{"report_id":"9279bd49-ee76-4d75-b396-dc4efca59658","version":6,"status":"done","tags":[],"date":"2026-04-10T14:26:18Z","url":{"schema":"https","addr":"apextradprixa.xyz","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"apextradprixa.xyz/","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"title":"ApexTradprixa | Reliable and Profitable Investment in Binary Options, Forex, Indices, CFD's","dom":{"size":2142,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (379)","md5":"a06c37d7e13ed0730f1ce9d6f95b9957","sha1":"4e90afd603dfd43f8164824e45efbdbe8671076f","sha256":"343757e433893ef62c530503ee895f98b3bb940482122c8a6d257f15cb0c3790","sha512":"a3e1e79409dcfcb88259ffc7e2644a9b3dee53cc6f8ed9da5be6e636e34128924f4e3958ee6457e37dcdd18d487b8eafcae2ba37902a89803239065c8fe2d112","ssdeep":"","tlshash":"e54133420da34a5ae2108500b4beb03dddeca81f99595cb0b49a107d5fe4fafe4f7d08","dom_hash":"domhashc55eae6bca52938c0fbc1668c5ab5b85","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"apextradprixa.xyz","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-15T14:26:18Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"apextradprixa.xyz","ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":86,"request_count":43,"received_data":1954141,"sent_data":50241,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"BootstrapCDN:3.3.7","description":"BootstrapCDN is a powerful and reliable Content Delivery Network (CDN) that delivers static resources, including CSS, JavaScript, and font files, for the widely-used Bootstrap framework. By leveraging multiple server locations worldwide, BootstrapCDN accelerates website loading times, ensuring a smooth and visually appealing user experience. Additionally, it ensures website compatibility with various devices and browsers. The service reduces bandwidth usage and server load, improving web performance for developers and end-users alike.","website":"https://www.bootstrapcdn.com/","common_platform_enumeration":"","icon":"BootstrapCDN.png","categories":["CDN"]},{"name":"particles.js","description":"Particles.js is a JavaScript library for creating particles.","website":"https://github.com/VincentGarreau/particles.js","common_platform_enumeration":"","icon":"","categories":["JavaScript graphics"]},{"name":"Bootstrap:3.3.7","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]},{"name":"PHP:8.1.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery:1.12.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-04-05T22:20:18.514512Z","alert_count":0,"request_count":1,"received_data":6879,"sent_data":458,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"s3.tradingview.com","ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"domain_registered":"2010-03-20","domain_rank":165395,"first_seen":"2018-06-24T04:06:00Z","last_seen":"2026-04-10T04:54:51.235833Z","alert_count":0,"request_count":5,"received_data":79299,"sent_data":2233,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a6b40b3ce40edb17d2a7504a14584679","sha1":"ba02f42b09dae9954e8ce169bcfd56c8363ffc40","sha256":"948d847179045bed3e8e2a13621680921366e4a6fdca222693f4a465eb5c7a7c","sha512":"ea770c8fbeeafd4c6824ff8e4cf0dd81735118838217e658101a59ab2121d74bf1f5d0624b249c796b8a859a565268023375096dabdd9c0935a0e60df6e53e3f","ssdeep":"768:o2rGy27UwlNqMl95qNmCFejhqs8snmiOCSFXfbx8Gf3Zq7Q:Jg73zhq02vbJ3ZKQ","tlshash":"fbf28606b23031a147efb1e1525b020e7239696ee906907c78b99af53db9c48717bf3d","size":37051,"data":"","first_seen":"2023-03-07T01:10:50Z","last_seen":"2026-04-26T06:03:59.089832Z","times_seen":344,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"4f252523d4af0b478c810c2547a63e19","sha1":"5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb","sha256":"668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404","sha512":"8c6b0c1fcde829ef5ab02a643959019d4ac30d3a7cc25f9a7640760fefff26d9713b84ab2e825d85b3b2b08150265a10143f82e05975accb10645efa26357479","ssdeep":"1536:GYE1JVoiB9JqZdXXe2pD3PgoIiulrUdTJSFk/zkZ4HjL5o8srOaS9TwD6b7/Jp9i:t4J+R3jL5TCOauTwD6FdnCVQNea98HrV","tlshash":"8893d7d9b6d6706287b734a851bf410bb17aa8eab40c4c60f058c8e47e74e9d507bf2d","size":97163,"data":"","first_seen":"2023-03-07T01:02:06Z","last_seen":"2026-04-26T11:00:20.790457Z","times_seen":71069,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a8e246008f2fac4083847ba921c82e97","sha1":"7e4bc56e6b5e6ad42a49814b64367777bf129015","sha256":"4c9e4f6d78a5d3255cac657199ec29395e0f6cd78fd2755cc336ad6b997ad7cb","sha512":"8fe4e35640995d5a9b66ce349a99b6c906cc91079d01fec160d586a84b9fdbc22aad94b4594751c80e4ddcb1d73c4920ceac330b32fd258639ff58dfa9b44af3","ssdeep":"","tlshash":"62c02b2751f17f84450ea103f21a006c3b4809c991305876267c3d0c07ef1f8abd7494","size":151,"data":"","first_seen":"2025-05-07T12:31:00.328227Z","last_seen":"2026-04-25T05:28:13.387059Z","times_seen":125,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/support.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.488Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/support.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:24 GMT\r\naccept-ranges: bytes\r\ncontent-length: 2541\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2541,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"8af0363bea4617c7c63a18866fe77505","sha1":"afa86aee7120e6190af326ba056ca093022e6993","sha256":"585caa31ab32f7459c426bf84df61e441989c5c4cd47821a66778335767e45ae","sha512":"06af122cde9d2a78bd404081b7d23197dce0a5eda4d7547e64c9b564f57652791bfa79f159a1054235e0143af5276be88ca3de69a25b525dfb4a436e6482863d","ssdeep":"","tlshash":"df515dcf5676c75871b728fb47ec2f33e91e9b4787ea0b82c2215dcd7d02592a144200","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.037119Z","times_seen":93,"resource_available":false,"data":null}},"time_used":189,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/uploads/testimonies/thumb/3d9f13b6d537b04c2628e3606d988efa.jpg","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.492Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/uploads/testimonies/thumb/3d9f13b6d537b04c2628e3606d988efa.jpg HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 14 Jul 2022 21:24:12 GMT\r\naccept-ranges: bytes\r\ncontent-length: 76896\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":76896,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100\", baseline, precision 8, 300x300, components 3","md5":"72c45e3b9261f41b6aba1023e7ca9972","sha1":"953e6fcdc719c4adbf5a5c218f2290b7740dcddb","sha256":"4d44f1c046c502f2ec9c5d3b7a590f8f957266dab77e22afb53aee043313445e","sha512":"38e76bb060b00fb0d5066c73c852aa43c0834d7542e8c8ed5cc97719e045fa2b37ff4e0f10788201631514543cda931ae1a750d8580c261098b8321065158a22","ssdeep":"1536:TGuYzhz/lbWXWGaFPlpdeNwERoKaI404HNQBNv9AYsrFVPt5FayiA8dIEnmiRVPD:C/zhz/ZR3eNwERoK5dOqGZht5FlipPmy","tlshash":"1c73120fc5be25b5a155029eb6b29cd39e4d893a9002b8d1a9af02f0f63fd44d079788","first_seen":"2025-05-10T20:34:32.856167Z","last_seen":"2026-04-19T05:43:33.056812Z","times_seen":49,"resource_available":false,"data":null}},"time_used":523,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":513,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/uploads/testimonies/thumb/51c7e003d7718cd0fd61da0e9cd35068.jpg","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.493Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/uploads/testimonies/thumb/51c7e003d7718cd0fd61da0e9cd35068.jpg HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 14 Jul 2022 21:24:12 GMT\r\naccept-ranges: bytes\r\ncontent-length: 40225\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":40225,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100\", baseline, precision 8, 300x300, components 3","md5":"ad070a01eaa4a04b0197e7a7dfdcb014","sha1":"b427af7ab1bb27032873118b948428d73efebf3a","sha256":"54a5a35df721eeaea204e441f61dc9543a316bda1fd542ac93bc7b29ffb45692","sha512":"aafa76aaff1eafdf2807189d592b57d364ad2c7384101f4b590640e8fc5263629089ea82441e48f6340a197fa463e8c478f793ef4d0cb0c0c99410903e4854f8","ssdeep":"768:TjIovIH8y+kfIptP+qMcALGooHU7QPKmBSvpJicpZ+CRNyUCGWPTJM6aa:TjIov1Zb1XWGR07lmBSPjpZjyUCPi6x","tlshash":"c203024afe62cf386f9a6157322fb10253145e4e2729771e2af11125ea406d1f300e9e","first_seen":"2025-05-10T20:34:32.880176Z","last_seen":"2026-04-19T05:43:33.045965Z","times_seen":49,"resource_available":false,"data":null}},"time_used":531,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":520,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/alert/js/jquery.fake-notification.min.js","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.501Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/alert/js/jquery.fake-notification.min.js HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 14 Jul 2022 21:20:54 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 1184\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":3570,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (1999), with CRLF line terminators","md5":"13d39a7d682712fef9676e8ce3f6a8ce","sha1":"1c04189c1270cde1219efea0c349b230990b9ff0","sha256":"a2e77918046fe456ba3d874ccddd3d0bf40a9774c0ffe5d70b08e069b777e847","sha512":"73f0bc1a545a05d7674530d8c8178dccbdd06d1a54851749d1210a1e8e4fc1ccbba7f757b724492ad4d1a08ea2e1e6444d1a8a956259a613df204fae8bc074f9","ssdeep":"","tlshash":"a17172df2251602e53e7d03aa9dff4c48632121ede460629251bd06e9ae437c638fcd8","first_seen":"2023-03-11T14:50:15Z","last_seen":"2026-04-25T05:55:56.499732Z","times_seen":521,"resource_available":true,"data":null}},"time_used":543,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":543,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/folder/js/toastr.min.js","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.502Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/folder/js/toastr.min.js HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 14 Jul 2022 21:21:44 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 1884\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":5251,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (5215)","md5":"8ee1218b09fb02d43fcf0b84e30637ad","sha1":"f871160d56be073d37159b169da23945fa132ab7","sha256":"1e0c2ad4e069276efa1d43fd1f7549912bfd64219119037e26574f27ca4d7143","sha512":"292be72897bf32e1850db5ec65a5964e86f7351e33a825192c1e003d7159199f94fecc1f1e1fc255a657737bc86bfa45ae244af814aea1ec432e1f3bee34507c","ssdeep":"96:OdCZR1JHduRv75dR+FIEHXX9oxNDP9mA1UZsEyHGJAcCwV02tfrI:O4BtcvvRqIQcNa74c7rI","tlshash":"abb17284b220bb8b5b731079919f140b937673b2ccce5440763aa9987e7082897a7fdd","first_seen":"2023-03-07T12:06:48Z","last_seen":"2026-04-26T10:10:22.829751Z","times_seen":13850,"resource_available":true,"data":null}},"time_used":544,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":544,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/pc_main.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.473Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/pc_main.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:18 GMT\r\naccept-ranges: bytes\r\ncontent-length: 57228\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":57228,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 576 x 795, 8-bit colormap, non-interlaced","md5":"1b3754f47f5f32dd7702a558554d3539","sha1":"0f7e8ef328225f46a3a6664d260294469cc3714c","sha256":"26e6157a22972abba164478fad00062d74d022fd3fd92371bd8332e0a8970911","sha512":"0aa34aa818d6492eef8d3bfd265a51e1471b6b1b96636d94e95215bf3f48126b901fbd8c3221dc6fc09788cf0694076887b9f01f28028c95b232188fb8c96f50","ssdeep":"1536:LfZbBr1ja1yygDjKv62xUjFNCPp/zhGdK0d:LfNBr1jacOyBZ6p/AdK0d","tlshash":"a343027c2aac8191d7425c6700f6a399dcd1f08eb81201a395f4ecf6ce9ad5d4d3aa7c","first_seen":"2025-08-08T07:24:19.629998Z","last_seen":"2026-04-10T14:26:23.850291Z","times_seen":11,"resource_available":false,"data":null}},"time_used":333,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":301,"receive":32,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Open+Sans\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:38:52 GMT","end":"Mon, 15 Jun 2026 08:38:51 GMT"},"fingerprint":{"sha1":"10:68:A1:B6:6F:BE:E8:57:8D:53:84:02:27:8F:E5:B8:83:ED:F1:68","sha256":"19:3A:7C:96:C1:4A:DD:40:D8:24:D5:6C:D9:2F:3F:74:1E:19:64:E6:F9:D4:88:68:56:D5:DC:1D:17:B6:21:BC"}}},"request":{"raw":"GET /css?family=Open+Sans\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Fri, 10 Apr 2026 14:25:56 GMT\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6193,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"7e0a00a3f6ab7ec04a66dfa361b7e9cc","sha1":"99de190ea3c393de80111d132e58abc20f988664","sha256":"64c18f81af81ab6b2ebc8598ed900f7023e0e8788bedd348ab41a92d76f80655","sha512":"6ed19e94e0438c18bf2c2ced27f712d94ecc74391b5239d12e2f300bee21cd9879377577e3cb86f385fafb469e93351e671af17d8bfd3e2231c0202909406a90","ssdeep":"96:ZOEba9JOEbaWDFZ8OEbajkOEbaFYOEbahOEbaNy+aZjzBrWOEbazubqGIFuV4UOM:a9KkjzFXCNqJCbqGIwV4jRlYx","tlshash":"9bd11f9000175050ab471ce627cebf34ee1fa2616040d07aabfd478aeddbda5637931d","first_seen":"2025-09-17T04:21:06.438819Z","last_seen":"2026-04-26T11:13:43.241249Z","times_seen":8885,"resource_available":false,"data":null}},"time_used":252,"timings":{"blocked":90,"dns":1,"connect":27,"send":0,"wait":44,"receive":0,"ssl":88},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.463Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 14 Jul 2022 21:20:52 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 32851\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":97163,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (32077)","md5":"4f252523d4af0b478c810c2547a63e19","sha1":"5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb","sha256":"668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404","sha512":"8c6b0c1fcde829ef5ab02a643959019d4ac30d3a7cc25f9a7640760fefff26d9713b84ab2e825d85b3b2b08150265a10143f82e05975accb10645efa26357479","ssdeep":"1536:GYE1JVoiB9JqZdXXe2pD3PgoIiulrUdTJSFk/zkZ4HjL5o8srOaS9TwD6b7/Jp9i:t4J+R3jL5TCOauTwD6FdnCVQNea98HrV","tlshash":"8893d7d9b6d6706287b734a851bf410bb17aa8eab40c4c60f058c8e47e74e9d507bf2d","first_seen":"2023-03-07T01:02:06Z","last_seen":"2026-04-26T11:00:20.790457Z","times_seen":71069,"resource_available":true,"data":null}},"time_used":267,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":112,"receive":155,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/favicon.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:57.612Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/favicon.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:57 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 28 Jul 2023 16:46:51 GMT\r\naccept-ranges: bytes\r\ncontent-length: 86313\r\ndate: Fri, 10 Apr 2026 14:25:57 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":86313,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"68c054332ee3ddfbcd2fa9a996468a00","sha1":"8e3c070fc44ea9e6c16cc60245264e2fc6752100","sha256":"bef97e8cd65843cbac370d2469d268efe4d970fb099ed3cb726d16ba7f91a3f5","sha512":"33c4307be1278eceef07019463453c30505a5585d6197ae6875befd19a66f2b7d6b4cc09e59a20f658946da23557d1590791f3148fedc41422d0a56efa6c5ce4","ssdeep":"1536:Yhs8P/x59Axg7OAr7phnInQDJPrcyGlC1XoQzAd4/EVkrGDfa:YhJv9dZ9hnBNVGlqoQzAd4sVkria","tlshash":"a88302f81a667393bb01b2c85f039d0e392339e89d6841dc5d9eed8dec56ce46b31981","first_seen":"2025-08-08T07:24:19.646722Z","last_seen":"2026-04-10T14:26:23.853411Z","times_seen":11,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":89,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s3.tradingview.com/external-embedding/embed-widget-screener.js","fqdn":"s3.tradingview.com","domain":"tradingview.com","tld":"com"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.477Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.tradingview.com","organization":"TradingView, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Oct 2025 00:00:00 GMT","end":"Tue, 17 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C4:FE:64:00:30:2A:CD:16:30:95:7E:E1:70:D1:31:3A:D6:33:3A:CC","sha256":"87:D2:67:7D:3E:02:F0:3B:58:BD:38:17:DA:FE:73:C0:CA:25:F9:58:CC:11:14:E0:3A:6E:C3:58:84:9E:BF:52"}}},"request":{"raw":"GET /external-embedding/embed-widget-screener.js HTTP/1.1\r\nHost: s3.tradingview.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\ncontent-type: text/javascript\r\nserver: BunnyCDN-NO1-830\r\ncdn-pullzone: 1837468\r\ncdn-requestcountrycode: NO\r\nvary: Accept-Encoding\r\naccess-control-allow-methods: GET\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3000\r\ncache-control: public, max-age=300\r\ncontent-encoding: br\r\netag: \"38902f4101faf6484092471298453b40\"\r\nlast-modified: Fri, 10 Apr 2026 10:05:44 GMT\r\nx-amz-id-2: Y5sT7nnC6vdsOPa3vxXKBeFTPuYJ/gNFj/iEYmOaV5DxP9RGSRQ4AUlnGo06wG6I5N0ajm5B5tRaf1vBwVc37grfGJ8DbmJS\r\nx-amz-request-id: WJSNC3ZF8D5B5MSP\r\nx-amz-server-side-encryption: AES256\r\ncdn-proxyver: 1.50\r\ncdn-requestpullcode: 200\r\ncdn-requestpullsuccess: True\r\ncdn-edgestorageid: 830\r\ncontent-security-policy: default-src 'none'\r\ncdn-cachedat: 04/10/2026 10:09:10\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\ncdn-requestid: 36b38d243c607e978bf6d8ef5981c574\r\ncdn-cache: REVALIDATED\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}],"data":{"size":13502,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (3458)","md5":"38902f4101faf6484092471298453b40","sha1":"64a67cfa262bf828cfd9f8c7fd3e92895b53b251","sha256":"459f7415ab27f7eab24ea50ef1bbcf5f4136e3d5deefc0b39811e0cf51e34c98","sha512":"69f3f12a5e5c266961ea39a04b9369f5f50cd7743428bd89d81685f8d454ad7ee3fe69fe456db17e7539439b88378a4594a46edb7be69f4adc27b196400b2aa7","ssdeep":"384:pIesuCWoofYkFdjh01Nw2za4N9jcb7GVinMX7:eeF50fw2za4N9jcb7GjX7","tlshash":"e352c7aab660dcbd51d545cba07a2320b61d3944b247eca4f5acd8c650edccca131f7e","first_seen":"2026-01-31T21:55:36.122532Z","last_seen":"2026-04-26T05:50:21.795583Z","times_seen":245,"resource_available":true,"data":null}},"time_used":359,"timings":{"blocked":83,"dns":48,"connect":17,"send":0,"wait":154,"receive":0,"ssl":54},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/award_6.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.480Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/award_6.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:00 GMT\r\naccept-ranges: bytes\r\ncontent-length: 31066\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":31066,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 203 x 423, 8-bit colormap, non-interlaced","md5":"ba325459bf6e9b3892a67640c284dcef","sha1":"d75b02f28dad2346b72f12af76b5d08dd7bdf3cf","sha256":"917417ac484ee4b5826a814b18416126fb36d7733539bb71f17bc2c78559f519","sha512":"f19201871b2f757ff13d01132c929692ab5fe240c2c1dc3fc446cb25cb54ed51304882bf234aeb70cfeeec8e8bd21e28826d01db6caf8559b87d2a1434c06565","ssdeep":"768:oBh1j8NO84eJtODP12/fJ5DAyLSnOXEs158Nqq87sHgiI/hvM:oBAN5H8P12fTHSnOUYgJ8IT","tlshash":"45d2e1595c1df2ab3ade2033f676d183f1f378f88b97316708ea57995421262236127c","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.054371Z","times_seen":104,"resource_available":false,"data":null}},"time_used":488,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":477,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/report.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.486Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/report.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:20 GMT\r\naccept-ranges: bytes\r\ncontent-length: 13375\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":13375,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 671 x 523, 8-bit colormap, non-interlaced","md5":"6cf198171cb1a03e0335425d4e2ac534","sha1":"05e93e6cd452a2a7b40b9224ce5c134f6e6d3bdf","sha256":"5e2bf546a0dd6889a76ee772556a05233791862ca0041323cc2c4da4b3999e3d","sha512":"422cbb9df794fcc6b43c538185fa235cb969becf57d84279681f90c4a08c1376b71681e1b4f3624850d4776d9522479c5458e2a3dff70173b1ff8acb575c45ca","ssdeep":"384:lVEAGQ3/ynd+8cGJMcDSDm2q9KhXnRkl6:XEA3ynAGRSDmz9oXnR9","tlshash":"3752cfb4fb4dcad0d829f58a04a528fe69bd81335e4fb637c853fa162b310167b74000","first_seen":"2025-08-08T07:24:19.693196Z","last_seen":"2026-04-10T14:26:23.85698Z","times_seen":11,"resource_available":false,"data":null}},"time_used":509,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":508,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s3.tradingview.com/external-embedding/embed-widget-forex-cross-rates.js","fqdn":"s3.tradingview.com","domain":"tradingview.com","tld":"com"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.496Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.tradingview.com","organization":"TradingView, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Oct 2025 00:00:00 GMT","end":"Tue, 17 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C4:FE:64:00:30:2A:CD:16:30:95:7E:E1:70:D1:31:3A:D6:33:3A:CC","sha256":"87:D2:67:7D:3E:02:F0:3B:58:BD:38:17:DA:FE:73:C0:CA:25:F9:58:CC:11:14:E0:3A:6E:C3:58:84:9E:BF:52"}}},"request":{"raw":"GET /external-embedding/embed-widget-forex-cross-rates.js HTTP/1.1\r\nHost: s3.tradingview.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\ncontent-type: text/javascript\r\nserver: BunnyCDN-NO1-830\r\ncdn-pullzone: 1837468\r\ncdn-requestcountrycode: NO\r\nvary: Accept-Encoding\r\naccess-control-allow-methods: GET\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3000\r\ncache-control: public, max-age=300\r\ncontent-encoding: br\r\netag: \"49a843790981c7c000a3c7af4caab167\"\r\nlast-modified: Fri, 10 Apr 2026 10:05:42 GMT\r\nx-amz-id-2: WmUaGLbj0YsL6C/KwnJOcC6DfUK0p6OhTlvPsM37hGKNq/BhG12+x4BLlhEQ1KEWgWHE4TyQTio=\r\nx-amz-request-id: 67YX2NEZMNBPMAF8\r\nx-amz-server-side-encryption: AES256\r\ncdn-proxyver: 1.50\r\ncdn-requestpullcode: 200\r\ncdn-requestpullsuccess: True\r\ncdn-edgestorageid: 830\r\ncontent-security-policy: default-src 'none'\r\ncdn-cachedat: 04/10/2026 10:39:47\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\ncdn-requestid: 96cf6b7a040cab821e0bf1d9c4252618\r\ncdn-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":12980,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (3458)","md5":"49a843790981c7c000a3c7af4caab167","sha1":"60c2d09f65c24847214f68b54eff2477a964c20a","sha256":"327739d59c941e5cbb02d9cef309b07b432234fc88a10512af27d330047409b0","sha512":"5ec250ee77656b5123ef7e50f0036d5e980aba37a3c913ebed2b9d82028234e1d9fe4b3a8a0e22730a823c24cc0d551603a24639e5b661e2860a9b2f6a2a62cb","ssdeep":"384:vgXsuCWoofYkFdjh01N92sbjc9uKF+SVPtME9:IXF50f92sbjc9uKF+yyE9","tlshash":"1f42c89ab660dcbd91d545cba07a2321b61d3944b203eca4f5acd4c550bdccca531fbe","first_seen":"2026-01-31T06:33:31.006281Z","last_seen":"2026-04-26T05:24:25.407523Z","times_seen":274,"resource_available":true,"data":null}},"time_used":220,"timings":{"blocked":73,"dns":45,"connect":19,"send":0,"wait":19,"receive":0,"ssl":59},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/particles.js-master/demo/js/app.js","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.499Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/particles.js-master/demo/js/app.js HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 14 Jul 2022 21:23:58 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 801\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2821,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"95c713a2a098155b7c47d7168b7bf56c","sha1":"f4692619f43e430885eeb3147b8461345f178d05","sha256":"a5a25613d0c2d94b02571d30877b49a58b0606653f41e34fded8e29e1d47dd25","sha512":"4cb976451319076149cf5ba199097f8b6e6b907637414a98593409e2018898a3e8fd0e9c4d00d95abbedd88b52f3183c37f4d643eef5c9f3f4b90fe487978fb1","ssdeep":"","tlshash":"f6512329edf41db3105af03508be5247f530895b4d1a3d3aba4c829c5f0ea2d61be7e9","first_seen":"2023-03-07T14:38:38Z","last_seen":"2026-04-25T05:28:11.842883Z","times_seen":201,"resource_available":true,"data":null}},"time_used":544,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":544,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/folder/css/toastr.min.css","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/folder/css/toastr.min.css HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 14 Jul 2022 21:21:28 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 2654\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":6454,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (6454), with no line terminators","md5":"f284028c678041d687c6f1be6968f68a","sha1":"a668ec5d16eec86372216a8c1b161cdec3eebecf","sha256":"47dd690f8f315bea076e92581a7e7147443bb4c847e313ab5a7d50a8c44836d0","sha512":"e92d875b3545c6bb83959c48dec5ce659e3f789f007319101f5f898d27bf38d084a91f4be18b2ae49753e62a6ab7353b5876a5370cf006ffa2139d6034724da9","ssdeep":"96:XKZGSoKiejY1Sq9octKokNM/WQ78GhJZCjts/WP+zLmlDI/WKG8Czy4/WVMz2Tb3:XKZ6yjY1SqvKbBY8syRttzGjVMSbO6r","tlshash":"9bd18431da81361dfed3811af45966092d0be1b3e6ee5dae250fa1bcd2c67d06c33280","first_seen":"2023-04-05T23:07:13Z","last_seen":"2026-04-26T11:04:07.468781Z","times_seen":15158,"resource_available":false,"data":null}},"time_used":273,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":271,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/folder/css/style.css","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.466Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/folder/css/style.css HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 14 Jul 2022 21:21:28 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 1422\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":5514,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, ASCII text, with CRLF line terminators","md5":"a3282a19695ec7819458ae8ef2931f74","sha1":"833860c03348e8cba48e61f554009a5347e3ca84","sha256":"a0aceb5bc4dce3f2f2de2efb3bff6b27f46259f1ac87bd656f578c6d759823fa","sha512":"e534cac965357d88e63d1e089de9e319dec6add92b275728c0d0f7908ae31fe646795a8b5ef813267c8962e93e7a181157c6c1ef85c607070c8d616ea5653e4f","ssdeep":"96:7GGgtRKu83XjQMinvQrzQFp2kzVYEYWDv32T+3NUQ1HqZp5TVH8IzZWgZWsTo//b:U0u8HjQMinvQr0n2kBr7DvGT+36Q1Hqy","tlshash":"5ab1158cd954318de623a4e8eff60769fd5900936b0b82e6fcf1621cc75e02966637d8","first_seen":"2025-05-10T20:34:32.94465Z","last_seen":"2026-04-19T05:43:33.032067Z","times_seen":36,"resource_available":false,"data":null}},"time_used":270,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":269,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/uploads/testimonies/thumb/6a13ca5cb7536acada3f32ee1d5783de.jpg","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.490Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/uploads/testimonies/thumb/6a13ca5cb7536acada3f32ee1d5783de.jpg HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 14 Jul 2022 21:24:12 GMT\r\naccept-ranges: bytes\r\ncontent-length: 51481\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":51481,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 100\", baseline, precision 8, 300x300, components 3","md5":"8b51f25b6a5772f7376b7e9b93558dd1","sha1":"09aba1066bf8b98905c281cba7129f4af55cbbff","sha256":"6708807d3a3ab4f9dcafd1ed76b168426ae19d1235a06ba5a0bd7e9e5d7dc8b8","sha512":"c573d8da305c61a97bad9735780550451229b8623ba2ba43c60cac7dc453382e62997a99d5c8596797063ec2a9e1fde8508ce2d992e743b1e3d7566256254a7a","ssdeep":"1536:c7FDVqr4BX1J1MCcTV0crfYFd/Gt0QafL70655:sDVtBX17rcCc7YF0afMY5","tlshash":"f7330182cef201629d99c0ebd0ec1aa420197371a2ac36bff6096166d550e7f68e518f","first_seen":"2023-11-06T03:49:07Z","last_seen":"2026-04-19T05:43:33.037651Z","times_seen":63,"resource_available":false,"data":null}},"time_used":510,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":193,"receive":317,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/logo.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.470Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/logo.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 28 Jul 2023 16:45:49 GMT\r\naccept-ranges: bytes\r\ncontent-length: 40150\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":40150,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 129, 8-bit/color RGBA, non-interlaced","md5":"1dd0040f46fe67ccf55c36a417a6133c","sha1":"a0f79524a21fd6483d42a9c72ac38107b9b31324","sha256":"ced49c882c69359f7fe2d6a8861144f19b17cb25c77cca6a289471eed3a54cd5","sha512":"b0c35748aeebea402f708bbbcc87efe474dcea74db0865240fa3324b0e3e3eb0d4d25e2ebde1a17ccde86dbd4a586c89222b8f649001ef0527c164b9d82b0037","ssdeep":"768:FzWTOQ+iDHK7pzYxoEhUTkY+5lLUVOqlTKIWK7Ifzze14qSPzin/a7:FpiYzYxTUwYqaVLeIWK7Se12zinm","tlshash":"d303f1b613bf0d77da017c08a974e93f19c24a720096af09dcde3a117b20b8690f62a4","first_seen":"2025-08-08T07:24:19.661719Z","last_seen":"2026-04-10T14:26:23.869088Z","times_seen":8,"resource_available":false,"data":null}},"time_used":303,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":273,"receive":30,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/profit.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.475Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/profit.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:20 GMT\r\naccept-ranges: bytes\r\ncontent-length: 4169\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":4169,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"1759fafaab107eec598be3c962f5c343","sha1":"2e93e6c09a06b4038f667cd57c8ff09fc7e2e4f1","sha256":"cae5148b1c2c1adefe6a8e0b74de0ec1aabea3f51865c1c19c1d07559db2ff79","sha512":"07752bb9b7cb62e49f1e71f234610b8406e6e04a0e507bff7b2ae96c92f3e76c5556ddc3fcc69d6215a78c74abfdea0e2aa52b43b72a3cf6666ac3d17484a51e","ssdeep":"96:CSDZ/I09Da01l+gmkyTt6Hk8nTrqTf9wUVfy:CSDS0tKg9E05TYGUM","tlshash":"80817e3f9da0f49feea872700dcd16499ba431ac0653363859d669dec052d06e729070","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.06924Z","times_seen":74,"resource_available":false,"data":null}},"time_used":331,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":170,"receive":161,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/payment.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.483Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/payment.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:16 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1798\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1798,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"65f534e8dd7660fd82f85a25a82f8eba","sha1":"39d68a8b92d7f9a5e379c9dc6c09490de497f828","sha256":"09ca0764997020f208830cc4b59c3b16d6d24582036df9e6cfa506331d5e914e","sha512":"495138fbd32f5f9c3c5d3699e271a318c1e27e2036b2130ec96d5144abd0a633cc328c20f242c67a9b0ee8b7b586c1ddbc8be593f4f681d0cab6d1a21cf1f518","ssdeep":"","tlshash":"45314d8c3720b5e4593fe131e0af00d07c286b955a83562bd5e5057bf0f43e94167e63","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.06814Z","times_seen":94,"resource_available":false,"data":null}},"time_used":510,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":509,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/security.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.484Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/security.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:22 GMT\r\naccept-ranges: bytes\r\ncontent-length: 3335\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":3335,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced","md5":"f60ed47a6e602063087fae508b50e938","sha1":"c59db289e7f996504ce6446920e2556a49b4d4e3","sha256":"d83804baa41a180b4781945f6cb3561247133ed52d95970b8cad8f8d8278353a","sha512":"2784145456e7f51a2e84ed3f476b809380670835e3967701a3c13be4bf7006ce2c1c6cc345b642af0213b5335e610a441584bfe28533b896f5b447b1c2a532b6","ssdeep":"","tlshash":"0f616d8a9420f73adf624df17623bc64193347654b235f63f06265f06b652232188ed2","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.065146Z","times_seen":94,"resource_available":false,"data":null}},"time_used":187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/team.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.485Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/team.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:24 GMT\r\naccept-ranges: bytes\r\ncontent-length: 2325\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2325,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"3dd38c9006b5276d281ba57a4a9d3bc0","sha1":"3e8f1177e2824acd8c8e01db2a2b0d5aeb6c9f1f","sha256":"e5283e947b9886639382d64149829af9c637d19657a8dff603a6393f704c13a9","sha512":"e07df2b08ab9b1a644ce0bf96f4819c70d0491a88c05b5ecf10bce198742ddc8cd26541b13dbe2560fce2fcf68151edb1cb3c6948d5f2f17470e49fb4a6f75da","ssdeep":"","tlshash":"94413d56ce710a9d3813f796ca5e1830f5b1048c2398c10f9b552d1af3de6d04d07aec","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.069768Z","times_seen":89,"resource_available":false,"data":null}},"time_used":508,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":508,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/uploads/testimonies/thumb/b9f89f516a2fe649a582c2a79c68b54e.jpg","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.491Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/uploads/testimonies/thumb/b9f89f516a2fe649a582c2a79c68b54e.jpg HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 14 Jul 2022 21:24:14 GMT\r\naccept-ranges: bytes\r\ncontent-length: 56871\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":56871,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 100\", baseline, precision 8, 300x300, components 3","md5":"340f723070c760a49c4d6a0ba2d0c28a","sha1":"20a2b23b376126f2186a1e5c8746523178e14c98","sha256":"1ad8d6927a883fddab481fb73510ae6bcd0b155257ac7f39066acd414fff608b","sha512":"64a21ba7ab197f2373dacd833e9de3ea1411ee4b7562cf30fc907587b0dafa3845a6ecdcb34907d2e83a53ee18aa59da91b4483f30bd6e99485ee77089a3f67c","ssdeep":"768:ccJrvjeOADmj/6G3ynTOeL1KIuDSMDpuXTPDDv+9qjTisrNr2aszgw:cK7m66o8nLzuD4Du9AbNr2aNw","tlshash":"ef43025c05f937aa8a7605f6884df7dbab92867b0d434408eb38a792c1f5d104f51e73","first_seen":"2024-09-19T22:37:12.325048Z","last_seen":"2026-04-19T05:43:33.055396Z","times_seen":62,"resource_available":false,"data":null}},"time_used":515,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":506,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/uploads/testimonies/thumb/3bb0c25db86d31daa3594a502b6c4334.html","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/uploads/testimonies/thumb/3bb0c25db86d31daa3594a502b6c4334.html HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/html\r\nlast-modified: Thu, 27 Jul 2023 22:14:16 GMT\r\naccept-ranges: bytes\r\ncontent-length: 156\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":156,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with no line terminators","md5":"0d112989680d38dbc527bf2fcb48d490","sha1":"b42020815b1d362e16ad51befaab3fc48726a31b","sha256":"9aa74018996d1fc42e6a0c8a79eb99e62e90bd8aeb6bdf02fde37bc2c1958325","sha512":"9cdb42c9ca93c94cc64de771f214d746a0feaa92fbe95577f3639bc962899aa81e2fd4d20015157f257770feedf8a404977f2901416a7a9483bb7f19cfdc5a95","ssdeep":"","tlshash":"00c08cfa5b04106ba82b289026d032880da5144726e00990246823abfe88050cd302a8","first_seen":"2025-08-08T07:24:19.643874Z","last_seen":"2026-04-10T14:26:23.877037Z","times_seen":13,"resource_available":false,"data":null}},"time_used":236,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":236,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s3.tradingview.com/tv.js","fqdn":"s3.tradingview.com","domain":"tradingview.com","tld":"com"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.497Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.tradingview.com","organization":"TradingView, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Oct 2025 00:00:00 GMT","end":"Tue, 17 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C4:FE:64:00:30:2A:CD:16:30:95:7E:E1:70:D1:31:3A:D6:33:3A:CC","sha256":"87:D2:67:7D:3E:02:F0:3B:58:BD:38:17:DA:FE:73:C0:CA:25:F9:58:CC:11:14:E0:3A:6E:C3:58:84:9E:BF:52"}}},"request":{"raw":"GET /tv.js HTTP/1.1\r\nHost: s3.tradingview.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\ncontent-type: text/javascript\r\nserver: BunnyCDN-NO1-830\r\ncdn-pullzone: 1837468\r\ncdn-requestcountrycode: NO\r\nvary: Accept-Encoding\r\naccess-control-allow-methods: GET\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3000\r\ncache-control: public, max-age=300\r\ncontent-encoding: br\r\netag: \"fd560649121156073923ce51d3f04348\"\r\nlast-modified: Fri, 10 Apr 2026 10:06:27 GMT\r\nx-amz-id-2: ts8FzfhyBAgl1y9Vg4Ilc3+aY1g6r4SLQxKvFVYmcBsGItLhJWx3/T6/2MeeYO7cyISCAR2dhWY=\r\nx-amz-request-id: 8GYDGJ1QQMYPVDTX\r\nx-amz-server-side-encryption: AES256\r\ncdn-proxyver: 1.50\r\ncdn-requestpullcode: 200\r\ncdn-requestpullsuccess: True\r\ncdn-edgestorageid: 830\r\ncontent-security-policy: default-src 'none'\r\ncdn-cachedat: 04/10/2026 10:08:20\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\ncdn-requestid: 3b9dbe5e0d1483c8689f752f4fd786c2\r\ncdn-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":21309,"size_decoded":0,"mime_type":"text/javascript","magic":"data","md5":"fd560649121156073923ce51d3f04348","sha1":"bf3bf0105aa9e01a4f453898da7131486e2d583b","sha256":"e6d5c0aef4b2cfe736dd64b0761aa2807a25f6f84018c33f02c00cf654e110ac","sha512":"127a919f82388dd09f1042abf42efe6108ccf2f63ba3527bdc84ab7d9692ce3e83fa7db3dcbe6f538c9ec159031aa8ff2c4b5f119a5ac104abe8be23b85db550","ssdeep":"384:EqhCtUi8k0pwkp8EpXWpvS2rfVujtkl2okhIuWea1pYp4t6YJjlWm0yoVymbLP:EqZi8k0pwkp8EpXWpvS2rYj9okhfWeWa","tlshash":"48a2d76db5807a3c028700ee306f320c753765a4e10149a4fa78abe59558e8ea277fbd","first_seen":"2026-02-24T18:19:55.948124Z","last_seen":"2026-04-26T06:38:22.330981Z","times_seen":208,"resource_available":true,"data":null}},"time_used":186,"timings":{"blocked":65,"dns":29,"connect":19,"send":0,"wait":17,"receive":0,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-10T14:25:55.747Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-powered-by: PHP/8.1.33\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: no-cache, private\r\nset-cookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; expires=Fri, 10 Apr 2026 16:25:56 GMT; Max-Age=7200; path=/; samesite=lax; secure\nhyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D; expires=Fri, 10 Apr 2026 16:25:56 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"BootstrapCDN:3.3.7","description":"BootstrapCDN is a powerful and reliable Content Delivery Network (CDN) that delivers static resources, including CSS, JavaScript, and font files, for the widely-used Bootstrap framework. By leveraging multiple server locations worldwide, BootstrapCDN accelerates website loading times, ensuring a smooth and visually appealing user experience. Additionally, it ensures website compatibility with various devices and browsers. The service reduces bandwidth usage and server load, improving web performance for developers and end-users alike.","website":"https://www.bootstrapcdn.com/","common_platform_enumeration":"","icon":"BootstrapCDN.png","categories":["CDN"]},{"name":"particles.js","description":"Particles.js is a JavaScript library for creating particles.","website":"https://github.com/VincentGarreau/particles.js","common_platform_enumeration":"","icon":"","categories":["JavaScript graphics"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Bootstrap:3.3.7","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]},{"name":"PHP:8.1.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery:1.12.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":227432,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1223)","md5":"c4d1b3d2e66ecb8cb65d557f4195ed9a","sha1":"f7067614f4efb8ef192256946a824df1a37f9824","sha256":"88ab6222f3c1c599d052d90b99c27998bc70ea52aa4e1a75bf2374922a613f25","sha512":"9103474adf6a69a1e54747d5df53b31bff054be0126cc3b35dda8bcf9ae5e6b1bee294c3c9310feb33b64c0d7fc780f8bc613c5b3e070ed3f59ba15d9422394a","ssdeep":"1536:7UuqObnTZZsSWcMiTWeMiTW5QzMiWxMMiWxcd9dRBPo8+Ana/JRjuk8+/ot1qnn6:YTObQAd9dRBPo83a/JRjuk83N","tlshash":"3b249461e0f62b33908341e69a665f273dd1811fcb1b5b8437fd07ea2f86ca1a91364d","first_seen":"2026-04-10T13:11:43.908229Z","last_seen":"2026-04-10T14:26:23.879195Z","times_seen":2,"resource_available":true,"data":null}},"time_used":728,"timings":{"blocked":173,"dns":1,"connect":87,"send":0,"wait":370,"receive":0,"ssl":94},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 14 Jul 2022 21:23:54 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 18290\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":121470,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65371)","md5":"175c02a136b2ad82806b9b33736b5a69","sha1":"e5dfb20142280c784ff61b05a1da338ed64483f2","sha256":"817c144a7de95c03dd00337f2e6c0011e9afa24044999d4c52615ee90a6765a8","sha512":"20daaee699453e0bd3bb00093e8baabae37907b4b7aa777fbc8ff4ee7e99602f1b627966d1684870c1661e319473da16014f4a040e90de06a0a66e8549d90958","ssdeep":"768:Vy/Gxw/Vc/QWlJxtQOIuiHlq5mzI4X8OAduFKbv2ctg2Bd8JP7ecQVvH1FS:Tw/a1fIuiHlq5mN8lDbNmPbh","tlshash":"8cc3c7a0f21031ea7333c55a75d0ed872219a153e56a4eb7f22f25d88f845cb16b3f1a","first_seen":"2023-04-09T05:57:58Z","last_seen":"2026-04-26T10:56:23.675599Z","times_seen":78,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":89,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/alert/css/animate.min.css","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.467Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/alert/css/animate.min.css HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 14 Jul 2022 21:20:54 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 2503\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":16952,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (16755)","md5":"7da1b41592f039eecd65d604482c10e1","sha1":"e966ec2885d74306b80253ef057ea77546b2c149","sha256":"0add8fcb5a583b1c16238fbe9d0de17c6272726b42be17fdcd9b4686ef5287d1","sha512":"d7e98c416ba684d035ed581279aa30fc4de291d8c15686336bca6f4df677c2ae3a50de16ca56a3b8a26f2f07f20f8ef3c063385d49772f70835707372aabee4f","ssdeep":"192:Byq6Vn0u6SBWTRNS3DW5WfW4vLYz3i6PSz/hQQHL:BV6VHTgH4vLYz3i6PSbhTr","tlshash":"46725d4c4a50105941a60773dac89fac863dcbdb68722cef3396588f4b457ee23ea617","first_seen":"2023-04-05T15:14:36Z","last_seen":"2026-04-26T08:36:53.864208Z","times_seen":2180,"resource_available":false,"data":null}},"time_used":273,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":270,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/deposit.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.474Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/deposit.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:10 GMT\r\naccept-ranges: bytes\r\ncontent-length: 4845\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":4845,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"eb6f6b984ad8f57530ff1176c3a07dc0","sha1":"3af6bb34e7c8081fd6c39f71c7e7c9a85d74b6ff","sha256":"6cca846ce09e68dc1103cb134b386fc143ec39be3f0cde1b893aacc00887c4ef","sha512":"a8c9a1638aac053ac142a50d3dcf16299230eb8d871cf6f519a3aac00197e813b33478f09ac384a8584ff6b8b9dc003e393e3f197fab00299f9dcb89b968db72","ssdeep":"96:DSDZ/I09Da01l+gmkyTt6Hk8nTizyCqoyLXHWERgAfbh2yunUfdPS8e:DSDS0tKg9E05TizyCqXlgAjhLrk8e","tlshash":"dfa17ddf9ed029ae74bdba220d4d5202dba7125c9a627734b2c326cf1081f167b3947c","first_seen":"2024-09-19T22:37:12.263474Z","last_seen":"2026-04-19T05:43:33.042438Z","times_seen":62,"resource_available":false,"data":null}},"time_used":328,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":124,"receive":204,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/award_14.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.480Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/award_14.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 28 Jul 2023 16:29:27 GMT\r\naccept-ranges: bytes\r\ncontent-length: 104036\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":104036,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 246 x 463, 8-bit/color RGBA, non-interlaced","md5":"447c35d5da1b55eee7d52d4dfdfc047d","sha1":"a5cbd6a13e23e4d2fe09c56ad96f873297654db4","sha256":"b28cdab45ce1048666bced01828013d255f67676a78b7fae10ff39893b1b79ca","sha512":"e93b7a4ff31e899c56eaab24999714ece75ac4b71861dc42db8981708437da51a3fb6c4b76b50fc7402b75dfb44ce706c64d20e3bce0b4e2fca5f5f82b7a880d","ssdeep":"3072:/kF9SpHqXL6xXd+fvotqETQcRLiBE40nFOUL:09SpKXm0fvHLOuBInB","tlshash":"74a312eac2e62d5cb52e19f0c35c6bc1a642f8e5d83719952951487c3eb2e3e3ba41c4","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.032597Z","times_seen":102,"resource_available":false,"data":null}},"time_used":480,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":178,"receive":302,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/exchange.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.489Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/exchange.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:12 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1978\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1978,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"e6dbf1a964b2a1c1ba00617514582e35","sha1":"ba7c97d7e73c6b2abc218e9ebd7271d8727dc5b7","sha256":"7378c30dceb77d0154c0eb9d0a3a2ce3e9c97f0e0ab82088a03888fe6cd04d11","sha512":"947227a2cf8d1cde015bb3fcb040b116c671a6d03893777906009adbf47fa74ecb6c8ba4603256690d9f8b02cc981bf391aee2668be81d319b1672c5d839ece4","ssdeep":"","tlshash":"dd41289852a22108d9b220a362dd05fc7f39a3e763c5810ad0a2eb503ed36462c8624a","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.030961Z","times_seen":93,"resource_available":false,"data":null}},"time_used":189,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":189,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/uploads/testimonies/thumb/073083847b775a5132b3626f9c36ab2b.jpg","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.494Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/uploads/testimonies/thumb/073083847b775a5132b3626f9c36ab2b.jpg HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 14 Jul 2022 21:24:10 GMT\r\naccept-ranges: bytes\r\ncontent-length: 53327\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":53327,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100\", baseline, precision 8, 300x300, components 3","md5":"8e136a6f7464da88aad036b87c47da0d","sha1":"5e46a9cb8c7d5c89dd2e2941ba24738e6e308376","sha256":"4ef0769819d7c454e5ddb813ed36cea1abe62c1c70fb47dbf36adb2836099308","sha512":"9c73647ceb9f403c0e4e0a9260fd09b7084be45f2527882eb88e3a922cfa231a8fef14736e54f5e6dbb4a0eb679ad28a46c3cd03c678774ebafab318f2c89d85","ssdeep":"1536:T36HAZlAkX/AvQVk57lGqimyNdD52KhL2Us:rdLAvwW7lzxyNlhA","tlshash":"6a33f12436b4a79707d2abe865b3eab1471c1686050316b17d37d230cef704e3e8d9d6","first_seen":"2025-05-10T20:34:32.931724Z","last_seen":"2026-04-19T05:43:33.03364Z","times_seen":49,"resource_available":false,"data":null}},"time_used":550,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":234,"receive":316,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/particles.js-master/particles.js","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.498Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/particles.js-master/particles.js HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 14 Jul 2022 21:24:00 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 8758\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":43028,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"6a6bae7b0ace5cc956dc262879fb0592","sha1":"dd943e705f20de081b9ef3f35848aebc2d560bd2","sha256":"d5e1425fc0e89fb204941ca2fdade83d5856abec042b31b0e2f2ff51c355ca78","sha512":"88a3d294ef6b4b61b68097e96b4bae02814391c17f88ab99b35717b0eeb9f562f301ab7fc67756812cbe8f2040785f7db525e74d27a9e3125b59ef106e97256f","ssdeep":"384:TxzjtwGGs5YQWS+ngXFlkjXEFOcQmxm3DO3p3z8CIopbubAi4OUlLqozr+XDhYnu:9t+BDcpz88pbuM+Uo0r+XUd1FAebBC1L","tlshash":"e1131e8d5bfb18632697b1b84fdf8001e73080db1a8b95a5fc6c0258cf98655d29efe4","first_seen":"2023-06-24T04:44:27Z","last_seen":"2026-04-25T18:53:07.967163Z","times_seen":42,"resource_available":true,"data":null}},"time_used":546,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":233,"receive":313,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/translate.yandex.net/website-widget/v1/widget5672.js?widgetId=ytWidget\u0026pageLang=en\u0026widgetTheme=light\u0026autoMode=true","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.472Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /translate.yandex.net/website-widget/v1/widget5672.js?widgetId=ytWidget\u0026pageLang=en\u0026widgetTheme=light\u0026autoMode=true HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 27 Jul 2023 21:11:22 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 2838\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":12564,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text","md5":"68141642294e46aeecc093f1a63c6cef","sha1":"31f323e7cbba8d30684fb9c3ddbc216b10cf7282","sha256":"416eaba4aa23ef710bb9b87bc07d1b4b2d2c559d91a6ae8a115eb19a1a2cd4f3","sha512":"0ebb39388fab26466806bf19a0f469f4283092584bae951e4bd78277927a4f161406a8e6fea00058bc78464292379e855eeeab5eb9ad2b154fcda2063faf6ff8","ssdeep":"192:E5o7XrVWI8YWdDEWvfz8tFMV+xpTyzYfrUyzgoWcC6TCpULkHpYEyr54YAqDkr3M:D7XI3vfsFMVQpnLjrQ56N","tlshash":"09420e1829f22030c567747f8f8f61087539905fa009ed517ead86c89fa49385beafad","first_seen":"2025-08-08T07:24:19.668809Z","last_seen":"2026-04-10T14:26:23.887103Z","times_seen":10,"resource_available":false,"data":null}},"time_used":302,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":302,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s3.tradingview.com/external-embedding/embed-widget-ticker-tape.js","fqdn":"s3.tradingview.com","domain":"tradingview.com","tld":"com"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.473Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.tradingview.com","organization":"TradingView, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Oct 2025 00:00:00 GMT","end":"Tue, 17 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C4:FE:64:00:30:2A:CD:16:30:95:7E:E1:70:D1:31:3A:D6:33:3A:CC","sha256":"87:D2:67:7D:3E:02:F0:3B:58:BD:38:17:DA:FE:73:C0:CA:25:F9:58:CC:11:14:E0:3A:6E:C3:58:84:9E:BF:52"}}},"request":{"raw":"GET /external-embedding/embed-widget-ticker-tape.js HTTP/1.1\r\nHost: s3.tradingview.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\ncontent-type: text/javascript\r\nserver: BunnyCDN-NO1-830\r\ncdn-pullzone: 1837468\r\ncdn-requestcountrycode: NO\r\nvary: Accept-Encoding\r\naccess-control-allow-methods: GET\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3000\r\ncache-control: public, max-age=300\r\ncontent-encoding: br\r\netag: \"61bb725d0205b47ccbf8162145546221\"\r\nlast-modified: Fri, 10 Apr 2026 10:05:46 GMT\r\nx-amz-id-2: h4jdHtKR/5FxgWN1noeVWfOHkHZbl9q+cLMLilvrrpv041U4yqkRInod/rjG2kM79TH3R1Zp4NSDUisMVr3n9xt6rdJ+ryMX\r\nx-amz-request-id: GQ6V6ZMTJR7CRF6D\r\nx-amz-server-side-encryption: AES256\r\ncdn-proxyver: 1.50\r\ncdn-requestpullcode: 200\r\ncdn-requestpullsuccess: True\r\ncdn-edgestorageid: 830\r\ncontent-security-policy: default-src 'none'\r\ncdn-cachedat: 04/10/2026 10:11:07\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\ncdn-requestid: b3e1b452132bf446eeb587dd6a01afad\r\ncdn-cache: REVALIDATED\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":13672,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (3458)","md5":"61bb725d0205b47ccbf8162145546221","sha1":"75c88e6f6828b2a6e4b23987f709b24157ddce5d","sha256":"aa844315620f2ad8d42bf8d07f9795b4ad3df24a1bc448f4cf5b7f33feda0577","sha512":"c281d1f1cf2e408d9a0152e623cedfb47c01aadd48d9993ffa7eedaab3aad77fe1c5f4925996beb43e26e2e1ff6a5c2b242717111ed62a3947697c16ebb01bd8","ssdeep":"384:vgXsuCWoofYkFdjh01Hr2sVVc9rKp+SVNtMEjRYP:IXF50lr2sVVc9rKp+yEEjRw","tlshash":"0f52d699b660d8bd91d945dba07a2321b6193a48b243eca4b5ecd4c510fdccca131fbe","first_seen":"2026-01-30T17:20:23.614215Z","last_seen":"2026-04-26T05:57:26.947728Z","times_seen":1259,"resource_available":true,"data":null}},"time_used":373,"timings":{"blocked":98,"dns":29,"connect":19,"send":0,"wait":163,"receive":0,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/withdraw.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.476Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/withdraw.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:26 GMT\r\naccept-ranges: bytes\r\ncontent-length: 3609\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":3609,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"1bee144f41c1eb7468ac09b780e54e81","sha1":"3d0ffbe17fbfa0f93bd23977fab5fcc1178118c3","sha256":"6bcbedea83b42def5569b374663dc75544d93a0f3d5a1b5ee0a0027e4ea3b282","sha512":"5cf9ba3317be32861bf538ed37350f18ca00680f96fb54021f0268e1633eca44a86f9f82c9fda5b836c161565d0d2f60db38c8e34aab4a4a8cfbe7bf90786eee","ssdeep":"","tlshash":"d8717d9fc6a090cf986d7a020adf8542972972bcd1262238a8d058ce94e4c077fad1b5","first_seen":"2024-09-19T22:37:12.283592Z","last_seen":"2026-04-19T05:43:33.04357Z","times_seen":63,"resource_available":false,"data":null}},"time_used":331,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":156,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/uploads/testimonies/thumb/d0dc97df36b4e9ca261bb1a3e7cfacbb.jpg","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.494Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/uploads/testimonies/thumb/d0dc97df36b4e9ca261bb1a3e7cfacbb.jpg HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 14 Jul 2022 21:24:14 GMT\r\naccept-ranges: bytes\r\ncontent-length: 81051\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":81051,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100\", baseline, precision 8, 300x300, components 3","md5":"1664a577e5e3837caf5317ab0716c18e","sha1":"adf37280e4795883bbf7a285e43c454265140e59","sha256":"e319119fc2033ed16f767193591c8976cfefdda4fa8e44df3715ab51dde0ba64","sha512":"ae8f166bc38f06bfeb3e24ad6f5bf341f887da304a173ff2195c94531864547cabae267a5814e2d0bd1548a3c256d307a77ae3d1f9ad5bac5c349108d684507c","ssdeep":"1536:TPgevELGtrcX0Fzq8jCErDVFXundVyJolOu67aF5F9ZN3zKqqaTTXGW1/h659Br4:zhEKHDT+nDyJoljlZb3zvqMPth65/Mky","tlshash":"bf83121f4a3080beb298ecad80c07f1513a9555cfa1e3a4a316b14aef4e3770978779d","first_seen":"2025-05-10T20:34:32.929206Z","last_seen":"2026-04-19T05:43:33.065603Z","times_seen":49,"resource_available":false,"data":null}},"time_used":545,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":528,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/folder/js/notify.js","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.501Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/folder/js/notify.js HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 14 Jul 2022 21:21:44 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 8335\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":21509,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (1497)","md5":"60828119043daf08ef9ec9dbe4ccdf54","sha1":"f6ca32f9c4be741da5583fcedd4516ef642ec4ae","sha256":"c82fbf49f3ae856eced6eb79df7d71b2da2a0bd2e359c26a7e7db9063e6ea54a","sha512":"f234369eaebd195408380044eec265a78e080d57b2af2ea28ee44e95ef304ee31d0e0b3a166044daecb5859e7e9db8ea15fb94b21357b488e4108d4a4bc96529","ssdeep":"384:8X7Ukrh4dnb9ilND43sjBWNm8xPU7he6axoOp0w0Ac2qcFhD8F/MKK:XklASND43ssNm8xPmh6ovw0QFk//K","tlshash":"68a2c498f7cd25039273306d182e10ce647de367dd448c9e7db691b828d6938a6abe34","first_seen":"2023-03-08T04:58:30Z","last_seen":"2026-04-25T05:28:24.187244Z","times_seen":311,"resource_available":true,"data":null}},"time_used":545,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":543,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/cdnjs.cloudflare.com/ajax/libs/Faker/3.1.0/faker.min.html","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.503Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /cdnjs.cloudflare.com/ajax/libs/Faker/3.1.0/faker.min.html HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nx-powered-by: PHP/8.1.33\r\ncache-control: no-cache, private\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 496\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"PHP:8.1.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}],"data":{"size":1191,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"489e772c6d0f6d48883b98d679ed8a0b","sha1":"846104f10d04198cb7c3eb41998c67b701f09d03","sha256":"baf98a08071d7036d8f05c8cb2ef0893e0107f48e43c08f21b38568a7d5fb0da","sha512":"4e51a58b0db006d5934a6c27454ca63b6c8b2f7f885e818781da7254b3cf5d63b0b58a06262f549bba1803779f3582d4049675f29949c5a3ca3cda5b5bc7a923","ssdeep":"","tlshash":"4321e162c4852952c151910874c12609c687ce1f8bae8e207dae89db7f92e52dcab52d","first_seen":"2026-04-10T13:11:43.920949Z","last_seen":"2026-04-10T14:26:23.890924Z","times_seen":2,"resource_available":false,"data":null}},"time_used":292,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":292,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.459Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 14 Jul 2022 21:23:58 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 6690\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":31288,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (31125)","md5":"00a37b867cdd7bd6b92ba5b7c18df70c","sha1":"9f4d57cc3ed9e96b0891c0d8453cd4904f3b423e","sha256":"0153350ce5ace94708d5b44dc2361ae8b0c6e8abe391723cef8f62985b2db419","sha512":"91d58920ddfb62c0f04c3a6cc9ec9b70ec43f054a5087e00d9dcd99307684565718f996b20fc129b2c46c28a4571af72ca2979cd3417def046bfbb0993eeb1c0","ssdeep":"768:u9fMa4awlr+Klk3Yi+fwYUf2l8yQ/e9vf:owlrniSUf2l7f9vf","tlshash":"c8e252e8e54c01d66731c48bff81b36862b6fb3dd5854da9f01f290c29d226522c5fba","first_seen":"2023-05-17T09:08:43Z","last_seen":"2026-04-16T07:29:44.334916Z","times_seen":91,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.464Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 14 Jul 2022 21:23:56 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 9521\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":37051,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (32039)","md5":"a6b40b3ce40edb17d2a7504a14584679","sha1":"ba02f42b09dae9954e8ce169bcfd56c8363ffc40","sha256":"948d847179045bed3e8e2a13621680921366e4a6fdca222693f4a465eb5c7a7c","sha512":"ea770c8fbeeafd4c6824ff8e4cf0dd81735118838217e658101a59ab2121d74bf1f5d0624b249c796b8a859a565268023375096dabdd9c0935a0e60df6e53e3f","ssdeep":"768:o2rGy27UwlNqMl95qNmCFejhqs8snmiOCSFXfbx8Gf3Zq7Q:Jg73zhq02vbJ3ZKQ","tlshash":"fbf28606b23031a147efb1e1525b020e7239696ee906907c78b99af53db9c48717bf3d","first_seen":"2023-03-07T01:10:50Z","last_seen":"2026-04-26T06:03:59.089832Z","times_seen":344,"resource_available":true,"data":null}},"time_used":270,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":264,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/award_13.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.477Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/award_13.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:21:58 GMT\r\naccept-ranges: bytes\r\ncontent-length: 137455\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":137455,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 467 x 867, 8-bit colormap, non-interlaced","md5":"f835e279adc8ae252dc11ff46ed8f690","sha1":"fbbcc4d7a001d0a3c13df7d2b709d28742360e70","sha256":"b7321b55193adc78cecb0b819b7795dfaaedca15fa24d29aae5ec455fd69fb96","sha512":"33d6a578da4fd328177baee82cd4d9d40aa01eec22491fc9f4765f24b8e327a7af28edf554335a35b8e6c26d015a76b4c625bfc90aa88a5e29ef0047052c523f","ssdeep":"3072:3rcJdRFrGlBDV2RayfVw3t7F8pp0mZGVtYk:bcJdDeDV2RaGVw3xSr0msf3","tlshash":"31d31262ec0128a0622e77efbd75ece38cf6571fe926dfb08e943077856845916080db","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.051859Z","times_seen":106,"resource_available":false,"data":null}},"time_used":384,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":209,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/award_5.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.479Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/award_5.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:00 GMT\r\naccept-ranges: bytes\r\ncontent-length: 30118\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":30118,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 315 x 525, 8-bit colormap, non-interlaced","md5":"44a95f37a7a1a915feaa5eb53c296841","sha1":"2fcccd9ba997863487b9247f698fa96b09f06350","sha256":"bc78539b16bef6b6a67b84ebd97f2fc5d60d3d7dc31f29675a1ff1c5239d2e8a","sha512":"724afa13cd570becafccaa735be39482673c84840c95bbcee12806d1302d635db1dfaa088a84d025b8165f397975ba7f8d117b7674da1b761062ca4c15eb3ce8","ssdeep":"768:q3rE2tykJ3HXJj9C0FdyrD0UO8avvHeQ4gt9Lb/:qykBXF9/3yfI1vHeQ44Nb/","tlshash":"38d2e1de01d6d11c3238498944a1c8b963b27afa9a8c7cd1da6c14067e297978bf345f","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.064602Z","times_seen":106,"resource_available":false,"data":null}},"time_used":461,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":176,"receive":285,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/award_8.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.481Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/award_8.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:00 GMT\r\naccept-ranges: bytes\r\ncontent-length: 180459\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":180459,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 252 x 700, 8-bit/color RGBA, non-interlaced","md5":"9b59a5d1a5c7dbb3aca2c15939b66887","sha1":"ba8eed242593ac3adc0343560a4f59427ac0ff81","sha256":"aba61b4a2ccdee1c140155cd9027756b103d08df8e138b275216fe7113d64102","sha512":"23172075ba15e5f1e0fdd882eaf5537b63d063114aac887bf7f0d4d41adc7f24eedb40e6c49633d45fb5b78cbfeaca0b6c9f4f7f990b541e9324a7c6d51ec782","ssdeep":"3072:pOg2+XHjtmCG/s2pZNQBWQ0IjwnyVkuXeTeTUgl2xMNKa2uF6AFUzIJKaai:pOF+IQPEyVkuXe4l2Gp5F6A4/Q","tlshash":"6b0412e2a1635f504132b093aefe1040dec7c752528dadcd6dce96e89a35683f2c5acd","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.044397Z","times_seen":103,"resource_available":false,"data":null}},"time_used":510,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":189,"receive":321,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/world.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.485Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/world.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:28 GMT\r\naccept-ranges: bytes\r\ncontent-length: 3236\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":3236,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"14acfa7d1035e0815d3d103d6b2eaaeb","sha1":"2645d4605af68ed99bc8b77036e5be7e40197a47","sha256":"5721f55d57415ccb768c116e4217d390ad160001e455bf2739c3628d08005620","sha512":"745d47d722ecf9fa4859729e5629b6038a7a78722bab4fb7c7fbc244de9422f1c1c61bb3ba915248a9fc0336c71479e7312cf848eb46d08983ed36981162f872","ssdeep":"","tlshash":"f3615bfd59a98552b6082488e23b003ddd5fff0175a3b7448c58e4ecb9c2e743eaa846","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.073881Z","times_seen":92,"resource_available":false,"data":null}},"time_used":508,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":321,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/platform.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.487Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/platform.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:22:18 GMT\r\naccept-ranges: bytes\r\ncontent-length: 2665\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2665,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"dcdf5973ed9c4bcb66bbdf2b83d9d393","sha1":"98835f11035a8208ccbdf8aa9dcf8dd0f40930a7","sha256":"8d3630e6e7ed905d0fb75d86bfb804a16677987b42c15e6a3dbc3c972d3f687e","sha512":"1c16ec316584ef9e391717856581a2021546b8ca3e4bcdd019d041424bbf7dfc6bf5514cb98d1514390251b97e911db3638c08e9b054e399a901ba9fa4af9d6b","ssdeep":"","tlshash":"06515ef163657985bf4e436eac1b1d8c0c9643051cedca0cab95d15530e762e8d61bc0","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.070715Z","times_seen":93,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s3.tradingview.com/external-embedding/embed-widget-tickers.js","fqdn":"s3.tradingview.com","domain":"tradingview.com","tld":"com"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.490Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.tradingview.com","organization":"TradingView, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Oct 2025 00:00:00 GMT","end":"Tue, 17 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C4:FE:64:00:30:2A:CD:16:30:95:7E:E1:70:D1:31:3A:D6:33:3A:CC","sha256":"87:D2:67:7D:3E:02:F0:3B:58:BD:38:17:DA:FE:73:C0:CA:25:F9:58:CC:11:14:E0:3A:6E:C3:58:84:9E:BF:52"}}},"request":{"raw":"GET /external-embedding/embed-widget-tickers.js HTTP/1.1\r\nHost: s3.tradingview.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\ncontent-type: text/javascript\r\nserver: BunnyCDN-NO1-830\r\ncdn-pullzone: 1837468\r\ncdn-requestcountrycode: NO\r\nvary: Accept-Encoding\r\naccess-control-allow-methods: GET\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3000\r\ncache-control: public, max-age=300\r\ncontent-encoding: br\r\netag: \"659fe4f480b29a59e16476c2e6ecb0ca\"\r\nlast-modified: Fri, 10 Apr 2026 10:05:42 GMT\r\nx-amz-id-2: WdGj55/18TfdEIY1k0JfeV97dV0cU1A+4z094/9ZqySFrbWWkWMTf+oYhK2oOTuvVLsFLh2EIxkXxim/rni2sZh3noCt+h7z\r\nx-amz-request-id: HVPET6VJ3QJ6Z5NH\r\nx-amz-server-side-encryption: AES256\r\ncdn-proxyver: 1.50\r\ncdn-requestpullcode: 200\r\ncdn-requestpullsuccess: True\r\ncdn-edgestorageid: 830\r\ncontent-security-policy: default-src 'none'\r\ncdn-cachedat: 04/10/2026 10:12:16\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\ncdn-requestid: d1c4835be420a534b475f79116e2737d\r\ncdn-cache: REVALIDATED\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}],"data":{"size":13282,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (3458)","md5":"659fe4f480b29a59e16476c2e6ecb0ca","sha1":"3e8b0eb837c57c475da50b7aacf990cf645bed39","sha256":"a81591f68d3e63ba29ad15d9e479119170216af22a16018a99226797700cb191","sha512":"e0fcaac6abbb7eea174da5a19470aea18c1834d64b11453600afe3e5e4e2488bb225f5960a0e59aa927426679dba1befdbbf5a2acef48c1313c35cbcb5cf16e8","ssdeep":"384:vgXsuCWoofYkFdjh01N92sbjc9LKF+SVPtME6s:IXF50f92sbjc9LKF+yyE6s","tlshash":"7452c79ab660d8bd91d945cbe07a2321b61d3948b203eca4b5acd4c510bdccca170fbe","first_seen":"2026-01-31T16:30:22.433274Z","last_seen":"2026-04-25T23:48:35.42228Z","times_seen":146,"resource_available":true,"data":null}},"time_used":336,"timings":{"blocked":72,"dns":36,"connect":19,"send":0,"wait":154,"receive":0,"ssl":52},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/alert/css/fake-notification-min.css","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.468Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/alert/css/fake-notification-min.css HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 14 Jul 2022 21:20:54 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 369\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":978,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (643), with CRLF line terminators","md5":"0f46a238cbd11ecd4c34398cd88fe05d","sha1":"904d82352b0f45cad8d98cc7416c265a0cf0e1be","sha256":"27ef53faac17a2fcf938097d718cbf926cc54f9b35d79815c26ea0e219156d6b","sha512":"a99c4ee17e2837697af6a564f0a1eada3eca0eed1fc73dd9e4ecf5c26e4b6485c0631e1f9395539665f15335f18ee9370beec61665df928c8b7b7d852ac1dbc9","ssdeep":"","tlshash":"c21144528133a0c675b5827b35132df57033854e7f131490eb93af21c146b9a3b4130d","first_seen":"2023-04-05T15:14:36Z","last_seen":"2026-04-26T05:52:20.215855Z","times_seen":567,"resource_available":false,"data":null}},"time_used":272,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"apextradprixa.xyz/ty/image/award_10.png","fqdn":"apextradprixa.xyz","domain":"apextradprixa.xyz","tld":"xyz"},"ip":{"addr":"163.61.188.5","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://apextradprixa.xyz/","date":"2026-04-10T14:25:56.478Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apextradprixa.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 20:05:51 GMT","end":"Tue, 30 Jun 2026 20:05:50 GMT"},"fingerprint":{"sha1":"F9:AE:1D:BA:F3:A3:CC:1C:5F:46:95:3C:94:BC:E7:77:26:C3:0F:D1","sha256":"33:8C:5C:83:51:99:B2:71:55:FD:79:6C:41:A2:CD:C3:05:65:AC:D1:0C:90:D0:54:28:02:2C:1A:82:DB:FF:04"}}},"request":{"raw":"GET /ty/image/award_10.png HTTP/1.1\r\nHost: apextradprixa.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://apextradprixa.xyz/\r\nCookie: XSRF-TOKEN=eyJpdiI6IkNYb2lXSUpnSlFKU09EeTNlRy9KTnc9PSIsInZhbHVlIjoiQkhCam0wZXFLTFcvaytlYkRhdEkyQzBaMmVkSnV0aGQ1UXQ0clVlN1FPVEZXbyszS2JjTW04ZFFPamxFT2ZZK0N4T3JDeVFWSjFvNXRJWW82WjBGa0hXY3hvNUVMVzl0SnRCOUNFMWErcnJLWTI4S3gvTVJveERBQjYrQ0hVd3EiLCJtYWMiOiJjYzZkY2IyOTAyY2NmODJiNGI2ZTU4ZjhhOWExNjQzOTVlOGZkMDRlZDc2ZTJjYTYzN2E2MThjYjgyZmQxMzM2IiwidGFnIjoiIn0%3D; hyiplab_session=eyJpdiI6IktTeDMvRkcwazRtMXJUWUd1VGc3anc9PSIsInZhbHVlIjoia0pscXplMklIV0xmc0JwTEZTTUk1YnJJMXlhQm5xUnpSWUxFRzlHZUErSUEwVWZZSUxFTDd5REVPeDNrRmtvUUF1UitZb1pQcVZWVjJLTTdDS01tK01RbnpUSkI0UUpDOHhNTGJsTmZpcVdRTm5SUVNZTDFMQWsyWENmQklEQjUiLCJtYWMiOiI4MDRkYWExN2IxNWY2MDdlNjk1MGI3Mjc1NWYyNWE2ZDk3ZmQ4YmFhYmFmM2JhZTBmNmQwMWQ0MDE1MWJmZGI3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 17 Apr 2026 14:25:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 14 Jul 2022 21:21:58 GMT\r\naccept-ranges: bytes\r\ncontent-length: 236522\r\ndate: Fri, 10 Apr 2026 14:25:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":236522,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 280 x 740, 8-bit/color RGBA, non-interlaced","md5":"950a3dd6a95338c3c0eb6e869c481c72","sha1":"136af38d2b48ef8e81b213a3a8e634b4285865a2","sha256":"2893e8ad01bf70f21998cfeea9948b892745dedb2b70c7fd474cb7ea6e9f44aa","sha512":"450150f149248c83f23e173d8b5aadfe5164f530fd8b68e6e01cd358860796bce4d21b5bead8f415b11de08e46d00b21c3f6e52ae81f268492e6696bf61d2be6","ssdeep":"6144:Nz+ZHyH6WpxAGk++JwGH+6SmuKxc4q3Zl8sIaWV5lc:NzHH6MGHFuKy3v8sTaTc","tlshash":"183423caf1861fe5c1d82a1e199585600eb2f2593b6f497cbeda146df370271c23bad0","first_seen":"2023-05-26T16:43:17Z","last_seen":"2026-04-19T05:43:33.073302Z","times_seen":105,"resource_available":false,"data":null}},"time_used":461,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":286,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-10","alert":"Sinkholed","trigger":"apextradprixa.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}