{"report_id":"8947daa8-d77a-4d7b-bd12-32f04c795287","version":6,"status":"done","tags":[],"date":"2026-05-05T08:11:38Z","url":{"schema":"http","addr":"megatioethereum.com","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"172.67.221.142","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"title":"MegatioETH","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"megatioethereum.com","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"172.67.221.142","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-09T08:11:38Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"megatioethereum.com","ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":14,"request_count":14,"received_data":3942437,"sent_data":6487,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"React:18.2.0","description":"React is an open-source JavaScript library for building user interfaces or UI components.","website":"https://reactjs.org","common_platform_enumeration":"cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*","icon":"React.svg","categories":["JavaScript frameworks"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a8feedf945a59dd1e821d7b9d839c773","sha1":"fca57a2a687c1eaa0a7dfb5fb69b094a0bdec5eb","sha256":"4ad38272e57c92b6294b292d7718c517c1231008a9f555ea80231b8f6258edcb","sha512":"b7e9965c24d881ac087ddfa43c5480f11a357b95279e6760f7a18b611acdb23102e391f3f37e569469cbed74b62d98ff7d0cb6e71f6e49cf9b035d83b8a85bf6","ssdeep":"","tlshash":"24e0203892790631857301445e7aa3873e980093ad8b2603306cce494fc53fb1d64ce3","size":349,"data":"","first_seen":"2026-05-05T08:11:48.386871Z","last_seen":"2026-05-05T08:12:53.982796Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"76244d8526da359429886b03a7ada498","sha1":"90415cd87cc2f928fc8e16b7740dfb09f7e5bc10","sha256":"3f699786f5f750c5ee9696bce7941003b51f5e5628b55aa6ca59917195d8b490","sha512":"3ba24210155df81c4378587bf70fa4a66f8eb44e60d01deca3b32a8ccdd092d350a1fd870334d90469b750c2fc86822743811cba384e7baa95635291061c3adb","ssdeep":"","tlshash":"dcc0125970206966048e787d4ccf088ebe268412a20849c999dcd8547fb1e6c42e484c","size":184,"data":"","first_seen":"2023-09-20T06:28:52Z","last_seen":"2026-05-05T08:12:53.986348Z","times_seen":1723,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"1e21743cd2ee2004cd56bfc5c29e3609","sha1":"bf516634ffbcfd3186b71dafc0ecdcc47894c439","sha256":"0e428980439e794b176e0ee3cd84e4878510b1d52c1efc1c00f4af9729a17029","sha512":"4264e5ce5b4f3acb24046582388132a5915398c9266c18c6349d75fb94bd74bac990dc6ebd12e1e118a3a24752a3e4badae2faabd69b9827d1f223a0750da4c2","ssdeep":"48:atoyTqSsM+c69M+c69M+c69M+c60778KK7NaaM//M+A:atlDNDNDNDl778KKw//M+A","tlshash":"25913f32165427da63ce8fd45a85751d01d2c89a383e60bdff3279eded3a683c031612","size":4506,"data":"","first_seen":"2025-08-01T04:16:24.215618Z","last_seen":"2026-05-05T08:13:12.547938Z","times_seen":2888,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/f0d8eb28-7f1e-41a8-9b68-198411af6f85","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"0015ea00f79c44949b21f8e946d26b88","sha1":"6264d08df2a6185e5bae53f49a803980afac4e6d","sha256":"fad2a63eece2f9d711ac640fbaf8b79429dd6230148f531458234a5fe6c92f81","sha512":"27d002038b42a3fda78097fcdb36f28b3e3c6960439ad80df31ea83cc53e2c118abe8f0eb072059c51fdd742ea5294a57775ff9a48dcaadc4c770931367c3663","ssdeep":"49152:NZ7OwPEZJs60NwwW2QUSvhjG+EyY4bfO3xrQanJfCpszVtlZ:F","tlshash":"f3f52381ad47a8b68f48536170a72e0a55990e535cdca0dfe629f8c134febd2c1e7d0e","size":3411620,"data":"","first_seen":"2026-05-05T08:11:48.398736Z","last_seen":"2026-05-05T08:11:48.398736Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"994c7990dd888c1a66ba0682f82dae63","sha1":"dfc2b9ca001f8c0c3f8a336df1ff30fc0b1221eb","sha256":"064c3e92e6e9911b569fe3cee52a4401ba3eb3933fb858631962308235972ccf","sha512":"336cd2dde5e7a85047fa51bee45dbe072b7b9dd7b5cdd7f50683030d26ec1a338c4e970e818e8fb747bcb970f1ec02050068fce843a06a342f078c510948c36a","ssdeep":"1536:+8KXcdhU7kqjrkhsaI8w7rK+2nyfgnhuom:+8KXcdhU7kqjr+slK+khXm","tlshash":"78b370d9290ad4d68e5220ded4b3fa05e0241e17ce6df163a63ceec0782df66849717b","size":113117,"data":"","first_seen":"2026-05-05T08:11:48.401981Z","last_seen":"2026-05-05T08:12:53.98162Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"59a13eef9e5e0ec7844e58e8b47d54a0","sha1":"0fb2b2059a878b87f8524284d448dd46a4351953","sha256":"c890c150b008d069bfddb86ee2c2e3fe979515939053b4c53fd6853b68e4fe35","sha512":"7fcdb614d30b1141e9a1e134a98e2888007f786f866c24e6383106d3e003f094e72901aa295e7d3450fccf5a249b25b436401a5b9439205da6b0eec8d72cfc80","ssdeep":"","tlshash":"33f0beaf336126ca23ae6ad20796c01d1e72e4ab3002163c575a36ca0cb6f52521b07e","size":494,"data":"","first_seen":"2025-08-01T04:17:54.874483Z","last_seen":"2026-05-05T08:13:08.690058Z","times_seen":2754,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"2380d391cf784bce2f77e0e16fa2268b","sha1":"2b88cb08e3d7f56772d46fe1a10d84774e8728d5","sha256":"e65fcff70fe965f3d1878fe515a7ebcd265dfe61b15461521450c882e8d081d7","sha512":"0f3264af3a045928be20d2ee1ef3af905571d07e3fc25eaeda22199baca89b8c9bff94d90d81124ff45b16c5e40df291c2f49d9464ba901d2d961f6fd1196f1f","ssdeep":"","tlshash":"e6411b1e00aa0aa31ba3054333ce846d0956c2cedcc73534d3b27f8134c67832a93bea","size":2254,"data":"","first_seen":"2025-08-01T04:17:54.882582Z","last_seen":"2026-05-05T08:13:12.549158Z","times_seen":2785,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"f278e1582a6b32d6a9a05328bba73b0f","sha1":"02780b645a044990e49787663d3dba06626b1e3d","sha256":"07317dc90130ec69ed8e07a8362168074f9067473354101f361449cff37110aa","sha512":"08463b63ba1654bf203117d8f0c0a2ce4b5d92914ffba7c8ac3d942ff1a812c86cc61d9e840e5f3422c2b22d1b71b1a06b9a6d40d4e4259b32fd8cd40cc8357f","ssdeep":"","tlshash":"55319948a43216904242e8f1c676abeeabe774080574446d349cbec7eff8447e521678","size":1529,"data":"","first_seen":"2025-08-01T04:16:24.221852Z","last_seen":"2026-05-05T08:13:12.539899Z","times_seen":2917,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"1c03f04c0d95c8a4350ce105dca25260","sha1":"dcf0420e8af8091b89a054f5962eafa6bac75be7","sha256":"f4ec16c337a22d2ed575a5da71f52e3b1df4d6d24df417793f4cb1f918f3529a","sha512":"3d15e7eeaefca88430afdc74ae81773bacded19412f9bb027867d6fe94ca10c981dd61fafcfde7e51f68fe810933d7da3716cde4bcb1f7f811ecc0dd3e975156","ssdeep":"49152:wd7OwPEZJs60NAwW2QUSvhjG+EyY4bfO3xrQanJfCpszVttw:9","tlshash":"26f52341ae0768b68f48636160a76e0b55990e535cdce0cfe629f9c134fef92c1e790e","size":3409502,"data":"","first_seen":"2026-05-05T08:11:48.408939Z","last_seen":"2026-05-05T08:12:53.988028Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"0e1ee9f442371606d9a13b41a0dbeaff","sha1":"a05c25c8ad9127fe7d45319ce13e8b4a485d2e01","sha256":"713285cbc0cb910dfd2e7a86c604d191a27789ae50964ab1c674507ff4a20c45","sha512":"1dbac9fa1e0b338e780a3600f1a3da140a6c83a961a1d0c6c80fe3dc5a9041c346c471d264a07ccc87457cdccc2a28b768d02283512ba9cee0fc2e2b7124e42d","ssdeep":"","tlshash":"0221fedeb2826488526794d742cd8dceb8e617a919008c20452ef299225c3e8fb6ad54","size":1177,"data":"","first_seen":"2025-08-01T04:16:24.218288Z","last_seen":"2026-05-05T08:13:12.540779Z","times_seen":2841,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"8de04e3dc63af7585af0e827672eb149","sha1":"02ee5e4b4e73e430d629744c4b7a3e38c36ed06d","sha256":"123e2a4c9c65ad62ea2b0992b1f80073e18a341a810f9ba40d1c4cdc31f1e759","sha512":"a42fcbfd4fc45305b75c0093524abafcf73f7d10f3bbe8cf573f3ea87803f672ae7fd293a116e7c24aeb0ef9fb24b9ea32e48200a56243187d5b550407631184","ssdeep":"","tlshash":"a911cce0aa6c599781c2095034894b02b13cb020203d9fd0bf75f0ce7c7c7ec96d262a","size":1000,"data":"","first_seen":"2025-12-20T20:03:49.143914Z","last_seen":"2026-05-05T08:13:08.687993Z","times_seen":1589,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"297a907d4e5b4c2198915e66274d9c9a","sha1":"e0f98af49ab0f7a270e2d739436181f924449098","sha256":"0fdbc26d9d5bd7f6a4bc38acfb91fc663c57463d43a08447f1386b3354cd84de","sha512":"48487cbd59e60a259a5836fc0315243da500d617e94e06b3073f79bb834bd141c9e5cfb59c42a3c2086c920c21be5996e589d4658513cf31d95bfc5757a4a44e","ssdeep":"","tlshash":"1371bc3beb00173bdc8fb9fdced5b4c02e62497262496560691ce102b16cd7087bed88","size":3741,"data":"","first_seen":"2025-08-14T22:39:51.132287Z","last_seen":"2026-05-05T08:12:53.986998Z","times_seen":3086,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/react-18.2.0.min.js","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a996a6ae6b24f84906930e6fae08cc50","sha1":"c94838504cd06f4956ea677fd284f27a19d0e72a","sha256":"c39b3939f52144769a140b191e1eb6a021a967d57add9eaf1c679778033f3794","sha512":"a699943e238c7491c9c474b7b3df85ac50977db155a04a71e7aa5e18e17ff0f3fbab092658edcc10a3c6557e01ccf114025f3cb8e94e6b9f1cae173adaade559","ssdeep":"1536:Zcs/CNO6+DyAypTz4nGOPAMGQ4CeyWah/oU4Ft5VQwb:Zcs6NO6LpHaGOHdhoUc5Vtb","tlshash":"6eb381da150ad4d68e5620ced4b3f909e0680957ceadf053e63cddc2b42ef6a844727b","size":117665,"data":"","first_seen":"2026-05-05T08:11:48.352549Z","last_seen":"2026-05-05T08:12:53.965069Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"3433c9d3e9b7e8e5b34ed72e309db572","sha1":"d53d7df082088749c1df6b08330ee9b9e4076932","sha256":"1d96fa9904e3743570bccd5be90e83fd91975299f374093cc6f723673d582dd1","sha512":"ffd0e047331871f21738643968b7eb7fa045ee0e45346a9ea986c4b8a3e745dd310542c6b2734f6d244408bba6548ec66f5cd7662c69485b5e59e3b9432cdff2","ssdeep":"","tlshash":"06f04245bd825a24d35670ddc41f978cc53690dd91491c4cbb64ece1de94c2cdfc6534","size":585,"data":"","first_seen":"2025-08-01T04:16:24.219641Z","last_seen":"2026-05-05T08:13:12.549729Z","times_seen":2954,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"megatioethereum.com/react-18.2.0.min.js","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://megatioethereum.com/","date":"2026-05-05T08:11:14.288Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"GET /react-18.2.0.min.js HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://megatioethereum.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 05 May 2026 08:11:14 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Sat, 02 May 2026 14:18:27 GMT\r\netag: W/\"69f607b3-1cba1\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uZJ7%2BrT2hru9589Z0XrRVVOcKyck%2FTRR6xh1%2B5tLMODqClto7kCWJY5o0Aw1UEZhdDvAL4TcMNBg624gjrAhfpOHIukXbXcD%2FyFo%2FBoRUhuEyK1L9n%2FDAYFfkKlB%2Btp5SMS%2Bv6Zw\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9f6e45f64e7a2efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":117665,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"a996a6ae6b24f84906930e6fae08cc50","sha1":"c94838504cd06f4956ea677fd284f27a19d0e72a","sha256":"c39b3939f52144769a140b191e1eb6a021a967d57add9eaf1c679778033f3794","sha512":"a699943e238c7491c9c474b7b3df85ac50977db155a04a71e7aa5e18e17ff0f3fbab092658edcc10a3c6557e01ccf114025f3cb8e94e6b9f1cae173adaade559","ssdeep":"1536:Zcs/CNO6+DyAypTz4nGOPAMGQ4CeyWah/oU4Ft5VQwb:Zcs6NO6LpHaGOHdhoUc5Vtb","tlshash":"6eb381da150ad4d68e5620ced4b3f909e0680957ceadf053e63cddc2b42ef6a844727b","first_seen":"2026-05-05T08:11:48.352549Z","last_seen":"2026-05-05T08:12:53.965069Z","times_seen":2,"resource_available":true,"data":null}},"time_used":278,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":247,"receive":31,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/2aabef02fe37ff8c.css","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://megatioethereum.com/","date":"2026-05-05T08:11:14.290Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"GET /2aabef02fe37ff8c.css HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://megatioethereum.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 05 May 2026 08:11:14 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Sat, 02 May 2026 14:18:27 GMT\r\netag: W/\"69f607b3-8818\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vQ0HyilkBQOkXeiYs%2FKnRfLljsAdoaGwoHrROb32lVpc4KG2YWP4JBs%2BwwnB4EWYNq8yQ4110tY96JQ3F2nxZQeYENwzAeouud6iC1WbUpw8Xn00GSvIOtvBtGW%2Bhp5Qo%2FE8O1Cd\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9f6e45f64e7b2efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":34840,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (34840), with no line terminators","md5":"82b84be010dd90ea47c3086c69c16082","sha1":"2fdd1acdb08cf45837798d0c86b6e5e0f246168b","sha256":"23fba1a6f2c79663a22ad443747ada8b99c7969718c867940eb5fbbf07e4bb66","sha512":"3a84f9aed0762959729dbe9f3fa0e7ed00205ed5cf624e4778f7dcdaabd9aebb266c755bb29755f397b90fc6b38e55b2fd4b398ca2cc8d98bf198fec26687c84","ssdeep":"768:lE3Y/q7CxABbS8Qxh7eaJOO4jjNjSKhNirdx8g:CY/q7JBbS8QHnOO8Zpcp6g","tlshash":"f6f25263f7d7002c9119a125e9cbb7bcaf7da202b72a2dfca709773d03854e7116a245","first_seen":"2026-05-05T08:11:48.356585Z","last_seen":"2026-05-05T08:12:53.967738Z","times_seen":2,"resource_available":false,"data":null}},"time_used":222,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":220,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/logo.webp","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://megatioethereum.com/","date":"2026-05-05T08:11:14.291Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"GET /logo.webp HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://megatioethereum.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 05 May 2026 08:11:14 GMT\r\ncontent-type: image/webp\r\ncast-mode: default\r\nlast-modified: Sat, 02 May 2026 14:18:27 GMT\r\netag: W/\"69f607b3-10dda\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kzoosqbjrBS0Wqc2GahfsxBP6ZjuGjB7rzqqD5NGPVN9cC9iLFrSEy5yEua84MPjbib6A6SeK05zq6SFK2GpGH5Vi6kHI9olcjY1e%2FQLOTZSKNstbmymL700496vI8NiQxjIqJWJ\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9f6e45f64e7c2efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":69082,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"cd33345b6441c2ce0cecc33e056f1c36","sha1":"1ff35eb07f93eeb4d6e43b4d663bb6fdcaddc1c4","sha256":"9e2c80218e28ec69638d3c7ae5434376f04f6b20dc3b8c5a50df67a195ef3a19","sha512":"5484225e98e805b982d3b576bb6a5569063a7849024716a89df7005823eb7eb1cc9e686a9ff9fe1447843fd8b6a7b525e8bd0ef6e07bd6a33b64f80c09be873a","ssdeep":"1536:AJjHXwfE07IiY6go7m2gW+Fze2Cjrrw7v+iMP3jrFbR3nkz:AtXC7U6goVgW+Fze2CDwLBMP3BR3nkz","tlshash":"3863127470f5d001e23e9db9f9cfaacafaa454d7a4817fdd6920fd24e65844f2710a01","first_seen":"2026-05-05T08:11:48.35954Z","last_seen":"2026-05-05T08:12:53.977022Z","times_seen":2,"resource_available":false,"data":null}},"time_used":458,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":292,"receive":166,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/rabbitsprite.png","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://megatioethereum.com/","date":"2026-05-05T08:11:14.760Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"GET /rabbitsprite.png HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://megatioethereum.com/2aabef02fe37ff8c.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 05 May 2026 08:11:15 GMT\r\ncontent-type: image/png\r\ncontent-length: 24605\r\ncast-mode: default\r\nlast-modified: Sat, 02 May 2026 14:18:27 GMT\r\netag: \"69f607b3-601d\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sYxo9qUWAMCHh9zR9eEa%2F1r4jWorNBmNzVc7ntRVjRMGC1JQxCRs7SbPpH5%2BmG6PMsjk6nuQC3DPaoOF4FkCWH9ix4WAWUzWeCuKN20UlSM0YWQjoqxoOPORUv1l0AbpnEd3tNYC\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9f6e45f93f272efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":24605,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 970 x 99, 8-bit colormap, non-interlaced","md5":"645a32ebe87ced20f1df08dcd9d56140","sha1":"db6fe892e6f7aeba4fb4a6954c169a5955f059b6","sha256":"38bb31d8bb6ca6822c29554d5b8d08a163b35e2c57f3c7a72e7153f5ed56bf4f","sha512":"8183e85db227d80611d541f366f20210a4e70a59d2badabd4f6dc937040be6bcb2e38f4303224eb83e1e6181ad6d25a1eddc0add138626346a5b555b45371feb","ssdeep":"768:c/WrhHavY84bgmkYxVVZ0TxnrZWpPYt8b5UaB:EW1k0gvIVT0TxrMOoB","tlshash":"b4b2e18dffbe95c2e956a31e244b9143ca3a7f3c4171156e1ac55a97e500d222a05f33","first_seen":"2026-05-05T08:11:48.360766Z","last_seen":"2026-05-05T08:12:53.974518Z","times_seen":2,"resource_available":false,"data":null}},"time_used":302,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":271,"receive":31,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/button(inactive).avif","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://megatioethereum.com/","date":"2026-05-05T08:11:14.294Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"GET /button(inactive).avif HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://megatioethereum.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 05 May 2026 08:11:14 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 35160\r\ncast-mode: default\r\nlast-modified: Sat, 02 May 2026 14:18:27 GMT\r\netag: \"69f607b3-8958\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2zLFWiiu7dwfIhJEoxAHxmoVMrM4CnJfgXlXvkmFOHUkKqRBGg5%2B%2BT13Om43GHPuooVlIu2K2%2F2mSesKzQniAf%2Bd1R58mVLFTEkk6avbnXUzDLlbUKBgl%2FOEbHxrUjFQPqLH93U8\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9f6e45f64e7e2efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":35160,"size_decoded":0,"mime_type":"application/octet-stream","magic":"ISO Media, AVIF Image","md5":"d7697d77c1cf75551ca9b907eb932889","sha1":"4edb8084afd01e5614a9919ab7dfa1647bf59ee0","sha256":"89e06e0417256135c6ce0522ebd8bf7d7441141057028ff9f8a402b791f2c7ff","sha512":"b5ae54a3878185beb5ee7dd48fa917b03aa0f5c176f6232b9ece68e1e057034adee619e992b811c350575004057e7d75332889ebfc0bf8cfefb1765bf77637c4","ssdeep":"768:o8sBRi/6KsEzwfbxHhqYriFLNKZOsPRnUnO7vIOZMM71q8YNjMcS:o8p58xHhdixNKZOsZKpKv7DIjg","tlshash":"7ef2f15618a81b5090f6d7b0dcdc9f1a9914cd2e22ef2d96dfb03e19da70036d9e7e80","first_seen":"2026-05-05T08:11:48.362133Z","last_seen":"2026-05-05T08:12:53.978577Z","times_seen":2,"resource_available":false,"data":null}},"time_used":262,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":223,"receive":39,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-05T08:11:14.009Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 05 May 2026 08:11:14 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 02 May 2026 14:18:27 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yax6ASefuOCwYFlfw%2BQ0SgB3w7x3X8YeDsDQ3u%2FcKKpiQOD5NNGWZ4xV0OFj0fiYrIRMsaHYsNAbsrHtvqNJH01Qj%2F9iNocSiugKaQQw5SprLZjfV%2Bg0dqCcBzaGuGkl3WV69jAt\"}]}\r\nage: 229586\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9f6e45f4ebba0731-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"React:18.2.0","description":"React is an open-source JavaScript library for building user interfaces or UI components.","website":"https://reactjs.org","common_platform_enumeration":"cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*","icon":"React.svg","categories":["JavaScript frameworks"]}],"data":{"size":15777,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (6474)","md5":"9a3af9418851891525bc96e29fcbf505","sha1":"55abd541a2798d520683c3bc353a1ef648c988ec","sha256":"1bddb7ae355b0f680b7b65dd2e5d7467acbbe0c8b5f30186cdbb2c6f775927e4","sha512":"7841260ebd36638d15b51b645eb31b5a1bfdbb6419283d7c057e4f715ac50f2514f0d95eaa4c53cf9fbf6c5e4cd4a2b60f77f7f1660a9a3123269ec1d8c4c64a","ssdeep":"192:9XMtQPJaZkoy/LGEjbP6N7hK8Zba+kdF1Y6RMkAozoCmU5:9/poy/LGEeZbadSiMkAozoCms","tlshash":"bb624035af09253b4287d2f4ade5f2fce36e824bd1145818309cc21367a9f546abfe15","first_seen":"2026-05-05T08:11:48.363573Z","last_seen":"2026-05-05T08:12:53.97174Z","times_seen":2,"resource_available":true,"data":null}},"time_used":120,"timings":{"blocked":53,"dns":39,"connect":1,"send":0,"wait":14,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/button(active).avif","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://megatioethereum.com/","date":"2026-05-05T08:11:14.295Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"GET /button(active).avif HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://megatioethereum.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 05 May 2026 08:11:14 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 50326\r\ncast-mode: default\r\nlast-modified: Sat, 02 May 2026 14:18:27 GMT\r\netag: \"69f607b3-c496\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HYmc%2FzCQPeHuXWdMqGiYlzHQ7OLsPfdU9YW5wMoDr8aArjnYS3JdmayKWW7w1uKNO5NvHTWrGElNEeMg36C3FiduKFuNWmLUxXpegvfqyivJINThTSTRKyu0MTGsFh%2BCLuPOeTnQ\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9f6e45f64e7f2efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":50326,"size_decoded":0,"mime_type":"application/octet-stream","magic":"ISO Media, AVIF Image","md5":"c5b8b0e5b440db509f440a11c36daac0","sha1":"ff897de7b7834d704ca1e7bdba15262ff5dfc220","sha256":"fc0f5a692a551411757d57a95bf3d183634e25cfae78a93200c6edc6c7b5e4c1","sha512":"faccd3093c1e7cf0d4c0f3bf92f873efb0168b9211187dce42cb3f862fa5b4e2b865a55144827b6da158b9e1b6ef067c8676b409ae1ed814be7c2389f748d7fd","ssdeep":"768:7/MAdJwBoPsx5vTg/2MmYGXZYjzd8XQETJahiWPjsUPSw0c2Dp48mU6nMU4Io:TMAISPA5v8/2MmFY9CQE8iorJnUIMxIo","tlshash":"7833022f04482c80ccd05779bf2542427d2fb20e5d9beb25a6817b91cd5f849ebb8be1","first_seen":"2026-05-05T08:11:48.365314Z","last_seen":"2026-05-05T08:12:53.957144Z","times_seen":2,"resource_available":false,"data":null}},"time_used":292,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":230,"receive":62,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/xbutton.gif","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://megatioethereum.com/","date":"2026-05-05T08:11:14.297Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"GET /xbutton.gif HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://megatioethereum.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 05 May 2026 08:11:14 GMT\r\ncontent-type: image/gif\r\ncontent-length: 9696\r\ncast-mode: default\r\nlast-modified: Sat, 02 May 2026 14:18:27 GMT\r\netag: \"69f607b3-25e0\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vMp9Fue4mdfd6W6oG7UZytWBl9Wxp9gfRfsCu3MLBPcNjkAxbQRHwT20XWfy1wESNCbQPWvZkpViwDCfP%2F1zhLZyu5QlSegrJR26jaKkyOzW4c1sDmC6cPRxsmAUSO3iXEvCcPFt\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9f6e45f64e812efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9696,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 114 x 113","md5":"149f886cebd71be425779d1d1fe30dd5","sha1":"41a1344c23276e6506c465f2ae3e5f22563da943","sha256":"b0da6b9d38d40fd7650b35b075e2048087fe4ad962b5f0d7a03851d924b18789","sha512":"ff9925ccd248da68865963d0564a7e0d7f7bbb95a93e945e9769ca35680c68cd6538a0d1824ad95af6f3ffaf23e9825d084d58fbe62ffc93f851efbc24ba184f","ssdeep":"192:oiGpDtVbv/U7siDoTGjoWugVcYSP75uO6Jek3HbcEjhBounw7b5b5:oig1H6siDoCKCcYSPNuOSzH4i2uns5t","tlshash":"b512bfb4750297ee425f8c81a94d0d4daf2d29ff019171a7428ff850ee9b7ad32c120a","first_seen":"2026-05-05T08:11:48.366816Z","last_seen":"2026-05-05T08:12:53.960804Z","times_seen":2,"resource_available":false,"data":null}},"time_used":218,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":215,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/background.avif","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://megatioethereum.com/","date":"2026-05-05T08:11:14.758Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"GET /background.avif HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://megatioethereum.com/2aabef02fe37ff8c.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 05 May 2026 08:11:14 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 71648\r\ncast-mode: default\r\nlast-modified: Sat, 02 May 2026 14:18:27 GMT\r\netag: \"69f607b3-117e0\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AsRqq%2BdqPGoNxpOkhk0rj1R4OBx1MvvcmfGdXCbdBrmGjDNhzY8wQwffx4gx4tR3uZiOHhIXH%2FJX6JzKRU0XMRbbBoGQsC4BnPzOft1D1rtf11dRXUbnkzeKEm9TKEg%2FY8zY4k%2Bv\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9f6e45f93f262efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":71648,"size_decoded":0,"mime_type":"application/octet-stream","magic":"ISO Media, AVIF Image","md5":"968d34167c75adf9843049b8eaa42b34","sha1":"b84a6acc6f6a850a6f151e3e578a5909f3e33fc5","sha256":"a5ed25b04847c35d787454855facb1fa46590c3e50bb38514342aa9f5cd36eb6","sha512":"0fe11cc19f93557664799c1bce3a34d32c5c8ddf32dd397cf4347205f47761dc00abd4818228b6bef6899ec3d5e8fb1569bd8eaa8f2e8aae40acdc1e9e3bcc53","ssdeep":"1536:xE79QDFuegPjkg20MxPvQtfKCZvhC3vgv8m26lJKbrBch:xUkuegPj12DnQti93Ri85Y","tlshash":"7b63029c7864207fcd4a9f3d46b27256dda92f43ad05063b9f12cdbd3262386cba4606","first_seen":"2026-05-05T08:11:48.368403Z","last_seen":"2026-05-05T08:12:53.973159Z","times_seen":2,"resource_available":false,"data":null}},"time_used":269,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":206,"receive":63,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/text.avif","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://megatioethereum.com/","date":"2026-05-05T08:11:14.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"GET /text.avif HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://megatioethereum.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 05 May 2026 08:11:14 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 13487\r\ncast-mode: default\r\nlast-modified: Sat, 02 May 2026 14:18:27 GMT\r\netag: \"69f607b3-34af\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XG4Dk8c6mydIFGatThkzKMuLAfukKEewKdG0LmhmltXzMtCdZICF%2B%2F3%2Bud%2B%2BLFoVIDmiBwU5OdN%2BPXZ5a7ODdiVrMRKLrBO2zr7YazmEmftzeHDTUTQfnX8dknAIngzUNhqkTbPS\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9f6e45f64e7d2efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13487,"size_decoded":0,"mime_type":"application/octet-stream","magic":"ISO Media, AVIF Image","md5":"5ca7b5194a53330a21b04a354a2a3344","sha1":"06a2d93dd74655cff1c8bfa0970262f2b9a12d22","sha256":"50a686483d3bf543b239f6c573afc9324933eda3a9a133c3949cad56cb9c78a8","sha512":"18d59fc70767de6188454ea9fac05ce199705ae02b2350489622fb9b5e0359f291d3d56124e49d398f34a6734b22aa73e032250733519d3a85c66a333c710efb","ssdeep":"384:revD5Fvvp98hAfqnxIA0ZrjuoIurVds1ZamJIBKq:CTLyPxIXr2UrBf","tlshash":"fb52b01ab7f81151c68e1f351ae10f494b91a304e3db9689fcad54663f449e0a03a7df","first_seen":"2026-05-05T08:11:48.373219Z","last_seen":"2026-05-05T08:12:53.952464Z","times_seen":2,"resource_available":false,"data":null}},"time_used":234,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":233,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/soundoffbutton.gif","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://megatioethereum.com/","date":"2026-05-05T08:11:14.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"GET /soundoffbutton.gif HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://megatioethereum.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 05 May 2026 08:11:14 GMT\r\ncontent-type: image/gif\r\ncontent-length: 6950\r\ncast-mode: default\r\nlast-modified: Sat, 02 May 2026 14:18:27 GMT\r\netag: \"69f607b3-1b26\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=o0k2WZ4Af6xPYwVMCUgfMwt%2BKeneoaeiZileWUbJD8ilsfuDc4rb6yILV7eEIvZcKnEcH9BvFdUtjAhYwS8BsEc%2Bx%2FCyP5wROSNIj9WmbYwFDf6SVwcJWLTa0FZg4QJ8y5%2FUzAoi\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9f6e45f64e802efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6950,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 106 x 100","md5":"3b6f857f4a866e1f3c712d18f3838d40","sha1":"ccac24ab77510a009118509bce27491c1ed33fd1","sha256":"3a47e7de7f6af22d63e1bb2491f6ee61211472a35525ebfe66dca97ee8bc0ba8","sha512":"90d3448f8141cbc43ebd634ff8010da28025f0c209c9ad0991f167e0f35416358bce844481ff69a7e514ca3bb8fccde74bf8fde19e1ee63d6dc3d24a905d28dc","ssdeep":"96:lAF+ATW11mnwS+H6uVwFLGjnAiHkFsiLaLc+lbhOfJ9oGuakGkO6uSoXSPoVfF8x:/ATUmwSWJ67i+k8glBXZP03rDUNOd4r","tlshash":"09e17d02b305336896d0f2d9891607856be3304ca5bd6c5d3670ab6a4cae8aef0a7557","first_seen":"2026-05-05T08:11:48.378538Z","last_seen":"2026-05-05T08:12:53.969451Z","times_seen":2,"resource_available":false,"data":null}},"time_used":220,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":219,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/null?e=jscdn/getFile","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://megatioethereum.com/","date":"2026-05-05T08:11:14.794Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"POST /null?e=jscdn/getFile HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megatioethereum.com/\r\nContent-Type: application/json\r\nContent-Length: 37\r\nOrigin: https://megatioethereum.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":37,"data":"{\"permit_key\":\"zvjprbm0d3tq2dqkgpmb\"}"}},"response":{"raw":"HTTP/3 405 Method Not Allowed\r\nserver: cloudflare\r\ndate: Tue, 05 May 2026 08:11:14 GMT\r\ncontent-type: text/html\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XaZAZkUN6yXuXWZdHyEA59RKzvujOWvcsg0Q2sPB5kGXEnVmF%2BECocolbCM0EkoccEISUD62qtm7zQPJYhgEYw2snuJRUDFjRnJEni%2FheURi%2FFVVbNZqAQuwdmHMBF6yd3RZlh8V\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f6e45f97f392efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"405","status_text":"Method Not Allowed","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":166,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"cc1936e6c20f6a866226130b869d9953","sha1":"65d15aaa085d0c6292e27fecd97ce7c90deb4ee6","sha256":"11f4864b57acc22316998d012efc32274ea8c3f3230acab7bc8ee576c594b203","sha512":"29d5ff85814c6470cd6665b01d1f2b4b9f2303605c922f6f685375875ad1aeb23d80d386497164fc8cdc713968557cbe55b55b8c571ae27dff53c55790f382d6","ssdeep":"","tlshash":"7dc08c6e271b3c48c6a321751ac3f4b0c29da2a284f847006844005331c32169acbb51","first_seen":"2023-04-11T14:00:01Z","last_seen":"2026-05-05T08:12:53.970869Z","times_seen":911,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/secureproxy?e=jscdn/getFile","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://megatioethereum.com/","date":"2026-05-05T08:11:14.991Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"POST /secureproxy?e=jscdn/getFile HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megatioethereum.com/\r\nContent-Type: application/json\r\nContent-Length: 37\r\nOrigin: https://megatioethereum.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":37,"data":"{\"permit_key\":\"zvjprbm0d3tq2dqkgpmb\"}"}},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 05 May 2026 08:11:15 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding, origin, access-control-request-method, access-control-request-headers\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block, 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=24TXI0p8FHTfWak9vwIk83joytxcGfOKeS9Ay3SDyhs4SBOyPGANYRDSIJTFWZvoCzRDq0Acv%2F0u8J3nqY5iFifDiV5FAjY4fR1k5WHHuDW2PXdltolspBbIoLn%2B8CI9t2VmGkQ%3D\"}]}\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\npriority: u=4,i=?0\r\ncf-ray: 9f6e45fabf502efa-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3411620,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"059f4f882c8f5dbed13156f87ea2d1b4","sha1":"f0d7b6cb4bb5201d3178a3d659aebcb7f2803a72","sha256":"50bf924b073f9a23ad0782329f334d13a33d977b68b70a94e5c11933ebe983fc","sha512":"ab81e9ed87afaf8557f031d5f148d19e746d00c97dae7c7b36852e850c353b9b7dde6aded71e1ce1b230f05c2e4bfc1108b677968e4666e25df84c75752af295","ssdeep":"24576:NF3V8/8Yae0PgGswPpBroS7InwbjtsJshJuEbduDxh:NZ7OwPEZJs6H","tlshash":"3d252255ae87a4a68f4c7aa9a4b76d4b95414f434dcc609fd816dcc032f8bf181cba0f","first_seen":"2026-05-05T08:11:48.38215Z","last_seen":"2026-05-05T08:12:53.963052Z","times_seen":2,"resource_available":false,"data":null}},"time_used":537,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":170,"receive":367,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"megatioethereum.com/favicon.png","fqdn":"megatioethereum.com","domain":"megatioethereum.com","tld":"com"},"ip":{"addr":"104.21.25.13","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://megatioethereum.com/","date":"2026-05-05T08:11:15.160Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"megatioethereum.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 13:22:13 GMT","end":"Fri, 31 Jul 2026 13:22:12 GMT"},"fingerprint":{"sha1":"9F:8A:42:C5:A8:BE:2F:7D:FB:38:6B:FC:C4:29:53:E0:BC:85:DD:6C","sha256":"63:C3:5A:8D:DA:D8:6B:3A:DA:C7:52:C9:84:E8:E7:34:60:18:C4:5E:C9:10:EB:0D:78:48:40:90:F7:B2:F6:7C"}}},"request":{"raw":"GET /favicon.png HTTP/1.1\r\nHost: megatioethereum.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://megatioethereum.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 05 May 2026 08:11:15 GMT\r\ncontent-type: image/png\r\ncontent-length: 68134\r\ncast-mode: default\r\nlast-modified: Sat, 02 May 2026 14:18:27 GMT\r\netag: \"69f607b3-10a26\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LfNF8CgKwjZPuXciJujVjyiIrfUlIuKoo8%2BQsqRCeCGQAe9VqocUBvCrFpco3OLGTmyhWpIbyuiaU7dJ%2BevxjpSIlJQkwzW%2BOTVHmB7Yp4AsHPabcEcks5sq4JasgtHexrFZM093\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\ncf-ray: 9f6e45fbcf6e2efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":68134,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced","md5":"56ec645b5d601ce5c2e38bc7bc441893","sha1":"e45de0b293a6418fc322ecb208c7cfb846a090f0","sha256":"4ff5b75f14cd68648c98452a75fc3d2dd8f672f22b5e934f92442a0058a6e894","sha512":"f3dd0962f9d286022a9a2d13ad60560062f355dd0901f300150790918c65196d3b0cc4a3732ab18add823476bc21a4f3dba610ef919f1f4b6d4ed2d537dbd382","ssdeep":"1536:B9uW3KsI+SLty3YLLtYSBR/Pa35EI0znykpdRk:B+LtOjaRZI0zyCk","tlshash":"48630258bc447574de0f66fb7d782e81aa4add29f13b3864fad1a0181a1f1c8f971230","first_seen":"2026-05-05T08:11:48.384657Z","last_seen":"2026-05-05T08:12:53.975771Z","times_seen":2,"resource_available":false,"data":null}},"time_used":170,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":117,"receive":53,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-05","alert":"Sinkholed","trigger":"megatioethereum.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}