{"report_id":"7260ed6d-57d4-42fc-996f-ea772ba0b43b","version":6,"status":"done","tags":[],"date":"2026-03-18T10:42:56Z","url":{"schema":"http","addr":"bclubb.me","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":0,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"final":{"url":{"schema":"https","addr":"bclubb.me/login/","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"title":"bclub | briansclub | bclub.tk | bclub.cm | bclub login | bclub.com | briansclub.cm | briansclub login | bclub cc | bclub.la","dom":{"size":14131,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (448)","md5":"9268e2112c552eb061b6b0bf8f44eb69","sha1":"36feec895296f961e58e8af2b61ee5f425024a4f","sha256":"c6b15ab7e7ce1484c76a6ee5b69f1dd51bcaaa38c0b0959b3375afb7feaf21ec","sha512":"21f5be8ab506749ff539ef21f31dc7f58d2afd0f3113717540c17634e2eeb99b650bcd1d447e54c1392e4099351c8a68f52cff6c7c8fd3c7ac558a0b5192ccdf","ssdeep":"192:4x0vyJ14jjbvjFVxgxPEfYupZGcWc7MrusFHYfuwvgRsI:LvLBVxdfYuW5c7KxwK","tlshash":"6b52952698f208634a7b95bcb5ee761579a0d003c20aad40f9ec0bdc9fc9d939e53758","dom_hash":"domhash0c0d36dd6615a02a4f7f5d41ee207987","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"bclubb.me","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":0,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-22T10:42:56Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"bclubb.me","ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":84,"request_count":28,"received_data":3337752,"sent_data":13816,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Django","description":"Django is a Python-based free and open-source web application framework.","website":"https://djangoproject.com","common_platform_enumeration":"cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*","icon":"Django.png","categories":["Web frameworks"]},{"name":"Python","description":"Python is an interpreted and general-purpose programming language.","website":"https://python.org","common_platform_enumeration":"cpe:2.3:a:python:python:*:*:*:*:*:*:*:*","icon":"Python.png","categories":["Programming languages"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"bclubb.me/static/js/checkLogin.js","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"introduction_type":"scriptElement","is_inline":false,"md5":"1489600e172318d855f3b7b34a2f30e8","sha1":"c1533f78405a46673d3792b06ef4e35c4cce3370","sha256":"f2b796ab8d9a80cbae018225e5e490c06d2194adccb00a4d73b2c36413f16229","sha512":"1bc09c8c144e80bce9c02bdf476fe421dbb3a5902349cd1852241d9cc7baf03e81fc113fe1bbdc6e8ed6e744eac6e6bf853f613b4259f728e8ea7e190d86a35b","ssdeep":"","tlshash":"0801466f68b614398a2370ad5e4b8200356698532109de0a7f6c974a0fc0b7998f2b8e","size":789,"data":"","first_seen":"2026-03-18T10:43:04.304525Z","last_seen":"2026-03-18T10:44:59.788103Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/js/bootstrap.min.js","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"introduction_type":"scriptElement","is_inline":false,"md5":"abda843684d022f3bc22bc83927fe05f","sha1":"26908395e7a9a4eab607d80aa50a81d65f3017cb","sha256":"24cc29533598f962823c4229bc280487646a27a42a95257c31de1b9b18f3710f","sha512":"3f1b46e9ea0fb6be507605a2783af406c6b4f885dedaa4401bff204b0fe9056656717411021594e2512e98a4e398e3238267a7deafeba1b57e443decab0477ea","ssdeep":"768:xoBFw1wl+WRydWDRQgn8WI0fBQLrX84XCqc:SAr2MRCqc","tlshash":"43e28446b23031a107dfb2e5515f020b723a6a6de906907c38b999f53db9c48727bf39","size":31819,"data":"","first_seen":"2023-03-07T01:03:23Z","last_seen":"2026-06-13T10:39:53.191894Z","times_seen":8704,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/js/jquery.min.js","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"introduction_type":"scriptElement","is_inline":false,"md5":"8101d596b2b8fa35fe3a634ea342d7c3","sha1":"d6c1f41972de07b09bfa63d2e50f9ab41ec372bd","sha256":"540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441","sha512":"9e1634eb02ab6acdfd95bf6544eefa278dfdec21f55e94522df2c949fb537a8dfeab6bcfecf69e6c82c7f53a87f864699ce85f0068ee60c56655339927eebcdb","ssdeep":"1536:/PEkjP+iADIOr/NEe876nmBu3HvF38sEeLHFoqqhJ7SerN5wVI+xcBmPv7E+nzm6:ENMyqhJvN32cBC7M6Whca98HrB","tlshash":"b293c8d9b6d27162977730b850bf510bb13a98eab80c4c60f1a4d8e47d78e89507bf2d","size":95786,"data":"","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-06-13T12:09:46.170015Z","times_seen":52477,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/login/","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"introduction_type":"scriptElement","is_inline":true,"md5":"c40781a92236dad6342ac82de9b2a179","sha1":"d6ed6ed3b2375a66685c2259e5c78871166af804","sha256":"c3a34a0afcc89596a375b0acc747b2c58bb2981011dfa69f910e054dc8fbad81","sha512":"250a18275ef2fc34f962dfc3bf09ae3519d1d18bdd9485d652170b749e089adc487fcf2ad8565a4718b73ab2c582461dcff939b4270792085902eda5b872b69d","ssdeep":"48:c7xrOR9gYS7AuwX6e3Abg+xQU/s9OtVJxwPp9buQIg25GsF7fJSXxJ3UXfOE2Mic:c7xKS0xu00s+uHa7fuwvitgu00s+I","tlshash":"60c1259d54e318245abf71393bef6044b574a407d209fe81fc4c4aa8bf80966aa51ff8","size":5899,"data":"","first_seen":"2026-03-18T10:43:04.323483Z","last_seen":"2026-03-18T12:42:30.915759Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"bclubb.me/static/images/login/doc1.png","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.452Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/images/login/doc1.png HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-271f5\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":160245,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 345 x 244, 8-bit/color RGBA, non-interlaced","md5":"f84d7d5e86140fe9f07f93aab59b2da8","sha1":"9473b65a7cec215f024252829d1d0cf6df9a24b3","sha256":"30556abb3aa9365e40106e6c927e4fa844b24aa5a49fef555bb65a4945d6c048","sha512":"105aaa6962390867e0e3daf636d9d6e0bc5577222c71beb816659f34684679153d9c3be5c9ef2c9f142b45a63d6c9fef4cc35630858481d9c75f79e60d45ea12","ssdeep":"3072:LZKoRdLXL1ZfN4XIrUtcYzxwKEM4wUJTHu:Lko7XhuIkcYVwK8fu","tlshash":"acf3234e631089ec0cd06fff71be2fa7472e391482450de8d8b49f56d9e4e1596ca8e8","first_seen":"2023-10-02T03:19:46Z","last_seen":"2026-06-09T05:59:12.877807Z","times_seen":35,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/fonts/GothamPro.woff","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.554Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/fonts/GothamPro.woff HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bclubb.me/static/css/mainlogin.css\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: application/font-woff\r\ncontent-length: 20912\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: \"66d10808-51b0\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20912,"size_decoded":0,"mime_type":"application/font-woff","magic":"Web Open Font Format, TrueType, length 20912, version 1.1","md5":"3cb46b372ab77d032576b9f70c83d1ff","sha1":"00c5e00a04e586921e216f0614b324cbe2de408f","sha256":"bc3e2af807f5dbfe08810fc2050080825050d3b60eaeffa67e82f42021d7023a","sha512":"d50900db6bf3e470bcfcfeba9772d62789d51735c6e4fecb98d71de5169090239db188f9ad70d8b479ecc9e26134ad3072060bb8ee81a3075592624b9bb7bc06","ssdeep":"384:e3MnywwhpjhuAsG00StcfkWAre7fTN8OPBY3POmEeN:e3WiPli0StxWnvmOZ0OmE2","tlshash":"3c92d1baea515ecee54f51b6c9c723bf91942360365e7583d0b7a38e71a30f2cc46406","first_seen":"2023-05-10T15:33:27Z","last_seen":"2026-06-13T11:59:45.955739Z","times_seen":666,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/fonts/Material-Design-Iconic-Font.woff2?v=2.2.0","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.557Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/fonts/Material-Design-Iconic-Font.woff2?v=2.2.0 HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bclubb.me/static/css/material-design-iconic-font.min.css\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 38384\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: \"66d10808-95f0\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":38384,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 38384, version 1.0","md5":"a4d31128b633bc0b1cc1f18a34fb3851","sha1":"6ee4c79372c3fd679706306ede47e4b03cf53d60","sha256":"e8eea96e29a7c0a72612ab85ca3229979666467a28349642c2176e7189a1a39c","sha512":"c129c0cb100feea6d00b739d1cde2a7362b2f45f38da3e4c949193f40e59abc9c387ada4bb230b00fd62e137409e18def7c1636e1cd463f8070106e8b7e21d48","ssdeep":"768:FQ+usUhhv0N8qSRCjPCyloYRNcIsTh38i8/3V93ut0f:FQlsUhtYLBl/nGpUvI0f","tlshash":"db03f163b5a6f248eb812d7523b052ae52cc22434f93e19df585d72cefc615e025f722","first_seen":"2023-04-05T03:25:07Z","last_seen":"2026-06-13T10:51:46.117323Z","times_seen":5833,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":91,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/css/bootstrap.min.css","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bclubb.me/","date":"2026-03-18T10:42:34.142Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/css/bootstrap.min.css HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-1abce\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":109518,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65371)","md5":"385b964b68acb68d23cb43a5218fade9","sha1":"58a360d7ef24d8d05737db1712dd5c086597e862","sha256":"b5fd723750763ebb731f9221e413e7d64d58d5192dc040e42292ed3dcccca732","sha512":"729f49483ca2d020c2bc17c52982d65debdbdebf2146fe49c5cc4b914abf2c4b4098e83b5f4cb3477a74c7f83e4b7696719c35f26871b025f27a5296997833ce","ssdeep":"768:ZbGxwUkBUmlpztzuRdvGN6eABkdIUIbZbnbJN8gwaKNhL3tqNhkRQmNae:ywldERdvGNIkabbRk3chs","tlshash":"78b3d7a0f11031ea7223c55a71d0ed872619a053e66b4fb7f22f25d88f895ca1773f1a","first_seen":"2023-04-05T11:14:50Z","last_seen":"2026-06-13T10:39:53.351137Z","times_seen":4300,"resource_available":false,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/css/bootstrap.min.css","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.447Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/css/bootstrap.min.css HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-1abce\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":109518,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65371)","md5":"385b964b68acb68d23cb43a5218fade9","sha1":"58a360d7ef24d8d05737db1712dd5c086597e862","sha256":"b5fd723750763ebb731f9221e413e7d64d58d5192dc040e42292ed3dcccca732","sha512":"729f49483ca2d020c2bc17c52982d65debdbdebf2146fe49c5cc4b914abf2c4b4098e83b5f4cb3477a74c7f83e4b7696719c35f26871b025f27a5296997833ce","ssdeep":"768:ZbGxwUkBUmlpztzuRdvGN6eABkdIUIbZbnbJN8gwaKNhL3tqNhkRQmNae:ywldERdvGNIkabbRk3chs","tlshash":"78b3d7a0f11031ea7223c55a71d0ed872619a053e66b4fb7f22f25d88f895ca1773f1a","first_seen":"2023-04-05T11:14:50Z","last_seen":"2026-06-13T10:39:53.351137Z","times_seen":4300,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/js/bootstrap.min.js","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.450Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/js/bootstrap.min.js HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-7c4b\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":31819,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (31650)","md5":"abda843684d022f3bc22bc83927fe05f","sha1":"26908395e7a9a4eab607d80aa50a81d65f3017cb","sha256":"24cc29533598f962823c4229bc280487646a27a42a95257c31de1b9b18f3710f","sha512":"3f1b46e9ea0fb6be507605a2783af406c6b4f885dedaa4401bff204b0fe9056656717411021594e2512e98a4e398e3238267a7deafeba1b57e443decab0477ea","ssdeep":"768:xoBFw1wl+WRydWDRQgn8WI0fBQLrX84XCqc:SAr2MRCqc","tlshash":"43e28446b23031a107dfb2e5515f020b723a6a6de906907c38b999f53db9c48727bf39","first_seen":"2023-03-07T01:03:23Z","last_seen":"2026-06-13T10:39:53.191894Z","times_seen":8704,"resource_available":true,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/js/checkLogin.js","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bclubb.me/","date":"2026-03-18T10:42:34.147Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/js/checkLogin.js HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-315\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":789,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"1489600e172318d855f3b7b34a2f30e8","sha1":"c1533f78405a46673d3792b06ef4e35c4cce3370","sha256":"f2b796ab8d9a80cbae018225e5e490c06d2194adccb00a4d73b2c36413f16229","sha512":"1bc09c8c144e80bce9c02bdf476fe421dbb3a5902349cd1852241d9cc7baf03e81fc113fe1bbdc6e8ed6e744eac6e6bf853f613b4259f728e8ea7e190d86a35b","ssdeep":"","tlshash":"0801466f68b614398a2370ad5e4b8200356698532109de0a7f6c974a0fc0b7998f2b8e","first_seen":"2026-03-18T10:43:04.304525Z","last_seen":"2026-03-18T10:44:59.788103Z","times_seen":2,"resource_available":true,"data":null}},"time_used":52,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/images/login/doc2.png","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.453Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/images/login/doc2.png HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-2b3cb\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":177099,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 328 x 284, 8-bit/color RGBA, non-interlaced","md5":"7c8d0e9ff3a39ad5c077bc17546dd8d2","sha1":"b5178f24490772c56b97739bd9b0b124b3db2f4c","sha256":"7468144afe1b1a7d10c21f51b9b67db5832dfcecf7b072cb5d69431f8903bc70","sha512":"2cc6052a47649229c333f43e593d3fb1419ce852b0e0e457d3d6a342a744da72f711e7babdd9c600d2ee63303f4d8992e11ab7cee5f102525b9b8af040d89bb2","ssdeep":"3072:pHvcCPBrQdZDSc2qdkBLFdATWYkCbV27WDUsfCyig3n6ycXaqP177uxHuJGxvRO5:pUCPBrQdZOc2qEdATqCI7WwsKynD8oHU","tlshash":"540412ea1c1060ba71b719d7d24be0117e2365d6eed45e8ec60dca16d82ad7f0b0c4bb","first_seen":"2023-10-02T03:19:46Z","last_seen":"2026-06-09T05:59:12.872896Z","times_seen":34,"resource_available":false,"data":null}},"time_used":208,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":208,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/images/login/Three_Cards.png","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/images/login/Three_Cards.png HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-3bd39\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":245049,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 478 x 396, 8-bit/color RGBA, non-interlaced","md5":"0c3853ffdd78cc8b384f195c26af199b","sha1":"93a8e9be2896daf784a64fb495c6bab8a1c4bbdc","sha256":"435a052b79d065090cbce2f32f30514ad71d63eaa808ada29d045fe4bb439e1d","sha512":"67dec5237d892c4e5a8cfa393c4596d978d891da3d39fa699302ec61e4cf853ba70632d95efd696b03521b10d854e45e1255740c1c95b81701035942d76a9dbf","ssdeep":"6144:pg5AK0r3SusqdFzv5FmYWSH14FqVDXrBtXTRNC7HLcd:cAK0r3lFTXmYWzyD7BtXFM+","tlshash":"913412326c39f492e5a7cf246737d84bc99ade3f838529ef19e1605b7c88911ca8d170","first_seen":"2023-10-02T03:19:46Z","last_seen":"2026-06-09T05:59:12.873802Z","times_seen":35,"resource_available":false,"data":null}},"time_used":207,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":207,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/images/login/A4_later.png","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.457Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/images/login/A4_later.png HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-ab7c4\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":702404,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 804 x 864, 8-bit/color RGBA, non-interlaced","md5":"e2c3302e69d20c939cf56ba597c5a015","sha1":"d65149f76b7cb09f7c5af866c791188f3673e3b2","sha256":"63ce3d341022a2238b2e64da0f4b6c61525a7cababc51301d807a78ee1bd9a14","sha512":"2e5522c39f75348ace294e0cfc8de7c9a7486b3f6d1250e99cb8166ae7104576c83e07a70afd64e0460cd2e1b7165cd25a947063f5bdcd55ed61c2e128cda31a","ssdeep":"12288:7d19YqrnI5m1Tf+m41yE8Z7Ow57WBl/igzcGAwA4F/GYdpIcF7GO5:7917IQ1Tf+1R8Jr7Wb/nLARYXF7/5","tlshash":"cce42360ef44cb9fa0abba991a94452db1357cdffc01ace026684726156312f770fb27","first_seen":"2023-10-02T03:19:46Z","last_seen":"2026-06-09T05:59:12.848893Z","times_seen":35,"resource_available":false,"data":null}},"time_used":206,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":206,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/css/justified-nav.css","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bclubb.me/","date":"2026-03-18T10:42:34.144Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/css/justified-nav.css HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-942\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2370,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"2f4eb6ade14c30c1b508a5d493995c47","sha1":"11666ec704c688d6b468a99169a9e3c02e41773c","sha256":"2291ab003acb92ac3ff0d2abc72051efccd09fd2f5d74fc1feb246608ba00ffb","sha512":"f71426a5f5afad58590de17ea0d78277937f05cd68cd67af6305832851c1bade449983e8dd7753765d1176144ec42b385ac6e1aef67f721d472dac6977a5e2f4","ssdeep":"","tlshash":"3e4139b0aad11506353b9176d666fed4639a8147e10fddbabffd31ac9f042c04871d06","first_seen":"2026-03-18T10:43:04.309168Z","last_seen":"2026-03-18T10:44:59.778687Z","times_seen":2,"resource_available":false,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/css/font-awesome.min.css","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bclubb.me/","date":"2026-03-18T10:42:34.145Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/css/font-awesome.min.css HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-5cbb\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23739,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (23577)","md5":"04425bbdc6243fc6e54bf8984fe50330","sha1":"8c15c6bd82c71e9ef1bb11cf24e502fe07518ac5","sha256":"541ac58217a8ade1a5e292a65a0661dc9db7a49ae13654943817a4fbc6761afd","sha512":"8bcf90cad84e6324247ba5db4ad8edf53e3240786133ef58f724d8d5f3b1a03430b10a4a304a48a12419f265689ad9d509ff4f06fa100e72a5d3a80638e0f5f5","ssdeep":"192:nqxrZX8W+ab2edrKeTUKuErArKlcZJVrJ3ee+cR6waYm215bvfhf5DrkHUasT:Ws5yWeTUKb+KlkJ5de2UYmyTfhYUasT","tlshash":"c6b240f8e54d01d66731c48bff85b36862baf73dd5804d99f00f291c29d22a512c9bba","first_seen":"2023-04-05T06:51:49Z","last_seen":"2026-06-13T11:41:47.118824Z","times_seen":21454,"resource_available":false,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/login/","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-18T10:42:34.344Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /login/ HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: master-only\r\nreferrer-policy: same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Django","description":"Django is a Python-based free and open-source web application framework.","website":"https://djangoproject.com","common_platform_enumeration":"cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*","icon":"Django.png","categories":["Web frameworks"]},{"name":"Python","description":"Python is an interpreted and general-purpose programming language.","website":"https://python.org","common_platform_enumeration":"cpe:2.3:a:python:python:*:*:*:*:*:*:*:*","icon":"Python.png","categories":["Programming languages"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14086,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (448)","md5":"0b1b3413763c34359e297768fdde3045","sha1":"a3676aa7c4d42ecc6642d6fdb9ac6ababf62bbe7","sha256":"5e215720cd843409956d732bad44d496c616cf24932a4c0aaac75a74be195150","sha512":"6a9bdfe19ec01f3a0208e9f28b612cc35f23eb5ee53e80b749703202e4f8a8cc6fa3031835f5892a2d8475e72e465e0fbd4b1242868c1de6cd359ef521dce2d2","ssdeep":"192:4x0vyJ14jjbvjFVxgxPEOYupZGcWc7MrusFHYfuwvgRsI:LvLBVxdOYuW5c7KxwK","tlshash":"8f52952698f208134a7b95bcb5ee761579a0d003c20aad40f9ec0bdc9fc9d939e53758","first_seen":"2026-03-18T10:43:04.312629Z","last_seen":"2026-03-18T12:42:30.882885Z","times_seen":3,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/captcha/image/5.png","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.591Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /captcha/image/5.png HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-669\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1641,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 62 x 36, 8-bit/color RGB, non-interlaced","md5":"3417c036fce007a8fe2f677d992b51d5","sha1":"83e78379680e6dd09b3ed9268b7f5354a39d9661","sha256":"f41f9b14d76dbe3ef2c758080b3f6181a2b7b48cb97aa15e7cf278ac48707555","sha512":"d8f450214538cd083fcf3e3fa207010f47713ab3d39b685d257d0dff24fdcae2a383b20b57f3fd281c7329677ebc16c867fd3239dd08f2985d0596c49ba1640f","ssdeep":"","tlshash":"9331e8e308171f34f992542e8888d367305f06e1a8c6b6da76cc9d5e1dd248d70fe297","first_seen":"2026-03-18T10:43:04.314129Z","last_seen":"2026-05-29T06:51:39.470757Z","times_seen":2,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":57,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/images/favicon_v3.ico","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:35.010Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/images/favicon_v3.ico HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:35 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-13T12:33:00.989459Z","times_seen":526238,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/js/jquery.min.js","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.449Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/js/jquery.min.js HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-1762a\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":95786,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32086)","md5":"8101d596b2b8fa35fe3a634ea342d7c3","sha1":"d6c1f41972de07b09bfa63d2e50f9ab41ec372bd","sha256":"540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441","sha512":"9e1634eb02ab6acdfd95bf6544eefa278dfdec21f55e94522df2c949fb537a8dfeab6bcfecf69e6c82c7f53a87f864699ce85f0068ee60c56655339927eebcdb","ssdeep":"1536:/PEkjP+iADIOr/NEe876nmBu3HvF38sEeLHFoqqhJ7SerN5wVI+xcBmPv7E+nzm6:ENMyqhJvN32cBC7M6Whca98HrB","tlshash":"b293c8d9b6d27162977730b850bf510bb13a98eab80c4c60f1a4d8e47d78e89507bf2d","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-06-13T12:09:46.170015Z","times_seen":52477,"resource_available":true,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/images/login/flowerpot.png","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.454Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/images/login/flowerpot.png HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-333a2\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":209826,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 486 x 420, 8-bit/color RGBA, non-interlaced","md5":"37767268fad0e79fdaa92f6fc88c6aa7","sha1":"89a21248d7f58bcf6a2d1ddbb4817f0dc3a38bca","sha256":"747d7941a4d6a18d0ef87d97b4a42ef4d9e7663127963361d3e1ee052b84b85d","sha512":"6dc3857d1584a34c5e96047ae3469dda80d81fc98b67a457296c786c3ad7fb79e5eff363d5dff63b36b8efca88f3efa002819260ef7cbb80410ab8337cfe3962","ssdeep":"6144:g60VPgLhULK7QPfb4FDwi889b8cpaAxLaqCgo:gBhO7cDy8kb842FJ","tlshash":"9b2413b85ed73be9dc55019fed42ed2b01928a000ad1ef71a1a5db4ab4c8dee4ccf052","first_seen":"2023-10-02T03:19:46Z","last_seen":"2026-06-09T05:59:12.861354Z","times_seen":33,"resource_available":false,"data":null}},"time_used":208,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":208,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/images/login/newspaper1.png","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.456Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/images/login/newspaper1.png HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-4d123\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":315683,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 736 x 520, 8-bit/color RGBA, non-interlaced","md5":"1e17e6466cfb5dda44722e288716cfcf","sha1":"ea148072e5f56ec1356d5bbeed75b18ad49efab9","sha256":"395b37a2116e733430854cef180a348bf96f1907dd01137a01f5683bbed9b779","sha512":"36a01b579976e0f0d5c67ac1b6cf8b40cf58ee56e7a21e99ac09d40bdd5c5d4c7ecc32671bb65243a7d334403fe1df22576136f4ae7e0ba0d69ef45d9427552b","ssdeep":"6144:0x9nzm3hbZXaJqrdXACBL0gAoOnWeg2dFUCVOgj5RGpxD:k9nUqJqrRA7g0nc2MCVOgj5RGP","tlshash":"076423a304286d443b7d09b6f16326839350ecb106dca135f4d7bbfa88cb5e2d21e62d","first_seen":"2023-10-02T03:19:46Z","last_seen":"2026-06-09T05:59:12.878737Z","times_seen":32,"resource_available":false,"data":null}},"time_used":207,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":207,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/images/login/key.png","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.459Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/images/login/key.png HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-138f0\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":80112,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 220 x 241, 8-bit/color RGBA, non-interlaced","md5":"d37cef78d89af530d39859be65c0b523","sha1":"75e46d00ca2515762eda9dd58854208be0362428","sha256":"df9347d1c9ba8d4de590704a1be330bd544520f8c8f831c722de6ff3b8ee123e","sha512":"9f12464338b2a712d42b342e091e15339dea03f1a0c5263d40bc210accc766ad65c0c36dd27c5e4529c2e3014178723e9a3070657c2633f5e464a8b8c4563729","ssdeep":"1536:oIMbyb68dsKkpEgXPcu9IXYSKwCiWq+Ef1b7ExsEnUMJv5C+mZ+deuKMBEKR:oTbuuKf29IhKq+EFExRL5jmcSKR","tlshash":"18731243ad35ce93808b7f5ea52461d936f21841e0c6ae03bfd713dc9d29cb8c94da99","first_seen":"2023-10-02T03:19:46Z","last_seen":"2026-06-09T05:59:12.866823Z","times_seen":35,"resource_available":false,"data":null}},"time_used":206,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":206,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/css/material-design-iconic-font.min.css","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.444Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/css/material-design-iconic-font.min.css HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-1149f\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":70815,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"e9365fe85b7e4db79a87015e52c3db6c","sha1":"2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9","sha256":"dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56","sha512":"ad142d178576c2d02f5eca2ee22500b369171e2dcb8fd344ef1251efb0c4ec61ecc6063d4535b2f77773317803206f13a224530f8e55b0335d4e251a80e15e64","ssdeep":"768:/KvcqyF7I4rb84dLM+JKvcqyF7I4rb84dLM+k:B/nLMu/nLM5","tlshash":"40631be8e80900d26fb1cc03ef62b7ca1685f0a3f9d10dd8f17a998c29d16551597fab","first_seen":"2023-04-05T03:25:07Z","last_seen":"2026-06-12T23:06:56.318905Z","times_seen":10335,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/fonts/GothamPro.woff","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.843Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/fonts/GothamPro.woff HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bclubb.me/static/css/mainlogin.css\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: application/font-woff\r\ncontent-length: 20912\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: \"66d10808-51b0\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20912,"size_decoded":0,"mime_type":"application/font-woff","magic":"Web Open Font Format, TrueType, length 20912, version 1.1","md5":"3cb46b372ab77d032576b9f70c83d1ff","sha1":"00c5e00a04e586921e216f0614b324cbe2de408f","sha256":"bc3e2af807f5dbfe08810fc2050080825050d3b60eaeffa67e82f42021d7023a","sha512":"d50900db6bf3e470bcfcfeba9772d62789d51735c6e4fecb98d71de5169090239db188f9ad70d8b479ecc9e26134ad3072060bb8ee81a3075592624b9bb7bc06","ssdeep":"384:e3MnywwhpjhuAsG00StcfkWAre7fTN8OPBY3POmEeN:e3WiPli0StxWnvmOZ0OmE2","tlshash":"3c92d1baea515ecee54f51b6c9c723bf91942360365e7583d0b7a38e71a30f2cc46406","first_seen":"2023-05-10T15:33:27Z","last_seen":"2026-06-13T11:59:45.955739Z","times_seen":666,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":91,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/php/getSessionData.php","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bclubb.me/","date":"2026-03-18T10:42:34.259Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /php/getSessionData.php HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nset-cookie: PHPSESSID=2230690152d240533fc949efc73c7f8c; path=/\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: master-only\r\nreferrer-policy: same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T12:33:34.927032Z","times_seen":16386556,"resource_available":true,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/favicon.ico","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bclubb.me/","date":"2026-03-18T10:42:34.323Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T12:33:34.927032Z","times_seen":16386556,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/images/login/logo.png","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.451Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/images/login/logo.png HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-1903\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6403,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 229 x 99, 8-bit/color RGBA, non-interlaced","md5":"f870a32dadb7ef1192fedc6f08bfff24","sha1":"b094f04d226d1cb9c6f02ce7476e3fc51f0fe91e","sha256":"89683f99c34f72af612d06f8521e9d5fddbae5c4c97f8472f4d0f785fb6cb652","sha512":"99bfea351f15b0fa06fa527b022c2b5969c62320d8c48a91498a2da2b121a5b459fa69460c6dfe357ee64bb90c094e1b3f8bae49383b4d55c3bd0ce21257e8d8","ssdeep":"192:+eg9NoWxwmPUM+tW2cHgyq2L1I30AeFaH:+egzoWxwmMM+A2cHDDL1y0oH","tlshash":"51d19ec59bd58ec0ed9335bf9a53c9b8325e0fb215356cbc05882d860c5c2472ee340a","first_seen":"2023-10-02T03:19:46Z","last_seen":"2026-06-09T05:59:12.876879Z","times_seen":44,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/images/login/mockup-1.jpg","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.548Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/images/login/mockup-1.jpg HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bclubb.me/static/css/mainlogin.css\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-b532e\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":742190,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 4096x2160, components 3","md5":"61ebeca1a281cf52b0c401c760546e38","sha1":"7a218a9b86a9fc5cae9a8d961c4bf11d247a1c20","sha256":"2139eb1bd9094bcbdd60c521940d6c6925b3be95cffa5f895d77149372515953","sha512":"d51c5f6072c67709a0964043cf136d06f32d5b199840dc34f506a6209f3b0103b74afbe4dd87421b89d1252c6c7dce3136339604f236cbdf2f910a1bb1f901df","ssdeep":"12288:QnefbOQoX/H5J4E2aJ8OWtLWuZvJK8JypnXdoR/CMIT0qIewMfZ59rzum:QefKQAAEtJ8O+LWuLKAyViIMIT0PMZ5p","tlshash":"8df40190f855ac3e8f64148c1d1da617215a84f33bf0c6abbdde0ce9cbc96572c649b8","first_seen":"2026-03-18T10:43:04.320479Z","last_seen":"2026-03-18T12:42:30.90185Z","times_seen":3,"resource_available":false,"data":null}},"time_used":101,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":101,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/fonts/GothamPro-Bold.woff","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.552Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/fonts/GothamPro-Bold.woff HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bclubb.me/static/css/mainlogin.css\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: application/font-woff\r\ncontent-length: 20920\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: \"66d10808-51b8\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20920,"size_decoded":0,"mime_type":"application/font-woff","magic":"Web Open Font Format, TrueType, length 20920, version 1.1","md5":"a3d7d652af07c3610c453b4a51c788c7","sha1":"11b10f90d9bc1c69d722a91fb68dcd4f03b9e98d","sha256":"810a13a74ae783fb66c9bd9fcc492974769e11006b51a9c883eaf12e8c4b0494","sha512":"11cc499df51cd2cbedc68a4b05d1813904b7612123087e151645d4bab2d6b1f8b497f38062daf7315cb40f71b42ee562edb26ff16c546262fa19f373046b7faa","ssdeep":"384:Gh1lSqA8Zrj+udo2EssJRaewgSJFy1+oUuD48ehNNt0hVxgNOGXgFM:GpSmZHxdTsJRtwBJFy1+nuQNUhMNOGXv","tlshash":"a992d11a57375a91d204ce7120d088bbc43ce67e80b75f574e48265e4d89b2c4bb2dbe","first_seen":"2023-05-10T15:33:27Z","last_seen":"2026-06-13T11:56:02.527355Z","times_seen":470,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":97,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-18T10:42:33.750Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:33 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-permitted-cross-domain-policies: master-only\r\nreferrer-policy: same-origin\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}],"data":{"size":102673,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (63169)","md5":"7e4a297bf734edbfa2edd65762278b92","sha1":"5952c27ac051abc5f206103232a4ce5e108a7be1","sha256":"8d061c1c1b267ba26abbbcf0d37ccdaec70652a7cbdf382de15ea75f52d5c388","sha512":"1327f4802cd0e1483fa057fff73b11ce8ee1f00795b3caafdcd082b724ee3ac3deeb0a39f53958a463836c44a0db572b13de7bdd2f5f11233cd313be63af1533","ssdeep":"384:ePxAaYYSHU3dvxx+lWq6yzEPu/r8yYPn1s7Yx3lqjAUUfz/BD2lenflDDYzGiORs:eZ3D3V+lpKZm7YZ4bVhu5TE4PGK5/XQ","tlshash":"70a3182312e1256e673bf388ba10a3bd52671bdf6ee30d8e94d98d73f2459f74104889","first_seen":"2026-03-18T10:43:04.321817Z","last_seen":"2026-03-18T10:43:04.321817Z","times_seen":1,"resource_available":false,"data":null}},"time_used":223,"timings":{"blocked":74,"dns":14,"connect":20,"send":0,"wait":74,"receive":0,"ssl":38},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bclubb.me/static/css/mainlogin.css","fqdn":"bclubb.me","domain":"bclubb.me","tld":"me"},"ip":{"addr":"86.107.77.141","port":443,"asn":207913,"as":"Next Level Business Srl","country":"Romania","country_code":"RO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bclubb.me/login/","date":"2026-03-18T10:42:34.446Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bclubb.me","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 09:54:04 GMT","end":"Sun, 14 Jun 2026 09:54:03 GMT"},"fingerprint":{"sha1":"CD:A7:C2:64:EC:6C:93:67:C5:58:69:0F:13:34:58:87:CA:24:0D:85","sha256":"80:43:13:B5:09:E4:BE:33:7F:E5:06:58:95:9D:30:4F:33:39:34:C6:E8:97:67:D0:2D:F4:ED:29:43:C6:DB:8F"}}},"request":{"raw":"GET /static/css/mainlogin.css HTTP/1.1\r\nHost: bclubb.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bclubb.me/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=2230690152d240533fc949efc73c7f8c\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:42:34 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 29 Aug 2024 23:45:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66d10808-6046\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24646,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (24644), with CRLF line terminators","md5":"84663318be3d9721a1579bbbc90511ab","sha1":"fb4276b50165eb3fffccf46a00e59c45ceff3f9d","sha256":"ac445066afd63d7b68bb7cb26ba163bc48131cc6dc92b978890d290c3dfe5b09","sha512":"27ffa08f1c6e83c6b3254da73e972be8e958d367e95d6405adf599a1fe86da9048258a662f3c983550651c90a2992d1e2f39a67451f9aca314143b6029f723bd","ssdeep":"192:9bjKVOT/V8h5DvQFGIXrRAAW+NymoCtW4ksq2D0rPFuCd9fZ54ShpJM1SfD:1GOT/V6DvQFnGZfb4SVM1C","tlshash":"dfb233d299302e568027cf1731c07adb597aa0167772ceebf7672da58eae5830061f07","first_seen":"2026-03-18T10:43:04.322666Z","last_seen":"2026-03-18T12:42:30.902902Z","times_seen":3,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"bclubb.me","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"bclubb.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}