{"report_id":"8f6dd46b-7922-49c5-be2e-0e04ae111305","version":6,"status":"done","tags":[],"date":"2026-03-02T13:28:04Z","url":{"schema":"http","addr":"bfdag234.vip","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"172.67.172.154","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"bfdag234.vip/#/","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"title":"Atlas Crown","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"bfdag234.vip","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"172.67.172.154","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-06T13:28:04Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"bfdag234.vip","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-03-01","domain_rank":0,"first_seen":"2026-03-02T13:28:08.239466Z","last_seen":"2026-03-02T13:28:08.239466Z","alert_count":34,"request_count":34,"received_data":5443950,"sent_data":15330,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"coin-images.coingecko.com","ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2014-03-26","domain_rank":550283,"first_seen":"2024-05-30T15:11:00Z","last_seen":"2026-02-27T15:31:18.062329Z","alert_count":0,"request_count":19,"received_data":313514,"sent_data":9177,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"cdn.dcloud.net.cn","ip":{"addr":"106.54.228.253","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"domain_registered":"2013-07-17","domain_rank":296858,"first_seen":"2018-09-15T09:18:08Z","last_seen":"2026-02-25T18:46:08.416376Z","alert_count":0,"request_count":1,"received_data":578,"sent_data":443,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"khhojl.s3.amazonaws.com","ip":{"addr":"52.95.131.125","port":443,"asn":16509,"as":"AMAZON-02","country":"Australia","country_code":"AU"},"domain_registered":"2005-08-18","domain_rank":0,"first_seen":"2025-12-03T17:55:41.093872Z","last_seen":"2025-12-03T17:55:41.093872Z","alert_count":0,"request_count":3,"received_data":703908,"sent_data":1455,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"at.alicdn.com","ip":{"addr":"47.246.44.178","port":443,"asn":24429,"as":"Zhejiang Taobao Network Co.,Ltd","country":"Sweden","country_code":"SE"},"domain_registered":"2008-06-25","domain_rank":96084,"first_seen":"2013-11-28T05:03:29Z","last_seen":"2026-02-25T16:10:56.81418Z","alert_count":0,"request_count":1,"received_data":56833,"sent_data":517,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]}]},{"fqdn":"khhojl.s3.ap-southeast-2.amazonaws.com","ip":{"addr":"52.95.130.118","port":443,"asn":16509,"as":"AMAZON-02","country":"Australia","country_code":"AU"},"domain_registered":"2005-08-18","domain_rank":0,"first_seen":"2026-02-17T00:46:15.613532Z","last_seen":"2026-02-17T00:46:15.613532Z","alert_count":0,"request_count":1,"received_data":73119,"sent_data":507,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"bfdag234.vip/static/js/chunk-vendors.dadf9fb0.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c818d03f716285b8d80e351de5d0270e","sha1":"84719a7af4a0364291645836cbda94582f522e97","sha256":"ed711a7a9c83711d923a343fc97a62d0eeacd18717df91316ba591ae4a717c5f","sha512":"7ec4947b9418995e460d07190d3f76c3259b4066804f704bb8449b9e31307689aea9b3de9f30a00d79d68e92dfb7b5e9d5bace1567a13b0bcf789c6789dfa4b9","ssdeep":"12288:xTP23V1IF5O1YJ8sGdjfpGAB0b4gbqaeWI:J2s5vJ8syxH6BI","tlshash":"0155199d72c5f0a603d360b5003f210bb23b2d68640ea498f675d9d5ad79a9e6237f3c","size":1371807,"data":"","first_seen":"2026-03-02T13:28:21.371364Z","last_seen":"2026-03-02T13:28:21.371364Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-index-index.9e6d5a2a.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a4c660261eb3bf22dfdeafc708718f10","sha1":"ff1a4c361b93b0a7053c0b57c7ff01a15c426038","sha256":"6aa5461d6944e49e2db2267d08e82e633befa0526c1e276f3a2ad7aad046e400","sha512":"4800ce259ccb26c2eaea762822f2c9d93fd2392bd3d1a4328c10bec84acdc7c3175e0529b018629b2bb95eb77272ba97c554423382a1bb66427a6eede534da42","ssdeep":"1536:efxPpp+RHzUR/edEWhmuEMLQkhfIjP5+f0yCihXmWXQc7ZnOWi/37vAXB:SPpp+RHzUR/edEw9EEQkhgjPrZihXmWJ","tlshash":"30533a3cb08fb41b55d35460605f2609b9363d2ba015e1c1e7f59df1cbb6a8a232af8d","size":66604,"data":"","first_seen":"2026-02-17T00:46:19.730954Z","last_seen":"2026-03-02T13:28:21.351873Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-trade-trade.710bac49.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"56ed58a8b85ee89e1479124f5d9e075b","sha1":"911709cc681337fd91ed734f673c6e4075a3a1f9","sha256":"0f61aa2396ab7b98c2392a56569f2d1a7c295921873935843c4e68d4332bf1f2","sha512":"88efcb388727e4e22942b5611afa92c431369d96d02c4c7ff10a593850b67ed6485784020fb95fefa55a67ad699bd797b00c138729e5fd1202d9f741b6783c9b","ssdeep":"384:T8R0KV2UEC8t5pbyNpfecqaD+8wTVEVM1jTvVPLBLljN8H5W:TgV2UEC8t5ApGcqa01jTvVPLBLlKc","tlshash":"a3f2f75870cbe5a999db9022202f4611b0763fdad014a0cbf6b4c9e15fe5c58335fbae","size":36358,"data":"","first_seen":"2026-02-17T00:46:19.739129Z","last_seen":"2026-03-02T13:28:21.311094Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-market-market.8dd7fa89.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9f3f0ea870326602508774bb8bc522c0","sha1":"2b5b00e9751e643a64eeed24e11787e8ca7820b0","sha256":"819afe241bb153ee621db9d3c316fcdf934cc1aa03c34e079184f8ebe5df6339","sha512":"af28470d216a1c0a01266243f2a5ad286df3b6286dfa3715927503ea01ba2d3fcafcc93a2eaa542d0264d99fd56c958f096c10b4d606f947c6c7e6e5f34f0ef9","ssdeep":"768:wU1bHav/gp8/3z1KmlseVjM6UnudK4OLsaQzMVAwlw:wU1bHav/gpigD0A0BOtQzMVn+","tlshash":"d633191cb08fb85705d38810508f2606a16a3d6b5411a5c1b7f19afecfe6f8e2335f6a","size":50704,"data":"","first_seen":"2025-10-30T00:57:55.420551Z","last_seen":"2026-03-02T13:28:21.305598Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-hy-contract.bf15d0f3.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8be375edf34c60ce850403dddded9b4a","sha1":"78921b8df4ef4c132b9f214d09077d16a47988de","sha256":"62f74fb6a0ccf89732f18e012c9084f1dff8454b7ffa553fa6e977ced0c49ed6","sha512":"3ab8d5045c4c5681cd4ab54fe25fb673cc88803f3f92431708ce0b3563dd454eb1adbc32937fde104155c10f758bbeca1854efffde2765c32ae4b602fa83e3f6","ssdeep":"3072:oukBnR6TuRLzpzlXl7DD/DUBkrXrO3r2hurs7zCDDDsDD7PkH2freQrlhEKErgH4:PKRPpxW2Sf","tlshash":"4d0584286a6bf744e819c0dbfa373d84c59de18aa04725d24f7157b34ba2753ea9cc03","size":855067,"data":"","first_seen":"2026-02-17T00:46:19.759226Z","last_seen":"2026-03-02T13:28:21.354708Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/index.37a4ac4b.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5fbbbc207936f92a54e3f823d170d02b","sha1":"118aec1e1af219d321a8e8869272581867c1d55b","sha256":"e88d115e583362c012c696acb2ce65512fb4b0a15100f7286aec6f1aa2d5f7a5","sha512":"14be2c425e4ab5a621d733371ea128ba8f1746fd94d22c19f2eb25684248bad1b808f194489c881e8801bddb37586dd8503a7b8ef5fee40678323b919c939004","ssdeep":"12288:5L9exfnY4/FDXEke4EIi+Uz8ZmDN7IgxX4DvFgxQDbfXVmUqcn+33GtuENtFEI8f:2vYwUrzKmDN7IrvR/VmLcXEIUsJNKz","tlshash":"ad759e3a23cd77f8164aaa06e2473936e9784ab3f752f1e044e8751913defd1c2225b1","size":1599481,"data":"","first_seen":"2026-03-02T13:28:21.374347Z","last_seen":"2026-03-02T13:28:21.374347Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-hy-contract~pages-index-index~pages-login-login~pages-login-register~pages-market-market.bf91413d.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e7998ada17b700a0240a962974fb4542","sha1":"c6288d44b396e9796dbcb572d8df93388219eb62","sha256":"c847720d9ca5d4a9e3891f34ead69e2167ea4ab3a0af21c6ba982741cfd68c51","sha512":"0a76b45183e3933104c717ac536dd682d6a61b702be3fd1d7144971c6eee48276d01cbf32859554f0c98f279c90e55ad3287737671a63e608ef50ba444ec158f","ssdeep":"192:DwOHT+29eI84COcBTJFE1je5YG90hqRsVQsM6hWV2MMqRs6jveknR1eknyt6bucP:DZUXnDQU6/MlljlucUY4c7q8Z","tlshash":"1d92b61db0ceacb32fd25cc4109ea502539e3a02cde16ec263626f958abe655251ff19","size":20773,"data":"","first_seen":"2025-10-30T00:57:55.4368Z","last_seen":"2026-03-02T13:28:21.338044Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-hy-contract~pages-index-index~pages-trade-detail~pages-trade-trade.d5f4292c.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ccbe5981959551fb43f0d42c469680d8","sha1":"459e26374af8fa74619807ae3b8d1dff3fa67af0","sha256":"4b2a5a5e990a55812ef6164ce6cf3587bb8309d10b67304023614233c00c444f","sha512":"170bdfdba0e50ab6c2dc1d9bbade2eb9343cb5c7c50831fbbeaca9755d7ea7925ddd5ee5e313b5e825579282f42baa4d7ffc9a19f0e7ba3ad1771b1ff96d8957","ssdeep":"6144:jCdZgCnLj7szEgFqAXBeQemgDDvoAFbbffBDjdIj+A:jQvszEgFT42","tlshash":"8a24e794fb6570195263a1b9423f1507b336365ee44b82a8b56ec9c92c7c0ca32b7f7c","size":210539,"data":"","first_seen":"2025-12-03T17:55:48.973334Z","last_seen":"2026-03-02T13:28:21.350283Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-hy-contract~pages-ieo-ieoBuy~pages-index-index~pages-trade-detail~pages-trade-trade.2c795fb8.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a127e01b6ee3f8264469fcfc126983a8","sha1":"b572216da824336971907ddcf8bbef3318c73926","sha256":"5a41cc0ccb74a4b7fdca6c49c1e81fe3255487f1f357c93933ffe85ee5cd2036","sha512":"82f0283215ce2f3a558e6f3308d16f9316587578377a1816e02070ee7b960fece38f61e1fadd5e59b6a39eefd6d2f3a44fb9574b5c9a9e581f0dc2d16289948b","ssdeep":"6144:TaEDnq+lrUZTn+nqnI9qMe+pwGnDndKaUFCll+Q/VxpcB2EAgK4Axh3:TVqZZT4kIA2waLd/Uw0yxpKANx9","tlshash":"c7745ccf240bfa63971115d5442f2e2a993c2fb6504e9c12ea91e6d6b874c7c833a77c","size":341675,"data":"","first_seen":"2026-02-17T00:46:19.765983Z","last_seen":"2026-03-02T13:28:21.363789Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-assets-assets.fa95b992.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2ec2968939ee94f0471181b5f42028cd","sha1":"de48945b782566dd3bc0f58d15d19b83e89b2867","sha256":"7bb16188bc040bd033d3deb6574cba5195e4ef8c90851537a415483b2ff6799d","sha512":"45630563b6d27a5c485c2f59ebd7c1e35285b62ac39e8e358004ac41335307463c85c5e7e7b8cfea4142b7faa36c0f2122c5a457310fcf4a3eb620b716159060","ssdeep":"384:680c/hjxQSILYdqWCkYNYdneBbCU1tPEZc3zMhDjd7Ic:6W5jxQSILpWCkYNEiMc3zMhDdIc","tlshash":"6bc2f75d70cbb15e1657d450301b9408312f3e5e9408b683bbf2e9d0ed6e5ea3226bbe","size":26344,"data":"","first_seen":"2026-02-17T00:46:19.735412Z","last_seen":"2026-03-02T13:28:21.325282Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"8a4389d2fb81b0c13728cbeb4dbde294","sha1":"a1d5a77be03d0ba85ce267732a87cddad56a150b","sha256":"e01d18e732a17074e9e171b1a9a2450849820475e63b57884ee6d5efa37ccf0c","sha512":"51beb47c550837378ce90d1bfcf7d9e32edeb0845146966adc55bd3a6caa30abd3fb8e0db0bb6f039894df052569f53612e9f066907d39d6fe85b8b48495fc4b","ssdeep":"","tlshash":"c0e0c083a0bf3a4c0220811a304ac0076bbe08b2ef864d610c9c3ba5cef9f4fc56d859","size":356,"data":"","first_seen":"2025-04-11T12:06:40.284619Z","last_seen":"2026-05-22T04:56:31.146881Z","times_seen":70,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/adapt-pc/pc.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d0b3c2dc21549710964ad97d009c2a58","sha1":"6ccd010287242ba87d0f9c6a7954f70d992e4f6c","sha256":"a2eefa7cb922e76e0ca78c7da95c6a2234868d682cc12b7e41c5d602d14bcf4f","sha512":"8726a791a8b7bd75b32f6c76dd0428ae14afed272c99c081353dc28df273fbdc29db80f1bd02402ec6796f4108553a11646299ec9b844a08bf2aefa80f1d6a3c","ssdeep":"","tlshash":"5be07d96d4815631d43741875710e2883c680ca738456c01850c21001175dc754c5ccb","size":293,"data":"","first_seen":"2025-08-29T02:09:30.874077Z","last_seen":"2026-03-02T13:28:21.342548Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"3d5272693eb411e5b8b13a243f76c720","sha1":"6a586ab8e0a4bf12bbc60eea6ca9f2418625a22c","sha256":"9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8","sha512":"03fc5614f48fc9a2e3c4a30626fdbacde74c1fda09ffa9d1cde0393d31cd5fe1588e270c241f4cedb473c6e5cc224ff16c141468a29519ea6159accf3e3a18f1","ssdeep":"","tlshash":"a4c08c8350e2080c8210861b848880050b8808b04f9308a22cd85b7ecc9ae88c8f804c","size":148,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-06-07T08:18:02.151537Z","times_seen":15899,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"wss","addr":"bfdag234.vip/websocket","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.171Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /websocket HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://bfdag234.vip\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: QkN1eKxLcEQyDqQ7CMNXHg==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Mon, 02 Mar 2026 13:27:43 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Version: 13\r\nSec-WebSocket-Accept: JesaQLWWFA0c/yNdTxoLmH40NwQ=\r\ncf-cache-status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=E4lfUi3P2URDXk6G6IMuTJjaw%2Be2WnSkldDdEWNUStFn3QgDEp%2FtMprL49Cn8%2FPccyMirXBhBEL4MgPiuJZDi0ThQf9ilYw6lEMyYMtAg3GaS0TK%2F6jlNMMmIcJqsz0%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 9d60bd8f4d6e07e7-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=7613\u0026min_rtt=7607\u0026rtt_var=2150\u0026sent=4\u0026recv=7\u0026lost=0\u0026retrans=0\u0026sent_bytes=2348\u0026recv_bytes=1161\u0026delivery_rate=379256\u0026cwnd=52\u0026unsent_bytes=0\u0026cid=a80f0ef0292c6f36\u0026ts=481\u0026x=0\"\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":585,"timings":{"blocked":-1,"dns":42,"connect":49,"send":0,"wait":470,"receive":0,"ssl":65},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/img/lock1.png","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.789Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/img/lock1.png HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-1453\"\r\nexpires: Tue, 31 Mar 2026 18:37:55 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 67786\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Re396j7QEL1H%2FBkKaa0G0puI7eniiP3ATgKgfQ7yqC7WWBRYToH7Z2CK5RVWvcBZ786uTK7uXEUhtr3OFStjp1keNydXD9I4GTy3EA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd92adcab80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5203,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 167 x 167, 8-bit/color RGBA, non-interlaced","md5":"045fdf323adabc334fabe44c588ea85a","sha1":"2482e9ea8cbf48bdd2d9bfdf067236e72183618a","sha256":"1f5f5166e62b657bb09508b2305821db89b143ed56e3ea7c74d77f6f71212aa2","sha512":"67a9cd2ca03c2dd142c4a57b3aeedc10b237cfd032d367d0b94c1da3bc8b97200f78630c2eabb0c0f7d20f5c2a3ab0fdf393458778813b7f0f0ea0ef153e5e38","ssdeep":"96:tTP1JrvEq6fBxI9ze2TAHEMo0Hrx5GAR/v+PNR3CgCyw5MOSjPnLKMKJtN+:FrctfTUzeGYEMdLGAF+P33lqqiJtN+","tlshash":"beb19ff0987cbb1f45995881c41e3e8e959fb76f25bb40180f46ca73133869c27d2611","first_seen":"2026-02-17T00:46:19.747788Z","last_seen":"2026-03-02T13:28:21.301305Z","times_seen":2,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/279/large/ethereum.png?1696501628","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.411Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/279/large/ethereum.png?1696501628 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 13114\r\nx-amz-id-2: ulzpyQaAT3BEKprQ3i8YTHRisRwUV1La4B+TomXlg515VztBYlYqgzDCL1cSh3G5w3sDd8PGngo=\r\nx-amz-request-id: PP6DY1CMGSVFSK3B\r\nlast-modified: Wed, 29 May 2024 02:48:08 GMT\r\netag: \"af87366546180c799987073ac53f0733\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 6vmhZ_PH5UG1O..xRx9fhSAwELb.H8zx\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nage: 667\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=O7eK0NHimhm1QPzghCjS94gEfAMIt%2BgbgZdgMyfxH50ufuJlK9b%2FbvZCfJvkcCc79EY8ROCv0rXbzlGNoySMPt1Bf6wiG9boLhA7b5WxRDrG01TeLxcPKLc%3D\"}]}\r\ncf-ray: 9d60bd974ccf9e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":13114,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced","md5":"af87366546180c799987073ac53f0733","sha1":"184c444a964020e531cb72b9c5e3017e411d5185","sha256":"d90e937d915ab0c865ff6e335361386c56524d4d33fb66f2f04defe1500082eb","sha512":"01d259380cb9b000fafe13cd736aa34b2f73d4e5ab8927d44347a33f4168914cd97d10bda83ffbcd5da4c4c90f7bd9acb90026c7f6c0cd3f73c634ba697cb106","ssdeep":"192:htyirrPkRdnpyRa5GKLC4XCLAJRwwTCW2BwLVrCu3O1AFkNsJgvl8qiY0x:7xrPkX5Gt4XCLAPjIB67YRvTiX","tlshash":"3342afb7dc26c34e0440984c756c7bb5ac6abe6ccc4bfe7127f5b46db86418e7644089","first_seen":"2024-07-06T20:02:44Z","last_seen":"2026-05-31T12:25:23.233936Z","times_seen":899,"resource_available":false,"data":null}},"time_used":277,"timings":{"blocked":111,"dns":14,"connect":11,"send":0,"wait":28,"receive":22,"ssl":67},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/976/large/Tezos-logo.png?1696502091","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.464Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/976/large/Tezos-logo.png?1696502091 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 4925\r\nx-amz-id-2: ZWH+H2N7eE1N5jlOvE7Hw9LaPEyzsQWPSPF4X5GTk/kC8cLrvxcIq24jXBgzPo6rin7+Hwh0fwdS5pAIvUvzq+NdEhMWwvRy\r\nx-amz-request-id: WRKTZ640D1FYX0KY\r\nlast-modified: Wed, 29 May 2024 03:04:31 GMT\r\netag: \"ffd6bf3c93302ce5e5c36a1430549f26\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: Hw5odiNvTwI0Vnwp1.2tjdv4YVLo6Ne1\r\naccept-ranges: bytes\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bC%2B%2FOKQO8wIsFnJL7vh34%2BOcobNFlzg1GdZvC%2FNzy3KhxVdE5MK1gSYvlS7y3Fmk%2BM68upJiwEsgoUCEsUZT6RuNV7bQcRWZwG8LBAzl%2B2KHfcd3EjQsZOM%3D\"}]}\r\nserver: cloudflare\r\ncf-polished: ok, orig_size=5750\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-bgj: imgq:85,h2pri\r\npriority: u=4;i=?0,cf-chb=(37;u=4;i 1158;u=5;i=?0)\r\nage: 3875\r\ncf-cache-status: HIT\r\ncf-ray: 9d60bd973c6c9e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4925,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit colormap, non-interlaced","md5":"a859ca449cd4ae17b03e1f739e4d0bca","sha1":"34242abe539a83df9c73efa92d11841eade3eb16","sha256":"92ef9db524e85a46458e48e03ca8f3cd8cb75212ee2f568e81a34426c6019719","sha512":"7e35bf4fed0f4d2e4b1088b6d31eb5f2f47f3b610f89d7f9a8d3e44c340c8afd8479ee1901d91528b6dc10153b8f7464b1d209aa9d662f4061af092295f45410","ssdeep":"96:IUZ5g2WTZp5/OGEbGJXIJnnmy1P+aPo3x2ohe+CZNbPfZ:IUoXDQUAmy1P+aw39h5YNbPfZ","tlshash":"17a16c83f3855362d07ef6ead4324b84f52d5621424d25d8e503a7b56f8c02eb92abcb","first_seen":"2026-03-02T13:28:21.303478Z","last_seen":"2026-04-18T19:35:13.826144Z","times_seen":5,"resource_available":false,"data":null}},"time_used":68,"timings":{"blocked":44,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.dcloud.net.cn/img/shadow-grey.png","fqdn":"cdn.dcloud.net.cn","domain":"dcloud.net.cn","tld":"net.cn"},"ip":{"addr":"106.54.228.253","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:45.504Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.dcloud.net.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 26 Aug 2025 11:47:17 GMT","end":"Fri, 25 Sep 2026 11:47:16 GMT"},"fingerprint":{"sha1":"47:A7:6C:09:6B:1D:CA:2D:7D:39:2E:C1:7F:15:DE:5D:F2:C4:0F:77","sha256":"EA:73:37:83:D0:38:44:D9:3C:0B:26:F0:DD:D1:22:2F:36:F7:F2:86:A1:B0:58:52:DE:4E:0A:21:D6:89:E7:3E"}}},"request":{"raw":"GET /img/shadow-grey.png HTTP/1.1\r\nHost: cdn.dcloud.net.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 02 Mar 2026 13:27:46 GMT\r\ncontent-type: image/png\r\ncontent-length: 136\r\nlast-modified: Thu, 06 Jun 2019 06:42:07 GMT\r\netag: \"5cf8b5bf-88\"\r\nexpires: Mon, 02 Mar 2026 15:27:46 GMT\r\ncache-control: max-age=7200\r\nset-cookie: __uni__uid=rBEQg2mlkFJcP3IrA2WVAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":136,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 6, 4-bit colormap, non-interlaced","md5":"5a962adf74d92ae702467b3f47976547","sha1":"36f74049375584e3fa69b5ef87e9572336ff9e7a","sha256":"ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f","sha512":"4ace23fe7ec6c7271710030fd423aace13eafac68ac3e76366ce4ce9bdc702caf71c9bdc2fb6a32c8e9791546098617cc0259decd8bb8489afdbce43e1b53a73","ssdeep":"","tlshash":"47c09bf3a615dc754a0d153b42e98271f429511e07046d0e5a13c216741e3448d56793","first_seen":"2023-04-15T10:50:30Z","last_seen":"2026-06-08T12:08:40.162497Z","times_seen":16214,"resource_available":false,"data":null}},"time_used":1428,"timings":{"blocked":594,"dns":55,"connect":240,"send":0,"wait":240,"receive":0,"ssl":295},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-market-market.8dd7fa89.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.744Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/js/pages-market-market.8dd7fa89.js HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"699579ce-c7fe\"\r\nexpires: Tue, 03 Mar 2026 01:27:44 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ppipmr%2F%2FuBQoDY3vOfNIwFUaIavlqdNDqRDb%2BPCdA2Nz7JL%2F%2FwLMHIBVLEUZAXZjIRh3%2BeLigT2UKgZ6FYQHMi%2BP24s%2FTEeSYODKcQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd926d1fb80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":51198,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (46862), with no line terminators","md5":"9f3f0ea870326602508774bb8bc522c0","sha1":"2b5b00e9751e643a64eeed24e11787e8ca7820b0","sha256":"819afe241bb153ee621db9d3c316fcdf934cc1aa03c34e079184f8ebe5df6339","sha512":"af28470d216a1c0a01266243f2a5ad286df3b6286dfa3715927503ea01ba2d3fcafcc93a2eaa542d0264d99fd56c958f096c10b4d606f947c6c7e6e5f34f0ef9","ssdeep":"768:wU1bHav/gp8/3z1KmlseVjM6UnudK4OLsaQzMVAwlw:wU1bHav/gpigD0A0BOtQzMVn+","tlshash":"d633191cb08fb85705d38810508f2606a16a3d6b5411a5c1b7f19afecfe6f8e2335f6a","first_seen":"2025-10-30T00:57:55.420551Z","last_seen":"2026-03-02T13:28:21.305598Z","times_seen":4,"resource_available":true,"data":null}},"time_used":460,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":460,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/25244/large/Optimism.png?1696524385","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.429Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/25244/large/Optimism.png?1696524385 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 11209\r\nx-amz-id-2: n2A/HO0WLVs455RGwFFFbUuo7kKl33fHFIOoIyI6mnkG5zVwd4nUy96A8+nZ4ZqGpAidduIvurU=\r\nx-amz-request-id: F5D5TJHG13160MET\r\nlast-modified: Wed, 29 May 2024 02:45:26 GMT\r\netag: \"942e02375ea8b1f6aa6f39fb95423e0e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: r7cAvCqEerSMkpFTtA4gyzv7hsZ8DAg_\r\naccept-ranges: bytes\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=klTITh%2BLE3hQGmJUcT0r4%2FzEtjp%2BCy%2FxL1cye33STZ6XwgeyJencUvjN7rypjB4o%2BGP%2FTXsjbYlp8BjTpHZyuG84%2BhQaOqMegCyl1rdT0uaa%2FRBiK0Uk5MY%3D\"}]}\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-bgj: h2pri,imgq:85\r\npriority: u=4;i=?0,cf-chb=(105;u=5;i=?0)\r\ncf-polished: ok, orig_size=17116\r\nage: 2988\r\ncf-cache-status: HIT\r\ncf-ray: 9d60bd973c679e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11209,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced","md5":"e4387ec34102196d7d7565557c49d436","sha1":"1e79d0760b4d0921a62ccbe49ef813b045279fd9","sha256":"b3b5d4bec2abf9ddf4762d7ebfac262df01b8f3be44ec6b342cba0f8150681d1","sha512":"2000f9a7f701d9dda5cbd90b3b2b6e495d8d8fb080af84e92a39fcd3c624d0f0628c1c2575470b45ae6317a6d6edf875ff7007bf016a35b99a0813490baa286d","ssdeep":"192:wuRHjK+Qud9VehcxCG6t5WF7FXw8PKNdRposN97NiZtgL+fZ0v9tt1J4qXl2neoj:wuR+udSFGW5YFXw8+a0ZNiZtgL+QXt16","tlshash":"7232c0317606d47b1dd670dfade0bb57e4250c0504e855aee188276b36320bafac295f","first_seen":"2026-03-02T13:28:21.307084Z","last_seen":"2026-06-04T12:33:35.164333Z","times_seen":10,"resource_available":false,"data":null}},"time_used":102,"timings":{"blocked":79,"dns":0,"connect":0,"send":0,"wait":22,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/1/large/bitcoin.png?1696501400","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.418Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/1/large/bitcoin.png?1696501400 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 9454\r\nx-amz-id-2: nTNxdnmtyL6YL+/vdWgRI9k87knkmuTvvcsDDZ7+25BA8TtxX4/UhlrvAH9Ohgwr11l8AuHUETGfRJGsACNfPLV9TkXFeDkH\r\nx-amz-request-id: GYRFX5RKHJAN485N\r\nx-amz-replication-status: FAILED\r\nlast-modified: Wed, 29 May 2024 02:28:22 GMT\r\netag: \"565e8c524f6da22928811f836d0b92a2\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: K_Yd_oAsiQpaEoTt9rotaTCh6C_AUMdt\r\naccept-ranges: bytes\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rXZR6ueuU1dLLXs3zUilgtVtUY72PvhjRMmzl74PVxUCAjikhXqWPCPZlb1XsHiuZ1xl3OM8ZtO3aXThRuAl25fd7t%2Bgbn1kWjyBVyHou3xPMzoB75PTujQ%3D\"}]}\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-bgj: imgq:85,h2pri\r\npriority: u=4;i=?0,cf-chb=(118;u=5;i=?0)\r\ncf-polished: ok, orig_size=12242\r\nage: 1325\r\ncf-cache-status: HIT\r\ncf-ray: 9d60bd974cd39e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9454,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced","md5":"66a88a80de5eed33ed8583255445b6c4","sha1":"6d934c7f34286a0344dfbfa63c9ae12b34b5812a","sha256":"39d2790e598859909bf6cb1ed16377e3b220f7e8f2152ca733f70f28abb969b5","sha512":"4c621d0562ae0ecf2be57889fdc0710f9a7baef55514ce3d32f990359e6d2366dbe2c0fe41ab800d5840ea33da5c2d5aaa0fe513274ab58111008e6779e6abf9","ssdeep":"192:dItEpiWFaNPITJaSaLLg+1bslrPN8dUWCspKo8GtRlUV1QQRwD:9GHlvgTpNbcKo8GtRlUVWZD","tlshash":"b412bf52bb7469abfd7223332a2f355f990619d60895b0405c6b8fb31dc3da9f11730a","first_seen":"2025-04-01T12:02:22.596262Z","last_seen":"2026-06-08T08:22:25.102049Z","times_seen":252,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":105,"dns":18,"connect":11,"send":0,"wait":25,"receive":1,"ssl":64},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"khhojl.s3.amazonaws.com/bis/uploadFile/751ae8c0-6eb9-47b9-8ba3-ce64f14a8719.png","fqdn":"khhojl.s3.amazonaws.com","domain":"khhojl.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.95.131.125","port":443,"asn":16509,"as":"AMAZON-02","country":"Australia","country_code":"AU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.517Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-ap-southeast-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3F:03:16:5D:F7:6D:85:C1:C9:07:E5:CF:4C:6B:EF:F3:7F:37:1E:16","sha256":"1A:12:02:F0:1E:8A:60:9B:E8:FF:64:83:18:AE:A2:FF:49:2A:4B:84:15:53:85:CF:CD:69:83:5A:C2:BE:83:A1"}}},"request":{"raw":"GET /bis/uploadFile/751ae8c0-6eb9-47b9-8ba3-ce64f14a8719.png HTTP/1.1\r\nHost: khhojl.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: pQooJZTUdlSXyami1GI8Z5PFbxqKYGIR9cOpDl9d4pOC/8krp1M0h5HIyBwRB5TW1KCQVCOy1hc=\r\nx-amz-request-id: BTK6BN4XVKDNDPN4\r\nDate: Mon, 02 Mar 2026 13:27:46 GMT\r\nLast-Modified: Tue, 04 Nov 2025 07:11:30 GMT\r\nETag: \"1dee4b1663a919192f5c41d03a874eec\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/png\r\nContent-Length: 284717\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":284717,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 750 x 300, 8-bit/color RGBA, non-interlaced","md5":"1dee4b1663a919192f5c41d03a874eec","sha1":"d51b1ab3421d63cc819ede07d8a31c0238ab063a","sha256":"9ee4c620948c1f233f48b37538d2bb4a14571211c952076e3f02a0082453a117","sha512":"ff377566678a91057ba83bc6afe4c60e229789ccc5d479c2dc0b721d6903ac3a4cd1bde8b80d1187f4f807e7e8940e6e3898b9ac7dd22051b25f75c95944fa98","ssdeep":"6144:cyH7k7EL6AAzyO1ld2SO2HyfTw/GNm4PbXHPgsTd0tg21jce3yKqJHQ5R+gr:cyAQLAzyU2S6f0/GI4zog21RNMHPu","tlshash":"9b54230e580458329e8f1082d0b909396f69da94eb6eb90319ffe761d99371cf1fb5c2","first_seen":"2024-12-21T20:13:35.082016Z","last_seen":"2026-03-02T13:28:21.3091Z","times_seen":13,"resource_available":false,"data":null}},"time_used":2591,"timings":{"blocked":675,"dns":51,"connect":304,"send":0,"wait":329,"receive":918,"ssl":310},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-trade-trade.710bac49.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.747Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/js/pages-trade-trade.710bac49.js HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"699579ce-8e06\"\r\nexpires: Tue, 03 Mar 2026 01:27:44 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FzgD5sNLH6mslb7zSSqNK7zzGugwqarMiz02hCGbClMoIrkxSFfkpgGPFrzCCZQenDdqKtQmBoLOkeBNhgdyUBdLx9p03nhHGp3IKw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd926d24b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":36358,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (36129), with no line terminators","md5":"56ed58a8b85ee89e1479124f5d9e075b","sha1":"911709cc681337fd91ed734f673c6e4075a3a1f9","sha256":"0f61aa2396ab7b98c2392a56569f2d1a7c295921873935843c4e68d4332bf1f2","sha512":"88efcb388727e4e22942b5611afa92c431369d96d02c4c7ff10a593850b67ed6485784020fb95fefa55a67ad699bd797b00c138729e5fd1202d9f741b6783c9b","ssdeep":"384:T8R0KV2UEC8t5pbyNpfecqaD+8wTVEVM1jTvVPLBLljN8H5W:TgV2UEC8t5ApGcqa01jTvVPLBLlKc","tlshash":"a3f2f75870cbe5a999db9022202f4611b0763fdad014a0cbf6b4c9e15fe5c58335fbae","first_seen":"2026-02-17T00:46:19.739129Z","last_seen":"2026-03-02T13:28:21.311094Z","times_seen":2,"resource_available":true,"data":null}},"time_used":424,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":424,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/img/trade.png","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.144Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/img/trade.png HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-1680\"\r\nexpires: Tue, 31 Mar 2026 18:37:53 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 67789\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Rxihmj7ykxQk2tzcqThMTqAw1dA5a5ExdLKaKCx87vKMQR%2BWP%2FzJoJd0ucdIgRW8mAvEBgGt33pkoHUa7CGZH9IUg1K8rWAUJB0jKA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd8eac0cb80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5760,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 110 x 110, 8-bit/color RGBA, non-interlaced","md5":"66dc6578ec8db03fcc1b42c9f317b9cc","sha1":"e4acb2a1337f945518b5a356ee09bfa59094bc75","sha256":"18a8354cb2644a4b5c9261864bb7fa4e206c6f820b8c6e84f9751fe74f4ef173","sha512":"a8233e00ddd390afafe316a6bc804a8d798215ef7fb985d4170fe25d8758ca1b6c8a6335c5bc4eb3912414eed0fc7477a1847ab0c47201055a19170350cc7fa9","ssdeep":"96:bcQllcHitlIxv9vk7C1+I4wWHLihk/xTunbQZiVC6VWA1nsn8:bOIIHUCD4waMQ6V1a8","tlshash":"f2c18d4ca4934805414d8b196cfb8a174367df809ae86e28adcec41b4b30bf018b56e7","first_seen":"2025-08-29T02:09:30.913604Z","last_seen":"2026-06-02T12:21:51.812614Z","times_seen":13,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/img/wallet.png","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.145Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/img/wallet.png HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-1597\"\r\nexpires: Tue, 31 Mar 2026 18:37:53 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 67789\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cPfozIJsW1PIeWkh64hRFhfYIwAQNms5jK8%2BzEL4U5zf9nqKN3rG6fNwhB3snRWMbHmSlLom8TErgwRSJe4V0mmw52AlWbbZrQxMgw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd8eac21b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5527,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 110 x 110, 8-bit/color RGBA, non-interlaced","md5":"dfbd433e0f2b89d69508b4c69d34eab9","sha1":"89e4dcd5ff18a69b4dd38881f65ad813bf5f04a7","sha256":"366360095db3556d3d4692da71159ab33a0d0888798d81f71254cd73d76f15c5","sha512":"8e02054117be7bb46fe75ad0e154e72745b0d2a0624cea0ad897fcb47bed0f5eb008aff5780b19c4fa06f098678cca6361ebf29c057a0d3299b9751583ac81cb","ssdeep":"96:bcQllcHitlIxv9vk7C1+I4wWHLihk/xT8VbQUw1DP0Z7gCFyaA+JKrv27qN:bOIIHUCD4waow1DcZkCFyaxJKjh","tlshash":"82b16e88f5918446518e959a30ffdc164b7f8a80a2d5ed35edff820f4a30bb01d229c7","first_seen":"2025-08-29T02:09:30.900744Z","last_seen":"2026-06-02T12:21:51.808706Z","times_seen":13,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/logo.png","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.596Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/logo.png HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=6,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-310e6\"\r\nexpires: Tue, 31 Mar 2026 18:54:05 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 66818\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9zM2BA5OkABEAohpJYXXV7ZgK%2BMp16HJquvYK6OPz1aFRILl%2Flny9%2BlM9tjtQWPm1DrEr%2FcXy8rgOqocSOmZrHMm1CXF9Emb1cvZOw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd917a70b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":200934,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"f3fe30986201b8d2080ce85e5e5fb8ea","sha1":"d71bad9f8d6643879ed05ad1722a113fd1c02c5e","sha256":"8918e0e38c46d197b67df53de343ffa42af379463149f916384289590e0ca511","sha512":"6754265df698ef0a8eedca25974cf2a79b75e20fdf233863d0695afbbeba746cd1a472e9e0f78675f6917907b9d3560d7ad6ba76e899b14933d658141c167c45","ssdeep":"6144:gOPuzngXgwNNTaWuV1O3aQhtlWylRiPRJoJeo+0yLL5:pPubg/zkcaal+RJ4+0yLd","tlshash":"a6141262c4635745f0eb10bfa9af8907a76b8f2cc8c047105682ad1bde31f46fac549a","first_seen":"2025-12-16T20:12:02.833691Z","last_seen":"2026-03-02T13:28:21.315322Z","times_seen":4,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":69,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/1094/large/tron-logo.png?1696502193","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.427Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/1094/large/tron-logo.png?1696502193 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 11924\r\nx-amz-id-2: +dxuNZ2/Y8dNBQMwVAHes8tBgdj+Mi3A5unKSe1hP2aY0C19f3QSNHZfFz5yeOm9LKTeDXZpg9+4lcIZ8baAnqL6lklqKfqS\r\nx-amz-request-id: YG4XPK2YG2J7Q96M\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Wed, 29 May 2024 02:29:24 GMT\r\netag: \"2e406677d4a79ac7d7aee3d6eaa99b2e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: d3DEPJ7ytqO3Crvo2yWBZdIjcJdcpczd\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nage: 127\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lu6rsfV0ULwlOdN3U%2FFxRLvLyseN3VPbiBv%2Fcizkl6tOT0pbtsYOO%2FJ7KT%2BcAwMFKoC6Ymu1bl4CMInLYIhKAqZ5TtPvMWopBWi5KR%2F9e16EmGLhZ4g9kjg%3D\"}]}\r\ncf-ray: 9d60bd975d099e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11924,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 238 x 250, 8-bit/color RGBA, non-interlaced","md5":"2e406677d4a79ac7d7aee3d6eaa99b2e","sha1":"a79a31e04a09eaba85c931866e45ca8852a4307a","sha256":"b56fbb3f40d6d75c78b84a1973e695e1baefe2c7aa4041b8d84034a83b960d33","sha512":"66a4cb7eb619835e698eaef97a8361708314ba2489b2124c87f08358d3af169bb567fcfcbbc7bb510d58e2c8c06b371d7fae265bd688eaa69c7637da4afd778b","ssdeep":"192:lF3/3fIhz/0rVTSXlTNdqHaRYmV/PpQ3kOJf83+6RrQYwZ:lF3/ghTlTPqYYSP0xfsnu","tlshash":"e032cf6df73b42f0265726b6f4852bd4284272843b39e7ea9712f8de494934d9dfe002","first_seen":"2024-12-31T17:00:14.034118Z","last_seen":"2026-05-30T02:38:08.444125Z","times_seen":239,"resource_available":false,"data":null}},"time_used":267,"timings":{"blocked":104,"dns":9,"connect":11,"send":0,"wait":43,"receive":1,"ssl":74},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/2/large/litecoin.png?1696501400","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.478Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/2/large/litecoin.png?1696501400 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 7680\r\nx-amz-id-2: 178CXcT1GJFGMMSd+TcUC7tFfyMDbFrqgg62u0KGqkoir6w/j8BVkjN/9udkOtiWCPlcchLUX1k=\r\nx-amz-request-id: M4ZDX09ZBAVNETBR\r\nlast-modified: Wed, 29 May 2024 02:40:00 GMT\r\netag: \"2cb0c91b0d82542c140d900d549dddc0\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 5qPrLUbI5j.JglMI78Hfu1JUQECZPGFM\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nage: 498\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=f6dKw5za7JUSnBPGdMyVaFVEm0MQwLI8y9VwVQ8ZOlCRxGKj5gWFDnE8CUJzElhb6TuvM%2Bzy0ATmgaAqgJdFCcd77TLFJBI5h723dy4ZcALAhizPxfmSF14%3D\"}]}\r\ncf-ray: 9d60bd973c9c9e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7680,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit gray+alpha, non-interlaced","md5":"2cb0c91b0d82542c140d900d549dddc0","sha1":"ed1c900fca53fc1b94a536c76bf2c9760424ed9d","sha256":"169ed6742d2bc4098e00de38a610578bd6e98227e13a8b38ad47cd977056385e","sha512":"a660f2ae5c860cdbc7b5b7dc8e2408ddfec249c5de96ca269ebd01e674c24241650bb719fccab0f4139f94eba25e65b231797c0528fbc94202b516d6419e28d5","ssdeep":"192:NSGHHL/j2qkaS+zipeHxwauyPXfEsYF7yWgX1jjBghvnFDoz:MGHrrDkdeRwaNPhFW+lgZ1e","tlshash":"65f18e96df82af6cc6915575f8b78734814a0f0ad6ae4907f9dcaf0ab94a3004be6012","first_seen":"2024-07-06T20:02:44Z","last_seen":"2026-06-07T23:19:36.512691Z","times_seen":1013,"resource_available":false,"data":null}},"time_used":58,"timings":{"blocked":36,"dns":0,"connect":0,"send":0,"wait":20,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/img/market.png","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.142Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/img/market.png HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-1573\"\r\nexpires: Tue, 31 Mar 2026 18:37:53 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 67789\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=o1iDKjhfCkj4dv6xnQKsEFn32LQFm%2FIycNRqToRJprDXNigJqrIs2ZZ7KuZtyfGeTv4RE6IhVl5xGRlaZj%2FD9UChXJ9r2Jg6s1yuSA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd8eac09b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5491,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 110 x 110, 8-bit/color RGBA, non-interlaced","md5":"322ccfe46432efc5cdef1fd1eecb0fce","sha1":"73750d10338129f0e8e22e27589182b1125cdc1a","sha256":"f990bdc54fac08dd6c6bf1a7f28a64fbeffc2dbd65b25ea387f3c90cb551f4d2","sha512":"d0e48e30d45433bd89abdb1ac88842b254965b204bfcdd0e16af1d36e2fb78e492c12fc6671a0e389ab24f53de5ac78db5d41086176b0d8bf7cf6d255a8ea7fd","ssdeep":"96:bcQllcHitlIxv9vk7C1+I4wWHLihk/xTUtbQgfEGz4Lv66uA0:bOIIHUCD4wa08Gz4ij","tlshash":"40b17c4cea95990b210fca9918efd4339b1a8f804148af34fdeac14b5620df02d235ef","first_seen":"2025-08-29T02:09:30.933515Z","last_seen":"2026-06-02T12:21:51.830226Z","times_seen":13,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/memberApi/notify/getList","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.734Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /memberApi/notify/getList HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en\r\nAuthorization: \r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\ncache-control: no-cache, private\r\nset-cookie: XSRF-TOKEN=eyJpdiI6Ijh6NTZySCt2Wk9nMjduT21WZy8rbUE9PSIsInZhbHVlIjoiUFgyL21hQXVJQjUvemM2WXdsQUp6WmJVRklnS3ZSWUg0MWRvN1FOUnFRaEFibG5PYVZBc3grNFVSK3pJV3pwZXpjQWNiZlN6V3Fub0pTanRxeWcxOWFvK3dmQ3ZFYlFOYkJ6QU9nZU5PSVVtWWV3V1NFVU9HVzg3OGN0MnhweVMiLCJtYWMiOiI4NWY2NDhhNDc0ZjUyMjcyNmVkZWY3MTA2ZDVlMTY1OGQwMjY5ZDEwYmE5NmEzNTEwM2IyZmE4NTBhNGYwYzc2IiwidGFnIjoiIn0%3D; expires=Mon, 02 Mar 2026 15:27:44 GMT; Max-Age=7200; path=/; samesite=lax\nlaravel_session=eyJpdiI6InNlNWEveWFtSXZyRlI3ZVNnSWtiU3c9PSIsInZhbHVlIjoiZ09CMzkrL0U5VFdONEJPczJjWDFOcEZKT2pLRUh6dzZYRkFzamF2Y3VVdWEwSmdJRVdwcnN5M0tZaXdNMXQ5YVhqd2tIMmJ2a3dva1lmZ1ZEOHJSNTNsbS9sNi8xR3dZVFBJaWp3d2ttYmFhSEh1L0tFcUh0aXJ2NVMvZlhIakEiLCJtYWMiOiIzMjNiY2I5NjhlZDM2NTZiNWJmOTI3MzBhYWFkZjNhNjBkOWY3Nzc2MDhlOTk5ODU1MWFkOTAyYzY2OTdlNzI4IiwidGFnIjoiIn0%3D; expires=Mon, 02 Mar 2026 15:27:44 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BEcDee6qXny6b4%2FHrM0PA8pNUmdyJarZshkrvlp985jjMFxOMoY8zLpVYneRyn3orV5VH3Vya84zWj6yjYpPDan3Yk6OxPo%2FRk7vag%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd924cd0b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":580,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"96cabfe233eb76128d4011a43b641a7d","sha1":"6a3d197e593a61903555eff10bbdfce161dd70e6","sha256":"6ed335cbbb42e23199b87fbce44bed2464694731c12184cf9a2cceab2ae467c6","sha512":"6e29342e61008d4849cacfc1fd94bb349353cc29ce9d0259823fe05a92d5a45cdc3e7fbc234ee007e6928d3f4f8ccfc65c72d3e1ae4dc1df661e0d29c9dcc08c","ssdeep":"","tlshash":"c6f0a46d16adde7745cb95c27e427ca1a08e329390204fba3b4ade0c02ec5947826d59","first_seen":"2026-03-02T13:28:21.318609Z","last_seen":"2026-03-02T13:28:21.318609Z","times_seen":1,"resource_available":false,"data":null}},"time_used":458,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":457,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/25767/large/01_Luna_color.png?1696524851","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.421Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/25767/large/01_Luna_color.png?1696524851 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 12450\r\nx-amz-id-2: nP/3c5Hvt/Mcmal+bbWel9grEpvb0SXjoidlzbVC7Ihdnp25SSxiCVF0hAr6QgkPwmGEEjFS1Vs=\r\nx-amz-request-id: ZD37SER9F78T21QV\r\nlast-modified: Wed, 29 May 2024 02:45:56 GMT\r\netag: \"a376b8cdde9d8cb4c94a4a9b2404f8f7\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: argymlm65D3BBThD5sxEa6Mjx0N5r8G8\r\naccept-ranges: bytes\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1XgynZYEcPD1tU%2BRjGVXj1GvuYO0oPoflpKxTyXYBdrMnDCq7P0nxJi5sKTnlP8Mgt6rOTo1DHTea3imW5HT2Twap8b1yKe5JmeBGtX%2B8qUdyBObA0nFNn8%3D\"}]}\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-polished: ok, orig_size=18868\r\npriority: u=4;i=?0,cf-chb=(105;u=5;i=?0)\r\ncf-bgj: imgq:85,h2pri\r\nage: 5053\r\ncf-cache-status: HIT\r\ncf-ray: 9d60bd974cdc9e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":12450,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 231 x 250, 8-bit/color RGBA, non-interlaced","md5":"8a5b6fd06d70222cab917efef6940653","sha1":"14b7d20ccbd5c8689a4bc9aa7ef8f65cfe7f5c74","sha256":"c5029343efd5484e77be005c5c4e55e3b02528bede102b37e4628cf75913a484","sha512":"293aef705ad507170fddea9aca0bdacbb6adb7627c4ae7d8caf8a71c3c6c59a14bade0016f892fca0bf632d0281af007fcd4b6a32f7167a2f4996324a2bf8a7c","ssdeep":"384:cTrOXuMcM5l75Mqcs81E9DJ/dTmBmXDeImzLzLj:BXuZMFMqcsF9/lwImb","tlshash":"0042c1903ac10e144f985d3cd6763217b99ad909d3e582e8b55c450e7ba304723fa4ff","first_seen":"2026-02-17T15:18:37.721832Z","last_seen":"2026-03-02T13:28:21.319783Z","times_seen":4,"resource_available":false,"data":null}},"time_used":275,"timings":{"blocked":102,"dns":20,"connect":12,"send":0,"wait":27,"receive":23,"ssl":73},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/img/language.png","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.778Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/img/language.png HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-2732\"\r\nexpires: Tue, 31 Mar 2026 18:37:55 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 67787\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vIY%2BYHITTR0nFc9kokGru77pC9GwN9HrBV%2BiJdq1XBsiaq8S4CxebjtvnKNwsW3jxABE5l0UkfuS5GcQBlDKYwBxDQfrAv75nubmxw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd92adabb80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10034,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"9f2bd44523746160352e2827c776e357","sha1":"790a1b6cfd076774f2314cdce83ae371eee3447b","sha256":"ba843385d6800cf2b9583d0e1f651e559bd741da9ba4087ec601a6d6130811f7","sha512":"2891c98d0edef276077271116132b69518b9e08a1e8bd940b6dfbd4d17f0358e48cc734bed6efa3ff4ed7ecc6be6129afcf65339debe970dfe3581a4241f8e79","ssdeep":"192:Dz7QZRCbmlnMYyTbsK2TqX58CnrprPOOJC51vE5YS+O9cE6q8N:Dz7uLlIvsK2TK58CnNjOOC8pyE6TN","tlshash":"80229f8f55307c995c8e208a026e91a67dd554fef24f5ba2bc0a9c3c416cb720253677","first_seen":"2026-02-17T00:46:19.760017Z","last_seen":"2026-03-02T13:28:21.321065Z","times_seen":2,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/img/kefu.png","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.791Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/img/kefu.png HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-1160\"\r\nexpires: Tue, 31 Mar 2026 18:37:55 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 67785\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=C%2BHx%2FEMaQC51Gl%2F%2Bl7R5wCNY8U8hxsc%2FWpLf33ZExeMXbSKigWftzJ4mD9MNcw5BoAgNW30ichNxFHGLKsHsyrGNVeAgLIWuLElolQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd92adcbb80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4448,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 105 x 109, 8-bit/color RGBA, non-interlaced","md5":"fb03453293a0ea4d66f0cf3e21dea0c5","sha1":"18533086f1e0457a62eb75c6a79fa6462acbffec","sha256":"1aad5a92c54388b93944af4196a7c7b218763d61ffbc8b7f2efa8240bed1d7d3","sha512":"b6b8f6a3d713a52a72512554ad312458c5bc93645639632b8b85802571f3f2149064064f86c17a5fd35ebb840ab0c42825b676ce6cbd221ca4de57745016836a","ssdeep":"96:pYR2PmJDvzeLQCroo+4/Ps7gTS0nIf8857sA+KezUEdvdtMw9ETN:S/uVru4/Pyg20nI77vTezjvdCTZ","tlshash":"0f918d56941abd41c489708b60e35c2bbec3ca34a6ebe481cac5dd3c10104b4f3b72d3","first_seen":"2024-08-19T15:18:11.498561Z","last_seen":"2026-06-02T12:21:51.796749Z","times_seen":36,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/logo.png?t=100","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.816Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/logo.png?t=100 HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-310e6\"\r\nexpires: Tue, 31 Mar 2026 18:37:55 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 67787\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QOIwghbiuDMl0L7NP0JyTfN6DZ%2Fhf1%2BFLP%2B2UzzCjnmXeOBQt%2BOpF8Ga%2Bri%2BNfEjrEADWccwxPOoTDhjvIFmjf8QiQ8vBA4wZnZWLw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd92ce27b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":200934,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"f3fe30986201b8d2080ce85e5e5fb8ea","sha1":"d71bad9f8d6643879ed05ad1722a113fd1c02c5e","sha256":"8918e0e38c46d197b67df53de343ffa42af379463149f916384289590e0ca511","sha512":"6754265df698ef0a8eedca25974cf2a79b75e20fdf233863d0695afbbeba746cd1a472e9e0f78675f6917907b9d3560d7ad6ba76e899b14933d658141c167c45","ssdeep":"6144:gOPuzngXgwNNTaWuV1O3aQhtlWylRiPRJoJeo+0yLL5:pPubg/zkcaal+RJ4+0yLd","tlshash":"a6141262c4635745f0eb10bfa9af8907a76b8f2cc8c047105682ad1bde31f46fac549a","first_seen":"2025-12-16T20:12:02.833691Z","last_seen":"2026-03-02T13:28:21.315322Z","times_seen":4,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"at.alicdn.com/t/font_2225171_8kdcwk4po24.ttf","fqdn":"at.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"47.246.44.178","port":443,"asn":24429,"as":"Zhejiang Taobao Network Co.,Ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.828Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.tbcdn.cn","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 28 Nov 2025 03:07:13 GMT","end":"Sat, 18 Jul 2026 09:41:04 GMT"},"fingerprint":{"sha1":"01:40:62:EF:8C:E5:C1:8A:19:4C:8D:B6:F5:C2:24:7F:DC:C0:9C:8A","sha256":"60:3C:41:A0:78:62:E6:5E:82:F0:FA:CF:5C:C9:D3:22:E4:64:EE:1A:EE:C7:CC:BA:DD:25:08:90:6F:CC:C4:F2"}}},"request":{"raw":"GET /t/font_2225171_8kdcwk4po24.ttf HTTP/1.1\r\nHost: at.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bfdag234.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: Tengine\r\ncontent-type: application/octet-stream\r\ncontent-length: 55940\r\ndate: Sun, 01 Mar 2026 18:24:52 GMT\r\nx-oss-request-id: 69A4847414A30E3938DB6BC6\r\nvary: Origin\r\naccept-ranges: bytes\r\netag: \"B716002BF601F727176AE7901BDF4E4F\"\r\nlast-modified: Fri, 24 Dec 2021 20:51:06 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10201830100077572647\r\nx-oss-storage-class: Standard\r\ncache-control: max-age=63072000\r\ncontent-md5: txYAK/YB9ycXaueQG99OTw==\r\nx-oss-server-time: 2\r\nvia: ens-cache6.l2de4[740,740,200-0,M], ens-cache16.l2de4[741,0], ens-cache8.se2[0,0,200-0,H], ens-cache3.se2[1,0]\r\nage: 68570\r\nali-swift-global-savetime: 1772389493\r\nx-cache: HIT TCP_MEM_HIT dirn:-2:-2\r\nx-swift-savetime: Sun, 01 Mar 2026 18:24:53 GMT\r\nx-swift-cachetime: 31104000\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\neagleid: 2ff62c9717724580639633425e\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]}],"data":{"size":55940,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 11 tables, 1st \"GSUB\", 18 names, Macintosh,            ","md5":"b716002bf601f727176ae7901bdf4e4f","sha1":"e87c1130c27fa42d822c198f5ea8b633b5118b94","sha256":"4bc8cc97559c0a52ea4f5ce0563e1bf3a7f89d660f74792e662e76d49eae4707","sha512":"cd4d86bc27a8055bf4ba21730991acb71e32d1d8c3176b6aada3c8fcfbaacfabe3cf1c813665b4434b16c757587d38afb8fd61f3a84a440053a96b545187e672","ssdeep":"768:00Yo6KrRwXJDv2mjQ5PMWCUPQnNqcoocj9MNb5+kYfcUFO++wEMjQYVEh/gG+VeV:xY1dCpj8+kYfcUUXwjjQYV8/gBVE","tlshash":"3c437c2b835e4fb3d16a86f90c4f011b5fefd7206636f99664ca5c1e4402afd085cb9a","first_seen":"2023-04-09T15:26:02Z","last_seen":"2026-06-07T06:43:55.437248Z","times_seen":3693,"resource_available":false,"data":null}},"time_used":353,"timings":{"blocked":133,"dns":52,"connect":21,"send":0,"wait":41,"receive":32,"ssl":71},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/chunk-vendors.dadf9fb0.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:41.986Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/js/chunk-vendors.dadf9fb0.js HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:42 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"699579ce-14eeb9\"\r\nexpires: Tue, 03 Mar 2026 01:27:42 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xXDSZmwdWZLDotfw%2BlbAT0PD6XRm970xgV6uusvc1k7aNDmBxE1iWHVu8gG3dnTf7%2B%2Fs7wOnhkB8Dqo5y1Dv8NeAqZ9Fyvip5kq1FA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd875ad6b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1371833,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65469), with no line terminators","md5":"1f20d4fe6d81cd12a67eb1583d1fe803","sha1":"e37d113baa5b75a94d18814e43b26ceb58943b43","sha256":"8a283e80de3fd65ee162d0f8b022de0fe02b7a76bcd728b2bc152c52ee18c847","sha512":"87d520483dd2640337cead4568138567f6adedb527e53b097b608bb8fa92a3f1ade4ea4d80f798055f952b187339a0a0710b63c6e2af402daaa88b6b506628b4","ssdeep":"6144:UBIBXTP2ZdeOh71wd9PNi8yE285pQtAiF9kMq7EEJ8OvGEcjfpJAAih8xWB5brj7:xTP23V1IF5O1YJ8sGdjfpGAB0bz","tlshash":"e625199d72c5f0a603d360b5003f210bb23b2d28640ea594f275e9d5ad79a9e6237f3d","first_seen":"2026-03-02T13:28:21.32384Z","last_seen":"2026-03-02T13:28:21.32384Z","times_seen":1,"resource_available":false,"data":null}},"time_used":513,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":451,"receive":62,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-assets-assets.fa95b992.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.748Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/js/pages-assets-assets.fa95b992.js HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"699579ce-66ec\"\r\nexpires: Tue, 03 Mar 2026 01:27:44 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=b72kMtvfyPGutfZeV11QjccrRT0xSsrtaw5Md38NPqHIatfGcHTXLWLNuC3T8X3b7xwyAcFd0xeeOnYxU5wafGAhMLTiklLC4q6K2Q%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd926d27b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":26348,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (25784), with no line terminators","md5":"2ec2968939ee94f0471181b5f42028cd","sha1":"de48945b782566dd3bc0f58d15d19b83e89b2867","sha256":"7bb16188bc040bd033d3deb6574cba5195e4ef8c90851537a415483b2ff6799d","sha512":"45630563b6d27a5c485c2f59ebd7c1e35285b62ac39e8e358004ac41335307463c85c5e7e7b8cfea4142b7faa36c0f2122c5a457310fcf4a3eb620b716159060","ssdeep":"384:680c/hjxQSILYdqWCkYNYdneBbCU1tPEZc3zMhDjd7Ic:6W5jxQSILpWCkYNEiMc3zMhDdIc","tlshash":"6bc2f75d70cbb15e1657d450301b9408312f3e5e9408b683bbf2e9d0ed6e5ea3226bbe","first_seen":"2026-02-17T00:46:19.735412Z","last_seen":"2026-03-02T13:28:21.325282Z","times_seen":2,"resource_available":true,"data":null}},"time_used":440,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":440,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/878/large/decentraland-mana.png?1696502010","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.477Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/878/large/decentraland-mana.png?1696502010 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 23556\r\nx-amz-id-2: wydEc8Kjsv2mtEn5zhwlGv/zbpBiVHRc1gC9xMR0PFURWchldq3JiiAV9QtzYBx/J22whlZncI8=\r\nx-amz-request-id: 8WG3BYD9XVF5VD4S\r\nlast-modified: Wed, 29 May 2024 03:03:29 GMT\r\netag: \"48316d69d18e4e1981ea708d4f902156\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: Npnpj1ENkENTyBPdYr4YoOvD7_8d7Tq0\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nage: 7082\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hHLqwUsHtEt6x0Fes2cyjohcDAw7FErb36CoW2081B28nUWfh8RPmCcRlQs1E42nlKMfG7IPItnDi5V0%2BQJdAWl1gAETqlrtI2VJ7mrDmmw93jJLbclu4m0%3D\"}]}\r\ncf-ray: 9d60bd973c9a9e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":23556,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced","md5":"48316d69d18e4e1981ea708d4f902156","sha1":"dd763bcbf98a719039d51a0efe978d5aeeae2a05","sha256":"cf5979cd91517296b25efd806e9d58c5c863b42a9c3e47dc85182b4d32213ffa","sha512":"d64628c6ecb60ba33847e287259fa094cd18ec349c80bbc781f90049e43e0e3b89f21cdc7cf6072343465888ed8eb5c24e584918d17fc441c88e76cec2347446","ssdeep":"384:yTaw3tDG+adVb2qGwuFQAR8TQMSg2cotPGYQZgGATyiPbDgusCGGZVajZBdfNCYr:UawZS3ERRcNMtPGYQ++iPPdsFACZQ2","tlshash":"71b2f175f746c24ad4b3b4deb960094e3444841f1c56ae9bf323706f89e0b6ad5d0b32","first_seen":"2025-08-09T19:12:56.598565Z","last_seen":"2026-05-02T00:51:12.407571Z","times_seen":11,"resource_available":false,"data":null}},"time_used":65,"timings":{"blocked":33,"dns":0,"connect":0,"send":0,"wait":25,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"khhojl.s3.amazonaws.com/bis/uploadFile/3c1b5f8e-c7e7-452b-ba33-d5dec06a0eab.png","fqdn":"khhojl.s3.amazonaws.com","domain":"khhojl.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.95.131.125","port":443,"asn":16509,"as":"AMAZON-02","country":"Australia","country_code":"AU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.523Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-ap-southeast-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3F:03:16:5D:F7:6D:85:C1:C9:07:E5:CF:4C:6B:EF:F3:7F:37:1E:16","sha256":"1A:12:02:F0:1E:8A:60:9B:E8:FF:64:83:18:AE:A2:FF:49:2A:4B:84:15:53:85:CF:CD:69:83:5A:C2:BE:83:A1"}}},"request":{"raw":"GET /bis/uploadFile/3c1b5f8e-c7e7-452b-ba33-d5dec06a0eab.png HTTP/1.1\r\nHost: khhojl.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: viO15D+p8IhNUCkykUVJdCZoaUHPNNNBgeXAymzdJcpq0V6jlBnrN3K3jzuBKymqL1iJRHXRxkQ=\r\nx-amz-request-id: BTK8S7WQ44SZ334Y\r\nDate: Mon, 02 Mar 2026 13:27:46 GMT\r\nLast-Modified: Tue, 04 Nov 2025 07:13:54 GMT\r\nETag: \"fe05c24c927c3d65991cac716c30fc9a\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/png\r\nContent-Length: 310764\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":310764,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 750 x 300, 8-bit/color RGB, non-interlaced","md5":"fe05c24c927c3d65991cac716c30fc9a","sha1":"10f5b2be1bcae6a16af7acec599f784276dfd29d","sha256":"cd7b796a8b4283a750b66b2527a7d6f3abc3a5af3757c66e7fa2a472a5e6f448","sha512":"362f1e08b921c118a21d65b3090c48c2adf7d46f99e2d4e2a657ecc0960528da56bd8731c29674975b4c726060076d5df488b65f1759b6c124a95f30a734d5db","ssdeep":"6144:Y5wrPDVEssbiq8d/lIX4qbz1rL9LdQGQSg9o4W9igNnM5JrVgiYKDA0sIZ39:Y5wrbV7giq8dtW53cO2MIiM5Z6uZ39","tlshash":"0e6423146b9f57d2fef80ba2d4ff26cab4f80cb1720606e461b7951c0fd51aa094af42","first_seen":"2024-12-21T20:13:35.118874Z","last_seen":"2026-03-02T13:28:21.328043Z","times_seen":10,"resource_available":false,"data":null}},"time_used":2833,"timings":{"blocked":685,"dns":54,"connect":285,"send":0,"wait":312,"receive":1147,"ssl":342},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/memberApi/financialManagement/getList?type=-1\u0026page=1\u0026limit=10","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.740Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /memberApi/financialManagement/getList?type=-1\u0026page=1\u0026limit=10 HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en\r\nAuthorization: \r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\ncache-control: no-cache, private\r\nset-cookie: XSRF-TOKEN=eyJpdiI6Iks5STRJTHFUZmsrc3ZhVzZ6NGVEN0E9PSIsInZhbHVlIjoiQVpyb21QSTcyZmlNQVdrL0tFWDNyczFhRzR2ZGxZU3pYalBqRVhnb1VERGRpeFBGYkpkZW5UbDM3N3ByUm5VU0kwRmJkbGp5TENoTFFCWmMzc0tqa2dxL2l1RENpckxXSWV3dUlGYjR5T3F6dUFRZDM4UWdvcG9uUE5mU0hEMXgiLCJtYWMiOiI0MTA3NWExMTE2MDVmYzI4NTMwN2U2MmFmNDQ2ZjhlYzdlN2IyZDk1OGI5NzYwM2ViOWQwZWJlYmFmYjQ2NDRiIiwidGFnIjoiIn0%3D; expires=Mon, 02 Mar 2026 15:27:44 GMT; Max-Age=7200; path=/; samesite=lax\nlaravel_session=eyJpdiI6Ik9KeVRGMGRITW42SmJpbDZSK1dFVkE9PSIsInZhbHVlIjoiVmZFOTVuUm9rRVJPdml0bm9GTUs3blRGWmo2THBIcVJGVkhLKzN6RGhDc2taekowOG85L1pXSzZGejFYVEpEWmM1cmU1MHh1aUxTOWlmcW8zbTlURk5rUSs2T3QvRnMvMFkydVRGQldtZTlOcDB0QXp0ajVEZU9rUGRSZUdOOW0iLCJtYWMiOiIwYWRiMjBmNzE4MWQ1NzJkMjAyMjE4M2NjZjMzZjk2NDBkNzc4ZjQxYTM3ZTk0NzUzNGEyYTY0ZGRhYmJhNzBhIiwidGFnIjoiIn0%3D; expires=Mon, 02 Mar 2026 15:27:44 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3n2CyD%2F0x314oHhjpQ3FqXmRq9yfLDDmfxdDZRzDSM%2FTJMn3Kbdsey0w%2BYkx6uyhfN%2F%2Bm3FVpjX17%2FfbUADwAkpNIiUatR3N95rd7w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd926d14b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5663,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"d9ba30580c96866ac0c33ab0902f7dbe","sha1":"2cf989be8a44fb73ad1be649d6ace6c05795ffb8","sha256":"b4b2dbad2664d95a8e638435280f2faee757e288627defdf08371b7354c705f3","sha512":"208ce70b00107b1384c7ee90ccf910c56a7014da571e647eba9c000eb45b55c2df23698bf544125eaecbed090dfd44904f19e30abcc775b6efd81ac71cda82bb","ssdeep":"96:K3Baz1sQFBGSiIkBAzP4BxZ6wDutWxQND6It5sbqDG9tTCjzD8Ut9GMD/tx1vrm:fz1sQSSiczPSZ6uutWxQl6ItSbMG9tTX","tlshash":"aec143e4b2dda8e2d2e109c31e1379b1704cbc1b5dc5cad17be9ea1984ed521cb2b50a","first_seen":"2026-03-02T13:28:21.328943Z","last_seen":"2026-03-02T13:28:21.328943Z","times_seen":1,"resource_available":false,"data":null}},"time_used":477,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":477,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/img/help-center.png","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.793Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/img/help-center.png HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-1dd6\"\r\nexpires: Tue, 31 Mar 2026 18:37:55 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 67787\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FvTqHCADTf%2BWmI9kqK%2FDiEHGbmp%2FCvNJgyPOqLyzyX7XG9WZ0ZxaVi8EG%2FRdm5ihV9H4nXxaK%2Bvvn6B1vJ4YK25weSLbfA4Z5g3UEQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd92bdd7b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7638,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"35a33c6415bb6ef72da807f7afa46187","sha1":"5c2f3b2fad937311d4fb9b7f521a1d2212459bc8","sha256":"ada18b365a541cb55f6e066b36210490a836b46ad71b3d547d660ba8b8bfe4bf","sha512":"5181e3a50b75fcef71ad6264973abc9939fc301cea2f4dbfb8448d3fcc3410f5a2774ca888c6c6384486cf45b6292152cd9b15f81d333de98305d314018f7f28","ssdeep":"192:qR0m//nZoDqkygaGgCVVxlaQJ3WEvYyhfA5ouaVD19V+:XmHZoDZygaGVVHpvY8AtaV5+","tlshash":"70f1bf50ba0b9a1adb33535102ccd0b5eabfb988ac71497fc666148334335c8e05fae1","first_seen":"2026-02-17T00:46:19.748581Z","last_seen":"2026-03-02T13:28:21.330467Z","times_seen":2,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/16547/large/arb.jpg?1721358242","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.442Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/16547/large/arb.jpg?1721358242 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 9692\r\nx-amz-id-2: Veh3u3+7KUIicOY24QlUI6zhpHRJVOyuOopC289IpfAsjzFR/IqJkNL5rHuGZ0mIrazRGzcnmpkwl0iWVDf1y3xM5fqimJbL\r\nx-amz-request-id: VMDPHN9DC5V1689Q\r\nx-amz-replication-status: REPLICA\r\nlast-modified: Fri, 19 Jul 2024 03:04:05 GMT\r\netag: \"6ceed270d9bc423892bca8d02fbac700\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: sNQOQfMaDtQ8YYjdSjSut_zeYhLJxi9h\r\naccept-ranges: bytes\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xn5cX5AZQx2DXnLb4Pr8bIKHZYGcKCQvNfMEGvgODbqovs0HdS1A%2BJP1bRsdM0JchUvU1FFoqEpwqR%2Fr4tXGWMj8a%2BKUVm8d6aNgxxi5%2BUedMd7ktTWtg5I%3D\"}]}\r\nserver: cloudflare\r\ncf-bgj: h2pri,imgq:85\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=1;i=?0,cf-chb=(261;u=3;i=?0 1412;u=5;i=?0 4007;u=6;i=?0)\r\ncf-polished: ok, orig_size=14788\r\nage: 2019\r\ncf-cache-status: HIT\r\ncf-ray: 9d60bd973c699e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9692,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 250x250, components 3","md5":"06418bb181a70686a9539523056c9a67","sha1":"5732d4c076f90cb045a615ee1c9a27be6a8f653d","sha256":"af3101b00a90c0c3d892e2202d38794ec2172d07580b0be2123fd340c0ee8141","sha512":"d90591b19a393731e619ac27c1021953a4f5bf578195f6b5f479ce56fb0c83c7e907e615d9e987068d3ded4dafd3e9134e43500511adac8073660e0acfceacce","ssdeep":"192:lPtT7YqPBp3zEKmiFSzUYj1zm9wwOTmxnRk2XC04HGY+VbA99w:lBvPBCdOSLj1K9meR/zDFbM9w","tlshash":"7012b0ac0f2d7b0bd83597b44aa0c24cdc4c04fa4b46768a4b82595eb4b55db7d142df","first_seen":"2026-02-25T17:55:54.833898Z","last_seen":"2026-05-31T14:51:03.074481Z","times_seen":11,"resource_available":false,"data":null}},"time_used":83,"timings":{"blocked":66,"dns":0,"connect":0,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/605/large/Enzyme_Icon_Secondary.png?1696501803","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.475Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/605/large/Enzyme_Icon_Secondary.png?1696501803 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 31786\r\nx-amz-id-2: 40kAS2ExSkjvKZCdR4hXlHXLxZy4KNjymdsFo+dwko+GS6BhFsxMa/mDslnKHyZ5pyy75DQ24nc=\r\nx-amz-request-id: R1A6Q2PNXEZF6F03\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Wed, 29 May 2024 03:00:30 GMT\r\netag: \"e88b7da60b006368e3b24da9182b5ebf\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: B3QrHtaMkYQDGYOqKccFyUU8zP_Gtp8z\r\naccept-ranges: bytes\r\nserver: cloudflare\r\ncf-cache-status: REVALIDATED\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=m0JZWPP3oPFGRwdERA2pZbhb6R5zz4YqxmcVml4lRuQv8SJulK9FuPFxVj0wAVC8XvmXnpgi5JLQMyr52Fis9AzZ7IzDyZLNdYTXSgrWi5vNoCOoEJdHa4A%3D\"}]}\r\ncf-ray: 9d60bd973c749e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":31786,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced","md5":"e88b7da60b006368e3b24da9182b5ebf","sha1":"713a572b0d7e19089cb863e589a7938c2d10521b","sha256":"456ea315b6f7f4ecc111ebe7ba0cdc702fdf828ffb92f4ec4ff53ffcb89f135a","sha512":"7f24eeaad3bbe9f26ace399211da9c30a4a248286cb6ede58aa207ec2d3bcab3e771d152b426225a9ba9ba5193088619ee32a3b727862d6194f526333662e3ab","ssdeep":"768:OfI0jubqObL+ChsrNhjboaOfOIPFUSsWdY3tPbocZkzg1mbihEWVhewVQ0C:Og0jMbLOxhK5i5WGlboT34VhbQ5","tlshash":"f6e2e0d48ebbaa67f4c3722759215e1d581113df3a3ab23fc7aae1101e25a7f0485732","first_seen":"2025-08-29T02:09:30.904224Z","last_seen":"2026-03-02T13:28:21.332345Z","times_seen":8,"resource_available":false,"data":null}},"time_used":483,"timings":{"blocked":34,"dns":0,"connect":0,"send":0,"wait":448,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/index.ed4a2d2b.css","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:41.981Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/index.ed4a2d2b.css HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:42 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: \"699579ce-1794e\"\r\nexpires: Tue, 03 Mar 2026 01:27:42 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1XIWjw%2FVRFYqCRoxh1pZwG9Ox1BLom06GHKu5Ag9aHsq%2B0415cCvgR16p0RC2PX7O%2BKA3Av9yWKEqq79rmVN5XLyLkm8odNFvxhEGg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd875abdb80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":96590,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"d2c05a28c7f2113821d909b7b5b918a3","sha1":"ccac94311f6ac6f580b64f47f7705318f1d226a3","sha256":"695bdbeea38a126c139158967cdd4f3a435e9936b9dff5b002e5f20a10fc7907","sha512":"3b96fbd1a89be8ae0b7479705cd4a2958ffe7f2f3f57ec23f407ad51ed8b447b9960728d77502e8fd8b2b19bf0971682030117559df250ea11c9bc1802364c3c","ssdeep":"1536:qlIApuK7hmVmb2RS1Wu3xdynGJ7eh/nrhlvbc:hApuK7hmVrS1Wu3iG41nrPI","tlshash":"4493f73719012e39e52bcd26b6c1ab5a1e61c033e15307adfba47628cbcf9c9167b345","first_seen":"2025-10-16T12:28:28.877032Z","last_seen":"2026-06-07T20:08:58.141306Z","times_seen":1233,"resource_available":false,"data":null}},"time_used":483,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":473,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/img/home-a.png","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.139Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/img/home-a.png HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-13fc\"\r\nexpires: Tue, 31 Mar 2026 18:37:53 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 67789\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NvQMIDHKmZrRrjvjtcTFawd%2BXLclFpQBg5rt5jVnNJ%2FP2DqyApK5cEgEluVqGV%2B%2BMuQ0j6UrwhMhafvqA%2FS%2BxMiByj7xWDn0lB9Uqg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd8eac06b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5116,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 110 x 110, 8-bit/color RGBA, non-interlaced","md5":"78860f88f3de9bde6fbccc396a9d4869","sha1":"869e15cec3a99f857e7b75cf4872317261c04433","sha256":"6a45ca2e22567b26c261b57c50d9650e2f55b1ec99cc24481f29a55f4ac851f1","sha512":"f9d8bc60d247232bfcbfb010773e2398c8de7886d41e536f1703eef248ea75b216112a8c3157e6b0005adfcf5b6937715eb1b8ce59fe2b7e7e92f09e8db63d19","ssdeep":"96:bcQllcHitlIxv9vk7C1+I4wWHLihk/xTJ6bQTqSO+02oU0xqXBZq:bOIIHUCD4waZTXBU","tlshash":"86b15c48ad414901654a8b7b28bff5170f569ac059c8ee18bcaec21f96349a108ba6df","first_seen":"2025-08-29T02:09:30.925614Z","last_seen":"2026-06-02T12:21:51.80427Z","times_seen":13,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"khhojl.s3.amazonaws.com/bis/uploadFile/b8d762ef-a0af-41c7-897f-114a0cf3eb8b.jpg","fqdn":"khhojl.s3.amazonaws.com","domain":"khhojl.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"52.95.131.125","port":443,"asn":16509,"as":"AMAZON-02","country":"Australia","country_code":"AU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.521Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-ap-southeast-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3F:03:16:5D:F7:6D:85:C1:C9:07:E5:CF:4C:6B:EF:F3:7F:37:1E:16","sha256":"1A:12:02:F0:1E:8A:60:9B:E8:FF:64:83:18:AE:A2:FF:49:2A:4B:84:15:53:85:CF:CD:69:83:5A:C2:BE:83:A1"}}},"request":{"raw":"GET /bis/uploadFile/b8d762ef-a0af-41c7-897f-114a0cf3eb8b.jpg HTTP/1.1\r\nHost: khhojl.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 4r9Je277yJg/i1cqzrvTI+1yhT0NMMKXnScyiBu+S4YqFHWDbTPiSVK41OZDcPsKy+tbhx7AjVw=\r\nx-amz-request-id: BTK8T215R53R524K\r\nDate: Mon, 02 Mar 2026 13:27:46 GMT\r\nLast-Modified: Tue, 04 Nov 2025 07:11:58 GMT\r\nETag: \"29c19384c81d85e13533a6d394fc8e89\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/jpeg\r\nContent-Length: 107235\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":107235,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 750x262, components 3","md5":"29c19384c81d85e13533a6d394fc8e89","sha1":"e8ad99750f9f4ecbae884581e446b67e7888d9c6","sha256":"9382507fba2bb82da194b9759ba08d17c7b9c7a347879ca5484230292d6a8f41","sha512":"3ae65db1160b0d39dd858759ecde62c96a9e2e4bc96a9f275e024eef0cc267fbf6c5b917d8f70fd756216070acf56186a71819cb98cc7877cce377c65cb508e6","ssdeep":"3072:SfIjjyL3ulyjfjsbOj8824sQNcI/ulapKaPoV:SfIHK3ulyvs224sQxul6i","tlshash":"81a301f0d67629a57ec4902cfaf3fa393c295262c341ab871e242a7bd05d4979303619","first_seen":"2024-12-21T20:13:35.105449Z","last_seen":"2026-03-02T13:28:21.334921Z","times_seen":13,"resource_available":false,"data":null}},"time_used":2249,"timings":{"blocked":680,"dns":52,"connect":285,"send":0,"wait":314,"receive":576,"ssl":339},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/index.37a4ac4b.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:41.988Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/js/index.37a4ac4b.js HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:42 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:29 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"699579d1-1867f9\"\r\nexpires: Tue, 03 Mar 2026 01:27:42 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6DWMdI4SAjo6a4FvA%2B3p6BpyQeKAc9uCBREL9peHpCbRdDsVexlDUouaNTxxeUASzrjAzVQ0Yf62fu1PKcKxgxHIoM4MxqKgCFHiuQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd875adfb80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1599481,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (32969), with no line terminators","md5":"45c142304c4744b41df846bd3afef432","sha1":"b1e128485b9242dda7c9a2c88b0aa48cef6ecb89","sha256":"766683b6c13542987c7ca492ba98ff9b9517c580427299e18e6398563fccd01d","sha512":"72b05dd8d99c4e80e7b48b4623cc943ebd1f0ba55ce8a9d4fcbea73b42695130970b8b9af5ed5c236b7c8e24ccd66fb028a94f91e48a2158aee44cc616d0a84e","ssdeep":"12288:5L9exfnY4/FDXEke4EIi+Uz8ZmDN7IgxX4DvFgxQDbfXVmUqcn+33GtuENtFEI8m:2vYwUrzKmDN7IrvR/VmLcXEIUs/","tlshash":"b4559d3d63dd33f8168aba06e1462d36ed784a77f342a23558ac752907cfee0c226175","first_seen":"2026-03-02T13:28:21.336051Z","last_seen":"2026-03-02T13:28:21.336051Z","times_seen":1,"resource_available":false,"data":null}},"time_used":539,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":438,"receive":101,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-hy-contract~pages-index-index~pages-login-login~pages-login-register~pages-market-market.bf91413d.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.128Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/js/pages-hy-contract~pages-index-index~pages-login-login~pages-login-register~pages-market-market.bf91413d.js HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"699579ce-516b\"\r\nexpires: Tue, 03 Mar 2026 01:27:43 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QarUXzd6MALaeYuDcGC%2Fkp6GXVn8TgVeNAvZofbf58lzBlWFsLM3yDDeQjP0ICFYfz8UoJviiYk1W5a%2BHqenkgHkj7iWVc6kfX26kA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd8e8bcfb80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":20843,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (19367), with no line terminators","md5":"e7998ada17b700a0240a962974fb4542","sha1":"c6288d44b396e9796dbcb572d8df93388219eb62","sha256":"c847720d9ca5d4a9e3891f34ead69e2167ea4ab3a0af21c6ba982741cfd68c51","sha512":"0a76b45183e3933104c717ac536dd682d6a61b702be3fd1d7144971c6eee48276d01cbf32859554f0c98f279c90e55ad3287737671a63e608ef50ba444ec158f","ssdeep":"192:DwOHT+29eI84COcBTJFE1je5YG90hqRsVQsM6hWV2MMqRs6jveknR1eknyt6bucP:DZUXnDQU6/MlljlucUY4c7q8Z","tlshash":"1d92b61db0ceacb32fd25cc4109ea502539e3a02cde16ec263626f958abe655251ff19","first_seen":"2025-10-30T00:57:55.4368Z","last_seen":"2026-03-02T13:28:21.338044Z","times_seen":4,"resource_available":true,"data":null}},"time_used":491,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":491,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"khhojl.s3.ap-southeast-2.amazonaws.com/uploadFile/2025/12/03/9797b922-e206-4a9d-9409-424aa16edea7.png","fqdn":"khhojl.s3.ap-southeast-2.amazonaws.com","domain":"khhojl.s3.ap-southeast-2.amazonaws.com","tld":"s3.ap-southeast-2.amazonaws.com"},"ip":{"addr":"52.95.130.118","port":443,"asn":16509,"as":"AMAZON-02","country":"Australia","country_code":"AU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-ap-southeast-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3F:03:16:5D:F7:6D:85:C1:C9:07:E5:CF:4C:6B:EF:F3:7F:37:1E:16","sha256":"1A:12:02:F0:1E:8A:60:9B:E8:FF:64:83:18:AE:A2:FF:49:2A:4B:84:15:53:85:CF:CD:69:83:5A:C2:BE:83:A1"}}},"request":{"raw":"GET /uploadFile/2025/12/03/9797b922-e206-4a9d-9409-424aa16edea7.png HTTP/1.1\r\nHost: khhojl.s3.ap-southeast-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: vyiwfSESym4VcSl7hRBdvXOL4jiirDnYa3Fez98tBnpqhCky+I5eZFkpNOiuh4cbsxWoKIJqb8I=\r\nx-amz-request-id: BTK33RS71NB0WZPF\r\nDate: Mon, 02 Mar 2026 13:27:46 GMT\r\nLast-Modified: Thu, 04 Dec 2025 00:01:56 GMT\r\nETag: \"e73c01db48d57c45b77cb1872079a584\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/png\r\nContent-Length: 72723\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":72723,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 529 x 588, 8-bit/color RGBA, non-interlaced","md5":"e73c01db48d57c45b77cb1872079a584","sha1":"78ed804c908ccfeb28eb06968f850f2fbdeef263","sha256":"8e6d770279decf949649b66f477e762bcec8f9525524522de6398feb0858ccd0","sha512":"6addd527fad8c66ba58cc7f525d16d7cdfa8b6e2265cc3005a9605182072d2eb261b32f3fc4c754582090a66a6c2cacde1ec5c3fbf1a82abe86acc3d6285df5c","ssdeep":"1536:vljJ47D1ifdy8J2BZIFXIaYM8b2E/XIGuIt29LeVSD2nRIC:vlG7pi1JSy8aEQGb7VSO","tlshash":"e96302ed0d59a6719a9488b1320e20bea7f5a0467cdcda679c712732fd33c0c4e62dd6","first_seen":"2026-02-17T00:46:19.749256Z","last_seen":"2026-03-02T13:28:21.339219Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1622,"timings":{"blocked":-1,"dns":47,"connect":284,"send":0,"wait":312,"receive":569,"ssl":409},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/main.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:41.984Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /main.js HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Mon, 02 Mar 2026 13:27:42 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XIMTWELfQwOoc99%2BeofLaTboDTg3RiAFNL6FWnTPXOUniZPhw9d2harxWfviUEs1TkyqgtItuTRrZ20nT3mgGqnfR%2FfW5uASBCIqMQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d60bd875ad4b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":481,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":480,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/img/user.png","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.806Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/img/user.png HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-1af7\"\r\nexpires: Tue, 31 Mar 2026 18:37:55 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 67787\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eQP6TmLQaUm4ySYc26KM%2F0LrujIIFitbvrnlMgwBaLGl4VUFTuVqK0DuxwdrOq1NasA4isTEyoaOWlwygVQr20Bq7E%2F6UG%2Fu87UsYw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd92ce03b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6903,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"bc3dc5512542462e6ce966aae20bfc45","sha1":"e6ffc0f64ba03bbd3a519cccd873b5bbd27e787e","sha256":"cd24870a2e7e760019277ec7c7d7bd098b70fc9c8cb1dfc0f81a7d977a320c3f","sha512":"1962baadd963aebfe8ece84b032be4f296025064af98e6b9f39e1e29994088d336f390fee62daeedeffa3c6300483a3efe7d0ced0c7bc125413f16e362bcb971","ssdeep":"96:5llcHitlIxv9vk7C1+I4wWHLihk/xTGLEFb5LSmU2WNeZbFdlBiDx7oM8SMxH7Fv:aIIHUCD4wa5tOedFdlixx8SMxH5ZJ","tlshash":"2fe1ae08fa918952348ccb8f74a7df220b56e694c3c17f9858cdc209c6a6eb92d941cb","first_seen":"2025-08-29T02:09:30.886235Z","last_seen":"2026-03-02T13:28:21.340529Z","times_seen":8,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/12645/large/aave-token-round.png?1720472354","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.449Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/12645/large/aave-token-round.png?1720472354 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 14708\r\nx-amz-id-2: b1kW+7sGl6sYeVw54W35X7jSO1KU1P8mmaD/bJDcBapjqKD8EGUE2uZjJ+oQGGk2+za5Dm74zuc=\r\nx-amz-request-id: FZEGQW4TMZQRCMV9\r\nx-amz-replication-status: REPLICA\r\nlast-modified: Mon, 08 Jul 2024 20:59:17 GMT\r\netag: \"b30bd9b2bd265b9c357a24c377caa7e1\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: wQTx7SZWBtPkQ82gP7jqzoHUKWVGlmOe\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nage: 1770\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6m95Tw0InbH%2FiJpn3QGkR37jvZ8HFvpvcJFBdwDarQm9SBBdjmOmtdUD%2FPgkcYBHC2QibFNGu%2BnRTSNkRLaPVYhqZqFNQFcS15o3dcJlSYe7dE45%2B%2FoS6nM%3D\"}]}\r\ncf-ray: 9d60bd973c6a9e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14708,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced","md5":"b30bd9b2bd265b9c357a24c377caa7e1","sha1":"75ed63c9c07f1d074e4c4e9a1511543c365d84b1","sha256":"7ad5bcef2935069bff0dc7329dd8d4300a7893483a647accb75d6a55c9f30feb","sha512":"01b958748d5331b291fc5a01c2d7ff8330c9e52ff686d1b5c605e065dfc139e26e6162131c8a169eb3005367490e9b0eca447f1227c2a373b4cdbb90bf535d40","ssdeep":"384:IAEUEw4OBWjIZ4K54u9pypA+BA/0m3XF/nxrY5OTl:IAH46WjIZ4KgpL+/RZnxrYQl","tlshash":"5262c0f21aa47ee9913d179fa71525cbd733582b192b011b36aaa10f25ce34cac15b23","first_seen":"2025-05-17T19:12:50.418929Z","last_seen":"2026-06-05T03:21:54.908919Z","times_seen":109,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":59,"dns":0,"connect":0,"send":0,"wait":20,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/adapt-pc/pc.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:41.983Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/adapt-pc/pc.js HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:42 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Tue, 03 Mar 2026 01:27:42 GMT\r\ncache-control: max-age=43200\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=By4QaxP%2BZC2uC%2FkwUMnZa1CZTiARNOBaIY7W05UEIMTZGP08CB631DrYcTZkSnD5%2BtrKCsI38T%2B1D2eWNcOt%2F2STyOxtRFZpkqWRag%3D%3D\"}]}\r\netag: W/\"699579ce-125\"\r\ncontent-encoding: br\r\ncf-ray: 9d60bd875ac8b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":293,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"d0b3c2dc21549710964ad97d009c2a58","sha1":"6ccd010287242ba87d0f9c6a7954f70d992e4f6c","sha256":"a2eefa7cb922e76e0ca78c7da95c6a2234868d682cc12b7e41c5d602d14bcf4f","sha512":"8726a791a8b7bd75b32f6c76dd0428ae14afed272c99c081353dc28df273fbdc29db80f1bd02402ec6796f4108553a11646299ec9b844a08bf2aefa80f1d6a3c","ssdeep":"","tlshash":"5be07d96d4815631d43741875710e2883c680ca738456c01850c21001175dc754c5ccb","first_seen":"2025-08-29T02:09:30.874077Z","last_seen":"2026-03-02T13:28:21.342548Z","times_seen":13,"resource_available":true,"data":null}},"time_used":453,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":453,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/logo.png","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.598Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/logo.png HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=6,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-310e6\"\r\nexpires: Tue, 31 Mar 2026 18:54:05 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 66818\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Yhgt5%2BL4zQqt1jLvrQ02lRFWsXHvo5PQ87sO0EI89J6OPfCrUgks6AiFFpxayybW2NBFD7lWDbgiox9yPAWBal%2FWTyDTLfO8%2FJhcLA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd917a72b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":200934,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"f3fe30986201b8d2080ce85e5e5fb8ea","sha1":"d71bad9f8d6643879ed05ad1722a113fd1c02c5e","sha256":"8918e0e38c46d197b67df53de343ffa42af379463149f916384289590e0ca511","sha512":"6754265df698ef0a8eedca25974cf2a79b75e20fdf233863d0695afbbeba746cd1a472e9e0f78675f6917907b9d3560d7ad6ba76e899b14933d658141c167c45","ssdeep":"6144:gOPuzngXgwNNTaWuV1O3aQhtlWylRiPRJoJeo+0yLL5:pPubg/zkcaal+RJ4+0yLd","tlshash":"a6141262c4635745f0eb10bfa9af8907a76b8f2cc8c047105682ad1bde31f46fac549a","first_seen":"2025-12-16T20:12:02.833691Z","last_seen":"2026-03-02T13:28:21.315322Z","times_seen":4,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":74,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/11849/large/yearn.jpg?1696511720","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/11849/large/yearn.jpg?1696511720 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 7187\r\nx-amz-id-2: d7H+8X2XuD9qQ22ELQjb0vw1wEG1fgWSO0Tb8O96ZOg3Gj1UqYISrJpiWSxDn4ZoswiOCOIZqNU=\r\nx-amz-request-id: H1XF5C7ABPBWD6BX\r\nlast-modified: Wed, 29 May 2024 02:30:25 GMT\r\netag: \"c00e8c51c72dcfdcd56ac3f270bfa7d2\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: UMwH1K7v6TqdXmKWO_8wo1di8pX5Bdlt\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nage: 6687\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EX%2BMAuufdduMD3cr7yCtfMZfFjACsS8XkqARvY%2B8cgI%2FqTGZlEDDqpi2TJYPqwY6%2BahrnWN2TSEgqFx5V9W%2BW7v1UziwAK%2Fd9jvgmgvcY3HLWMG9IvJTi3M%3D\"}]}\r\ncf-ray: 9d60bd973c6b9e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7187,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 250x250, components 3","md5":"c00e8c51c72dcfdcd56ac3f270bfa7d2","sha1":"82cef90d83d0a083e62a59dc99fab23225f2f730","sha256":"2ee284ee1eb2f095accd38a4110452705a0690dd41f976bab87b496bde16013a","sha512":"04924847da5fbf6ba78b29311ae39f135e2813abc00d90f36a7546e7c994a3049963e77daea2e336414fd5dde5a8f3da7cb4ca20c03426735b2ad93e4943f91e","ssdeep":"192:sEeC9/GJslUuv3bgpyvd0rdHols3LcMcu3V/3:sEeu/cIDPTvd0xHosLr3V","tlshash":"0ee18d9106c9ca29f52c0a7123168bbbd30a76b546e7c798864818db3f7e1f85d2e4d2","first_seen":"2025-08-09T19:24:11.822581Z","last_seen":"2026-03-02T13:28:21.344133Z","times_seen":10,"resource_available":false,"data":null}},"time_used":74,"timings":{"blocked":46,"dns":0,"connect":0,"send":0,"wait":26,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/14899/large/RwdVsGcw_400x400.jpg?1696514562","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.480Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/14899/large/RwdVsGcw_400x400.jpg?1696514562 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 5114\r\nx-amz-id-2: 7j4S6s1uJ9CaFyIy37nYla+SyuACuBLU6JyTqr9zV3HQM3GJzfEw2vfvwuH7PP3O433JopWa+g4=\r\nx-amz-request-id: M2963QX683PKN7BY\r\nlast-modified: Wed, 29 May 2024 02:34:10 GMT\r\netag: \"e97e2c11cbcf162cc9f9072e2ad5b013\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: trXnO0MVVbwYeRWCxANTHTU8qlb0R_1q\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nage: 3070\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BELyQ7xddwCzMFBQsgVLfq%2FTiRr5wUkpvdjllJdFSSHYW%2BXQQWp%2Fug4s%2BMaJHCTij0cxP1x2GYLt%2B%2FLvTSr0URpPeh%2BkF7tF5Ikos9VXCsqqyU4QWsy%2FXfc%3D\"}]}\r\ncf-ray: 9d60bd973c9e9e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":5114,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 250x250, components 3","md5":"e97e2c11cbcf162cc9f9072e2ad5b013","sha1":"3778bf97647f60904ec1a1f22bb190eeb7e82c6b","sha256":"9ccb246394114d4969d1efc2cb6f6c3d44d5c6cb7d034c5b860eb07dc9edccc6","sha512":"e6ce9c385485801b2896f5f68b855be292e4f9d77e72a2244461ba1f0c7644079825183de69b3b0db872c71d58e03e88369971d6b2410b22d54c1aa9c01cf806","ssdeep":"96:X894vwsbw76wZtDdJIP89L0jODVByax9ZgeRfyhQSAGs:sibu6+EPi0jODVBykxRTh","tlshash":"fcb16dd52a0476acfe1d193d838a8a74dbe33f10d9468f2d85830981b33b8c8180d7ea","first_seen":"2025-08-29T02:09:30.92209Z","last_seen":"2026-03-02T13:28:21.345429Z","times_seen":9,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":35,"dns":0,"connect":0,"send":0,"wait":20,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/img/deposit1.png","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.785Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/img/deposit1.png HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-17db\"\r\nexpires: Tue, 31 Mar 2026 18:37:55 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 67786\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fZWvrVCNYz0XAittZnu1JMidzpIIwkHhUl%2BqnHEnnVAWgnG%2FK%2F%2FfdFdo27GDtyW8LWdEidJok8xBWLlK9rkQkgdIHRSGa08%2BiiZ%2FIA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd92adc7b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6107,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"ff5e75d5a92756d289dc9ae76f840710","sha1":"e3d8fdcb6b6970a5763c018ca69bb3a46fb1cb69","sha256":"b2f96a783830d78c6ab270f3c39f4a0beaf33842cfb0730abb412b44727fa11f","sha512":"2b356a87fa788c167c9ce578eb601af0ff85179ffcf0988b7b88b12a4c17ffba35ff519ef534ab0e97bbbd438b67934d6b478b2b794e479c686599e34394d1f9","ssdeep":"96:5llcHitlIxv9vk7C1+I4wWHLihk/xTGL/Ib5LSsR/nQYLXdAaywn5+VpO4Zb9:aIIHUCD4waFVQyCa7+Fb9","tlshash":"8ac18e1cf41188412589ce9539bbe8024b2fa584d2c4ad38bd9de11e4a789f12d7c6eb","first_seen":"2025-08-29T02:09:30.948465Z","last_seen":"2026-03-02T13:28:21.347082Z","times_seen":6,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-02T13:27:41.165Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:41 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rgRroCnAHUnFRruNtc5sAgh8rsJeC7jvyi09n230O058TrdBvv3OXaQrdys5exFGPVLycs5Yr4bNIp1jbEDRAUzcN5s16z%2BS9%2B%2FQHg%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9d60bd82bfba4453-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":942,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (392)","md5":"6c11f9a860086edd560b218cf4c7f484","sha1":"7ff56181eb7c6ff12ee2c9d0a96424e8ed395ac0","sha256":"eecafa21891c448238d256b4206495affff179c6e056dcf69401ac4a90289cd9","sha512":"32710947dd988e945d9f0f0f3e3d41483cb59ec5e1e42e79f340fea7fdb79547cf98924688e7e19dfb83842deeb847c0730e4cc8c90933f65159f805eb05f08e","ssdeep":"","tlshash":"b21144822c18e84d0b30d44ab926e82dd4d7c6b5bd65d8305cc81ff844e07cf4b7d412","first_seen":"2026-03-02T13:28:21.348498Z","last_seen":"2026-03-02T13:28:21.348498Z","times_seen":1,"resource_available":false,"data":null}},"time_used":570,"timings":{"blocked":62,"dns":31,"connect":8,"send":0,"wait":446,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-hy-contract~pages-index-index~pages-trade-detail~pages-trade-trade.d5f4292c.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.130Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/js/pages-hy-contract~pages-index-index~pages-trade-detail~pages-trade-trade.d5f4292c.js HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"699579ce-3366f\"\r\nexpires: Tue, 03 Mar 2026 01:27:43 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xjaieBGaLy3efcsO5iReanyVxeVA20Qz8A80Y5thUs%2BhJkNiXdHQPEywlwMYsjmEki5ASJlkm2eMhqd1aStYOU%2FZa6yX4wa4E23zcw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd8e8bd3b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":210543,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (60387)","md5":"ccbe5981959551fb43f0d42c469680d8","sha1":"459e26374af8fa74619807ae3b8d1dff3fa67af0","sha256":"4b2a5a5e990a55812ef6164ce6cf3587bb8309d10b67304023614233c00c444f","sha512":"170bdfdba0e50ab6c2dc1d9bbade2eb9343cb5c7c50831fbbeaca9755d7ea7925ddd5ee5e313b5e825579282f42baa4d7ffc9a19f0e7ba3ad1771b1ff96d8957","ssdeep":"6144:jCdZgCnLj7szEgFqAXBeQemgDDvoAFbbffBDjdIj+A:jQvszEgFT42","tlshash":"8a24e794fb6570195263a1b9423f1507b336365ee44b82a8b56ec9c92c7c0ca32b7f7c","first_seen":"2025-12-03T17:55:48.973334Z","last_seen":"2026-03-02T13:28:21.350283Z","times_seen":3,"resource_available":true,"data":null}},"time_used":495,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":493,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-index-index.9e6d5a2a.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.132Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/js/pages-index-index.9e6d5a2a.js HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"699579ce-1061a\"\r\nexpires: Tue, 03 Mar 2026 01:27:43 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xrJ9UoqZHRtrpzrLceyxQtFRg1iFirjsX5iJpdq%2F2JyLvgDkYSCe%2FyuQRou0lOSFoaX0soLFrLcWG0F2HGobvILcZfPp4aNWA%2BKlFg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd8e9be7b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":67098,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (61838), with no line terminators","md5":"a4c660261eb3bf22dfdeafc708718f10","sha1":"ff1a4c361b93b0a7053c0b57c7ff01a15c426038","sha256":"6aa5461d6944e49e2db2267d08e82e633befa0526c1e276f3a2ad7aad046e400","sha512":"4800ce259ccb26c2eaea762822f2c9d93fd2392bd3d1a4328c10bec84acdc7c3175e0529b018629b2bb95eb77272ba97c554423382a1bb66427a6eede534da42","ssdeep":"1536:efxPpp+RHzUR/edEWhmuEMLQkhfIjP5+f0yCihXmWXQc7ZnOWi/37vAXB:SPpp+RHzUR/edEw9EEQkhgjPrZihXmWJ","tlshash":"30533a3cb08fb41b55d35460605f2609b9363d2ba015e1c1e7f59df1cbb6a8a232af8d","first_seen":"2026-02-17T00:46:19.730954Z","last_seen":"2026-03-02T13:28:21.351873Z","times_seen":2,"resource_available":true,"data":null}},"time_used":492,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":492,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/memberApi/carouselAds","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.737Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /memberApi/carouselAds HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en\r\nAuthorization: \r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\ncache-control: no-cache, private\r\nset-cookie: XSRF-TOKEN=eyJpdiI6ImpXNElXeEdPOWJlRUZBZzdrNjMzYXc9PSIsInZhbHVlIjoia3kyMVNtNmp2d3FjemZqdXdnYlNmYlJLRzdJdUtsN0lCVnJ5akg1Y2ZyUmlKTUNwbnMzdlRwakkyL09kcTc1bXJJelZTOUFWanpxc0pCNlJpU0VFVDlXVGlRMDUvN1BqZFJBb0RhQTcwOHVIUFh5VExCTmNHYXN2aEN0UmxacG8iLCJtYWMiOiI3Y2U4ZWJhYjE0ZDQyNTU3OTU2MmVkMGIwYmY2N2IxMjVkMmRjMTVhM2JhODE0M2Y2YTc3YzgyMDU3NDFhNTkxIiwidGFnIjoiIn0%3D; expires=Mon, 02 Mar 2026 15:27:44 GMT; Max-Age=7200; path=/; samesite=lax\nlaravel_session=eyJpdiI6IjdvdjlXTHJGeUlQV2FlUjlpaDNoNEE9PSIsInZhbHVlIjoib3ZiOFpEZUt0bGIydkhHQW0xZFFZb0V1OU9pdmpwajYzVUkzT21hWkFSSVlHWmhOeHRoMmYvM0dQWTFXQU1iQ0E4d3RYVWJVS0x4TlJDMmdaWU5RekFPOHdwdVlnc3AyZzY4QlVRMU01bHBKMzZmTzF2dnhaRUJ5Unovby9oZ2giLCJtYWMiOiJlNzZhZWE5MWUxZWUwYmMyM2I0OTdhZDQ0Y2E5N2I5YTA3NjRhZjc5OGU2MTAyYzc1YzI2N2RhMDI0ZDUxMWI2IiwidGFnIjoiIn0%3D; expires=Mon, 02 Mar 2026 15:27:44 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TNCoieefKGUMuOpfKRG%2BbUPYxQILYkvJ37Yo6LhIJ0xDguIndrkuuAFuNEqYWe3ul%2F7hE2rxq%2FWoxGMDZrr9loWs6%2BKirvqZObd3xQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd925cd5b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":677,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"67450bb8be31c195989a6176c284bd00","sha1":"f9d2b7ca4f46661e34360520e15baf831a53be31","sha256":"4669e0b1cb0a3f5a6703b1480ef18a9b1e17ba7bccf1474fd91473a70f5ea1a4","sha512":"3a0fddc415f72dff56b972b9a12ff5806fc9f98aca64798872677fb7448dbafd6fd75b8e0ad22828a841cdb4eb1498769cf0b45e0f2274239ea72993172b0a54","ssdeep":"","tlshash":"15014ef67ff46462e6a910c205267b6be45e680f7842c1d17eddc56cc088db1589f41d","first_seen":"2025-12-03T17:55:48.989343Z","last_seen":"2026-03-02T13:28:21.353689Z","times_seen":3,"resource_available":false,"data":null}},"time_used":476,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":476,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-hy-contract.bf15d0f3.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.746Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/js/pages-hy-contract.bf15d0f3.js HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"699579ce-d0c1b\"\r\nexpires: Tue, 03 Mar 2026 01:27:44 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jIpJjtCxKLbngZTSq1lquD%2Blm8LfXSebJVE69PWvIg8GCxZyN9tBnU91%2FEmCs0Q2TcrIK8GXwMjIWa6v686RanPtEBh7sb21J4LBYg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd926d22b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":855067,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (63964), with no line terminators","md5":"8be375edf34c60ce850403dddded9b4a","sha1":"78921b8df4ef4c132b9f214d09077d16a47988de","sha256":"62f74fb6a0ccf89732f18e012c9084f1dff8454b7ffa553fa6e977ced0c49ed6","sha512":"3ab8d5045c4c5681cd4ab54fe25fb673cc88803f3f92431708ce0b3563dd454eb1adbc32937fde104155c10f758bbeca1854efffde2765c32ae4b602fa83e3f6","ssdeep":"3072:oukBnR6TuRLzpzlXl7DD/DUBkrXrO3r2hurs7zCDDDsDD7PkH2freQrlhEKErgH4:PKRPpxW2Sf","tlshash":"4d0584286a6bf744e819c0dbfa373d84c59de18aa04725d24f7157b34ba2753ea9cc03","first_seen":"2026-02-17T00:46:19.759226Z","last_seen":"2026-03-02T13:28:21.354708Z","times_seen":2,"resource_available":true,"data":null}},"time_used":467,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":465,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/14495/large/Internet_Computer_logo.png?1696514180","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.483Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/14495/large/Internet_Computer_logo.png?1696514180 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 14435\r\nx-amz-id-2: sE/4PwntzRjeDPHIqnD5b2fBGvw7yWarebX6opr4sgV0MJP1gBO8Yes6SiK/CCchdeaQDxfii50=\r\nx-amz-request-id: H4F0TEAQMP09CRV9\r\nlast-modified: Wed, 29 May 2024 02:33:39 GMT\r\netag: \"067e0269fbf1b644c73e98478024043c\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: iB0RTJvOx4GYlTWvha_Et91IR8UtVWp3\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nage: 962\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3FNiC8ADWy9NrbAI9vhvjbEqXfpw7xptD5tYSSIgXHTeoLdZBTpXVpaxhWoUvqw6M2pSNgHh94anvjZ2rhjlOcnF%2FTy%2BPLyM%2FT7DQXf%2FFcL1SpSumS5uhWw%3D\"}]}\r\ncf-ray: 9d60bd973ca49e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":14435,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced","md5":"067e0269fbf1b644c73e98478024043c","sha1":"35e83d833df687dc83c510997c2a51a940e08ccb","sha256":"adb21622de85a1b0f8a0acf7d2270173c193f2cc16b5b649f6b341b8ffa5c8bb","sha512":"44b6c851e433ff7e2ea1db07dcd139f7eb8ef4855ccc54674adf22a2fbfd93129fa047c91edcf3c8fe62441ae0db4282554425a9eb0f59c93699ddce5bc158fe","ssdeep":"192:Z4XfmRrvKJaZsrPRj4ZYxNUhq797ic2JKKBUx4efhaF/4usaMVtfTd7FrwY1s6rB:iPqC4Wt8qxNUoGZK+jFp4u4lOgxrVviW","tlshash":"fb52b010d510d76e8c5ab7936b83b6b6e43b03c017545618fa9adbe15b0d013bf13aeb","first_seen":"2025-07-04T20:25:18.30433Z","last_seen":"2026-06-05T03:21:54.930342Z","times_seen":89,"resource_available":false,"data":null}},"time_used":59,"timings":{"blocked":33,"dns":0,"connect":0,"send":0,"wait":19,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/adapt-pc/pc.css","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:41.978Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/adapt-pc/pc.css HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:42 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Tue, 03 Mar 2026 01:27:42 GMT\r\ncache-control: max-age=43200\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8KESVVhu9NVJFvo71nPKr9f5EljzGxaVkaPK%2BAEP1ff%2F2gg0DZbQS7x0nkXJ1frfscAc1d0luX7Mc2h5Ib1lXRzyMAZQTlZf7GRgqA%3D%3D\"}]}\r\netag: W/\"699579ce-226\"\r\ncontent-encoding: br\r\ncf-ray: 9d60bd874ab3b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":550,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"3a42709e49f75392a1c76efc0164c535","sha1":"f3d4d4d31275080f6e0a37d5c3047d13edb9b91b","sha256":"171cc690bfe465e02f73a3b02c5ea20f69d8d2c7cd6ea98d2db74ab55c88e092","sha512":"98ce44b525395b9f667fd78a6d664c7e2f147e75489a71cf6c5b313007fee83c7eeebb80b7275d92e9342337926b968486035460c16e95656ff212bb83b6abc6","ssdeep":"","tlshash":"0cf050352bb4a445d1299599197cd7447fff4500b70f8d267db9791183cf1d204e918a","first_seen":"2025-08-29T02:09:30.923938Z","last_seen":"2026-03-02T13:28:21.356888Z","times_seen":10,"resource_available":false,"data":null}},"time_used":458,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":457,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/memberApi/coin/getList?page=1\u0026limit=20\u0026sort_type=0\u0026coin_type=0","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.731Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /memberApi/coin/getList?page=1\u0026limit=20\u0026sort_type=0\u0026coin_type=0 HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en\r\nAuthorization: \r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\ncache-control: no-cache, private\r\nset-cookie: XSRF-TOKEN=eyJpdiI6IlYvYXdNdmk0Ym4yK21HOHJqK1psK3c9PSIsInZhbHVlIjoiYm9sdTZWWWNaeUlSMEZvbkk3cUV1YVpMQXhzWnMxM1NPMFcwRjFHd0RTdC9GZ0JtK3lyZzRvRzVBYm55RndiTkFhTWZsVmRsME1mOGh2WWNMVDhLZXFCZTRVT0NZeDVvMTJvWW9JeGVpcVkyOXhkUW1hQnVCc212ZmFPd0VtbXkiLCJtYWMiOiJjMzQ1ZjE3NTZiZjE3NDhjNmM0NDVjNjk3ZmIxOWUxYzA1MzI3Nzk3YjcwOTlkNWNhZDhjYTIxZTdlNzVmNTRkIiwidGFnIjoiIn0%3D; expires=Mon, 02 Mar 2026 15:27:43 GMT; Max-Age=7200; path=/; samesite=lax\nlaravel_session=eyJpdiI6IldSczVsVHB1WCtabHVDbjQ4bmFLb2c9PSIsInZhbHVlIjoienpxVDJ3QlQzbXU0a1Q5bDdNRWlKdDI1cXVOcktjcUlhZGRRekNrNVhEOHJoMFJGMFBXYm5DTlJXZThhL2lYcExrbnRZRmNRZHFpV2J1b3NlNEdIZzJrZUgyWEc3UnVMbTRMbldWSXBDYVJUYlRtOW5aT1F2SEJzMVh1dHo3eWkiLCJtYWMiOiI5NDFiZjgyZjUzNjg1YzZiNmU0MjAwNTFjZmFiNTk4ZDNkYTI1ZmIyNThlNzVhMjRmYzU5NmU0ZDE0YjUxYzIwIiwidGFnIjoiIn0%3D; expires=Mon, 02 Mar 2026 15:27:43 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ADmdfpKNMJ8Gv5vD98wjVFysFI0vf1cScTYC8x2xB3Vv2KyTC1ZgnYt9t0VVjVp6yaO24bvcSOymZC%2F23pdTTmovu4RgVAjCux7MYg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd924cc8b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":60195,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"100ea950a3e7f7b6d3ab4d69a7709f98","sha1":"87ed472e46227939c66b747419c773df9b2d0483","sha256":"819d483eb8ba12eddda46ead9ed4a6ea53430441517e6eec6bea57a85cbb9063","sha512":"7366d06e9e6323195964bfb0bd7997b3798d821169d8a8e94aa6dfe21837a1ac15f7bda394597aa6e9f6ce5deaf4482ac109e0e0f662bc6211d9ffd06cb7463c","ssdeep":"768:KQLVFZGy0Zfx8gyVFMi/UxBmZVFBVFKoeVFXH2UqKVFwq3vmVFerVFw5K9QorbVa:/48Hx83XHvGkzKm6ZjZ3FCjgNNOkGG","tlshash":"d4430b7283902bb54be012d0954b36daea6e7082df90c5db47fdcddc81d11aa433f99a","first_seen":"2026-03-02T13:28:21.358774Z","last_seen":"2026-03-02T13:28:21.358774Z","times_seen":1,"resource_available":false,"data":null}},"time_used":467,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":212,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/19/large/dash-logo.png?1696501423","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.423Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/19/large/dash-logo.png?1696501423 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 37896\r\nx-amz-id-2: /R8rLWyKE2mCfaC3OxYich+2f9kkcUzTX68Svi+0oXUzF5ISSQc801MuumQvSOibhM8hnt3iMKQ=\r\nx-amz-request-id: 3YBEQFW7314HJZTR\r\nlast-modified: Wed, 29 May 2024 02:38:53 GMT\r\netag: \"4bc36ebd44fcb6b1c373d64d9cf1e202\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 1sMm9VZrwBQ.C2rmpB6nFuS0g2Mwb9RB\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nage: 735\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Ia5Kel%2BlnByhRi%2BCgOPL1O5nTIM29Nqg%2Biqf%2BHlxtwk2zH5A1Rk%2BErhx2BywxKA5rAV7QupUAkOuqQEd4IqNjEXGuIWFFxCJplN4WayHmZRLC6LSMk7KDls%3D\"}]}\r\ncf-ray: 9d60bd974cd99e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":37896,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced","md5":"4bc36ebd44fcb6b1c373d64d9cf1e202","sha1":"09e3fc82a076ded94e0bfff7e6926229584b5bb2","sha256":"3d1cee5580a62f595d30eea4cb31f701b276cc3b227b5f2d6a27513c703870c3","sha512":"ed3417303e5077638a21a7121694a7bef7b7c68f46c15dc1699382a5660b3dbac6d45a56a7672be1bd2c12b620b3bdfe67cdb21608e2bbe288352b27bcc74477","ssdeep":"768:xW6ekldvxFGFZG4FgSnqN3qOAWBi2Fw2VoE31sAeYOq3lp1:xtl1vG7G/SnqNx513Vo41s9q1p1","tlshash":"7103e1a8cb03e67a8d8c8770190f0e9aeb3fdeca69ce1964144969880fea405d5c5ac4","first_seen":"2025-05-05T11:55:42.53194Z","last_seen":"2026-05-30T13:59:13.286373Z","times_seen":29,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":100,"dns":4,"connect":11,"send":0,"wait":27,"receive":22,"ssl":59},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/453/large/ethereum-classic-logo.png?1696501717","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.486Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/453/large/ethereum-classic-logo.png?1696501717 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 14081\r\nx-amz-id-2: 465X70AIvHFuknnoBfVHgU/thO42aRyE5qAkacCJ24fB/mHyOBykTUu/0DKs4P3n+LOvVhhs8K4=\r\nx-amz-request-id: PBJ9FHKFR2TD2W19\r\nlast-modified: Wed, 29 May 2024 02:58:57 GMT\r\netag: \"4c35052834e1f3a0a90201e725909d28\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: Q0MvB9XEdQcaQAITmweT3VhNv99.e7yY\r\naccept-ranges: bytes\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xscacgNuot3O8xMPeO2GyqfCTba4rR7NEro0w4sOWOYdbMwCwJ7wjOjeeUgXINhh7vnHsRQ%2FtHDUfouS2QiCpUpQWscG40VMMZDMoATfBwOTN3OkMbTQuCw%3D\"}]}\r\nserver: cloudflare\r\npriority: u=4;i=?0,cf-chb=(118;u=5;i=?0)\r\ncf-polished: ok, orig_size=21616\r\ncf-bgj: imgq:85,h2pri\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 735\r\ncf-cache-status: HIT\r\ncf-ray: 9d60bd974cc39e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14081,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced","md5":"ec4523b9c86ac25188f14b2fae0fbd39","sha1":"d3eaf790e3696a186eba7b25acd7485f4f3e4803","sha256":"198a4dcbe4f8b8e00fd2608a606c4a0b34dddca2889342dabb5e135ad610ee54","sha512":"7b6348bd32d8d621c14f2d4cc2dc0fbe3aa310ace9418fa8df27c401381bf4b8c4a324f3a8627ffb8ac802c86fdaed46fb2a5817b25c2a93e5d7dba635a4c36a","ssdeep":"384:2pn91+s6l6k87VQhv9AB/ageb0jy9LEFWTp5M:2p91LjUk/adLLTp6","tlshash":"df52c0d86d37b1cc56eb18cf6ea2401480966cae071a829cb85aa423c844b29d5f5fbc","first_seen":"2026-02-25T17:55:54.78774Z","last_seen":"2026-03-22T21:04:51.05858Z","times_seen":9,"resource_available":false,"data":null}},"time_used":64,"timings":{"blocked":35,"dns":0,"connect":0,"send":0,"wait":28,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/684/large/Qtum_Logo_blue_CG.png?1696501874","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.472Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/684/large/Qtum_Logo_blue_CG.png?1696501874 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 36970\r\nx-amz-id-2: Zamca32xbgAOZabsibzIkwQ89jwCw5Z0I9J8YYGdPudBHYbkJhAN6Uq68RAylEYkPWPzA16RRyg=\r\nx-amz-request-id: ND72BGTN5YYE9E4N\r\nlast-modified: Wed, 29 May 2024 03:01:24 GMT\r\netag: \"86114a2f17fc47ec7cda66ec080accb7\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: U3yrPbTtpKfLRzGEbKzzyH_QL_8vc0UA\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nage: 6687\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DZFVd%2Bcg6wB%2FHuFqLM2xat5h7CoPodime1Q96WopFUPjYBgLVHQkrT6CChHxLAPrIjuwAZ3g9TE7oC8O6UTsw%2FmAcxZAY0xg4uAGpQs4CKUBxJANA6L8IUI%3D\"}]}\r\ncf-ray: 9d60bd973c709e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":36970,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 244, 8-bit/color RGBA, non-interlaced","md5":"86114a2f17fc47ec7cda66ec080accb7","sha1":"21958b4c2f6a35c6f2959f8a282ff3ed01822342","sha256":"a499d2520ac6f6345f650743d0cebed06c13a4bc1e37950dd0dd50471365feb7","sha512":"b1cfeb0b286f67fb8d77025c99bd39000b79d5742c621a5924df7c49d36a5d753239df9239f6e2a65d1ae43c5f4721dfc299c74ece64ba4bc5d304f4b9920b8e","ssdeep":"768:ufrswLLkgauIF+kJuYDRGwRLgEbbSe/PXFmySW:unkgavnVlGwFgSHFjSW","tlshash":"eef20282c92d5b2847b8d91a48b36275ad045061728e5f44ff8ecc7f764d3f40baa9e3","first_seen":"2025-08-29T02:09:30.907025Z","last_seen":"2026-03-02T13:28:21.362224Z","times_seen":8,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":36,"dns":0,"connect":0,"send":0,"wait":25,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/js/pages-hy-contract~pages-ieo-ieoBuy~pages-index-index~pages-trade-detail~pages-trade-trade.2c795fb8.js","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.124Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/js/pages-hy-contract~pages-ieo-ieoBuy~pages-index-index~pages-trade-detail~pages-trade-trade.2c795fb8.js HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"699579ce-536ab\"\r\nexpires: Tue, 03 Mar 2026 01:27:43 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Cl2XcHIvJWDUkuswkPVCnGFhMamvMqqqpGQwfoRPGfmD7NJU2BOxEinmPvN7kjabiYwdjFRLPlHj9bGOQF1MeavRUWMNi0AHbPRhIA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd8e8bc9b80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":341675,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10736)","md5":"a127e01b6ee3f8264469fcfc126983a8","sha1":"b572216da824336971907ddcf8bbef3318c73926","sha256":"5a41cc0ccb74a4b7fdca6c49c1e81fe3255487f1f357c93933ffe85ee5cd2036","sha512":"82f0283215ce2f3a558e6f3308d16f9316587578377a1816e02070ee7b960fece38f61e1fadd5e59b6a39eefd6d2f3a44fb9574b5c9a9e581f0dc2d16289948b","ssdeep":"6144:TaEDnq+lrUZTn+nqnI9qMe+pwGnDndKaUFCll+Q/VxpcB2EAgK4Axh3:TVqZZT4kIA2waLd/Uw0yxpKANx9","tlshash":"c7745ccf240bfa63971115d5442f2e2a993c2fb6504e9c12ea91e6d6b874c7c833a77c","first_seen":"2026-02-17T00:46:19.765983Z","last_seen":"2026-03-02T13:28:21.363789Z","times_seen":2,"resource_available":true,"data":null}},"time_used":497,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":493,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bfdag234.vip/static/img/app-down.png","fqdn":"bfdag234.vip","domain":"bfdag234.vip","tld":"vip"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:43.795Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bfdag234.vip","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 14:24:26 GMT","end":"Sat, 30 May 2026 14:24:25 GMT"},"fingerprint":{"sha1":"5D:62:B1:2F:29:BA:16:A3:41:BC:03:71:E4:47:3B:67:DC:42:BC:F1","sha256":"14:1B:81:A4:67:B0:DD:87:83:00:B1:AF:A0:CE:DA:01:B9:8B:E2:A4:5B:0F:90:14:2A:22:1F:34:C4:84:11:3A"}}},"request":{"raw":"GET /static/img/app-down.png HTTP/1.1\r\nHost: bfdag234.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:43 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Wed, 18 Feb 2026 08:35:26 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"699579ce-1529\"\r\nexpires: Tue, 31 Mar 2026 18:37:55 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nage: 67785\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kjLddi9ZbQERGPp9Vw3AyfvhvtI9FGCyp%2F0QqmrM0PeTsPwZcnjYL9omd%2Bff64RWxfkqBdFS8rYoJMQE0D0gtMwoRqSf%2FwkllYu%2BcA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d60bd92bdddb80b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5417,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"40d737c3c54d62f486c5b6ccb42e2151","sha1":"5118aaa7c423f5c9a5bbe2f00d7fc773755ac6e4","sha256":"56b6a7e78d5bedcb394457e852b103500d4920881b703b1bc596b5d54f57d3f3","sha512":"92023c6013bc95b3c511fbe0f9ad22e2ebabfc8f6b0f174ac8d25faea7f1b5caa3916b20b78e8ec0943d5f0cd38805798622d9dde2673ee56b10ff68e24a8c35","ssdeep":"96:tHz2BNz0MTBuaQIBG5OHqQOkDndpkybHHagJ6/RedTXPgCJwgE9EgwZ7b9gyJqLx:tOQMFveQZDdpkyja66/RedbCNabUZH","tlshash":"0ab18edf460a3d2c278313b83f6f90e5e1a868428bae334b11f0463ea16352151d725f","first_seen":"2025-10-29T18:00:30.239311Z","last_seen":"2026-03-02T13:28:21.366331Z","times_seen":5,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"bfdag234.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/825/large/bnb-icon2_2x.png?1696501970","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.407Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/825/large/bnb-icon2_2x.png?1696501970 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 21673\r\nx-amz-id-2: trVakV7BI4eg7ymcEiEA6f1aJmsUPPVJJ8rKpSXgCKNU0vpsGQk1Qluo/jNUhAe+6IZ4fQiNBJKhWZqVkpunme4BzYDUFbFV9i9NkRIgRTg=\r\nx-amz-request-id: ZRB097CZKQ1CJR54\r\nlast-modified: Wed, 29 May 2024 03:02:57 GMT\r\netag: \"d2963b42f5b0f6cdcad306c98082cfbc\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: GeU4bu9KKlgRS2f17Kc5LLYvQNcl.X40\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nage: 6940\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=s9Lob0u4Q5IFWfRKZpFW9JOqwi5yeQcQyBAOiz6umb1moefTKa42VQ%2BClYxO%2Bu8bvHG2YKab5KtE8YXR33ddpHJTHPdE7ljdSEQ%2FsLq%2B4d%2BvuUtv%2BQlivcI%3D\"}]}\r\ncf-ray: 9d60bd973c649e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21673,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced","md5":"d2963b42f5b0f6cdcad306c98082cfbc","sha1":"918ef4bf2083e0deb045febec8847c5b2811efe6","sha256":"72a5e32484f693a8a2d6f8310d364c4362911daf764603e955c79e17fffb33e0","sha512":"8ad332b591d291ac1e346f8b6c7e9d1fa3fce5d4f3436fd006e10c95c399bcfbb265fb28a452fd869ad25375d8b0bce535467d302a3953008336a047bb644c53","ssdeep":"384:igm58+U4mI5NsuKLdjjq6ZpqG6WS3bJ0pdZCqqhBnk/ZrateYC5XBTpiwL7oo:X+U4mIkuAjqCF60poBnUZraedpiSt","tlshash":"2da2e0c0bce0bb50573a5fa7ccfb992c57110f5b5aaa4e46bdb3c028e175d8391a2349","first_seen":"2024-07-06T20:02:44Z","last_seen":"2026-06-08T08:22:25.06493Z","times_seen":422,"resource_available":false,"data":null}},"time_used":217,"timings":{"blocked":101,"dns":11,"connect":11,"send":0,"wait":18,"receive":1,"ssl":70},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coin-images.coingecko.com/coins/images/1167/large/VET_Token_Icon.png?1710013505","fqdn":"coin-images.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.142.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bfdag234.vip/","date":"2026-03-02T13:27:44.470Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"coin-images.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 13 Feb 2026 15:59:29 GMT","end":"Thu, 14 May 2026 16:57:50 GMT"},"fingerprint":{"sha1":"46:94:B7:6F:CE:F9:AB:87:E8:C9:D6:E3:32:37:0D:47:C9:79:37:38","sha256":"8B:3F:CF:AA:1F:57:3F:0B:D7:4E:84:70:69:3B:0D:C1:70:8A:86:B0:9A:53:F5:C6:EE:65:BF:3D:44:12:A9:E2"}}},"request":{"raw":"GET /coins/images/1167/large/VET_Token_Icon.png?1710013505 HTTP/1.1\r\nHost: coin-images.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bfdag234.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Mar 2026 13:27:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 8136\r\nx-amz-id-2: AMWtPcDDOHHfGqZ0FsJidlZGcJ4ZYHfiPJPzqrrkK3eJEBYg/96kTtZxqfsJi4xeCy1VWZEpJAnovvkK7Hcs0Inl4i+Lp0IF\r\nx-amz-request-id: A8EN8A8VN7B72ZXB\r\nlast-modified: Wed, 29 May 2024 02:30:12 GMT\r\netag: \"ba92e69220752386dabab6093961847f\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 8J3xgX719GJ2gugkJiZGvd8T5HSRM6v1\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nage: 4285\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=16FEOJsJ8ldlfQEnATvDBxuKaAdiy%2F%2FKfML6ZOvNYMSuuSY1xfG9JcaIpY91wNFTcm3RA1D4Hzu1pVkBmaxaX8SC1aJo87uJhwjkYZrXQm%2BFvekAziRd9Og%3D\"}]}\r\ncf-ray: 9d60bd973c6f9e07-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8136,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 229, 8-bit/color RGBA, non-interlaced","md5":"ba92e69220752386dabab6093961847f","sha1":"350da83965cb9def72160fd89748c5e1b5d637b0","sha256":"5f903c060e0438552ba4c43042060cdfb1ee1c988d4db70f8945e3d25ecb6a59","sha512":"402828e854340009e43711d4470f4f9124ac9c00c1eeb874d7d1e027a82f5386c79031278de048f1754a0a2c556fd1c36dab08f345334040af2290be0cbab9a6","ssdeep":"192:njm0dSzbrlHumaMni9QRtrzdBmEHhBWK3fwp+P0:FS7nRtrzdBmyhBFP2","tlshash":"c8f1c0a8c13e21c4c26e92280ab5ff4257fd89943b9035b93d91f6045d4ef1e5345f39","first_seen":"2025-07-05T16:50:07.569897Z","last_seen":"2026-04-28T17:11:14.907014Z","times_seen":21,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":38,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}