b268ebf39ed7c1c3d15e6fdd5fa17737ad14b7d2d836d80bf072861b82bb098bf5fbfea0000e48928434d1b210c402dbe82aa381e675ac","ssdeep":"768:a4aNjfPggyGv3VwL3xjUN+HNsojRuhcEcDXNsLqxriT9aJ0sHvz55tfD9Xq52epc:daNjfPTXwL3Nu+Os","tlshash":"46633d767d4eb59ed10753e61a2f5026236f21fff88c4214e05c42b089276dbee67a2c","size":72830,"data":"","first_seen":"2025-10-12T03:59:07.419133Z","last_seen":"2026-01-09T00:21:34.969531Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/js/scripts.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0a47d913e3bb1ba26248d1943ff1f8c6","sha1":"fa90e41dec30c82a1d98cf2b2b4b3f81aef89ca3","sha256":"fbe01ef0ae6d94bdf1008c0b71b3cc9f9f1ba9d652fec7b99669e6c4d85a23c3","sha512":"b7a64ff1e06d259aad5c86dafd84e71dec82ec2336d1ebcb80aa20e84002efedfb8b54c31a0ab09f8dd804c482f50d52f2c70ec66bbfb9257faab639005fd59b","ssdeep":"","tlshash":"3741c004b5a2206521bf713fcbbf62401e1c611bd04e9a45b89f9fd80f543bdb5a2a5f","size":2249,"data":"","first_seen":"2026-01-09T00:21:34.95455Z","last_seen":"2026-01-09T00:21:34.95455Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/js/bootstrap.min.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"14d449eb8876fa55e1ef3c2cc52b0c17","sha1":"a9545831803b1359cfeed47e3b4d6bae68e40e99","sha256":"e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b","sha512":"00d9069b9bd29ad0daa0503f341d67549cce28e888e1affd1a2a45b64a4c1bc460d81cfc4751857f991f2f4fb3d2572fd97fca651ba0c2b0255530209b182f22","ssdeep":"768:9VG5R15WbHVKZrycEHSYro34CrSLB6WU/6DqBf4l1B:9VIRuo53XiwWTvl1B","tlshash":"7523c84a7254b4a202dfa476913f450bb73b389aa60bc16cb95994ed1d7cd8c3227f3c","size":48944,"data":"","first_seen":"2023-03-07T01:02:44Z","last_seen":"2026-04-03T23:28:47.697218Z","times_seen":103152,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/js/slick.min.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d5a61c749e44e47159af8a6579dda121","sha1":"3b41b3bc956685015a347a2238e71db29dfa0dbb","sha256":"0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740","sha512":"5ed98cb4311c373da3ede92bb47bce551e22c30683ea8fc55097baf99abe1e0702b24de48f8b9241047cc1e4364158f5a343e4e8fc182e8866db4e99ccd7ee6e","ssdeep":"768:4rkkX123A5YHi6pWzYdlNWYcx16nnYdXRRMd2KYCQCsPShb1ez7RFmYH:EPrYdlNixEePiYH","tlshash":"e513a549d205276285d721e62105c40eb3f7fb3cba22c0e475c9d3ea646ec4896d7bfa","size":42863,"data":"","first_seen":"2023-03-07T01:06:34Z","last_seen":"2026-04-04T01:32:00.087275Z","times_seen":77118,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/project/js/tjdm.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4432126d63402d78eb9dc9ce71e5d08e","sha1":"d948b6e05c59a1fdaef1457c039503d8a6854a55","sha256":"bbefbb7c3e30f8b4f9463ea90170cd99ebdf5bcd048daf3029b68b5823e3f7f9","sha512":"937b9a01df1284c513ff129e5c06c81b6f16d260bfb9f5e3bedf1c09529a5456712e711e4de80217923e06c3d4087510d010538720d24bcb199c99b2fb845ca6","ssdeep":"96:Qeaoay1Te/dLwaoBwacJNUhlrQ4/VAbg0sToT1mtxO+J:Qeaoz1IdMsNyJQPJ+J","tlshash":"0ca1b8af48fb24372417386a639b600c72788047f504cf593e5cbeb46f68e658763ac8","size":5039,"data":"","first_seen":"2025-05-10T05:40:54.31976Z","last_seen":"2026-01-09T06:12:39.225435Z","times_seen":230,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/project/rchfile/js/basobeauty.1.0.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e351736f5c1820755677a75a4afb535b","sha1":"8e834ccba79b960c441b57a3b286a987b4598d2f","sha256":"d246d2e113b8b39e1277eea7b39dd2aea9165d198ba37d3b88ef99ec149bd2d0","sha512":"90049917a7b27b91f72e586d1e4a092d6cc550a24da83b9cbf8065dcd1fefa5180835561d52131550ea398d267b5432b1a5d74e7abe2d3d6574af86051ccd875","ssdeep":"","tlshash":"c101c01d5cb3d6346f235047773ed35171a560171055d829bd8eed0e1f20faa4e86de4","size":735,"data":"","first_seen":"2025-06-02T05:55:31.049647Z","last_seen":"2026-04-01T20:56:32.506988Z","times_seen":457,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/project/js/prejquery.min.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"14b8d6082d944c8011e28d03f07ef688","sha1":"2425f0461f02470beea7c3ecf18de13cda2255ab","sha256":"19384d468064e8535c1009def0f7f5204acaa9e52022946cb40129a7c3c38967","sha512":"3c2a4c6ca1b024c5d0a65d3b38987a21f82aa8bf0a5f694651f40fd9f802c5bb3a6c4664a5df2b773a766ff211f9aa3ffb5d3b01b81166acbe3b45648e78a5f1","ssdeep":"","tlshash":"4831375e56fb4838156ba229cb9fba893577054f5089ca007e7c86806fa0ef654e07cd","size":1748,"data":"","first_seen":"2025-06-02T05:55:31.109562Z","last_seen":"2026-04-01T20:56:32.665398Z","times_seen":425,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"zz.bdstatic.com/linksubmit/push.js","fqdn":"zz.bdstatic.com","domain":"bdstatic.com","tld":"com"},"ip":{"addr":"157.255.63.48","port":443,"asn":136958,"as":"China Unicom Guangdong IP network","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"f9fc52ab67f035b8baf5d558714cc94d","sha1":"37062a6fb1ef410d496137d44275738ae743c747","sha256":"c31f2003f1c93ac1e34b09f376d97a65da6e110bf451cf1e0e50a7946c5e7212","sha512":"ebb0415852fbb5b964094e2e55a28b90f701dff1977c8b98c6f24d65d09067dc0c417d01492ca28a4be6747816d7c0bfac87b73a33725aee047a5d2f7ab83182","ssdeep":"","tlshash":"11e0cde86054c01c0dcb107135bb324ce7771d675a645545c04d9445396cb1f8247fe9","size":308,"data":"","first_seen":"2023-03-07T01:18:58Z","last_seen":"2026-04-04T01:23:22.127538Z","times_seen":18904,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/js/popper.min.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"70d3fda195602fe8b75e0097eed74dde","sha1":"c3b977aa4b8dfb69d651e07015031d385ded964b","sha256":"a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66","sha512":"51affb5a8cfd2f93b473007f6987b19a0a1a0fb970ddd59ef45bd77a355d82abbbd60468837a09823496411e797f05b1f962ae93c725ed4c00d514ba40269d14","ssdeep":"384:+CbuG4xGNoDic2UjKPafxwC5b/4xQviOJU7QzxzivDdE3pcGdjkd/9jt3B+Kb964:zb4xGmiJfaf7gxQvVU7eziv+cSjknZ3f","tlshash":"1c82a3cc3291b06643a79167a06f960fb2339979614e9410f199f2d87c70ef9913fc7a","size":19188,"data":"","first_seen":"2023-03-07T01:02:44Z","last_seen":"2026-04-04T01:30:25.603817Z","times_seen":103938,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"ygdssc.com/static/image/gx_logo2.png","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:12.106Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/image/gx_logo2.png HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/static/css/red.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:12 GMT\r\ncontent-type: image/png\r\ncontent-length: 2689\r\ncontent-disposition: inline; filename=gx_logo2.png\r\nlast-modified: Thu, 09 Jan 2025 06:40:46 GMT\r\ncache-control: no-cache\r\netag: \"1736404846.1432705-2689-257431590\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2689,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 133 x 66, 8-bit/color RGBA, non-interlaced","md5":"31c224d1b07bccaae4db4306210ae37a","sha1":"c3b3036f149d679e652e32ce4baad81bd5182139","sha256":"a31c09c61a486838818184e20c0c9355058f0eec56b2ad54d5ebb245abfa8acd","sha512":"826b41ed40737ab303441f0abf9d00f30c2ec39c29bd19a8297508fbbb019bf7b5cfe7f5268b9287d5f9c30099799335d2e103dfdd3ba499cfa1eadc2efa2856","ssdeep":"","tlshash":"8c515bbac87ccfdeec330f946b3e0c5b6ad610b2295b6891941f403e26c247d20c8664","first_seen":"2026-01-09T00:21:34.943583Z","last_seen":"2026-01-09T00:21:34.943583Z","times_seen":1,"resource_available":false,"data":null}},"time_used":5482,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1631,"receive":3851,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/css/slick.min.css","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.143Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/css/slick.min.css HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: text/css; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=slick.min.css\r\nlast-modified: Thu, 19 Sep 2024 15:34:04 GMT\r\ncache-control: no-cache\r\netag: W/\"1726760044.0-1369-4143978455\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1369,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1327)","md5":"6a62ad0f300504c583e7797c79c2d8ab","sha1":"e6e4f113fc2d008516d21228dac93bb6a2fcbb53","sha256":"50ad448a8a5720bf8a5617db15af31ae60163de06331576f60c6244c012ffc72","sha512":"c879273f5fc0c11fb2c76e9c075cb4723bd050cbc46b63c5cedd5cf4b952e29450e4d39364559b8418a0f97f46f5e616ffc9b4ff8397371f29c49eb3e7bc7477","ssdeep":"","tlshash":"c2219d551496115a4027d3125ed3da9a38ebf1525c3607cef7408305ce8fbae2dd29e7","first_seen":"2023-04-05T14:54:49Z","last_seen":"2026-04-03T23:53:42.307065Z","times_seen":16063,"resource_available":false,"data":null}},"time_used":864,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":864,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/picture/5.jpg","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.153Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/picture/5.jpg HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 258213\r\ncontent-disposition: inline; filename=5.jpg\r\nlast-modified: Thu, 19 Sep 2024 15:33:52 GMT\r\ncache-control: no-cache\r\netag: \"1726760032.0-258213-2589398575\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":258213,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 345 x 301, 8-bit/color RGBA, non-interlaced","md5":"662a97b00140e0028c8ee22687251f83","sha1":"30770026e93632c182c07525ac668a329080069b","sha256":"f19b73e0eea7b2e0a69fd8cd1d41732b4c457e3d0ef35c8602304c5a156ff269","sha512":"697bca1212762222ef88de8b74b5dd216f98eae0b799012837705a77a35159392c49624894df573e302c5b6424816b31edf2164675446f6466e10e5187a338bb","ssdeep":"6144:ReyQl5LROQEgMQKygam6ydIc1b3sSnP5CDSDsE9s3:Re3TZEg2ZBrcSP5C+Dsy8","tlshash":"b94423c0e7fcb89ad729dc80f8940682d47f3f806a7d77af14aa651d1d4a3976c6310a","first_seen":"2026-01-09T00:21:34.946159Z","last_seen":"2026-01-09T00:21:34.946159Z","times_seen":1,"resource_available":false,"data":null}},"time_used":15391,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2979,"receive":12412,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/font/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTVOmu0SC55K5gw.woff2","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:17.616Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/font/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTVOmu0SC55K5gw.woff2 HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/static/css/css.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:17 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 42168\r\ncontent-disposition: inline; filename=memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTVOmu0SC55K5gw.woff2\r\nlast-modified: Thu, 19 Sep 2024 15:34:02 GMT\r\ncache-control: no-cache\r\netag: \"1726760042.0-42168-1156195817\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":42168,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 42168, version 1.0","md5":"467f697ccbe92aebc38f6c1a433f6948","sha1":"1ca7aa6175910c1055eb832981493db64c70114b","sha256":"7782d2305fc3ec57724258f4678ef5d5e8949843f07b0140354ecdd495d14e0f","sha512":"06339348bcebe9cbbfa6023bfc7045e61034ce9b7d732bd410a2452bc8c7a89c98f921661a220103c0644be1e76989f535b4c1c185e121d9d6e7dcd026a6c942","ssdeep":"768:M3EqyiCdVl8yztilxSJwl/IWws1Coib5iKGo3obzbNp5QZDRHwQhI+WuPK1m:M3EqyiCdVlrIxSJUAk1CoibGkoTLO1hx","tlshash":"dd13f2f9573b90832a1dfedd452348a915896bb804ea7849cd8d8170b8ee8dcdd4b233","first_seen":"2024-02-14T01:24:04Z","last_seen":"2026-04-02T00:57:49.913728Z","times_seen":121,"resource_available":false,"data":null}},"time_used":4044,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":3559,"receive":485,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/favicon.ico","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:19.317Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/favicon.ico HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:19 GMT\r\ncontent-type: image/vnd.microsoft.icon\r\ncontent-length: 299446\r\ncontent-disposition: inline; filename=favicon.ico\r\nlast-modified: Thu, 09 Jan 2025 06:40:45 GMT\r\ncache-control: no-cache\r\netag: \"1736404845.685256-299446-1855526319\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":299446,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"PNG image data, 512 x 512, 8-bit/color RGB, non-interlaced","md5":"63196ccef8c42bf8644a385c0f44d762","sha1":"4f688f7f271b1fdac09f9b5de4aaca9a5fa99c16","sha256":"405d7b905df6c901a08beb779a414e5476b426caec040f5779f4b8fd60a3b6b5","sha512":"00e85c937041d2b09cd1f0d708c5c7b31da7551794d083501794792789ce06baeb7251180dcc1bee0f30f12baf4e8b8405bb17235c9792fdb83f92bf7a7f259b","ssdeep":"6144:L0QY28Ra/U56KeXDZRYeZT0F9Tm3IIQMIkdA9mTcpVmLw1FwoLrNH5Gt:YQW9EDAeZT0TIzdA9D+03F5Gt","tlshash":"7e5423b07d1a81db66ee5787f089a9341affb7cc2191ca9942505b3b978f08f490f825","first_seen":"2026-01-09T00:21:34.949292Z","last_seen":"2026-02-15T05:42:46.513091Z","times_seen":2,"resource_available":false,"data":null}},"time_used":5103,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3385,"receive":1718,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/css/css.css","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/css/css.css HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: text/css; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=css.css\r\nlast-modified: Thu, 19 Sep 2024 15:34:04 GMT\r\ncache-control: no-cache\r\netag: W/\"1726760044.0-21304-1837372824\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21304,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"c42a11e73157f16ac99763dbc75589c6","sha1":"0383d1869b40098b77e1679107f52f43a8808410","sha256":"94cdc64273d8255e947c797cd4b6778b01adc3e7bb5a0c49f6cdaf9f40130fe6","sha512":"aeaa9c7c26cfdafabb446561eca200174d070b44c8790df965976ab3a969932fd8dc08f666c2c0a6dbcc55329ad01c79f74f0ae0081a9ddb9ae75fd7a9e09b8c","ssdeep":"192:NjdZAK4eb2uyfzbqGIwYMrp72jAUdK1eK2uy2zbqGIwYRapqIjuSXKPes2uyIzbD:Fd4q9taZq9awXq9bhUq9Q","tlshash":"18a2db80041b2410a3675cb2739e3e34ee4fa6547148e1362ffd8b5b9edbda5a2b035d","first_seen":"2026-01-09T00:21:34.951503Z","last_seen":"2026-01-09T00:21:34.951503Z","times_seen":1,"resource_available":false,"data":null}},"time_used":578,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":578,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/picture/team.png","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.157Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/picture/team.png HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: image/png\r\ncontent-length: 221787\r\ncontent-disposition: inline; filename=team.png\r\nlast-modified: Thu, 09 Jan 2025 06:40:46 GMT\r\ncache-control: no-cache\r\netag: \"1736404846.4502802-221787-3787921317\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":221787,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 715 x 400, 8-bit/color RGB, non-interlaced","md5":"18b9cd9a739bdde87c49cb7736110e99","sha1":"3b44cf10bed8fa85630df33c27efaacd017bd7f6","sha256":"a894b78aa92dde5e30145340e6f250a363ae3e86e86d55a2decf64e1e028a57a","sha512":"ab09791cc5d77d479c92bb38d9308212c352cd2420d88376ef4972d7f97f051b3c7387563e44ef9eb1b3c5ab7d8e31e5b563c30e105fd902a8dcee25e22f8290","ssdeep":"6144:dLQejvD7LRXSZt853pvQHUiqh0ERcLzsh:KejvD7L0MLveQ0Eh","tlshash":"c124124adc8b04858956bcb3710aade6753c9446f5c2422f043fb9d7a249ab4df80fe7","first_seen":"2026-01-09T00:21:34.953101Z","last_seen":"2026-01-09T00:21:34.953101Z","times_seen":1,"resource_available":false,"data":null}},"time_used":16012,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2978,"receive":13034,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/js/scripts.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/js/scripts.js HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=scripts.js\r\nlast-modified: Thu, 09 Jan 2025 06:40:46 GMT\r\ncache-control: no-cache\r\netag: W/\"1736404846.0192666-2249-2597721727\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2249,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"0a47d913e3bb1ba26248d1943ff1f8c6","sha1":"fa90e41dec30c82a1d98cf2b2b4b3f81aef89ca3","sha256":"fbe01ef0ae6d94bdf1008c0b71b3cc9f9f1ba9d652fec7b99669e6c4d85a23c3","sha512":"b7a64ff1e06d259aad5c86dafd84e71dec82ec2336d1ebcb80aa20e84002efedfb8b54c31a0ab09f8dd804c482f50d52f2c70ec66bbfb9257faab639005fd59b","ssdeep":"","tlshash":"3741c004b5a2206521bf713fcbbf62401e1c611bd04e9a45b89f9fd80f543bdb5a2a5f","first_seen":"2026-01-09T00:21:34.95455Z","last_seen":"2026-01-09T00:21:34.95455Z","times_seen":1,"resource_available":true,"data":null}},"time_used":2972,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2972,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/font/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:12.120Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/font/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2 HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/static/css/css.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:12 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 43068\r\ncontent-disposition: inline; filename=memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2\r\nlast-modified: Thu, 19 Sep 2024 15:34:02 GMT\r\ncache-control: no-cache\r\netag: \"1726760042.0-43068-3523028143\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43068,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 43068, version 1.0","md5":"ee1b2a154fb9ea98a28413a839adedfb","sha1":"1157da48116edf45be67766d8c69a45388d30bd3","sha256":"94a23e7f96fbde62943e5fc93c59212f68a57d2587fe51f056d20ce802e8249c","sha512":"9863ac725c7f911953ea6a922e3b9fe7dcc0a25be433acdd3193d2f2f52ceaa722eecd193aabd9bc95478f4bec87242ca5b9fa04299c3d35a8997e2e57c259d7","ssdeep":"768:xoIRQr5NXCsUpkVogfiLDUPt7VmGFlxfISxIPTyJYmh/v55C:xNYGfkVoGmQt1FrfISxIPGDhH2","tlshash":"c213f2a8e306e0d31998d752ab01fa9e3cb85c22d49b0bd5de0fde5d68ad1e4c0b7640","first_seen":"2023-12-19T15:35:26Z","last_seen":"2026-04-03T21:45:25.109965Z","times_seen":3481,"resource_available":false,"data":null}},"time_used":2448,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1615,"receive":833,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/font/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:12.177Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/font/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2 HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/static/css/css.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:12 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 43068\r\ncontent-disposition: inline; filename=memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2\r\nlast-modified: Thu, 19 Sep 2024 15:34:02 GMT\r\ncache-control: no-cache\r\netag: \"1726760042.0-43068-3523028143\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43068,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 43068, version 1.0","md5":"ee1b2a154fb9ea98a28413a839adedfb","sha1":"1157da48116edf45be67766d8c69a45388d30bd3","sha256":"94a23e7f96fbde62943e5fc93c59212f68a57d2587fe51f056d20ce802e8249c","sha512":"9863ac725c7f911953ea6a922e3b9fe7dcc0a25be433acdd3193d2f2f52ceaa722eecd193aabd9bc95478f4bec87242ca5b9fa04299c3d35a8997e2e57c259d7","ssdeep":"768:xoIRQr5NXCsUpkVogfiLDUPt7VmGFlxfISxIPTyJYmh/v55C:xNYGfkVoGmQt1FrfISxIPGDhH2","tlshash":"c213f2a8e306e0d31998d752ab01fa9e3cb85c22d49b0bd5de0fde5d68ad1e4c0b7640","first_seen":"2023-12-19T15:35:26Z","last_seen":"2026-04-03T21:45:25.109965Z","times_seen":3481,"resource_available":false,"data":null}},"time_used":5312,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1561,"receive":3751,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/picture/02.png","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.156Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/picture/02.png HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: image/png\r\ncontent-length: 17926\r\ncontent-disposition: inline; filename=02.png\r\nlast-modified: Thu, 09 Jan 2025 06:40:46 GMT\r\ncache-control: no-cache\r\netag: \"1736404846.159271-17926-2952861280\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17926,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 303 x 115, 8-bit/color RGB, non-interlaced","md5":"39738f14abf4e4a5a579bc491d0a2069","sha1":"6f5532c9b3547b44c44e2c03a6b5681ff69dcab0","sha256":"b70e98176874f0a297f759bb3d538e342a1b5316437f6bcd5fd7041413f30962","sha512":"9bb6961c7a16cb7d27df87242f91502997c1056cbb19825f198b8268452cd27076a6e0d5497f780bae750d00c49c281402a5de642f0863d1479e6e12177fd5ec","ssdeep":"384:bbcXvSk9TFpSUIImUivrl0j7TolGH5SFm4r6YoGl+YRSf7zlq1xm3k/4:bbMSkVP7mUiDl0j7Tx5SF5GuYRD6wU4","tlshash":"ab82cf864e06b8ba1063ae15ad8d9d6dd8390eafcad2c52990e0ccb47b1d704297d257","first_seen":"2026-01-09T00:21:34.956483Z","last_seen":"2026-01-09T00:21:34.956483Z","times_seen":1,"resource_available":false,"data":null}},"time_used":16013,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2979,"receive":13034,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/js/bootstrap.min.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.163Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/js/bootstrap.min.js HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=bootstrap.min.js\r\nlast-modified: Thu, 09 Jan 2025 06:40:45 GMT\r\ncache-control: no-cache\r\netag: W/\"1736404845.7572582-48944-708712647\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48944,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (48664)","md5":"14d449eb8876fa55e1ef3c2cc52b0c17","sha1":"a9545831803b1359cfeed47e3b4d6bae68e40e99","sha256":"e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b","sha512":"00d9069b9bd29ad0daa0503f341d67549cce28e888e1affd1a2a45b64a4c1bc460d81cfc4751857f991f2f4fb3d2572fd97fca651ba0c2b0255530209b182f22","ssdeep":"768:9VG5R15WbHVKZrycEHSYro34CrSLB6WU/6DqBf4l1B:9VIRuo53XiwWTvl1B","tlshash":"7523c84a7254b4a202dfa476913f450bb73b389aa60bc16cb95994ed1d7cd8c3227f3c","first_seen":"2023-03-07T01:02:44Z","last_seen":"2026-04-03T23:28:47.697218Z","times_seen":103152,"resource_available":true,"data":null}},"time_used":2975,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2975,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/font/slick.woff","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:17.379Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/font/slick.woff HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/static/css/slick-theme.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:17 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 1380\r\ncontent-disposition: inline; filename=slick.woff\r\nlast-modified: Thu, 19 Sep 2024 15:34:02 GMT\r\ncache-control: no-cache\r\netag: \"1726760042.0-1380-3372422972\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1380,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format, CFF, length 1380, version 1.0","md5":"b7c9e1e479de3b53f1e4e30ebac2403a","sha1":"af91c12f0f406a4f801aeb3b398768fe41d8f864","sha256":"26726bac4060abb1226e6ceebc1336e84930fe7a7af1b3895a109d067f5b5dcc","sha512":"976f6e9d65859b1a5e3bbd426441e6885d1912f5694f40e2897b10f46b3bd0c7d940f7917a6050d6bb8cdeaaa5e5f0332391d3d398f6c21ce27299dfc7036911","ssdeep":"","tlshash":"cb21a55dbda5eb19fe9ed376738497e1bb1e849db2a20246990e2e3db280040a880655","first_seen":"2023-04-05T04:33:55Z","last_seen":"2026-04-04T00:56:11.580086Z","times_seen":18634,"resource_available":false,"data":null}},"time_used":3798,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":3797,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-09T00:21:05.473Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:07 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=index.html\r\nlast-modified: Mon, 05 Jan 2026 01:00:16 GMT\r\ncache-control: no-cache\r\netag: W/\"1767574816.2262793-42046-3409908388\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:3.2.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Popper","description":"Popper is a positioning engine, its purpose is to calculate the position of an element to make it possible to position it near a given reference element.","website":"https://popper.js.org","common_platform_enumeration":"","icon":"Popper.svg","categories":["Miscellaneous"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Slick","description":"","website":"https://kenwheeler.github.io/slick","common_platform_enumeration":"","icon":"Slick.svg","categories":["JavaScript libraries"]}],"data":{"size":42046,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (461)","md5":"b4b9e532694c8efa7fb45031e0a3ec54","sha1":"de871b046403ab4df658a25f2d1a21571ebdeabc","sha256":"ff9379bb7244482ebe61af85a665ca1e986563c452d3c88ef1d77777a91fff83","sha512":"05eb85e20a22ae4543969e736b5affd589ae35e48460f767bf088c6848b4eaf0e2a46478a11eea46d99e135d2929b1660d9174eff2d1e25300b61fbfdc91d042","ssdeep":"768:IpBZf6fexv8p8e+AuohMlzHWq1yVowCz1P2Mc5ZYlIa9di/nZw35d80K:IpBR6fqvS8e+AuoSlzHWq1yVowSPLcK0","tlshash":"a713e77670446b7f09d342e177606b1aa0d6fb1ac8335686b7f6dbd903d0fe2ae10149","first_seen":"2026-01-09T00:21:34.963605Z","last_seen":"2026-01-09T00:21:34.963605Z","times_seen":1,"resource_available":false,"data":null}},"time_used":6544,"timings":{"blocked":2074,"dns":16,"connect":540,"send":0,"wait":2395,"receive":0,"ssl":1517},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/css/font-awesome.min.css","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.141Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/css/font-awesome.min.css HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: text/css; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=font-awesome.min.css\r\nlast-modified: Thu, 19 Sep 2024 15:34:04 GMT\r\ncache-control: no-cache\r\netag: W/\"1726760044.0-30827-2846562966\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":30827,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (30664)","md5":"246ef27b651b993c5a3c86f6bcf40c94","sha1":"2eb9a4ad3d491e9f9a251a9ae3f116f0a46ede32","sha256":"9fca3b4567fd7a8b396d060511b59e5a1c4632a983a0c5d388e9a4bd4ceac78c","sha512":"50921e276bc14a04b859ac91f60fa941cdaf742b5a48a6f96309851eca963738a9bfe3077a74e63ff9e29973cf33d601c5d5085a1d171e1a74425184399bb345","ssdeep":"384:eu5yWeTUKW+KlkJ5de2UYDyVfwYUas2l8yQ/8dwmaU8G:hlr+Klk3Yi+fwYUf2l8yQ/e9vf","tlshash":"6bd241e8e54c01d66731c48bff81b36862bafb3dd5854da9f01f290c29d226522c5fb9","first_seen":"2026-01-09T00:21:34.965774Z","last_seen":"2026-01-09T00:21:34.965774Z","times_seen":1,"resource_available":false,"data":null}},"time_used":864,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":864,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/project/js/prejquery.min.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.148Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /project/js/prejquery.min.js HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=prejquery.min.js\r\nlast-modified: Thu, 26 Dec 2024 05:54:20 GMT\r\ncache-control: no-cache\r\netag: W/\"1735192460.0-1748-2814841332\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1748,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"14b8d6082d944c8011e28d03f07ef688","sha1":"2425f0461f02470beea7c3ecf18de13cda2255ab","sha256":"19384d468064e8535c1009def0f7f5204acaa9e52022946cb40129a7c3c38967","sha512":"3c2a4c6ca1b024c5d0a65d3b38987a21f82aa8bf0a5f694651f40fd9f802c5bb3a6c4664a5df2b773a766ff211f9aa3ffb5d3b01b81166acbe3b45648e78a5f1","ssdeep":"","tlshash":"4831375e56fb4838156ba229cb9fba893577054f5089ca007e7c86806fa0ef654e07cd","first_seen":"2025-06-02T05:55:31.109562Z","last_seen":"2026-04-01T20:56:32.665398Z","times_seen":425,"resource_available":true,"data":null}},"time_used":863,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":863,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/font/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:12.125Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/font/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2 HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/static/css/css.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:12 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 43068\r\ncontent-disposition: inline; filename=memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2\r\nlast-modified: Thu, 19 Sep 2024 15:34:02 GMT\r\ncache-control: no-cache\r\netag: \"1726760042.0-43068-3523028143\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43068,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 43068, version 1.0","md5":"ee1b2a154fb9ea98a28413a839adedfb","sha1":"1157da48116edf45be67766d8c69a45388d30bd3","sha256":"94a23e7f96fbde62943e5fc93c59212f68a57d2587fe51f056d20ce802e8249c","sha512":"9863ac725c7f911953ea6a922e3b9fe7dcc0a25be433acdd3193d2f2f52ceaa722eecd193aabd9bc95478f4bec87242ca5b9fa04299c3d35a8997e2e57c259d7","ssdeep":"768:xoIRQr5NXCsUpkVogfiLDUPt7VmGFlxfISxIPTyJYmh/v55C:xNYGfkVoGmQt1FrfISxIPGDhH2","tlshash":"c213f2a8e306e0d31998d752ab01fa9e3cb85c22d49b0bd5de0fde5d68ad1e4c0b7640","first_seen":"2023-12-19T15:35:26Z","last_seen":"2026-04-03T21:45:25.109965Z","times_seen":3481,"resource_available":false,"data":null}},"time_used":2956,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1611,"receive":1345,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/project/rchfile/js/basobeauty.1.0.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.146Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /project/rchfile/js/basobeauty.1.0.js HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 735\r\ncontent-disposition: inline; filename=basobeauty.1.0.js\r\nlast-modified: Thu, 26 Dec 2024 03:16:54 GMT\r\ncache-control: no-cache\r\netag: \"1735183014.0-735-1418597523\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":735,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"e351736f5c1820755677a75a4afb535b","sha1":"8e834ccba79b960c441b57a3b286a987b4598d2f","sha256":"d246d2e113b8b39e1277eea7b39dd2aea9165d198ba37d3b88ef99ec149bd2d0","sha512":"90049917a7b27b91f72e586d1e4a092d6cc550a24da83b9cbf8065dcd1fefa5180835561d52131550ea398d267b5432b1a5d74e7abe2d3d6574af86051ccd875","ssdeep":"","tlshash":"c101c01d5cb3d6346f235047773ed35171a560171055d829bd8eed0e1f20faa4e86de4","first_seen":"2025-06-02T05:55:31.049647Z","last_seen":"2026-04-01T20:56:32.506988Z","times_seen":457,"resource_available":true,"data":null}},"time_used":863,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":863,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/js/feather.min.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.163Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/js/feather.min.js HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=feather.min.js\r\nlast-modified: Thu, 09 Jan 2025 06:40:45 GMT\r\ncache-control: no-cache\r\netag: W/\"1736404845.8592615-72830-4134344648\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":72830,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (55467)","md5":"351ac9fd60baf7234f006b492d455184","sha1":"db52005d57d4a7f19efd3ecc089bb0d9ed95d238","sha256":"8bc0e55b113b92fa138312bc64952b7a7016499cbb33ec4d3eb129162db6f96e","sha512":"66555415ed3f29b564b268ebf39ed7c1c3d15e6fdd5fa17737ad14b7d2d836d80bf072861b82bb098bf5fbfea0000e48928434d1b210c402dbe82aa381e675ac","ssdeep":"768:a4aNjfPggyGv3VwL3xjUN+HNsojRuhcEcDXNsLqxriT9aJ0sHvz55tfD9Xq52epc:daNjfPTXwL3Nu+Os","tlshash":"46633d767d4eb59ed10753e61a2f5026236f21fff88c4214e05c42b089276dbee67a2c","first_seen":"2025-10-12T03:59:07.419133Z","last_seen":"2026-01-09T00:21:34.969531Z","times_seen":2,"resource_available":true,"data":null}},"time_used":2973,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2973,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sp0.baidu.com/9_Q4simg2RQJ8t7jm9iCKT-xh_/s.gif?l=https://ygdssc.com/","fqdn":"sp0.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"103.235.46.102","port":443,"asn":55967,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:13.761Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"baidu.com","organization":"Beijing Baidu Netcom Science Technology Co., Ltd"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 09 Jul 2025 07:01:02 GMT","end":"Mon, 10 Aug 2026 07:01:01 GMT"},"fingerprint":{"sha1":"21:BF:66:0D:67:BE:7A:7F:49:48:05:30:F4:7F:09:F2:30:36:CA:63","sha256":"0D:82:2C:9A:90:5A:EF:E9:8F:37:12:C0:E0:26:30:EE:95:33:2C:45:5F:E7:74:5D:F0:8D:BC:79:F4:B0:A1:49"}}},"request":{"raw":"GET /9_Q4simg2RQJ8t7jm9iCKT-xh_/s.gif?l=https://ygdssc.com/ HTTP/1.1\r\nHost: sp0.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Length: 0\r\nContent-Type: text/plain; charset=utf-8\r\nDate: Fri, 09 Jan 2026 00:21:15 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":3139,"timings":{"blocked":1398,"dns":552,"connect":278,"send":0,"wait":341,"receive":1,"ssl":565},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/css/red.css","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.145Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/css/red.css HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: text/css; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=red.css\r\nlast-modified: Thu, 19 Sep 2024 15:34:04 GMT\r\ncache-control: no-cache\r\netag: W/\"1726760044.0-189447-1833833866\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":189447,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"973022083116d69a6dea4746bc4fa403","sha1":"35c41bceb885573bf38c0476801dfa895e3de752","sha256":"9a8e799b118acc558d04d85c8189f983330052667264d47290b90089106090d8","sha512":"c67a810e56037f0aeb624cfd1839707d8dc491224ca57115e9ebaa9b5d97c1b0c0e1de56927c6cd1930b6ef4c48b76ee9d9a411329f9208cb461f587bec1c1c8","ssdeep":"1536:KQ7o1Uugz79VbdZji1yE0ADrjMkQ1/Nlf5hGhh95DU4IDm49p:K5gz79VtO95DU4IDm4n","tlshash":"eb047387f9f111087432968c65dba7f57b3d4007c61edeb97a9e3228cf4c6c598b2a48","first_seen":"2026-01-09T00:21:34.972616Z","last_seen":"2026-01-09T00:21:34.972616Z","times_seen":1,"resource_available":false,"data":null}},"time_used":864,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":864,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/articleimg/20230625_9626.jpg","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.158Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/articleimg/20230625_9626.jpg HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 75330\r\ncontent-disposition: inline; filename=20230625_9626.jpg\r\nlast-modified: Thu, 09 Jan 2025 07:56:38 GMT\r\ncache-control: no-cache\r\netag: \"1736409398.1311123-75330-26417641\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":75330,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x400, components 3","md5":"71f99dc1df79738ff144844eecd7dfb6","sha1":"14414ab815dcb96f5231f4c5a41331696acf3946","sha256":"5b96e680369033524880e3b7ad6676fee71d9eba17046d4cfcf0f885b5e50ca1","sha512":"3205753b2726b1ac0a0e2bb517eb0789bae371a64fddacd3163d4859f0dd394fb2756eb643eb8b7c18651100b9b5946ce7f63242b10287ef2ffa016bc85ca1a2","ssdeep":"1536:1y+yQw76ThN3VmT7hKG/KUNrhwNrEXu2xEiyMqAXUTw:1fHPhIPhKGyUNVw2+2WiyMpUTw","tlshash":"587302eef1177166e720d63e57c61646283a32c363c1ba291f14bf53f32e6d688c8649","first_seen":"2026-01-09T00:21:34.975161Z","last_seen":"2026-01-09T00:21:34.975161Z","times_seen":1,"resource_available":false,"data":null}},"time_used":15548,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2976,"receive":12572,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/js/jquery-3.2.1.min.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/js/jquery-3.2.1.min.js HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=jquery-3.2.1.min.js\r\nlast-modified: Thu, 09 Jan 2025 06:40:45 GMT\r\ncache-control: no-cache\r\netag: W/\"1736404845.9872656-86659-1780488360\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":86659,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (32058)","md5":"c9f5aeeca3ad37bf2aa006139b935f0a","sha1":"1055018c28ab41087ef9ccefe411606893dabea2","sha256":"87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de","sha512":"dcff2b5c2b8625d3593a7531ff4ddcd633939cc9f7acfeb79c18a9e6038fdaa99487960075502f159d44f902d965b0b5aed32b41bfa66a1dc07d85b5d5152b58","ssdeep":"1536:YNhEyjjTikEJO4edXXe9J578go6MWX2xkj8e4c4j2ll2AckaXEP6n15HZ+FhFcQ7:uxc2yjx4j2uX/kcQDU8Cu9","tlshash":"4483e6d9b2c67062977730b950bf410bb17a98dab44c8c60f158d9d47eb8a8d907bf2c","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-04T01:34:14.463116Z","times_seen":77178,"resource_available":true,"data":null}},"time_used":2975,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2975,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/js/slick.min.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.166Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/js/slick.min.js HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=slick.min.js\r\nlast-modified: Thu, 09 Jan 2025 06:40:46 GMT\r\ncache-control: no-cache\r\netag: W/\"1736404846.101269-42863-3340769023\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":42863,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (42862)","md5":"d5a61c749e44e47159af8a6579dda121","sha1":"3b41b3bc956685015a347a2238e71db29dfa0dbb","sha256":"0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740","sha512":"5ed98cb4311c373da3ede92bb47bce551e22c30683ea8fc55097baf99abe1e0702b24de48f8b9241047cc1e4364158f5a343e4e8fc182e8866db4e99ccd7ee6e","ssdeep":"768:4rkkX123A5YHi6pWzYdlNWYcx16nnYdXRRMd2KYCQCsPShb1ez7RFmYH:EPrYdlNixEePiYH","tlshash":"e513a549d205276285d721e62105c40eb3f7fb3cba22c0e475c9d3ea646ec4896d7bfa","first_seen":"2023-03-07T01:06:34Z","last_seen":"2026-04-04T01:32:00.087275Z","times_seen":77118,"resource_available":true,"data":null}},"time_used":2974,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2974,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/picture/slider.jpg","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:12.109Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/picture/slider.jpg HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:12 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 138527\r\ncontent-disposition: inline; filename=slider.jpg\r\nlast-modified: Thu, 09 Jan 2025 06:40:46 GMT\r\ncache-control: no-cache\r\netag: \"1736404846.3302763-138527-318380157\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":138527,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1260x550, components 3","md5":"efac477972688ae1e4ac9f2bf4a5a648","sha1":"114c8cd8c4f77e5b19e8d4c04e9129f830e192bb","sha256":"8d506daa18122bc504c1587eb7391890c29ba68c9d2ca9d18b63816e10d449f2","sha512":"9a2ef638f4004d99e8ed482020df983aaa8ac2c2508b481d82ecf91c92154f5204db30b3414e8d444c0dbe41a1aae11ed867065c0588a4f452dd15f38b4f9e12","ssdeep":"3072:pvomZg6kLGrxOOQOX9v4uq62YzWFw9Batj7JlKq:mYOOQ+vr2YzWQBaN7D9","tlshash":"00d312260682770e5d27fbb3e57c66422e142327cf4b1b39e670fabd9425ea4246a350","first_seen":"2026-01-09T00:21:34.981266Z","last_seen":"2026-01-09T00:21:34.981266Z","times_seen":1,"resource_available":false,"data":null}},"time_used":7722,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1630,"receive":6092,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/font/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:12.128Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/font/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2 HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/static/css/css.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:12 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 43068\r\ncontent-disposition: inline; filename=memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2\r\nlast-modified: Thu, 19 Sep 2024 15:34:02 GMT\r\ncache-control: no-cache\r\netag: \"1726760042.0-43068-3523028143\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43068,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 43068, version 1.0","md5":"ee1b2a154fb9ea98a28413a839adedfb","sha1":"1157da48116edf45be67766d8c69a45388d30bd3","sha256":"94a23e7f96fbde62943e5fc93c59212f68a57d2587fe51f056d20ce802e8249c","sha512":"9863ac725c7f911953ea6a922e3b9fe7dcc0a25be433acdd3193d2f2f52ceaa722eecd193aabd9bc95478f4bec87242ca5b9fa04299c3d35a8997e2e57c259d7","ssdeep":"768:xoIRQr5NXCsUpkVogfiLDUPt7VmGFlxfISxIPTyJYmh/v55C:xNYGfkVoGmQt1FrfISxIPGDhH2","tlshash":"c213f2a8e306e0d31998d752ab01fa9e3cb85c22d49b0bd5de0fde5d68ad1e4c0b7640","first_seen":"2023-12-19T15:35:26Z","last_seen":"2026-04-03T21:45:25.109965Z","times_seen":3481,"resource_available":false,"data":null}},"time_used":3326,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1608,"receive":1718,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/font/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu0SC55K5gw.woff2","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:12.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/font/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu0SC55K5gw.woff2 HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/static/css/css.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:12 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 21128\r\ncontent-disposition: inline; filename=memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu0SC55K5gw.woff2\r\nlast-modified: Thu, 19 Sep 2024 15:34:02 GMT\r\ncache-control: no-cache\r\netag: \"1726760042.0-21128-1145513440\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21128,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 21128, version 1.0","md5":"b505d29c0021c60e4a004de0b5fea45f","sha1":"91c72909666ec2132c7fe7a56e4a39668111beae","sha256":"0062e829a3c944dcdbcf56857c47b03c9ae65f7f03242b7108fcaeeac2743e71","sha512":"cbbff0bcda16a62524915b0fa3d272c19d0a3ca36dd23e48fbe83541fb9a7dd8d8b888f8eee580b8d75d4f33ee960c82c6f96def162ff4ff6c3dee4ae36e1aab","ssdeep":"384:nru7lZBsbAMwFYmb6cIwFnD/K1n7BuM3kB5pD3wN0IRvN:07GHFmecIwFDyh7f3OD6P1N","tlshash":"dc92d15c48571b37f75a13e12ad8badfe98c338b19156c5d72c24a3c22b31734d0b4aa","first_seen":"2023-12-29T18:25:31Z","last_seen":"2026-04-03T16:51:19.441392Z","times_seen":223,"resource_available":false,"data":null}},"time_used":5409,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1560,"receive":3849,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/project/css/webtemplatecss.min.css","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.138Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /project/css/webtemplatecss.min.css HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: text/css; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=webtemplatecss.min.css\r\nlast-modified: Tue, 26 Nov 2024 03:24:28 GMT\r\ncache-control: no-cache\r\netag: W/\"1732591468.0-15510-839455944\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15510,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text","md5":"d4aa21d4ebeb03282cdfc7009f8bc30a","sha1":"260402e39113348a377a482adcdb4c680044d3cb","sha256":"1a82191877a66e919c9daf51fe32dd717f759dbfc79d1e477caf9db4f1eb3b02","sha512":"0edbb7b161359824727e4c9685efba1ef757e4cc6a2fdad16fc88f7187338a178126d29452ccc70b9e7253a25b81c17808bc7300585b20c56774530eb6f599c0","ssdeep":"192:6N8C6752710PB/iqKsHk62LAAQzqFIwgvUF9zH/vNxvEoHpcJAe9EbSzKmFR2n+j:6NFktcF9z0oJoA3bsFF6F3E","tlshash":"f562ed475fab1546f84e98ad2fba6a45238e8013d34ece747f9c650ccf8d45851b278c","first_seen":"2025-06-02T05:55:31.040238Z","last_seen":"2026-04-01T20:56:32.555359Z","times_seen":397,"resource_available":false,"data":null}},"time_used":578,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":578,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/picture/gzh.jpg","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.159Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/picture/gzh.jpg HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 48381\r\ncontent-disposition: inline; filename=gzh.jpg\r\nlast-modified: Thu, 19 Sep 2024 15:33:58 GMT\r\ncache-control: no-cache\r\netag: \"1726760038.0-48381-3390641987\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48381,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 434 x 434, 8-bit/color RGBA, non-interlaced","md5":"97e822cf52df39db1d99764f98779faa","sha1":"a2b508a51e820249819653a06ce36d95245d9926","sha256":"4fa2326eb9315dbd466654a2778136bb9b83b7ded36b664d28329a529933db90","sha512":"70d6677875560f2b962be7fd01471210064dbb7cf540d8fa5490707d9bf0a5ffa58efd0a2c45d790ee1877391a5aa0756a3100d91b0abef5babc9860f999945c","ssdeep":"768:ZD6/ERxWcCeH3mKrUtlO72ooueuoSsEWCdYZn6Z16HYt3uOf9uBEYRfBSp+QEF:Z7zWreHjrUtl7QsSmU1qmPfY9rfQ+","tlshash":"0a23f1c7f2768a265c9210c2a9fb8a08c5c9f403d721ae55c29d77cb59b01ece50bd73","first_seen":"2026-01-09T00:21:34.988167Z","last_seen":"2026-01-09T00:21:34.988167Z","times_seen":1,"resource_available":false,"data":null}},"time_used":15589,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2976,"receive":12613,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/project/js/moonquakes.2.0.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.169Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /project/js/moonquakes.2.0.js HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 788\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":788,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"092da28fc3d161d58c2c8a34d79927a4","sha1":"bf56ed1308df5e43e62ac460da693bfe6a0ba968","sha256":"7e00242966e316ddd727a74aa7df42c4a9ec8640d1ab56b20b8e45956aae808e","sha512":"525485240bfe40b13e64c0e6ab44f6a99ecfd388627c0fb242ef1135f14145fa463875a66be592a6c11bb4f789c861b38676bc8fc0fbca36ff1d06525dc119b4","ssdeep":"","tlshash":"d9019e8701e355088496c0501ff072044ae259578b4bc9613ccd166ecf8da4d94d72ad","first_seen":"2025-02-07T14:45:25.257459Z","last_seen":"2026-04-01T20:56:32.53472Z","times_seen":331,"resource_available":true,"data":null}},"time_used":3805,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2971,"receive":834,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/font/fontawesome-webfont.woff2","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:12.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/font/fontawesome-webfont.woff2 HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/static/css/font-awesome.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:12 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 77160\r\ncontent-disposition: inline; filename=fontawesome-webfont.woff2\r\nlast-modified: Thu, 19 Sep 2024 15:34:02 GMT\r\ncache-control: no-cache\r\netag: \"1726760042.0-77160-1486757154\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":77160,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 77160, version 4.459","md5":"af7ae505a9eed503f8b8e6982036873e","sha1":"d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c","sha256":"2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe","sha512":"838fefdbc14901f41edf995a78fdac55764cd4912ccb734b8bea4909194582904d8f2afdf2b6c428667912ce4d65681a1044d045d1bc6de2b14113f0315fc892","ssdeep":"1536:/MkbAPfd1vyBKwHz4kco36ZvIaBfRPlajyXUA2jVTc:L0nXnHdfRVEAS2","tlshash":"7d7302e63b6c4943e03d6460708abe9f104b3ab42fe057e5c876db7f2722992b71552c","first_seen":"2023-04-05T03:30:47Z","last_seen":"2026-04-04T01:30:51.587234Z","times_seen":410004,"resource_available":true,"data":null}},"time_used":4722,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1596,"receive":3126,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/project/js/moonquakes.2.0.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:14.421Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /project/js/moonquakes.2.0.js HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:14 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 788\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":788,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"092da28fc3d161d58c2c8a34d79927a4","sha1":"bf56ed1308df5e43e62ac460da693bfe6a0ba968","sha256":"7e00242966e316ddd727a74aa7df42c4a9ec8640d1ab56b20b8e45956aae808e","sha512":"525485240bfe40b13e64c0e6ab44f6a99ecfd388627c0fb242ef1135f14145fa463875a66be592a6c11bb4f789c861b38676bc8fc0fbca36ff1d06525dc119b4","ssdeep":"","tlshash":"d9019e8701e355088496c0501ff072044ae259578b4bc9613ccd166ecf8da4d94d72ad","first_seen":"2025-02-07T14:45:25.257459Z","last_seen":"2026-04-01T20:56:32.53472Z","times_seen":331,"resource_available":true,"data":null}},"time_used":2859,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2858,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/image/ajax-loader.gif","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:17.355Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/image/ajax-loader.gif HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/static/css/slick-theme.min.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:17 GMT\r\ncontent-type: image/gif\r\ncontent-length: 733\r\ncontent-disposition: inline; filename=ajax-loader.gif\r\nlast-modified: Thu, 09 Jan 2025 06:40:46 GMT\r\ncache-control: no-cache\r\netag: \"1736404846.1162696-733-1493113150\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":733,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 66 x 66","md5":"5f8dc227e7506899fc4a57ecf89532a4","sha1":"2b8cb822fb0ebe17eacea774c363a79596478f05","sha256":"57c5a1056ecf4c42db145b766276cdef35072dd577405108e779e484dcd8a7b3","sha512":"cf4e113fce8ed30f4b5e21371b6a779e2268465c3271178b42b10837085789654d605f06dc499bf33cf6be479e196fd425d506cde038621f9471ba2b72f0814c","ssdeep":"","tlshash":"4d0165049b02ad9a9a7bb4def445f70d712511b358d15e854c19021925d23b24e0a38a","first_seen":"2026-01-09T00:21:34.991641Z","last_seen":"2026-01-09T00:21:34.991641Z","times_seen":1,"resource_available":false,"data":null}},"time_used":4306,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":3820,"receive":486,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/project/js/tjdm.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.136Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /project/js/tjdm.js HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=tjdm.js\r\nlast-modified: Thu, 02 Oct 2025 00:52:54 GMT\r\ncache-control: no-cache\r\netag: W/\"1759366374.6222398-5039-315428426\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5039,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1283)","md5":"4432126d63402d78eb9dc9ce71e5d08e","sha1":"d948b6e05c59a1fdaef1457c039503d8a6854a55","sha256":"bbefbb7c3e30f8b4f9463ea90170cd99ebdf5bcd048daf3029b68b5823e3f7f9","sha512":"937b9a01df1284c513ff129e5c06c81b6f16d260bfb9f5e3bedf1c09529a5456712e711e4de80217923e06c3d4087510d010538720d24bcb199c99b2fb845ca6","ssdeep":"96:Qeaoay1Te/dLwaoBwacJNUhlrQ4/VAbg0sToT1mtxO+J:Qeaoz1IdMsNyJQPJ+J","tlshash":"0ca1b8af48fb24372417386a639b600c72788047f504cf593e5cbeb46f68e658763ac8","first_seen":"2025-05-10T05:40:54.31976Z","last_seen":"2026-01-09T06:12:39.225435Z","times_seen":230,"resource_available":true,"data":null}},"time_used":291,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":291,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/css/slick-theme.min.css","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.144Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/css/slick-theme.min.css HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: text/css; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=slick-theme.min.css\r\nlast-modified: Thu, 19 Sep 2024 15:34:04 GMT\r\ncache-control: no-cache\r\netag: W/\"1726760044.0-2328-2382567959\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2328,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (2270)","md5":"85f82ad674af8bf9d5020725f4da7541","sha1":"2070e683991dad657ed20ae46d1b57136f0251f1","sha256":"4e2ada5d26f9d5c1ecf0ada2d7e97955c9fee4b644afb24fee17d359ac8c7edd","sha512":"c891fa26a3bd0d1bb8eb6d02dc1e4ec186c3a58fa39ebbd35768599fd1edda0637d54935611fb01d4d13e069a9f0fc568153844db845bde837dd87f739ba9e11","ssdeep":"","tlshash":"a54121295261b1ca4167c621bb83929530c37953b6731af9f52f136cc1cd0a51fecb56","first_seen":"2026-01-09T00:21:34.993511Z","last_seen":"2026-01-09T00:21:34.993511Z","times_seen":1,"resource_available":false,"data":null}},"time_used":864,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":864,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/picture/2.jpg","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.151Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/picture/2.jpg HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 292397\r\ncontent-disposition: inline; filename=2.jpg\r\nlast-modified: Thu, 19 Sep 2024 15:33:48 GMT\r\ncache-control: no-cache\r\netag: \"1726760028.0-292397-2588415532\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":292397,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 558 x 315, 8-bit/color RGBA, non-interlaced","md5":"6a9428f8f936a25826f9d2fc4d48d2e3","sha1":"e47658283cbf4c355249c3fe7fdbe514ec7c4a95","sha256":"fff0e31ed908b5d8573a9ba18fcc57f86af72bf5a31a97a271d66a834b12df0b","sha512":"4075df2c9143d37a3a53c3bfa78cf8a73cd76ceca51ba61e3f718876e40d5544a0710bdf184d2e3461efaf52043761b2b6243b089702fba93447e94e6a51b1a5","ssdeep":"6144:DD5s2ZfHuUUBU+L52vZWvA6gjhCXWsDlBQYVZx0N:vhHuJ2+LYM4rjbs5JZx0N","tlshash":"d4542399dcbcda42aff9a633267db102c31e0d6fa9d55710f925443f0d67a8a3c5202b","first_seen":"2026-01-09T00:21:34.994732Z","last_seen":"2026-01-09T00:21:34.994732Z","times_seen":1,"resource_available":false,"data":null}},"time_used":14922,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2980,"receive":11942,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/picture/06.png","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.154Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/picture/06.png HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: image/png\r\ncontent-length: 75905\r\ncontent-disposition: inline; filename=06.png\r\nlast-modified: Thu, 09 Jan 2025 06:40:46 GMT\r\ncache-control: no-cache\r\netag: \"1736404846.2202728-75905-2954172004\"\r\nx-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":75905,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 305 x 190, 8-bit/color RGB, non-interlaced","md5":"3a1e9bc435d699036f340e044ce2183e","sha1":"a1aa6c42fa6527f7f488e9ccc8e3d9f2e9a336d5","sha256":"8c39b184c1d0d351263dc59885f7c9d15cecd8f210a3818e083b25e7a9c65e07","sha512":"c53f5978f9f1cbb03859938e0335ee5b930ea35748ca8ac3d77e8375ca0d69a720ff0826282681922d775c52cb20938c7c646095c4d06043eccaf6766d835be1","ssdeep":"1536:qMNPjt3jQQ2r0sWuFALXQYPVZ9UdNQvrnnhMwE65+3Ar1w3Ev:qqjdjQQWWuFUQqbpTnnhMvb3ArUEv","tlshash":"2a730230214d4367cede2a4c47dd80c7f63d36a535a5eaeca303e9a3b140711b65f6a2","first_seen":"2026-01-09T00:21:34.996702Z","last_seen":"2026-01-09T00:21:34.996702Z","times_seen":1,"resource_available":false,"data":null}},"time_used":13088,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2979,"receive":10109,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ygdssc.com/static/js/popper.min.js","fqdn":"ygdssc.com","domain":"ygdssc.com","tld":"com"},"ip":{"addr":"156.239.74.122","port":443,"asn":54467,"as":"XNNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.162Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ygdssc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 22:11:42 GMT","end":"Sat, 28 Mar 2026 22:11:41 GMT"},"fingerprint":{"sha1":"52:9D:CE:DB:17:04:7C:0C:51:49:BD:BA:FB:22:AD:C8:D7:20:F5:27","sha256":"21:00:7E:9E:13:5F:4F:83:B2:B1:02:98:8C:14:96:7B:CC:B3:47:2D:88:08:D7:79:79:9B:01:55:80:1B:C9:4E"}}},"request":{"raw":"GET /static/js/popper.min.js HTTP/1.1\r\nHost: ygdssc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 09 Jan 2026 00:21:10 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\ncontent-disposition: inline; filename=popper.min.js\r\nlast-modified: Thu, 09 Jan 2025 06:40:46 GMT\r\ncache-control: no-cache\r\netag: W/\"1736404846.0142663-19188-3754432383\"\r\nx-cache: MISS\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19188,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (19015)","md5":"70d3fda195602fe8b75e0097eed74dde","sha1":"c3b977aa4b8dfb69d651e07015031d385ded964b","sha256":"a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66","sha512":"51affb5a8cfd2f93b473007f6987b19a0a1a0fb970ddd59ef45bd77a355d82abbbd60468837a09823496411e797f05b1f962ae93c725ed4c00d514ba40269d14","ssdeep":"384:+CbuG4xGNoDic2UjKPafxwC5b/4xQviOJU7QzxzivDdE3pcGdjkd/9jt3B+Kb964:zb4xGmiJfaf7gxQvVU7eziv+cSjknZ3f","tlshash":"1c82a3cc3291b06643a79167a06f960fb2339979614e9410f199f2d87c70ef9913fc7a","first_seen":"2023-03-07T01:02:44Z","last_seen":"2026-04-04T01:30:25.603817Z","times_seen":103938,"resource_available":true,"data":null}},"time_used":2974,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2974,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-09","alert":"Sinkholed","trigger":"ygdssc.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"zz.bdstatic.com/linksubmit/push.js","fqdn":"zz.bdstatic.com","domain":"bdstatic.com","tld":"com"},"ip":{"addr":"157.255.63.48","port":443,"asn":136958,"as":"China Unicom Guangdong IP network","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ygdssc.com/","date":"2026-01-09T00:21:10.434Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"baidu.com","organization":"Beijing Baidu Netcom Science Technology Co., Ltd"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 09 Jul 2025 07:01:02 GMT","end":"Mon, 10 Aug 2026 07:01:01 GMT"},"fingerprint":{"sha1":"21:BF:66:0D:67:BE:7A:7F:49:48:05:30:F4:7F:09:F2:30:36:CA:63","sha256":"0D:82:2C:9A:90:5A:EF:E9:8F:37:12:C0:E0:26:30:EE:95:33:2C:45:5F:E7:74:5D:F0:8D:BC:79:F4:B0:A1:49"}}},"request":{"raw":"GET /linksubmit/push.js HTTP/1.1\r\nHost: zz.bdstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ygdssc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: JSP3/2.0.14\r\ndate: Fri, 09 Jan 2026 00:21:12 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Fri, 28 Nov 2025 15:38:03 GMT\r\netag: \"6929c1db-134\"\r\ncache-control: max-age=86400\r\ncontent-encoding: br\r\nage: 70165\r\naccept-ranges: bytes\r\ntracecode: 31073744070505122570010712\r\nohc-global-saved-time: Thu, 08 Jan 2026 03:25:35 GMT\r\nohc-cache-hit: gz5un53 [2], zhuzuncache62 [2]\r\nohc-response-time: 1 0 0 0 0 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":308,"size_decoded":0,"mime_type":"application/x-javascript","magic":"ASCII text, with very long lines (308), with no line terminators","md5":"f9fc52ab67f035b8baf5d558714cc94d","sha1":"37062a6fb1ef410d496137d44275738ae743c747","sha256":"c31f2003f1c93ac1e34b09f376d97a65da6e110bf451cf1e0e50a7946c5e7212","sha512":"ebb0415852fbb5b964094e2e55a28b90f701dff1977c8b98c6f24d65d09067dc0c417d01492ca28a4be6747816d7c0bfac87b73a33725aee047a5d2f7ab83182","ssdeep":"","tlshash":"11e0cde86054c01c0dcb107135bb324ce7771d675a645545c04d9445396cb1f8247fe9","first_seen":"2023-03-07T01:18:58Z","last_seen":"2026-04-04T01:23:22.127538Z","times_seen":18904,"resource_available":true,"data":null}},"time_used":4696,"timings":{"blocked":1473,"dns":218,"connect":562,"send":0,"wait":1746,"receive":0,"ssl":694},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}