{"report_id":"8aa14e6b-936e-438c-bec8-41f8ec1eb85b","version":6,"status":"done","tags":[],"date":"2026-01-01T23:28:50Z","url":{"schema":"http","addr":"nbabox.co/","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.85","port":0,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"nbabox.co/","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"title":"NBABox | NBABOX – Watch NBA Basketball Live Streams Free Online","dom":{"size":39,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with no line terminators","md5":"086707e4369f60afedcafb16050a7618","sha1":"8216b0cc6876cbd44f01c158e7dff3833ceccd41","sha256":"a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e","sha512":"aade21843813e2cab329b99185c6f61db7907a556ea974e0315dcf3ad967cab20fee66d4f10db0d0ec43a71e086ce6d700d5524103deaefa3ce5f6be74ba5737","ssdeep":"","tlshash":"6a9000fee0a2000efc303bc00cc2238a0c28c3a830028e002ac038b8c80822bcc032c8","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"nbabox.co/","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.85","port":0,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-05T23:28:50Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"nbabox.co","ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"domain_registered":"2025-07-03","domain_rank":1699451,"first_seen":"2025-09-02T16:51:32.235243Z","last_seen":"2026-01-01T00:44:08.857581Z","alert_count":16,"request_count":16,"received_data":255677,"sent_data":7985,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-12-28T22:17:10.032556Z","alert_count":0,"request_count":2,"received_data":23712,"sent_data":946,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"oyo4d.com","ip":{"addr":"139.45.197.118","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2019-03-26","domain_rank":201644,"first_seen":"2025-06-02T17:08:26.404235Z","last_seen":"2026-01-01T23:25:21.765552Z","alert_count":0,"request_count":1,"received_data":824,"sent_data":583,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"my.rtmark.net","ip":{"addr":"104.18.41.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2014-10-29","domain_rank":43911,"first_seen":"2015-02-04T09:54:57Z","last_seen":"2025-12-29T14:32:54.672001Z","alert_count":0,"request_count":1,"received_data":832,"sent_data":425,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"jnbhi.com","ip":{"addr":"45.133.44.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2022-08-31","domain_rank":0,"first_seen":"2025-11-13T12:34:48.915898Z","last_seen":"2026-01-01T23:25:21.767776Z","alert_count":0,"request_count":1,"received_data":113259,"sent_data":402,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"s2.safebk.shop","ip":{"addr":"104.21.71.140","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-05-03","domain_rank":0,"first_seen":"2025-12-03T10:59:01.253915Z","last_seen":"2026-01-01T14:14:46.269829Z","alert_count":0,"request_count":1,"received_data":767,"sent_data":474,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"nbabox.co/partytown/partytown.js","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f2fd72763375adc25431dcea4f2fea5c","sha1":"96c18e4f68b9d6af523135ff76be7462b8acd345","sha256":"dcdc6aaf78e26e5f334df142f616160c24fa270d70cb26016d179282e0ea83cc","sha512":"aee2fee0abfae83e275a5bc284487a2ee24de683e2c1d47ae86f19ca6c9a37d02d01e287642887f16364bcac734f64e7e171d071129405f71244365da877bf7f","ssdeep":"","tlshash":"a741a7c97f196476c3c650b580efba1ab53430242425a0417ba4d9f50c65d0e26aaeff","size":2186,"data":"","first_seen":"2024-05-15T10:19:37Z","last_seen":"2026-03-18T22:48:15.557736Z","times_seen":1088,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5618d7b6e2ffd4514288093fadb8987c","sha1":"25a1fd9c7b899aa8fa96193663e47ff50daa216c","sha256":"3718976ad80861b1a91683aeeaf2af896f279c35d318d05bdd69eccf7e6eaf28","sha512":"2860c759e165381f809b69bd593250ceb61f0a6d62b390f33dfd4b58be0891a1a36c406e8b1dda301c7d92f37efa327fc06b544cc55770ddba119df93450ddde","ssdeep":"","tlshash":"69c09b9c25475e7555d72b410b2fb606f0573114f4d11d31491673446530d27a755954","size":139,"data":"","first_seen":"2025-10-24T09:03:04.896559Z","last_seen":"2026-01-17T03:10:05.820091Z","times_seen":54,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"introduction_type":"eventHandler","is_inline":false,"md5":"7e1b5b92616ad938ec57e626b1e8dc69","sha1":"a5c707509e6234656b51a27aa2996a4ca914c06a","sha256":"3273e63dc5bc299b21ab6eb5f36a4df97967eadb1996657f68478a45c562c956","sha512":"a5aa4f53933776b8b733be4b0c5d5c1e256824ec58c3c681e2d68f86983a85c29ca74ad4d45b40e3e8551f817ec29664b7421b212c7ef64d4bcd6ee03db2696c","ssdeep":"","tlshash":"6f5000cc00000000c0000000000000000000300000000cc000c00f000300000c00030c","size":9,"data":"","first_seen":"2026-01-01T23:28:52.35952Z","last_seen":"2026-01-01T23:28:52.35952Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"introduction_type":"eventHandler","is_inline":false,"md5":"2d50e27da548725df448d8d8e974be9f","sha1":"e88b5e963de497d991481e09aecb00fb95cf5fde","sha256":"12aa77f80c969d2be55f8e62a9352faba76197ef7f9fdf4be249400b3ec4c0e9","sha512":"e5300b9e905bb7c7e7bcfee91718d3d5b5981101c5b78fdcba4d1648fca736aeb0fb327d9a0c89d7cfc87477492cb8bb60d7378e883406343e7306b73225176a","ssdeep":"","tlshash":"7c5000c000030f0f000000000c000300000c00030c0330c00000300c0003030000c300","size":11,"data":"","first_seen":"2026-01-01T23:28:52.36087Z","last_seen":"2026-01-01T23:28:52.36087Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9d878774282fab7b3f1c60b09c0912a8","sha1":"130ed4a0e0cc771b1f5ea590080fb08f8fa646d8","sha256":"a460f86508680c626f271ec622a042847c67bea12235fb5474d9fa0652df7a41","sha512":"e92be09880db1f53846c16310dfdc8bf618f28cb9e63c46a3dba72a387704476e46ba8e8d21104a83c24f157935319dc405128dfdae27d1217d18f4aa3a54649","ssdeep":"768:Ns28jHzmspfgS9J7yr5PbfmDJEX6shV4o:K2WgcGrlbfmSXDhKo","tlshash":"3dc207eb326e79594329953110ff2c91b2dd49c1318f5678ea14e12639e393182fbef8","size":27857,"data":"","first_seen":"2026-01-01T23:28:52.362169Z","last_seen":"2026-01-01T23:28:52.362169Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/home.slim.bun.min.js?v=3.0.5","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d6055d00669aa2a276544789d95fc40e","sha1":"6eb5c6e93a6c7f5e1ce760faf8d0424844997ea3","sha256":"90649ee8ea91557c81d14d31fe895814b58acd4630626d6e560ba58bf0f6cadc","sha512":"fcbf2a7b22c9f048ca445ca0ca842633d811122e6fefa5ef2e6b377db2c238dc027e2cc8eb6eab527f7e9dea5b334d51d3467c5553c86286b2ae55dc6cf70109","ssdeep":"1536:O5BUIFDtIxRA6BU6EVwaityLW7jR2tg+9RirWTYuVCAy7fy3YD1e/ZQ4OwwOubl1:Pe6EVwDl43YQ64OwwvR3QD0gi3","tlshash":"57b3d7993285b4720adb85ba803b420bf2365994b10b8118f56decdd2d7dc867277f7c","size":108214,"data":"","first_seen":"2024-08-28T20:02:54Z","last_seen":"2026-01-17T03:10:05.790514Z","times_seen":263,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"89d66efbf1cee0df8650e30c487eed06","sha1":"3eabb4fab2f4059ca740c77bbed8bfe9b70aaebe","sha256":"61e95bb357b71b5b8007417e17c4e823f2a7f2c52ac7d84e6411d2707e8788f4","sha512":"9b4658b1798ba96fe39b9acb3fa527313efcd6af0bad5a1e591b0ad134e6875755e30bf8547b462902df2ef425364a31aac9a87ef46934aa814580f80108ca12","ssdeep":"","tlshash":"c9e02693f66d141182e829444ee77c12c8ad68538a5a280143077d9841487b445d0674","size":319,"data":"","first_seen":"2026-01-01T23:28:52.363146Z","last_seen":"2026-01-01T23:28:52.363146Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jnbhi.com/tag.min.js","fqdn":"jnbhi.com","domain":"jnbhi.com","tld":"com"},"ip":{"addr":"45.133.44.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b105ae11aaf0b47395b2000405b0c592","sha1":"3c1e064f7f5914d976f4a81aea09018b88252773","sha256":"59f1a5a724edcb7907d7734c94ea7893e3c0153854847a1dde214f8c71339e9a","sha512":"3e3a9f1b04582013f15fe140f1aeee984bf74299ec944c6d5752bcd8a14db371f03a7f7f3002eee365d2b98a80791f2a0dc2b380001c80928295458d02be6190","ssdeep":"3072:tXki1TG8YlAVCzIqwL76WJHpYx85/MVzUL:6WTGvlwqw5JJdQza","tlshash":"3ab3295673a277d21a6e60d42d57d60573fd8c80488f8867e3c8787972d081cd3abbea","size":112425,"data":"","first_seen":"2025-12-18T15:53:40.958967Z","last_seen":"2026-01-08T02:23:09.116351Z","times_seen":241,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"nbabox.co/partytown/partytown.js","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:27.938Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /partytown/partytown.js HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 14 May 2024 01:56:36 GMT\r\nvary: accept-encoding\r\netag: W/\"6642c4d4-88a\"\r\nexpires: Sat, 31 Jan 2026 23:28:27 GMT\r\ncache-control: max-age=2592000, must-revalidate\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2186,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2186), with no line terminators","md5":"f2fd72763375adc25431dcea4f2fea5c","sha1":"96c18e4f68b9d6af523135ff76be7462b8acd345","sha256":"dcdc6aaf78e26e5f334df142f616160c24fa270d70cb26016d179282e0ea83cc","sha512":"aee2fee0abfae83e275a5bc284487a2ee24de683e2c1d47ae86f19ca6c9a37d02d01e287642887f16364bcac734f64e7e171d071129405f71244365da877bf7f","ssdeep":"","tlshash":"a741a7c97f196476c3c650b580efba1ab53430242425a0417ba4d9f50c65d0e26aaeff","first_seen":"2024-05-15T10:19:37Z","last_seen":"2026-03-18T22:48:15.557736Z","times_seen":1088,"resource_available":true,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/home.slim.bun.min.js?v=3.0.5","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:27.940Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /home.slim.bun.min.js?v=3.0.5 HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 10 Aug 2024 07:05:46 GMT\r\nvary: accept-encoding\r\netag: W/\"66b7114a-1a6b6\"\r\nexpires: Sat, 31 Jan 2026 23:28:27 GMT\r\ncache-control: max-age=2592000, must-revalidate\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":108214,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (49019)","md5":"d6055d00669aa2a276544789d95fc40e","sha1":"6eb5c6e93a6c7f5e1ce760faf8d0424844997ea3","sha256":"90649ee8ea91557c81d14d31fe895814b58acd4630626d6e560ba58bf0f6cadc","sha512":"fcbf2a7b22c9f048ca445ca0ca842633d811122e6fefa5ef2e6b377db2c238dc027e2cc8eb6eab527f7e9dea5b334d51d3467c5553c86286b2ae55dc6cf70109","ssdeep":"1536:O5BUIFDtIxRA6BU6EVwaityLW7jR2tg+9RirWTYuVCAy7fy3YD1e/ZQ4OwwOubl1:Pe6EVwDl43YQ64OwwvR3QD0gi3","tlshash":"57b3d7993285b4720adb85ba803b420bf2365994b10b8118f56decdd2d7dc867277f7c","first_seen":"2024-08-28T20:02:54Z","last_seen":"2026-01-17T03:10:05.790514Z","times_seen":263,"resource_available":true,"data":null}},"time_used":102,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":54,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Roboto:wght@400;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:27.941Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /css2?family=Roboto:wght@400;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nbabox.co/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 01 Jan 2026 23:28:28 GMT\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11170,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"872397029f2e679476239e9af1ee89d7","sha1":"d7d9f8128975cdc4d6b71f8f4d0179c39e636a9b","sha256":"f52a6da7c0ccc77c22b7933e4c9226361066fd8f7f850c2c9862c44a81aba486","sha512":"7ae4f1c02e523c0d9ebbb1e45f4f68e47b2c41dfb01f90a5f114cf2af8e8efbf0e5b1da5933109779a43384bf5f0fcc89b20a15662cbaff68f5eedf38978e715","ssdeep":"192:2NKfmNKfNK4NKfkNK/qbNKDbqGIwV4BNKnNKuwNKiNKfXNKuNKNNKfZNK/qqNKDZ:8KfMK1KWK6KyhK/qY4XKNKtK4KfdKkKW","tlshash":"023210a1041b50009b834ce223cebf75fe1f52117142d0b5abfdab6b9dcbc66526935d","first_seen":"2025-11-19T00:21:16.090021Z","last_seen":"2026-02-19T20:26:46.863195Z","times_seen":4215,"resource_available":false,"data":null}},"time_used":212,"timings":{"blocked":84,"dns":0,"connect":21,"send":0,"wait":34,"receive":0,"ssl":71},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/imgs/menu/cfb.svg","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.503Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /imgs/menu/cfb.svg HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 24 Sep 2021 08:18:01 GMT\r\nvary: accept-encoding\r\netag: W/\"614d89b9-bf7\"\r\nexpires: Sat, 31 Jan 2026 23:28:28 GMT\r\ncache-control: max-age=2592000, must-revalidate\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3063,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8b776eefcc88232f2ff954942a4b7c37","sha1":"e2f74ab9b0006eed6e99d8ee260434dd6e1bf9fd","sha256":"ce46b00ece9e14e89b507cd5915168139ccc0a5da8a7476901d9f155d17809f0","sha512":"a801c0ee503c5eb20586f6e6f594bdbabd0efe98ffd72373f5634f12fc77ccb7b5617b10d1aa40f0f0899e973659b14a902f50dfdb84e64729347afddd632df4","ssdeep":"","tlshash":"145184e1537c568c008fdbadffb17055132f90f63732068a8e6c522590432f1f59b868","first_seen":"2023-10-28T21:38:33Z","last_seen":"2026-01-17T03:10:05.802017Z","times_seen":263,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/imgs/menu/nfl.svg","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.501Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /imgs/menu/nfl.svg HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 24 Sep 2021 08:18:01 GMT\r\nvary: accept-encoding\r\netag: W/\"614d89b9-e14\"\r\nexpires: Sat, 31 Jan 2026 23:28:28 GMT\r\ncache-control: max-age=2592000, must-revalidate\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3604,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a81138869706fba404aa2de171705b92","sha1":"a42ac48ff48391bd60a66d9d53dffe9e90d98eb9","sha256":"e63f66c95bd41ed1ab6057b4d4f7c1bc32eb0491849d7eb3bb591a274da197e5","sha512":"62fac8fd0611a3f48cd9da4d400b537f486dccc469d343f1d0b2680a0e6f976aea980c5e32fa31e3b336c6026565d8793132fd7c21951fbca40bf45b11b48417","ssdeep":"","tlshash":"1371b7cd9374f15062c7c794ff28687d8806d1f52febce85478a868eb4c2ba5e0d6924","first_seen":"2023-10-14T23:46:11Z","last_seen":"2026-01-17T03:10:05.801056Z","times_seen":264,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Roboto:wght@400;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:27.932Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /css2?family=Roboto:wght@400;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://nbabox.co\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nbabox.co/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 01 Jan 2026 23:28:28 GMT\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11170,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"872397029f2e679476239e9af1ee89d7","sha1":"d7d9f8128975cdc4d6b71f8f4d0179c39e636a9b","sha256":"f52a6da7c0ccc77c22b7933e4c9226361066fd8f7f850c2c9862c44a81aba486","sha512":"7ae4f1c02e523c0d9ebbb1e45f4f68e47b2c41dfb01f90a5f114cf2af8e8efbf0e5b1da5933109779a43384bf5f0fcc89b20a15662cbaff68f5eedf38978e715","ssdeep":"192:2NKfmNKfNK4NKfkNK/qbNKDbqGIwV4BNKnNKuwNKiNKfXNKuNKNNKfZNK/qqNKDZ:8KfMK1KWK6KyhK/qY4XKNKtK4KfdKkKW","tlshash":"023210a1041b50009b834ce223cebf75fe1f52117142d0b5abfdab6b9dcbc66526935d","first_seen":"2025-11-19T00:21:16.090021Z","last_seen":"2026-02-19T20:26:46.863195Z","times_seen":4215,"resource_available":false,"data":null}},"time_used":221,"timings":{"blocked":92,"dns":1,"connect":21,"send":0,"wait":32,"receive":0,"ssl":73},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/fav/apple-touch-icon.png","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.434Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /fav/apple-touch-icon.png HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: image/png\r\ncontent-length: 4798\r\nlast-modified: Mon, 04 Oct 2021 10:05:22 GMT\r\netag: \"615ad1e2-12be\"\r\nexpires: Sat, 31 Jan 2026 23:28:28 GMT\r\ncache-control: max-age=2592000, public\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4798,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"a0551789861178b134973974a2638f75","sha1":"c0ad30604a56647ed610522b904f917e7232a8e7","sha256":"e164f1d51aee9dbaddd5936d3310ed17cd87ba3d71a51f916451cd2a2175cbeb","sha512":"13d84727d7d0b75359fa15afeed698f0c3a6b9aa72f91666cc6a7665a1efeeb76e3960a94ef3bf024590f897d42302412373a044b3cc483719868aeedf48061a","ssdeep":"96:gsFf/2zhd9/19xdmqlP8oCcBJAYvqflHxSN06Puc44f3793pRmy:/Ff4t92e847AoalcNtjP79Zf","tlshash":"67a19eb9829df810bf3e96fc8d0a2598cb8a6379ad8783c074d188fc5ddc841b434705","first_seen":"2025-10-24T09:03:04.886899Z","last_seen":"2026-01-17T03:10:05.798587Z","times_seen":54,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/imgs/menu/crackstreams.svg","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.504Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /imgs/menu/crackstreams.svg HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 24 Jun 2024 02:58:40 GMT\r\nvary: accept-encoding\r\netag: W/\"6678e0e0-16ad\"\r\nexpires: Sat, 31 Jan 2026 23:28:28 GMT\r\ncache-control: max-age=2592000, must-revalidate\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5805,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a6d5d981f9993ede283dbabd11e586f6","sha1":"b0739ca5ab1f97ca5bb7d2641785727779574ad0","sha256":"bbdaa51e365966a7fa23b72549d93053c813d33ac55c914b3020f9b05b9c5b4a","sha512":"421a26628e178e6ededa6a8fa5e39fbcc776546b734b487078c5c1fccb6a8fc1ca18345252ce3af043cb1dc2fe693931194ee0ed82ca4b98a0add1b016237ed8","ssdeep":"96:4lJMJq/2vh25JJVvcg43BsyIR+lbiJmUtG8ZC/C7ORoqk50u2HOE5JJ6yUX1TuDs:Wa4GsVva3GTRQbWFttC/C72U66yUFco","tlshash":"9ac183fe6bbc90fc54a3974adf348864575f60bdba610b40fa1e693123c3998c647c54","first_seen":"2024-08-19T16:43:35.245425Z","last_seen":"2026-01-17T03:10:05.806182Z","times_seen":261,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oyo4d.com/5/9924998/?oo=1\u0026js_build=iclick-v1.1670.0\u0026userId=0802b19569444dcaf8b5108567dbd865\u0026dmn=jnbhi.com\u0026tt=2\u0026ix=0","fqdn":"oyo4d.com","domain":"oyo4d.com","tld":"com"},"ip":{"addr":"139.45.197.118","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:29.171Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oyo4d.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Oct 2025 05:07:35 GMT","end":"Sun, 18 Jan 2026 05:07:34 GMT"},"fingerprint":{"sha1":"7E:66:A3:16:7D:47:BC:6E:0F:31:AE:FA:65:A3:03:19:9B:0B:42:93","sha256":"49:F7:10:A4:75:B7:7C:34:65:80:9D:77:29:42:C6:F5:F9:80:CA:7B:2B:A7:5B:D6:12:3A:D7:1C:39:16:7F:65"}}},"request":{"raw":"POST /5/9924998/?oo=1\u0026js_build=iclick-v1.1670.0\u0026userId=0802b19569444dcaf8b5108567dbd865\u0026dmn=jnbhi.com\u0026tt=2\u0026ix=0 HTTP/1.1\r\nHost: oyo4d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 3362\r\nOrigin: https://nbabox.co\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nbabox.co/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":3362,"data":"{\"sync\":\"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\",\"async\":\"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\",\"quality_options\":{\"hil\":1,\"jsp\":1,\"ng\":false,\"ix\":false,\"pt\":false,\"np\":false,\"nw\":true,\"nb\":true,\"sw\":1280,\"sh\":1024,\"pl\":\"https://nbabox.co/\",\"wy\":0,\"wx\":0,\"ww\":1280,\"wh\":1024,\"cw\":1280,\"wiw\":1280,\"wih\":1024,\"wfc\":1,\"sah\":1024,\"navlng\":\"en-US\",\"drf\":\"\",\"wgl\":\"llvmpipe\",\"tb\":false,\"btz\":\"UTC\",\"bto\":0,\"pnt\":0,\"pnrc\":0,\"bml\":0,\"bmi\":false,\"vsbl\":true},\"client_hints\":{}}"}},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:29 GMT\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: https://nbabox.co\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\npragma: no-cache, no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T10:49:22.366716Z","times_seen":13328728,"resource_available":true,"data":null}},"time_used":149,"timings":{"blocked":59,"dns":0,"connect":26,"send":0,"wait":30,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/fav/favicon-32x32.png","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.435Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /fav/favicon-32x32.png HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: image/png\r\ncontent-length: 1167\r\nlast-modified: Mon, 04 Oct 2021 10:05:22 GMT\r\netag: \"615ad1e2-48f\"\r\nexpires: Sat, 31 Jan 2026 23:28:28 GMT\r\ncache-control: max-age=2592000, public\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1167,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit colormap, non-interlaced","md5":"42330de98c057c116700bae84c49776a","sha1":"1abc93972825af141725edeb5e30e0413b419e84","sha256":"192b385e5c6d0ea189e93cc6669db83418479454523176e735a969da0b78ee38","sha512":"e2abed95bf03255440bf989448582e6aec4330ec0ab9a398e166ca5364588c46ce6e4f32d8c0e1415a1aa9805bcd2d44b82a5c6f2d857e5710e96cf0d0616d66","ssdeep":"","tlshash":"8421aa11c332e8619661e370ed767e059d3d30e462269558b8036cbdd01fe34d95d1f0","first_seen":"2025-10-24T09:03:04.877434Z","last_seen":"2026-01-17T03:10:05.793327Z","times_seen":54,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/imgs/menu/nba.svg","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.505Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /imgs/menu/nba.svg HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 24 Sep 2021 08:18:01 GMT\r\nvary: accept-encoding\r\netag: W/\"614d89b9-ccd\"\r\nexpires: Sat, 31 Jan 2026 23:28:28 GMT\r\ncache-control: max-age=2592000, must-revalidate\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3277,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"be43101126ec7ffaca2c54171a595e69","sha1":"1d9406045e88c3ee4c19c3e4262259de8506329c","sha256":"a6f5f9c91f7ea38978f91e2efa61708ea466df1eaea67acf6d8abe1cfc5e48e2","sha512":"77a5bade629db219dbe9e7e9af7861c01ebbf81b6b54b6bb0319ceede4a9275184a45f6aabc1863ec332dd9ef3defd15d58cba8357fb5f30ecd3c27affdd5ef2","ssdeep":"","tlshash":"376193ca4774968410cb9a98ffb1744a501fa0f94ebb0ac3c3ae56246187ba0f1c1ce4","first_seen":"2024-07-24T20:44:21Z","last_seen":"2026-01-17T03:10:05.797747Z","times_seen":263,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/imgs/menu/ncaam.svg","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.515Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /imgs/menu/ncaam.svg HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 24 Sep 2021 08:18:01 GMT\r\nvary: accept-encoding\r\netag: W/\"614d89b9-44ff\"\r\nexpires: Sat, 31 Jan 2026 23:28:28 GMT\r\ncache-control: max-age=2592000, must-revalidate\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17663,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0e7fba47013ed213ecaf281b31c5aba2","sha1":"f9ea439f1185f3927c5d832385188040f0301f1c","sha256":"cc3fa55ab0e7e145c4d7f6e68fb55a40cfa50ec6a63650341bdbab2eae6c8784","sha512":"15fb3e8c4f199775a47d6e3d7480d5d26475cbe9ebc7f5d55563a087f98185a340bf62be4bff18a4747cd17a6b861229a767294cf7b369a3f001360cfa2a80d9","ssdeep":"192:K9DuUr0tzd63NdjiEudLq59wrY1x39NDZChOzucJTO1P0NHTfB79viXEZ2ENPS8Z:uSUrBpYYWrYBaKK0V1TB1/R","tlshash":"3382958a8bb89ad060cb93e9fff5b407551aa1e53fb30de2431d4129a1127f6b4c5ce4","first_seen":"2023-10-14T23:46:11Z","last_seen":"2026-01-17T03:10:05.808586Z","times_seen":276,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"104.18.41.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"my.rtmark.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 24 Dec 2025 17:37:04 GMT","end":"Tue, 24 Mar 2026 18:37:01 GMT"},"fingerprint":{"sha1":"05:4F:CA:93:1E:46:6C:B4:A4:49:3A:2A:0C:AD:DB:CA:8C:CF:BC:9C","sha256":"81:B0:0B:B9:30:D8:5D:FE:11:36:CE:28:36:04:4F:41:74:05:00:57:EE:04:F0:1D:44:B3:B4:6F:A6:4F:D8:FD"}}},"request":{"raw":"GET /gid.js HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://nbabox.co\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nbabox.co/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: https://nbabox.co\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=0802b19569444dcaf8b5108567dbd865; expires=Fri, 01 Jan 2027 23:28:28 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncf-ray: 9b75cb125c18b518-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"28910d797ba013329cf479085f95625d","sha1":"0bfe3540a72d9ea160fa58a6b943ba111cb8a418","sha256":"9f47bf1ff853bef4d196a3f1edd672bdc3135ab5f3abe588ad86bf656adbb425","sha512":"f1dfb30b41d7679169bc48dc7c83a1fb924b3fb056ea180f4087fd974c4fceab2d2902ed19d25255376e46e8623ac0f5f66e1430811c66a2701d9f20e00d91fa","ssdeep":"","tlshash":"ada022a000e80288808028022c338a32300b00c28c08232222c0c02220f3ecc2b80a80","first_seen":"2026-01-01T23:28:52.351989Z","last_seen":"2026-01-01T23:28:52.351989Z","times_seen":1,"resource_available":false,"data":null}},"time_used":66,"timings":{"blocked":9,"dns":0,"connect":1,"send":0,"wait":38,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/imgs/menu/mlb.svg","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.516Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /imgs/menu/mlb.svg HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 24 Sep 2021 08:18:01 GMT\r\nvary: accept-encoding\r\netag: W/\"614d89b9-674\"\r\nexpires: Sat, 31 Jan 2026 23:28:28 GMT\r\ncache-control: max-age=2592000, must-revalidate\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1652,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"23e4b7916c5e860fefe095be1ff62bbc","sha1":"c068a1f69c222446ca7b06ed1852618afde00ecf","sha256":"5b47870142990dbc5d81e4f0393c0c80551f48ab00b2d9f35c1fd4aa112caea7","sha512":"34e28711a699a81c996e1ab91d6874fc1787bf3b2c7b5abf749bfb86a4a6560f46604968b5c9846d46e5be64d9b10d528cf29a5490c5c9704efc3d5a0b1de8a8","ssdeep":"","tlshash":"413144d6d79457c110dbca95ff306ce9010bb0c55a4a08db835d8a187593bf470c9dec","first_seen":"2023-10-14T23:46:11Z","last_seen":"2026-01-17T03:10:05.816303Z","times_seen":261,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/imgs/menu/nhl.svg","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.517Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /imgs/menu/nhl.svg HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 24 Sep 2021 08:18:01 GMT\r\nvary: accept-encoding\r\netag: W/\"614d89b9-2f0f\"\r\nexpires: Sat, 31 Jan 2026 23:28:28 GMT\r\ncache-control: max-age=2592000, must-revalidate\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12047,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"24ed76701a6747d6bea99e15098324f9","sha1":"49df94f7e27c1e07a393f9e9d69eb3f21b592832","sha256":"fc869e36449379f8f091005d9c792c2fbda6cb4d9594c5a31451f916433d0db7","sha512":"e7cbb6c341cbf8b8abc08fba51310320263c6f70a281efcfcf1a18badbd57fb0cfd9a4640d4605b12c724bdc37dcb3103ed0818e9bfb8305e03528be7ab35464","ssdeep":"192:m4wK0HMcYF2s5I/gBussBOYXtQdrFXSsh19:mFK0s80IuuswtQdrFX919","tlshash":"824254aedb6430f390d78b9dee50f41b215606f62ed187c2c2399f3ea4619e37489b50","first_seen":"2023-10-14T23:46:11Z","last_seen":"2026-01-17T03:10:05.794819Z","times_seen":276,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/home.min.css?v=3.0.2","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:27.935Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /home.min.css?v=3.0.2 HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:27 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 04 Dec 2025 11:21:00 GMT\r\nvary: accept-encoding\r\netag: W/\"69316e9c-6b2f\"\r\nexpires: Sat, 31 Jan 2026 23:28:27 GMT\r\ncache-control: max-age=2592000, must-revalidate\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":27439,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (27439), with no line terminators","md5":"31c6d6944ea113123a0dbc6b43b99844","sha1":"50889c279c023f7d2ada6e07977734c6e84459c8","sha256":"700e51133aa87aeee9ccff917dbc35f17250bbd10239bc5ea3465d5faa676a16","sha512":"f8af7dffca31443c7ba27dc7f557cf9ee7e098cfc9089767b26abf13788bca37cd66435c00c20145c8c22b6e720e20dc43047e8f09b8eff9256006efbebd7530","ssdeep":"384:YamWr4LurPH+GxBw2scaSZ85pWF7z/EPhwOPy:xr4g+edaSZ8WF7oPar","tlshash":"09c273e1f250303e6cab845d62e5bebf9e2a6409ce050f65f463636466c77d31912ecc","first_seen":"2025-12-06T01:28:59.939621Z","last_seen":"2026-01-17T03:10:05.818197Z","times_seen":31,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jnbhi.com/tag.min.js","fqdn":"jnbhi.com","domain":"jnbhi.com","tld":"com"},"ip":{"addr":"45.133.44.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:27.937Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jnbhi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 03 Dec 2025 10:33:25 GMT","end":"Tue, 03 Mar 2026 10:33:24 GMT"},"fingerprint":{"sha1":"64:B0:B5:35:A4:3E:80:F2:9B:4A:AD:1D:6F:38:9E:4B:FA:1E:4E:21","sha256":"F3:74:C2:D2:3A:0E:5A:90:DB:C6:2A:E1:C8:90:71:5E:A1:5A:DE:D8:52:EC:08:67:49:B5:09:42:76:8A:BB:8D"}}},"request":{"raw":"GET /tag.min.js HTTP/1.1\r\nHost: jnbhi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nbabox.co/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 112425\r\nserver: nginx\r\nx-trace-id: 172dde39aa53677e59ad99fb05034696\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ncache-control: max-age=1800\r\ntiming-allow-origin: *\r\nexpires: Thu, 01 Jan 2026 23:58:28 GMT\r\nvary: Accept-Encoding\r\nx-cdn-host-id: AH0543\r\nx-proxy-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":112425,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"b105ae11aaf0b47395b2000405b0c592","sha1":"3c1e064f7f5914d976f4a81aea09018b88252773","sha256":"59f1a5a724edcb7907d7734c94ea7893e3c0153854847a1dde214f8c71339e9a","sha512":"3e3a9f1b04582013f15fe140f1aeee984bf74299ec944c6d5752bcd8a14db371f03a7f7f3002eee365d2b98a80791f2a0dc2b380001c80928295458d02be6190","ssdeep":"3072:tXki1TG8YlAVCzIqwL76WJHpYx85/MVzUL:6WTGvlwqw5JJdQza","tlshash":"3ab3295673a277d21a6e60d42d57d60573fd8c80488f8867e3c8787972d081cd3abbea","first_seen":"2025-12-18T15:53:40.958967Z","last_seen":"2026-01-08T02:23:09.116351Z","times_seen":241,"resource_available":true,"data":null}},"time_used":415,"timings":{"blocked":66,"dns":27,"connect":19,"send":0,"wait":197,"receive":78,"ssl":25},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.190Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"HEAD / HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 2\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T10:49:22.366716Z","times_seen":13328728,"resource_available":true,"data":null}},"time_used":34,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/img/nbastream-home.png","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.214Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /img/nbastream-home.png HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nbabox.co/home.min.css?v=3.0.2\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: image/png\r\ncontent-length: 8141\r\nlast-modified: Sat, 12 Nov 2022 00:22:05 GMT\r\netag: \"636ee72d-1fcd\"\r\nexpires: Sat, 31 Jan 2026 23:28:28 GMT\r\ncache-control: max-age=2592000, must-revalidate\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8141,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 84 x 567, 8-bit colormap, non-interlaced","md5":"49687e56a8b107f0815a9c69be9ae604","sha1":"be20213b90474e85c6a3be72ca34ade1d105de55","sha256":"deead9ae4db4c3af10def4f7c8b3901d664a5bcceefd62bffaa9c00f23d56fbe","sha512":"2f7012c5eb78759d5a15497d7da371804bc2f422c7af23d0cc0021a7ecc325faa625de92e5cb2d7af5aa09ff76fa80a1e8c885cc7fa470598a64e73a19c5ae07","ssdeep":"192:LUDRrxfWcUxIHH2f8Nj5tm1geHusrDn8Li7Un/:LUDNIcUxQWf8n4GDsrDn8L7/","tlshash":"d6f1af82e353b494bd94f66c05fa1c2628f3c16a7a8518570809d7ecece5990e6062a3","first_seen":"2025-11-09T10:14:01.116966Z","last_seen":"2026-01-17T03:10:05.814139Z","times_seen":53,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s2.safebk.shop/?utm_data=cGdlPWhvbWUmbGFuZz1lbiZkb209bmImcmVmPSZoPTE%3D","fqdn":"s2.safebk.shop","domain":"safebk.shop","tld":"shop"},"ip":{"addr":"104.21.71.140","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.208Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"safebk.shop","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 02 Dec 2025 15:40:00 GMT","end":"Mon, 02 Mar 2026 16:37:35 GMT"},"fingerprint":{"sha1":"C3:33:F2:25:2C:38:26:E7:D1:A3:84:2B:D9:EA:EC:52:B1:F6:A6:E6","sha256":"2E:B5:60:38:05:F3:DF:33:75:9D:17:DC:D4:41:33:E6:A2:B2:58:27:B6:C9:9A:6B:B0:7A:59:F1:C2:E3:7B:B8"}}},"request":{"raw":"GET /?utm_data=cGdlPWhvbWUmbGFuZz1lbiZkb209bmImcmVmPSZoPTE%3D HTTP/1.1\r\nHost: s2.safebk.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nbabox.co/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: public, max-age=180, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0\r\nx-robots-tag: noindex, follow\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Xr%2Bi9j2yNXZGdsLdGINLRIHfh96Mv2zkdPVxoWAMo9tL0hXYB5K8015fbAn2ft8PznQMeUgDXJjYmtIqVovz6sqSRNKEmt8Gnf2BPVta\"}]}\r\ncf-ray: 9b75cb10ef9eb1b8-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":68,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced","md5":"91e42db1c66c0b276abf6234dc50b2eb","sha1":"c1986af3c26609b8b7d8933f99c51c1a89e9ea6b","sha256":"63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058","sha512":"0b77019542fdb02f72c8407a379579bde36e2fe3af81b1c74553f1b5df2590373bf7e6ff3fefcbdaf0b9a2fcf9b1e57b30d24e29810f0cfaf9d51153415c89ce","ssdeep":"","tlshash":"bea022c223e0ec3cc38c8233c0000230f83000ab08000028202be0202e822e0088c2a2","first_seen":"2023-04-05T22:54:48Z","last_seen":"2026-04-04T10:26:35.794636Z","times_seen":30168,"resource_available":true,"data":null}},"time_used":340,"timings":{"blocked":100,"dns":58,"connect":13,"send":0,"wait":140,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/img/nbastreams.svg","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://nbabox.co/","date":"2026-01-01T23:28:28.288Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET /img/nbastreams.svg HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://nbabox.co/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Thu, 01 Jan 2026 23:28:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 24 Sep 2021 08:18:01 GMT\r\nvary: accept-encoding\r\netag: W/\"614d89b9-ccd\"\r\nexpires: Sat, 31 Jan 2026 23:28:28 GMT\r\ncache-control: max-age=2592000, must-revalidate\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3277,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"be43101126ec7ffaca2c54171a595e69","sha1":"1d9406045e88c3ee4c19c3e4262259de8506329c","sha256":"a6f5f9c91f7ea38978f91e2efa61708ea466df1eaea67acf6d8abe1cfc5e48e2","sha512":"77a5bade629db219dbe9e7e9af7861c01ebbf81b6b54b6bb0319ceede4a9275184a45f6aabc1863ec332dd9ef3defd15d58cba8357fb5f30ecd3c27affdd5ef2","ssdeep":"","tlshash":"376193ca4774968410cb9a98ffb1744a501fa0f94ebb0ac3c3ae56246187ba0f1c1ce4","first_seen":"2024-07-24T20:44:21Z","last_seen":"2026-01-17T03:10:05.797747Z","times_seen":263,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":6,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nbabox.co/","fqdn":"nbabox.co","domain":"nbabox.co","tld":"co"},"ip":{"addr":"45.3.63.125","port":443,"asn":7018,"as":"ATT-INTERNET4","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-01T23:28:27.570Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nbabox.co","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 07:34:55 GMT","end":"Wed, 04 Mar 2026 07:34:54 GMT"},"fingerprint":{"sha1":"FF:E6:C3:04:D8:D7:09:35:21:E9:7B:F5:22:10:88:52:D9:8E:12:F4","sha256":"2B:21:41:05:70:70:E0:C1:98:3C:D8:CC:0F:DB:34:39:27:C8:3E:46:8F:C6:02:71:0F:5A:6A:5B:FA:B5:A0:1A"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: nbabox.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 01 Jan 2026 23:28:27 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nset-cookie: _dt_nb=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D; expires=Fri, 02 Jan 2026 11:28:27 GMT; Max-Age=43200; path=/; domain=.nbabox.co; secure; HttpOnly; SameSite=Strict; Partitioned\r\nStrict-Transport-Security: max-age=63072000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Xss-Protection: 1; mode=block\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nContent-Encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48256,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (38008)","md5":"018c11b335f662af7cced465d8bb798b","sha1":"9ddbc9ff6b0f804b41df3c0e242d0cb91674af2c","sha256":"66f6b7a33b18d03ff130ca9fac65453e1abb5888ee3e2bd9f1f9e0846cf59c66","sha512":"2c8b80debab2d1a1ed682b6669e2cdb668b920d710a8cf07e152272cc58e6ae318ab19ef9d8faf7301731f1c37b9c24e6e20b47772ac0aee21580295a7a29994","ssdeep":"768:Fs28jHzmspfgS9J7yr5PbfmDJEX6shV4DGctDYOSsX1:i2WgcGrlbfmSXDhKDGctFP1","tlshash":"382318a73259682f026142b150ff2b52e1d94083a64f2938f75ce1292bd7d3985b3fbc","first_seen":"2026-01-01T23:28:52.356725Z","last_seen":"2026-01-01T23:28:52.356725Z","times_seen":1,"resource_available":false,"data":null}},"time_used":338,"timings":{"blocked":136,"dns":58,"connect":33,"send":0,"wait":48,"receive":18,"ssl":42},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"nbabox.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}