{"report_id":"954c4b6c-1c33-4396-b38b-f2cf7d202ebc","version":6,"status":"done","tags":[],"date":"2026-01-07T09:51:11Z","url":{"schema":"https","addr":"astragainlux-invest.com/","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"astragainlux-invest.com/","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"title":"Astra Gainlux - Official Platform | AI Trading 2025 | Over 10,000 Reviews","dom":{"size":134353,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (51377)","md5":"34f50f4f14d0d01a661c4bf4675bc8dd","sha1":"76ebb11b320f20f22dba5b1e6236bfcf6f0e9ab6","sha256":"2696268f9ab6ec8132738808a553ec159445bca3d0b126dc673bc63fd78ba69a","sha512":"c22343987b3297c24807c02ff791b6472340773b54d631f800154f7b907e1948af10030cd61a9b009fd7272a8c752cc9cb9a806bf8dd201c242150d857fb04de","ssdeep":"1536:VQKyStsEJPjQBq1Wixx2s6vhrAHhrAi0SSgxMFC:VQKyyLqGghEHhEiMgCFC","tlshash":"3dd30023025535270133c2d030a95b3be6a6de4ffaa74a013eecd7e62feac91b557119","dom_hash":"domhash233c2ea37dc8d4d11b0c3b5bef06a4f3","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"astragainlux-invest.com/","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-11T09:51:11Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"astragainlux-invest.com","ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-10-27","domain_rank":0,"first_seen":"2026-01-07T09:51:12.254183Z","last_seen":"2026-01-07T09:51:12.254183Z","alert_count":58,"request_count":59,"received_data":2797624,"sent_data":34016,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-01-04T22:27:18.120727Z","alert_count":0,"request_count":1,"received_data":259708,"sent_data":495,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"astragainlux-invest.com/","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"3d55c512d6c7136956121b4934fc2ef3","sha1":"eda64499c2251027992890cfdd0508ce4ed66162","sha256":"3097c84c489a39c0bfbf9e06204208486a28fde41dc93693244183abd081782a","sha512":"3d3776f783465f95e5e44f0d5719645406d7341d5b757d440c7c2d81df80b41f5cd44ee6de6fe1c8364905d05cdd3e6c39d5f4c7d435b1d43f99350f9bd0178c","ssdeep":"","tlshash":"c3a0021501512554631720901125c3992679a067ac49923a765e57404740415c528401","size":68,"data":"","first_seen":"2023-03-07T12:55:41Z","last_seen":"2026-06-06T06:20:23.23349Z","times_seen":722,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/js/intlTelInput.min.js","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"256ee3d33ccb9c38f283bd9b49f74551","sha1":"8bc3cb7d2465afecb2a78effbc1e9adff0d9e429","sha256":"ca54b0897b0b92e21e6244ef542c3f73a76302a84004f12591a7f38c6b5cb022","sha512":"64af820e8efb2464db16b4101fc1106a7facf2929c49ac29b39bcd311f35be47054b8bef30c4d4b5b966047abf59e4d0b980b23ba45634b889fc66bbd0e54b37","ssdeep":"768:c603Xlqn/kiIzJT9FSRzA4xXnT2nYdn24X68aWLOpQJGViTsT:cDiIz8A4knYdAk5sT","tlshash":"60f2f8ae7371573766be82fa70e64503aeae35458604443d38ac8ecd0b88ed171f6778","size":35461,"data":"","first_seen":"2025-10-31T04:32:50.930626Z","last_seen":"2026-01-07T12:51:48.391698Z","times_seen":11,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"074213368ac12eba67a8cf5dc670b47a","sha1":"ba1e986ad6eccad975272d9134bbfe3fcfe4b12f","sha256":"53bf8dafac28b94de938df72826e74124331075361e5feef682af2e77b6f93c4","sha512":"0697d62f2480a65c40c057f930653fff4929fd41d603865b9b45c0e6585ecfd6f3abf2526efc60778fc7c243da823d3c4629184319e06c7cfa6faa63c0e12884","ssdeep":"","tlshash":"30112b0404720034c63394eda7cb1e9d753162ab7489a79e3a8ed30c3fc66d6caf52e6","size":1021,"data":"","first_seen":"2025-09-02T04:43:32.350335Z","last_seen":"2026-03-09T06:21:12.150379Z","times_seen":629,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"aef91076f883db5d82859841a71c30d1","sha1":"04cea57f4e97521601e4e011bfe183d0507496d2","sha256":"2a7c96529e64ab018efbe5e2b3a126191816b62767db1bf346e20a2df17697d2","sha512":"d36f4f651b5db41f2041ec8e821c495dae80edaa970298859f52f089b6c21b2fcde6e7e8c9b125cac279bfc44c8b78fb5be2c7f83865fa16147a08948aa65050","ssdeep":"","tlshash":"4021883123361171d2bb606b67cbb3293522a0173501d58c7e0c86884fcad5ef5666d8","size":1381,"data":"","first_seen":"2025-09-02T04:43:32.352172Z","last_seen":"2026-03-09T06:21:12.151256Z","times_seen":633,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@23.0.12/build/js/utils.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6eae88fad6fe723d8c8d2386a63dd152","sha1":"42046e250c7f2eeff4619a89b0be7b83e01e5edf","sha256":"a4000409a897003b1c5a8e1f9f32e18a11b022452151cc47c17ecdcb76d5223b","sha512":"d356bd87f7170499fbf445353afeda69dbaccc391eb41826290a30752475735a27d56ce1d642af1dcb02f93a1405926a440add5cb38000b7d112cab0f918bd6e","ssdeep":"3072:9klM0hpJjFs3OwPss3MwPKm7i9T2xFM8Mp2xHsNBWUsD56kmLNTg/QKWVRphmVEw:9klMipBKxxFM8Mp2qbZQ","tlshash":"1144f1ebd63c9737a1e97b35968eb3cd5a8cbca3c848567826c3b54f52784e0706c205","size":258914,"data":"","first_seen":"2024-07-10T10:54:41Z","last_seen":"2026-06-08T02:38:41.482731Z","times_seen":1674,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"c92a10324374fac681719d63979d00fe","sha1":"aee655773d856fb038536adcfd6472fc7543463e","sha256":"158a323a7ba44870f23d96f1516dd70aa48e9a72db4ebb026b0a89e212a208ab","sha512":"d27859c90f5748d3ec0ef6d4ef49c1755d6ce1ac8035cd4f7dba41b8dd7d440ad8fca164ccc948b5630ef90346ff9279e35d31887e724ab6e0284300a80eb61f","ssdeep":"","tlshash":"8430000000000000000c0000000000000000000003000000c000003000000000000c00","size":4,"data":"","first_seen":"2024-08-20T00:14:53.541497Z","last_seen":"2026-06-07T08:16:34.757425Z","times_seen":27513,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"astragainlux-invest.com/images/header-avatar-3.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.785Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/header-avatar-3.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 2008\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=jQDzbuJOjRx07CKy; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.7; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-7d8\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Gx0oSvE69ENxHKTmClUrIccZsMHqCiypDIU83bS6Fk6NqJEOj%2F6mEO1Vulua68TaXeEmDdHXw6J1VNZPmTm5c3O3gL%2FZvZTY1CXOT7d1XikDEsGgvg%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d929aaa56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2008,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"41ee26398cbd792c2d068501c6fd5347","sha1":"87726c430c3e0306bfa296f1c9fbd6a0f10a1669","sha256":"88da44238d5dc9b340a7763dc85f16be6d31ed02e3913631824731f235a353f8","sha512":"7398a65a212717062749ebf7e94f743cbc52a00f9f0767682684ae74ef74185aa08a1ab410a5d0a4a4b433dfddcd59f71623bc28a708b92e6da2110c9d60bdb6","ssdeep":"","tlshash":"40414aeba80e426fcc9b4272727feeb0087f965c73618c098101012eeda3667474528c","first_seen":"2025-09-02T04:43:32.32803Z","last_seen":"2026-06-08T06:19:49.610109Z","times_seen":872,"resource_available":false,"data":null}},"time_used":121,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":121,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/person-1.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.788Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/person-1.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 34082\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=7KsoCjR4qJSqV1Qs; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.15; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-8522\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SCQQcquZFp%2F86xQSbrVUSo3d%2FbcF6M9%2BhlrWh5jppPgMegytrKQOSBhEytH6FPfwtiJDEHsdjcasjVeUZhiUHWJKtwFhiOCh7Ll7Q6vn4IJjPmC32A%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d929aad56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":34082,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"a510ac001961250be9eb5ec7b599c573","sha1":"7bd6897dc836dd6f6486cd7abce33f69319d5aa1","sha256":"6c75b7a5d1c66c7ae8c8a99cbbae3b85fce4383203c7131b3f87110bbf9f60c7","sha512":"338ea7e89b7f65bf27e627b9afb0cefcf569aea41567b06e4d0512ba3e943e63721d1a0b31e0e0850b63c0c3ccc6c203fd86f6a8d0c1b38d36998bfa3ec8f174","ssdeep":"768:rYycaqOHCSKdeCE3iYoSnLY1DofhhwO8kpMZCZGCnlkoCkl/:rPCLBIpniUfkO8kpBnRCC/","tlshash":"5ee2f2500ad23170dbb2ae3d65f65d71b256c23eef3e7ed412b937310056129788e40b","first_seen":"2025-10-31T04:32:50.89264Z","last_seen":"2026-06-08T06:19:49.593126Z","times_seen":40,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":66,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/user-4.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.819Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/user-4.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 7876\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=EKSFOlvm55vkcs1S; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.24; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-1ec4\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MGiuUMp9WL%2BhqcH97yOMZPAfpck%2FQoFc%2BOdiLIqMmVFq3ZChzSOzwNZSNccQKJLNRvSNHyaXH3jS9%2B9bQhgDb6%2Fb4VhxLiZHpt%2BJ8%2BlalK4xKlPc4g%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d92bac056c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7876,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f010747cc7a3a4f8436eb97c646cbca3","sha1":"c029a88e34d3b8b8a22211d282441d3e6aa75924","sha256":"0a7e35ad777d23c1363073e5176747e16c3c112b581f1d42d3a321d1f2c1672b","sha512":"7a71b2ae92bf808f75a800ef506e5d0d7e93f4decba513fd7049c74dafc5e4fa16037d11758d8e8b8db8d18e4aca4ea7432bcd186ee595e69c6986280a5fcc45","ssdeep":"192:z2YNMtKwRNIfs3Q+ZV4KFUIae87gmBZ77A:iYNg7ofs3Q+Tdfae8Es7A","tlshash":"76f19eb8afebe365cc22e23814e13ba462d3373e56b067dd2254f2161201584fb5f0a5","first_seen":"2025-10-31T04:32:50.952524Z","last_seen":"2026-06-08T06:19:49.594744Z","times_seen":188,"resource_available":false,"data":null}},"time_used":214,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":213,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/header-bg2.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.055Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/header-bg2.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/tailwind.css\r\nCookie: __ddg8_=EKSFOlvm55vkcs1S; __ddg10_=1767779448; __ddg9_=172.64.209.24; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 39994\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=2usrFKu0OLNtczFN; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=172.64.209.69; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-9c3a\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kxC7KDrH7H9F1ukJZ710%2B85xtjxLpZ3yeALetZK7CpgTz4Vnnq5D%2Bbk%2Fmqi4XZytgtRrtLXeKfUqiNC2ccksMqgcEDgpBVUH3mRjv8SajbzP0gepAw%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d948ad556c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":39994,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"c2004bc1f6298be7aca074e9a961c0ed","sha1":"5b72f53a98833bf6e5504dd6f4d25276b7e78218","sha256":"1ef40994ac3137ec249be87f309eb7daf3273815b9777f117ce3756a73297eed","sha512":"cb88d25b93a5eb666edca7749d9d6888cf6a0e24ae7fbe050a37aa1c8f785c8e86befb7377b4c4df8479e32e1d0b0f6aac90b4f4036ad7b15b15e576a1ca4f88","ssdeep":"768:wbiE5PVNCAPTF26XcQGcimMQxrOVdGNwMg6jKfHj2Jzr7:uZTPEs8mMQ8VKwj6jKfHWzr7","tlshash":"cc03f19748ae16dddc6271363c1ceb21a4b66a059fc21d86c787c6f6c7c3668f14d238","first_seen":"2025-09-02T04:43:32.347288Z","last_seen":"2026-06-08T06:19:49.585903Z","times_seen":799,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":36,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/fonts/EncodeSansExpanded-Light.ttf","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.076Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /fonts/EncodeSansExpanded-Light.ttf HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/fonts.css\r\nCookie: __ddg8_=jQDzbuJOjRx07CKy; __ddg10_=1767779448; __ddg9_=172.64.209.7; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 161592\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=vroRtHUWvuptNscG; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=172.64.209.48; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-27738\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CWYuN8Z9VwFJ11lcgdn52nqGfSz5MCWV0SHWjicdiSJbUOgVOPvU9e6IEpayGGKNgnCyNRyado6%2BwwkpxVJtWVJCQ3ZpHNLJko%2FJ80M4VYFYF62YdQ%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d94aae256c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":161592,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 17 tables, 1st \"GDEF\", 16 names, Microsoft, language 0x409","md5":"97a2a619bcef5d92ac7f66e17564887c","sha1":"2c6e03389700c030149924e5fdde5f0e9754cced","sha256":"875d0d2122e8bb59c73e1e03d3757b382046266f658df35c0053797e954295bc","sha512":"0b3ae4d454cd5d25800d242177e45719b1b4cd16393586b83d93f94072b026c5a9c3258521a08052f699b59564385d593f07182718e5aa1da9b3a806c69ad051","ssdeep":"3072:ZrdeC8OMvHv5MXeEr2IAEmbYMRbc+LkPjcHHgRlbf:Zrd++XeVgYooHHOx","tlshash":"dff36c0ff7a3db19f5150e35997c83d572e6f8512f22c64ba54cbe68d4870f408c62aa","first_seen":"2024-06-21T13:38:29Z","last_seen":"2026-06-08T06:19:49.586867Z","times_seen":991,"resource_available":false,"data":null}},"time_used":220,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":102,"receive":118,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/binance.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.779Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/binance.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mJ8%2FHraXJSeU0PIPHg0jLUEOapLGJp6C5U92JA2Yd%2BWbIhl0wCUasuTb1E62aFcb7lTXB949rDPY%2Byy00WmUBdp%2FsLUJmFyKGE4cpYgcdZenWXx3FA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=oBm5VNdfZ3yayeXw; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.229; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-d34\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d929aa656c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3380,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"286147a6a8b43aa9f703eb3b278c669b","sha1":"a23688139388df4ef861c249ccfd8bd48aa2eff2","sha256":"1b4f876a5cc0b5da87f17a7ffb330ce2c5002c414036ddff7803da78ec725865","sha512":"1e4b9065bb362a10ad591f82fe88d373c5c82f582cc5ae6c03c87fe1f0cd3f61b71942fffeb119ed7700ee95e7b91845d16ee94443af3dd9960cd1c0c10fae4a","ssdeep":"","tlshash":"a56193a513a9c2e4b4056bfc8f0a68f23fa728f7ad27c51953d12941e8a067c8c75dd3","first_seen":"2025-09-02T04:43:32.294472Z","last_seen":"2026-06-08T06:19:49.60211Z","times_seen":1250,"resource_available":false,"data":null}},"time_used":81,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":81,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/user-7.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.823Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/user-7.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 7734\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=AMILl6wsbfrR2qi7; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.24; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-1e36\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Yml4raLl7hHmZEKwMroS59n2kadVaD81LaoghRKbQi4ipLQvMurVmYpcOfYMwNecT5BHw9JaOnxxe8J0tZyf5aZJDq9mWMg9ZcXWD3fed5nxnSiYXA%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d92bac456c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7734,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"a88886c2a7dd6ead0133d156aa70eef4","sha1":"7cf956c4d73361753e17e8e25b92a67433ee6725","sha256":"ee85735e3b6b9ba463d76b53f9e4d0e80625086b233677ce8aeb0bd83f9b275f","sha512":"258b6d65d7ad7ef5e6c0e0d395e1a83c9940b91cd49cd6de67c641a2e9480585324e934fba7cc080f7d72c21c31aa2b10ec16025cbd3cd9c32878df23eaca5f6","ssdeep":"96:dbN26MT0D5MdtbZPAVwzVtYif8ILaHdKJpFX2+0JmAL+rQkvpIplWKDG7lK4PNFu:d2YNMtKwFsqz2+0AAL2QkvWPghQwTd4","tlshash":"aaf1b074b7a253e3f471f6bce4e3278091987639f370dd562430aa0853425c86e4e08c","first_seen":"2025-10-31T04:32:50.90877Z","last_seen":"2026-06-08T06:19:49.59975Z","times_seen":188,"resource_available":false,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":87,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@23.0.12/build/js/utils.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:50.020Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/intl-tel-input@23.0.12/build/js/utils.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://astragainlux-invest.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: application/javascript; charset=utf-8\r\nx-jsd-version: 23.0.12\r\nx-jsd-version-type: version\r\netag: W/\"3f362-QgRuJQx/Lu/0YZqJsL57g+AeXt8\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Wed, 07 Jan 2026 09:50:50 GMT\r\nage: 1567536\r\nx-served-by: cache-fra-eddf8230139-FRA, cache-hel1410025-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 61923\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":258914,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1903)","md5":"6eae88fad6fe723d8c8d2386a63dd152","sha1":"42046e250c7f2eeff4619a89b0be7b83e01e5edf","sha256":"a4000409a897003b1c5a8e1f9f32e18a11b022452151cc47c17ecdcb76d5223b","sha512":"d356bd87f7170499fbf445353afeda69dbaccc391eb41826290a30752475735a27d56ce1d642af1dcb02f93a1405926a440add5cb38000b7d112cab0f918bd6e","ssdeep":"3072:9klM0hpJjFs3OwPss3MwPKm7i9T2xFM8Mp2xHsNBWUsD56kmLNTg/QKWVRphmVEw:9klMipBKxxFM8Mp2qbZQ","tlshash":"1144f1ebd63c9737a1e97b35968eb3cd5a8cbca3c848567826c3b54f52784e0706c205","first_seen":"2024-07-10T10:54:41Z","last_seen":"2026-06-08T02:38:41.482731Z","times_seen":1674,"resource_available":true,"data":null}},"time_used":117,"timings":{"blocked":42,"dns":3,"connect":14,"send":0,"wait":15,"receive":18,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/pros-3.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.810Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/pros-3.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PrQTKv%2FYkhgVPd3%2F5ma8b6Of1SHmifeHR53fgunbmeI9xiliN%2FdzRUMVO7qIczzX0W%2FgOM51pr9Pn2baipTyYqDhK8sCh3wZNqYHN%2FngzdPvEW1KIQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=EtCJkl2I2b96Fk1u; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.43; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-6d7\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d92aab856c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1751,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"77cc23f4dfef3fb494da063dbffc4fb0","sha1":"5497f0fa1d50011c7d90ab2f3c9107fdb6617906","sha256":"6c79187930a4abc56242352b5d4d5a5e68e7a6837c129e4021ade79165774cef","sha512":"9998ae9c90a9a7a002c388e1bf176ee2730c6806e545707820f118ae4808994ae1552977dacefedf49e6e425b31819097e0be659b99e73a6bddcbf80594cfdfe","ssdeep":"","tlshash":"9c3123dc2178c39cb40679680786b8b13c5b99cd95a74845d3b3be12e88845d5e748eb","first_seen":"2025-09-02T04:43:32.34178Z","last_seen":"2026-06-08T06:19:49.635311Z","times_seen":815,"resource_available":false,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":89,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/header-avatar-2.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.783Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/header-avatar-2.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 2276\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=AmDN1X5wotX9S03L; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.33; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-8e4\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=L6wHHj%2FvEWnRDW5hoRkGSD%2FuWfXbdG0NTAgvp1TWOo0NTFgwbVXLffiaAoCX2YwVxhAK1vOmZpZ%2BMqyBJEmzUYVzIVjxIW0ASi1sJciS5N%2B%2F6FbeTA%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d929aa956c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2276,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f002c455a1cbb7ebb9f0e367f5a1aeff","sha1":"108acd639aef6dfb2988dbe90017ee4e693846ad","sha256":"3687604fcb1bd6ec80db705d104ab28909dac30e35be40ca3ef55146223af35a","sha512":"7c2b8f1cfc72675366802a003974b8d88fca624431736e4271dedebe9aba73b06cc1652fd6701a4d5fba09f55f6ed56abe021b07b4ce46c6cdb8c0939f0e2e9e","ssdeep":"","tlshash":"e3415cf92594b03bc0f4583a0c7c661a4ffa49e2534e0e360f5d9b6a19212325cd382a","first_seen":"2025-09-02T04:43:32.312857Z","last_seen":"2026-06-08T06:19:49.617342Z","times_seen":813,"resource_available":false,"data":null}},"time_used":118,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":117,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/person-2.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.792Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/person-2.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 30642\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=1IJwBUprOzbF1V7s; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=162.158.223.17; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-77b2\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GWjQ3DAwal9HeRo1v%2B7YLHU9vvTrLE6F3tBcdN9osekdEZdP2n3xLgTNOWatOV9R9U%2FQpb%2FmqjMy0Hv73ueJrDXorFzr0rhHmfRTehCPBglTw48VjQ%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d92aaaf56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":30642,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"2bb375487f7cce5fc1d47a7f598af0b9","sha1":"87617f2bae8e89dc539cab7bdbc7224c910d3cf5","sha256":"e2c4740ce1edfe5097d9da97a77ed994c374d6b78115eb1d0c83625104f421ab","sha512":"cdd45da8bb3460d4f6e0063a9234eee85195b35a11fa9e49fcd4e89a54b707fdf0b058cc933a49e5a4934f1be1c52a151be2cc0fa2dceffb851a683440c39345","ssdeep":"768:FYyE1fM4NzQe84Hqm3IEtHCNdub1Cn/IGyDVOIjoQ:FAfM4NzQn4H2EtHC8Cn/IGyD8IEQ","tlshash":"62d2e175aa1ac3bddf13e1b4c8d61f5142c2d630e3b252973618071723858ea69de09f","first_seen":"2025-10-31T04:32:50.918683Z","last_seen":"2026-06-08T06:19:49.619806Z","times_seen":40,"resource_available":false,"data":null}},"time_used":1184,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1137,"receive":47,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/eth.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.795Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/eth.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=We%2FTQLYIuQM7AycWG%2FT%2B8Yur6DoKinBlbQetySCjOECykTZvGNDEvneROdybkGiyyvz%2Fa8bdP0qnjZFuz0vZaT2xE0WFPsFBHv8ClYxRy1SHVSOxvQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=5XsXFQBbMoAPhgNB; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.71; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-480\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d92aab056c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1152,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"30dd3d2d238cd83055f0f9855f05c381","sha1":"e90b769cad3df8e832f314f95c1e96deebb5f9c2","sha256":"0e0cdeb30eec14f0abd375dac24b6eae25880840a9ece62b3d7c50fa778fbaa8","sha512":"52caac7d6efdda42b7fe943275b0b37983eee7850123df5092c449c767a1c93319152acdae90c1c33f9efc3e07ee60839dd38da9debc79bd967dd9af7fe13b41","ssdeep":"","tlshash":"4e2100d7520c52c01a401ba43b0ff831a756e4e54f8e4cbad648274bb6c8a9f8eb43c5","first_seen":"2025-09-02T04:43:32.286867Z","last_seen":"2026-06-08T06:19:49.612244Z","times_seen":1193,"resource_available":false,"data":null}},"time_used":81,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":81,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/pros-2.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.809Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/pros-2.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=M%2Bqr7MLWKfZt2lwiveK6tb7i%2B9yDGm77RYZwVUHbrP3vNOnRjDri68TVxdbzQqd919uT2FXMj0vKFXTnEKcmsoJ3PaqcUZ9P%2BKRpiWOwtz1mItLaEw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=YVvL9OPXH67X6Jur; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.25; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-1c0a\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d92aab756c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7178,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5ccb30901fe366e2c16716a76b7d5f45","sha1":"c843a8c141f8b541601ae8a50fc3cfa336d4844c","sha256":"a08ef793cf722e6ad68e787ef6d77a1a7479b4a90ea93c9e9ce04095069fca89","sha512":"ec261437779ed5fe498752027945ad78b84044e60404fc713e0afbe960e80ef184445a8f920853838d13a12e01519c23fb08244c4169df62dcc9bd7d7c59a5b9","ssdeep":"96:VKHrnlEeDv1dv40YDVpMdbZYdBMc5jsRSq8J+org8R0RCeALrS/rw9HO:VKHpnv6DT5XCEdprgPRCqU4","tlshash":"08e185c4372ac3b4f409dafd4219b4757e527dcb761380d8c3ba1d4ab88a42d6da98d3","first_seen":"2025-09-02T04:43:32.249675Z","last_seen":"2026-06-08T06:19:49.61548Z","times_seen":815,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":102,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/user-5.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.820Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/user-5.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 9052\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=9RerymGzUisRNeCn; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.32; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-235c\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gAKW2MlB7RM4rfXONH0NhYSCDy7Ya6Il5VSDcCCwpmW6zoLnMlpAG59Hy3GyipxaKtE2ABxLdp3gDG85dN%2FfNWCFPx4bsGYV4wNr%2BCqh937IuBXdJA%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d92bac156c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9052,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"9d67921e0f912381140c824d1fa9c48d","sha1":"8fb5e86a669d96809202f485c4d175c2523ea056","sha256":"b9c608d8902dbec54eadf668d18c043093ba5f69999703d6af23236b929d7fbd","sha512":"c4acb00456f83de141429fe18dd8f8ed3b4e52f9f8b1a2f66261260fa3701af2d9c1dea32ea3ced1fc62cce29742faa54c80a0a001814a1a534f67bb89b3e754","ssdeep":"192:K2YNMtKwRNIfa2aFYvc0ROc8DoGHWwkKuwOQVJn6Ts4ajxSy:JYNg7ofap+cquABoJ6s9Sy","tlshash":"e6128eafdfbe9753d923f4b578a57b84aaf1623ed36029691030d61412906d0af8f248","first_seen":"2025-10-31T04:32:50.928809Z","last_seen":"2026-06-08T06:19:49.599171Z","times_seen":188,"resource_available":false,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":92,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/comment.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.063Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/comment.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/tailwind.css\r\nCookie: __ddg8_=EKSFOlvm55vkcs1S; __ddg10_=1767779448; __ddg9_=172.64.209.24; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CAenWEx2q1Dl3Uk22Ybl7ZcRnJuDuZHN7bpE7YPSYwGBl%2B42%2Bc5vzFFzZfNG3wfPaFQSVYT3l3PWFPrug4uZdnhgw71LTvgv18Znb6qHGKUCy7GaNw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=CmxcBhQTYYzyP1aV; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=162.158.223.17; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-93c\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d948ada56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2364,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"03dafba01023fde082ffa08cec31dfd6","sha1":"bd202e2efecf4fcccbdea6ed2beb3c1d246a8e98","sha256":"0d1664b6b5351ca740502fc40a1fac93071f77f3dc3e3ba1acc32c696757fbad","sha512":"6da0a2071f09b1dd1462f9737d29271b241ea9dc471c072a2de131a1be356110286b1a72c3e4649f560003783538463a08c16c8b19164d74cf34f0e1b25dc302","ssdeep":"","tlshash":"1941eef0e25c90e95405bb78ce7b17e173733dad2ad0c2849370f9266a949fa9c5c983","first_seen":"2025-09-02T04:43:32.337995Z","last_seen":"2026-06-08T06:19:49.582809Z","times_seen":1249,"resource_available":false,"data":null}},"time_used":101,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":101,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/flags.png?1","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.111Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/flags.png?1 HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/intlTelInput.css\r\nCookie: __ddg8_=T9bLBuOGqNiI867Z; __ddg10_=1767779449; __ddg9_=172.64.209.37; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 70325\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=eCYrBzx1Zq8PnVNy; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=162.158.222.174; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: image/png\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-112b5\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BPOjSxMWrWT6WSyUV5h5uxrwuGXQBiZPLzzAxERTL9qOz5NnHrapNtphlGs9LfkQwLW4DCbLZf3SI5mFaWiSUl9twcBet5V2ThRsyOGjkJbuz%2FzhEQ%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d94eae556c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":70325,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 5762 x 15, 8-bit/color RGBA, non-interlaced","md5":"0b1ca148890222235a0f9903636ca21a","sha1":"b451b4db431749cc40cc2a5f271f9807ca21f1d3","sha256":"54dc5bc49fbe41359681fa0af8add039fa1383a4f4eade34f7a0a5a257dd1caa","sha512":"37553ab4cecdb30b631d883dc0a1afe4b5e81b921fa2fb8054a63fa054c2f57954dddebfee1a5b676f97a392b954aaa553a803e6e9abeedd56f87da0b58a8475","ssdeep":"1536:3Cc3jdCcCx1zjonyR5/Gm5mwoKVehnITl1G/Ghdfal4pMy9c:SczdzCx9jonyT5mwo1hIp1hQ4pMOc","tlshash":"966302b241c2a627f87cb972b955522b673bfb30d280780a00cf15b6979517f04e3a3a","first_seen":"2023-09-16T21:00:24Z","last_seen":"2026-06-08T09:36:46.90163Z","times_seen":5823,"resource_available":false,"data":null}},"time_used":207,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":88,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/ltc.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.800Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/ltc.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=N2kLVDkIBxMH99CqMQOwYRitO3yESJCrCeZ5Sfr%2BsYHHNXMTzmpgALPh5%2FvqTlr4l87aNEPd%2B0DhFwE55s4Li0k63l0bzdAnR1jA%2BANmmCMVl8Rq4A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=hF15PULAGKqbSYmh; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.99; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-408\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d92aab156c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1032,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c4a6bbd896e770e829a30e835714ac49","sha1":"7a9fe65f4227ee71070e76c345eef4e1f77850d6","sha256":"32d3294815fc7a945762273c76564c434e395d8ebe6eab2e9edc8e3cb74076b6","sha512":"cd82a14c15b0307501bc59e5b0bf4dcf3edb39a0bcc51b42d5f439ad23847da574e357b1e4edccda6d2f17e57332709d1b1f5fbbf43019614f4ca1ec494360cb","ssdeep":"","tlshash":"8911ced0b7a977f56484c338826c3071647b3cee1a215d784ee43841752140ecc52eac","first_seen":"2025-09-02T04:43:32.275483Z","last_seen":"2026-06-08T06:19:49.612844Z","times_seen":1253,"resource_available":false,"data":null}},"time_used":66,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":66,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/usdt.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.777Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/usdt.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Ii8GUOI5fD%2FC3Ka7tpLO7Rj3a89w%2FFXvFVh%2FBpjhmQLLrj4rrlbHGuzSWtwNGa9Emla5lTVCEnuzDJ6BfwR%2Bp55ftSJvfgqFyN0Hwxw5SVXSgJqbSg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=EHIWdOBoLZXVcY3b; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.32; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-df9\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d929aa556c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3577,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"908ac595c69379ce8ce688a04dc020b5","sha1":"8fea3ba2ba406c0a875388c4dc75481af957a326","sha256":"b7ef94d66bc1b27c90dd4bb1887dfb58335df07576bee8eeee3c459d53fc543c","sha512":"fd52eb012b199609a0edd27ac2d9f118823d76afd5001b1c8373d6c7f96d20696b349e59409dcfc79a638f09292cd75c14a598369681ef0ac4e962b063c69a1d","ssdeep":"","tlshash":"7971e8e96398b2f4e607abe4ca37a871356758f57f12c48cc2847845e21856d0c9adc7","first_seen":"2025-09-02T04:43:32.333256Z","last_seen":"2026-06-08T06:19:49.627292Z","times_seen":1254,"resource_available":false,"data":null}},"time_used":125,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":125,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/header-arrow.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.781Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/header-arrow.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5tfdjtsYXs68CClNVq2x3E9ajIcxq4n5xBB9zxfTqWqVxxeJtQC6PcMvqmUjVazZBEAB0I0vxZNgVddQvJk2RkL1%2FGcmvx5OhPuJaStuN8R5OWvrqg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=Y3nw4dHcDj79yJzc; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.14; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: W/\"69000181-1e2\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d929aa756c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":482,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ef279923440321565d5b5eccf70e2a1a","sha1":"7d3ae164864496ff78f2207f0e5d7cf720117a56","sha256":"1a60f0679cb2ef0cd2d3270f16e34c7897e9998a24dbe1b613364bb4ded1ac7d","sha512":"ed1743bc7a967ce62baa78036d72e2ef91a315323307ce7494c1f16bb56ffa1e7dcf94045598344ce763b03c932d79bad05970e9a98a716a49b0cbcb97642bc8","ssdeep":"","tlshash":"c3f0e2f696591548fe8f09a5d9986c4b056a0adccdcc02c6e5506e105efc0c29cbae87","first_seen":"2025-09-02T04:43:32.334597Z","last_seen":"2026-06-08T06:19:49.583866Z","times_seen":1256,"resource_available":false,"data":null}},"time_used":90,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/pros-bg.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.059Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/pros-bg.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/tailwind.css\r\nCookie: __ddg8_=EKSFOlvm55vkcs1S; __ddg10_=1767779448; __ddg9_=172.64.209.24; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 40462\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=nT6VeM144DlLOKow; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=162.158.222.19; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-9e0e\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F41FboaQIqh%2B%2Fiib1SIgEMcx5yH8Ws%2B%2FmlR0YBVJej%2BMmZh2CbGcRBOonrC%2Bsyws%2Bsv1uGwj6LdjlKZoQrLoONFKsUwLnONma4RUhybfId0SkI3rJQ%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d948ad856c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":40462,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"a552bc7ad58597757b953a47ef50de2e","sha1":"ae607ba3cd8f2986ec9f2dee80ae90f28cd1eaf9","sha256":"7af56b3431d35b0264020ac4eaa6ff1ca05a72a64647fdea890e9814597da6db","sha512":"b976c4950c93b9743666efe43261649a885163865793314992bd7990b42afdf4c34703bc01cb8abe742559e270b203a06e1b6f1f184bfdfb8e9062c88f3417b9","ssdeep":"768:euKXMkiH1mxkbLyKMVgJWqHgSSUxyt7tdWbbfNFd93raFCoDHXeX1rFYv:euTkImxcPn4Yyt7tdWbbfNFdl63eX1A","tlshash":"a603e1d097b394eead24862349bcfdc2576e36e18b429b8282c7e54a58378df9532130","first_seen":"2025-09-02T04:43:32.343217Z","last_seen":"2026-06-08T06:19:49.596657Z","times_seen":867,"resource_available":false,"data":null}},"time_used":70,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/quote.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.790Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/quote.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Ixp%2BMynvht88hV5IoZGhKTo5VVfWZ7V1bT66NR7rF7BdBw7zgNvlBfWdAbdsfHY43wqBBYiaVJWBgYI3opptatCJkZP1mT8vx6Z%2BJ8SvB3Q8wcm%2FSQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=zJ1Gy719cdEWbW9w; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.28; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-ac8\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d92aaae56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2760,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"504ce723c76d111e0be511d24721c2dd","sha1":"a1fe51672c966079ca8ccaa11fbe6de0bafa1644","sha256":"a563b73f0268826906bcde897b0a2f55d0d2fa9cfb394e4c151c138f3865202e","sha512":"87a808d4940b03b8e019e3a28be1bc3d866c01323be476d8e2e1ac2d780404bd66046a62855d03ae2c309387f7c18788a5f1d9b3bae538139b5448df459631a2","ssdeep":"","tlshash":"0b513061b3b971e0f215e3f667e27925b95b26622f87c2e4c0d72dd4d87480c5e808c6","first_seen":"2025-09-02T04:43:32.254441Z","last_seen":"2026-06-08T06:19:49.634711Z","times_seen":1191,"resource_available":false,"data":null}},"time_used":70,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":70,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/header-bg-mobile2.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.057Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/header-bg-mobile2.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/tailwind.css\r\nCookie: __ddg8_=EKSFOlvm55vkcs1S; __ddg10_=1767779448; __ddg9_=172.64.209.24; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 25708\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=dnblwRgN8q4vBBb3; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=162.158.222.59; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-646c\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qOm3BANTOCVbkk6eP0DPtn9CYliYcCOi3%2BD76E70ZF1EMWVDUN3hmD8X4A1Q715MxECcrbofZsn6f4GA%2B12CiANKNs3nex%2BGHxP8nJxnhQQzZj9zGQ%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d948ad656c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":25708,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d8179eca6cacb540539cd9b74f711fdd","sha1":"5cba7acc82732a756054aa3529eac3cb85a3557a","sha256":"6efc83b8bf5e579eec51195c4eba7f58df2487f8d195f07d59b0741bd6ecce39","sha512":"ece42e75e994510373393c040d56edd7f44b5c3612c1b5552e3ca7111abc0312096792b5e8defafcbece652da2f21a3f8ec439db2426e31ab20ce06dd24487ab","ssdeep":"384:p2ESfIf9teHWKyJsBp1p4RrCGUWRsLGNr+pQNCc4b+cMVOARGCU2VW7Cr8xYySTz:0ESATO1SaWR/NBaiuwVW+VQUDr4Y","tlshash":"c1b2e183f37074daa07597f892717d2a79a8039013b98b9c3687391fe53a510779d2d8","first_seen":"2025-09-02T04:43:32.280027Z","last_seen":"2026-06-08T06:19:49.617923Z","times_seen":862,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":68,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/fonts/Inter-Bold.ttf","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.067Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /fonts/Inter-Bold.ttf HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/fonts.css\r\nCookie: __ddg8_=EKSFOlvm55vkcs1S; __ddg10_=1767779448; __ddg9_=172.64.209.24; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 316584\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=R36OCAmNtzZxb2fD; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=162.158.222.53; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-4d4a8\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=F2nqs6zO4Q90jWEJXHkLjAr2BM1q7QsOx%2BNExt%2FlP0LTj2IIuiJyxOLs22HWyJqLcaBL%2BIzKnQYDXJA41jOMYPW6U0PED%2FAe8%2FuaUnoSQyd%2FN26fNw%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d949add56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":316584,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 50 names, Microsoft, language 0x409","md5":"ba74cc325d5f67d0efbeda51616352db","sha1":"47ff07c75746682133b81e7ac0537ce50a4c9916","sha256":"412c068eab6f36e6807d630ff89127165e8e4d3e8653434cdfb56b60cdcc3a32","sha512":"0e1b968a789e9a4d3149e9bf539f12800b9e808b6d1829841e74a122369110b369b36dd10231fd9fe68523475305e398aad0927fe14247cbe75256cdd17953ad","ssdeep":"6144:x2RouaT1miEEE1ipnQzkghLs7J28i9Bpu:siomE1onQzkgRs7i9Bpu","tlshash":"5b645b13f323c31dca122d3a8b93c7a07367bc512b13e10ab7643a55c99b5b85e9b5c9","first_seen":"2023-10-31T18:47:11Z","last_seen":"2026-06-08T12:43:51.299569Z","times_seen":2538,"resource_available":false,"data":null}},"time_used":792,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":74,"receive":718,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/user-8.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.826Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/user-8.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 8234\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=ZpNXCqDnwsxaf61f; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.231; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-202a\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dzJ0Ovy67yx6HGEflewJN4AS1V%2BENcFSOeqVyWWQr2oJDbfKuKOCYMeTw3NYlsdf20kWBopbpTD9d1f9ota8j%2BQ8hSkUQj8bVxHmpxSqvX3tcX8JQw%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d92bac556c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8234,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"68b69b9ef541b5eef134551335ef9410","sha1":"941a42d03c38a2871f6b69d44ad4fa4c476c11dd","sha256":"027320cef5879bae3643fa9fd8820213bdc6a9947d16db7d18eb14fbd2d14bac","sha512":"78b23f06d3b3b025b7aff0f4d26839366f0190c6a0749bc06f7da98abbce8dc3258efb3a4fa6e0e2c8dcff1036289468ec313100550c8f88153e545069525b77","ssdeep":"192:/2YNMtKwRNIfyo/H8Rx6lSRctv9VvAaLwUoY9s:OYNg7ofyOcRMBfV4aCj","tlshash":"b1029e35ef759737e420e679c0a63bd4d161270dc7f0b6455324da382190ed6e8cb0ac","first_seen":"2025-10-31T04:32:50.95711Z","last_seen":"2026-06-08T06:19:49.585006Z","times_seen":127,"resource_available":false,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/glow.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.058Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/glow.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/tailwind.css\r\nCookie: __ddg8_=EKSFOlvm55vkcs1S; __ddg10_=1767779448; __ddg9_=172.64.209.24; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zONkFJQfmqH4dXmEiTtpUI8yI9VDWHHqNOkbMfKQrbM2fBllBBXkArf5nsqdTpmIP9m5CXTvNSwMl%2BHbteNZIpIWhXji96moSea4L%2Bm8xm9hoKWS2g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=G4TkYqicgqIhltoM; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=162.158.222.35; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: W/\"69000181-2ba\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d948ad756c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":698,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5a3f3d58c639d254adbe360efe2cd06c","sha1":"ae96f32b7bd60f327cac97014ac200a03983c736","sha256":"9d8a12463844f53b73f589446f70b027d397ec4b22b1c2d505a00c45ac0ce9cd","sha512":"cfac41234168567ddde2a5ffe3fa450eacb9b7c1f57005f79538c91a2b28741069a0657eb080131f120130b4ced175f998a9c32ce6304895faf46e77c6889b7d","ssdeep":"","tlshash":"29014434e35ce02fd654830dca5540c031fdc0d561d6400175d25f6f58e8853aec9364","first_seen":"2025-09-02T04:43:32.326694Z","last_seen":"2026-06-08T06:19:49.595668Z","times_seen":883,"resource_available":false,"data":null}},"time_used":92,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":92,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/fonts/Kanit-Black.ttf","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.064Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /fonts/Kanit-Black.ttf HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/fonts.css\r\nCookie: __ddg8_=EKSFOlvm55vkcs1S; __ddg10_=1767779448; __ddg9_=172.64.209.24; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 173492\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=xmevTNUdRdDBoyfF; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=162.158.222.113; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-2a5b4\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Qhu82xu4jpW2pNnIv32ikpSVXOfkMhOHnOxawba3ExcReZZJLflh%2FCEm5mC1X%2FG3yBw%2F23cPWs1U2JZCn31xI%2FT3lhxO6d3cu9oAr6Pia9S51yhing%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d948adb56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":173492,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 17 tables, 1st \"GDEF\", 15 names, Microsoft, language 0x409","md5":"98e93fc09832d3891a57162b83ecb930","sha1":"7d7c545de2f02989d1f2a76849291b75f6e6b7e6","sha256":"7f6d2b61aeaa7e6e1d1f0a99fee666c688650f00254786a1f48bfba31ad63aa9","sha512":"41229779be59db29324f4716122da85948f6de5f05de483327b85a888a424527813331a827bb1f93db3ef8e875f706c0658b28126d1058604c8aec953402f2e9","ssdeep":"3072:T1jSTGGQ+BqRF4LwmVIIaVyL1PhllxA4DUgaTABYcaclGT4I:T1xGQ+Bo3VyL1PhllxugDScaclGTx","tlshash":"7a044b07f749d789fe1a5e382769a71ba294f0704f5787cbf08d3679e89a4c01e192c2","first_seen":"2024-06-21T13:38:29Z","last_seen":"2026-06-08T06:19:49.606307Z","times_seen":995,"resource_available":false,"data":null}},"time_used":294,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":250,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/fonts/Inter-Black.ttf","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.066Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /fonts/Inter-Black.ttf HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/fonts.css\r\nCookie: __ddg8_=EKSFOlvm55vkcs1S; __ddg10_=1767779448; __ddg9_=172.64.209.24; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 316848\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=QdZWE1chAPa2opm3; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=172.64.209.12; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-4d5b0\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BjbwYKrhM%2BT0uEksj%2FqQJvynQL0mN%2FoB4aWSij6nXrxcpdpY7SP4rp0LXuz53tccnqH3a8eOTPY5DkSa8mHwMWYI9V2F8FJUavSlRI1o%2B9ac2S4LFA%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d948adc56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":316848,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 52 names, Microsoft, language 0x409","md5":"118c5868c7cc1370fcf5a1fc2f569883","sha1":"f79fa58ace5f55e338c99bf71e7e0702841df6f2","sha256":"4795b76b5b54d140fa17432eb4ee2eb27c63156ca0c8184ed27c4781faafe276","sha512":"1dcbf0476cd7470c359294bb360e141af440e407251646746ff53e57b302a70f4f32b775d16d19219fbf562b9b1ef5e8ee05546bcbd87a2d297541bba11f084c","ssdeep":"6144:wiaT14OiMsRwis9EzgwfxsW4unPLx+0woyN:yWnMr90gquWFnzxCoyN","tlshash":"38646a17f327c35dc5132e368b96c7a47363bc917a02e10afb243a95c98b1b05e9b5d8","first_seen":"2024-06-21T13:38:29Z","last_seen":"2026-06-08T06:19:49.616784Z","times_seen":1050,"resource_available":false,"data":null}},"time_used":379,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":310,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/fonts/EncodeSansExpanded-Regular.ttf","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.079Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /fonts/EncodeSansExpanded-Regular.ttf HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/fonts.css\r\nCookie: __ddg8_=jQDzbuJOjRx07CKy; __ddg10_=1767779448; __ddg9_=172.64.209.7; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 161040\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=h8DMq2FXKSxI2yNP; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=172.64.209.75; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-27510\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=63kA6BE1pyTkYq1KYzQbc74sr%2FThCJxE6SQ7dH2J8arRSCUf5lhnzfooqEaJaQPbh2XzgP9dRzncRGW2LH4v92jGBPL2I%2BdYR7HKsAsq7Z%2FHV08b3w%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d94aae356c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":161040,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 17 tables, 1st \"GDEF\", 14 names, Microsoft, language 0x409","md5":"09cef80beab41395b7406d15baf9a43b","sha1":"bf3eaf32c0a00c48e6bd5c173692c09bc6228b4a","sha256":"ef2d88cf3791a898cca0511f6866297247381a8147dcc60634204f1aaa37fe87","sha512":"8f5a3c30637653391455a5e079da16c34aa09d222d58b28226e9999e9363323ae3e3728abd2d376c9ecc40326bc325c63d96173329386f1ecd4d700f1f4f8eb7","ssdeep":"3072:8lOLJC8OMvp5WToy4PgIAgD5MCZy0BbKTtdSVJaXTkZ5IOgf3r2m/XpA/t7Tv2ul:8lOLh8TtguCy0Bbf5IOgf3rHpAFv20TT","tlshash":"eff36c0bf7a3e709f9551e74646883e572d2f8516f32c74fa448bfa8d4870ec08c62a9","first_seen":"2025-09-02T04:43:32.305054Z","last_seen":"2026-06-08T06:19:49.583347Z","times_seen":857,"resource_available":false,"data":null}},"time_used":151,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":75,"receive":76,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/css/pages.css?v=01","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.770Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /css/pages.css?v=01 HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VMG5dpnvsP2j00MhiB%2FViFp2tHQDHPn5wXLhyMbCIBKj12szSQ9YoErEdWl3%2FCfvwd6%2Fjc0dz3z3whBnkkEs%2F7V6sobDCphkyNs5QE6dTOkz8VvzYQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=tFDuHlOwha31wk5b; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.49; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-1916\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=2,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d928aa056c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6422,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"b985752a6456e5b6947b5ee56325176b","sha1":"bc4092c92fa46606908a987eac017ff6cd3676f0","sha256":"b78c49c755c54e520a60184f8bf3c8dd403d8440d35f4a2cc549989674f59620","sha512":"5156b4d3620167250dff740242e3a039f1890b1750053fc1b951ddc782891379b4b78143c261ddacd04e9218a416aa9ce2c99fe40480d9a438dbc643a07fa0da","ssdeep":"96:byCddaEOGKH994xXsBOcevcRBbw+oN+uMJMzMJxsvB/rlt4xkt4su4OB/06LaChz:F2THhvRBieMwx2NNm+J4lfZ9D3","tlshash":"57d1459397b56048782a98a5a6a37f64222c8043d14ecdfcbfd6349cffc81d15961f8c","first_seen":"2025-09-02T04:43:32.299549Z","last_seen":"2026-03-09T06:21:12.138203Z","times_seen":524,"resource_available":false,"data":null}},"time_used":125,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":124,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/phones.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/phones.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 62018\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=ZaIQBy9HlRSfI8Z5; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.25; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-f242\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rl6e%2B%2FoZw1GOBydGMQlL1q0T7%2FKW9lnUi9OMHGB%2FwzA%2BkFcXqGf2%2FrXiDxa9atI1%2B%2FbDSjaklUaiSNJYW4hJoHIZgxL7mKVZrL2x2RGl7QzPOICu%2Fw%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d92aab256c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":62018,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"88ae8c6bb589750082b5edf16e6a1cd9","sha1":"8c6bb3702f3271c48d86d65d66a557f4f0f6d898","sha256":"36a7d79051bda66b0503bbf3ddcfc8067ee8cdb063fdcd743493ce6af2b54612","sha512":"28786ec8aa25db88a8381dcc2c7f49eacd969d96395d3a25e7a2bdb08ed114ea472c81c938eeaaea86bc5b58147585287afe581e55ce74894c571e03ecd30a32","ssdeep":"1536:GkkVU4uvILYGW4FoHG3xXQWd8jk7IlJ7avfZk8z+M0:RDvNV8xjdd7IX7avRk7J","tlshash":"67530235dff0ad4d85461130018d2cbca9b87e9dfa1fdd618a710cd0d8b6b2b994b1ae","first_seen":"2025-09-02T04:43:32.240085Z","last_seen":"2026-06-08T06:19:49.597744Z","times_seen":806,"resource_available":false,"data":null}},"time_used":143,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":48,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/kraken.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.814Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/kraken.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4qmwdvAZwVk0Ds5eCbPP3pq0XE7iueua96xu94HmjhlqzT1pT%2BaJCJRd0V%2BNqiq6SQrki%2F6pOVamOX0h2veoiFuO%2F%2FNsSE9H0ToWzT%2BOKg%2BpCf9eiQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=j6vMGu8IIpGl72w4; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.64; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-ad8\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d92babb56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2776,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a88d6175c0fdfc14d4998e0aa9ac7959","sha1":"3886985b7a635d4cf8ae3d50db49d63c42dbebd6","sha256":"533b51e295c2ec894de75538b9f6f7ad23b0fb18cb5d55de02ad6eec6618af9b","sha512":"02caefead63c07312097e588f26540e3ae602769a930c25b5c21e59b93d6c788cc13db0d473382f4cf84d4716fccea69e3243ce74946524b0e2b6284ce3d4ef8","ssdeep":"","tlshash":"e25183a8d37ab218f004b7f88b07a8b481826fb42705ca5daffa0c1bd99500e1c75dc7","first_seen":"2025-09-02T04:43:32.260297Z","last_seen":"2026-06-08T06:19:49.621863Z","times_seen":1249,"resource_available":false,"data":null}},"time_used":90,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":89,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/user-9.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.827Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/user-9.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 9150\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=dxtNhpkFlKIfnydv; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.56; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-23be\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Mve5SJBusb0ugLIHFDyO3%2BLjnfi2dz2dbuGN4W%2BRYdPFMROZWfcVfKaHPlMXoBXlQ4gywG327xyGygcV7gtSmsMwILUMO7UY1Mjgep0ZE%2B5%2FTTUNwg%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d92cac656c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9150,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"025b0a1a1102ecd497fbfe207ab5cb36","sha1":"b9055661ab4a16835278045ed423303c7a42d981","sha256":"25c3c06331b4b5390a915484ba6eb38630e0455406df8816993168ef5b39d71b","sha512":"f3b5c689b7a915a0eac07eeafc18174ca53a0983b42272aa302084db16700ca0be683912ea479e1e972566be14dcf8baffa0c93b3b104747806944eab121c52e","ssdeep":"192:c2YNMtKwVQmeAROsEFFCY7FH9wSrZHYiTUDXMoOJ4D:/YNg7VQmIouFOSVHJacoD","tlshash":"b2129eb9fb97d361d830c27400e12ee43187335df722a9922566ab1d16812a47fdf049","first_seen":"2025-10-31T04:32:50.958623Z","last_seen":"2026-06-08T06:19:49.605747Z","times_seen":188,"resource_available":false,"data":null}},"time_used":74,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/payment.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.787Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/payment.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yJ8Fb4ojURzqR8NImR80gxKCqla9TWepMENsuATFRlX8NvRCSLIdGgOmwaBloPf1TgkCE34TnsSZMVZWL6RwVqf4CE8SWPLYpwPPKy%2FWWiwsf%2FLV6A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=T9bLBuOGqNiI867Z; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=172.64.209.37; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-7bc6\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d929aac56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31686,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9857cd226493e46d1f9d1da264b98ca7","sha1":"91d7efdfb03bdf612c1279b05b55a6299304bb6f","sha256":"8d4f42fb0c221eea7cc3bb6f8f25434a543644d9f20257c749c617c0ac8fbe1e","sha512":"feb167e1811234de452b58bc81647471bebe7bae1c845c73021e0a7c0cd538a28b55ed29c0b15f790266018680a0b4f8394ea193116656b328e3932a11f8e554","ssdeep":"384:3sn7jCC2N62crb+rBEXGZQNM87Rg/BzZQTraKBzBY0XDiu23dMcgjZZLwiywoqok:cn70MSrBEWlxBVMuKBFdTiu9ccXywak","tlshash":"bbe2c7e963faa2d4d58cebd36f94a1393d1320f75eedcd10c3ad4e68aa4486c4c245d1","first_seen":"2025-09-02T04:43:32.335925Z","last_seen":"2026-06-08T06:19:49.614715Z","times_seen":880,"resource_available":false,"data":null}},"time_used":361,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":360,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-07T09:50:48.264Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BvbPccmomOcQSDbOT2DxZH19Ak%2B9ttodMOXNZr7kbtYkeVBX9i6M1wnPX52%2BQsNJkXkzNFD6j7m%2Bqn%2F%2Fzv8YYiG1KPfw052CKL0QyEwdg2GnlQzE8A%3D%3D\"}]}\r\nset-cookie: __ddg8_=CtlPboM2L3naYc4V; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.28; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg1_=WEQA1kuQjyMC7EsI6Lp1; Domain=.astragainlux-invest.com; HttpOnly; Path=/; Expires=Thu, 07-Jan-2027 09:50:48 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9ba28d8fd81c5688-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":57027,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (669)","md5":"386e1659480bc00fd3890477fb04c7a0","sha1":"1aebe177b3be08dae6c8f8e0e894ad513bc3a509","sha256":"ec26df9f05aad995223e2a3ab6a139ae0067abb9bc3c329da9e0195c8c8ccdbf","sha512":"fd45f176a7aa2cfb8e4801adee33b5197884cd864dc4f3f770580fdf1924d3d86c2fa3ed952a3c9e1bc39ad216f6a52c3949bcdb6e8b43d528a1f1178c67838b","ssdeep":"384:Xv7Wf3wjKYTnjoOPEgiFedLb116SIiM+8lOafZ6PDhrAHhrAM8tc/99LDeA8hz78:KZF6Lb1A8o56LhrAHhrAeTY6jKwOteoM","tlshash":"4543831512e005bb11938095bbd66f6abf54eb47ca2bd549b2ec07941fc7c82ce7326c","first_seen":"2026-01-07T09:51:21.78696Z","last_seen":"2026-01-07T09:51:21.78696Z","times_seen":1,"resource_available":false,"data":null}},"time_used":292,"timings":{"blocked":32,"dns":10,"connect":1,"send":0,"wait":222,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/header-avatar-1.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.782Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/header-avatar-1.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 2216\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=uNf8FfvFkQyvHZO4; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.69; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-8a8\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=loMiCSWL6HnXCbDPEdRxF4ic7L3eXp3UO%2FETKdE2rWQkb%2BUVEIxBgOtVR68HB0MhcLgc1OVWOa74xTdmOSwm6hmZR%2B5A0NUsjHx6L0wrJ9RmeZdGjA%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d929aa856c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2216,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d90034b2d291e94da6d0c65eb0f9f1a1","sha1":"fb72b31d8799e2e1c9cec12adb3c3e6a17422ef4","sha256":"f24ce3fbcc2eb49afb20cbfd787afd1dd2638481df578f3c2d18a72c73a3238a","sha512":"463b8cb134c6f7edcc23335a444e59f279fd31a61376d8f8677143807c76eca430bd2922da414b348784a1196b87171973d2043a68292c29c135bea5f25b205e","ssdeep":"","tlshash":"5f4129cac327d11ac0ab4e35440d0dc1928c8549ea96076caf4bf92b58ca65d3be23d5","first_seen":"2025-09-02T04:43:32.319544Z","last_seen":"2026-06-08T06:19:49.590032Z","times_seen":813,"resource_available":false,"data":null}},"time_used":81,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":81,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/coinbase.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.813Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/coinbase.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YCvTAg9J6q3fZpXJF7YuCyG2%2B1N8MWyQXpWWYxraBe4lvVchwIz5RO6Hzx%2FguKQwr%2FQon9ZBpxRw6q4n6gFn1lHCASkcMqKmpV3udqYiQd7eH%2FBhJA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=y8pp6JghijY357xw; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.46; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: W/\"69000181-3bb\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d92baba56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":955,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9f07c782d3f01b7b31901fbb318590e2","sha1":"645433f39d4e78328cdc592a9bd28d57d179ba15","sha256":"de81b810f3c1ea03aca8625d43f24d58ae5cab09cf2c086d662bb438bbeffb56","sha512":"d22e07c679c625f3303deca2624a27dce963d4b13fb16de04477a0b07fdf841f0ac4fcab1d21a79fa74d85518d8eb58c8fcd48f2500b6f580faa895c07cebc30","ssdeep":"","tlshash":"f611e13c9128530c500433a85b76216616b666d8878e8b687111bb633cc945f8ef7bdf","first_seen":"2025-09-02T04:43:32.257454Z","last_seen":"2026-06-08T06:19:49.58176Z","times_seen":1249,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":91,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/js/intlTelInput.min.js","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.830Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /js/intlTelInput.min.js HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 12538\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=BprQJAZ5tefLePxn; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.110; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-8a85\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 8567\r\nddg-cache-status: HIT,MISS\r\npriority: u=3,i=?0\r\naccept-ranges: bytes\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=aMGATBnWwriqLZJEuVBaQhZspOzIWqkYVHq5UlDMXNxbcqHkzrMIFjvNAN2XK1yGLDn8PADD4uA4LG2RjkumSFTIlb5mJhkDWJe00%2F2uDn%2F0JFC1Ag%3D%3D\"}]}\r\ncf-ray: 9ba28d92cac856c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":35461,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (29515)","md5":"256ee3d33ccb9c38f283bd9b49f74551","sha1":"8bc3cb7d2465afecb2a78effbc1e9adff0d9e429","sha256":"ca54b0897b0b92e21e6244ef542c3f73a76302a84004f12591a7f38c6b5cb022","sha512":"64af820e8efb2464db16b4101fc1106a7facf2929c49ac29b39bcd311f35be47054b8bef30c4d4b5b966047abf59e4d0b980b23ba45634b889fc66bbd0e54b37","ssdeep":"768:c603Xlqn/kiIzJT9FSRzA4xXnT2nYdn24X68aWLOpQJGViTsT:cDiIz8A4knYdAk5sT","tlshash":"60f2f8ae7371573766be82fa70e64503aeae35458604443d38ac8ecd0b88ed171f6778","first_seen":"2025-10-31T04:32:50.930626Z","last_seen":"2026-01-07T12:51:48.391698Z","times_seen":11,"resource_available":true,"data":null}},"time_used":73,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/bittrex.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.817Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/bittrex.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tRXDzJGAG2frqTMwIhaD%2FxuV%2Fg425wOaaGqubr04yg%2FeDxjgxi90XkDp%2FuodRJU0%2Bvd%2BZShB5swRAiD98R7Drs8yRAlrH%2Fnk%2BdCkmrM6gS1nUgU5lg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=nRM1QmR88toO5UCl; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=172.64.209.22; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: W/\"69000181-328\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d92babd56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":808,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"df280930bc74ed9797630ef8fc49d3ae","sha1":"90880c4fea185cf1c65916a7f2c946e030170499","sha256":"bd78df4c565f16b918144f647ff9bb0dd258d448fc1c27079e93a0a7a073c994","sha512":"9b85a6a0ed231f251557790380bb6b203ce6b66e55a7bcca005404183c9a9882fb38637ee2b48c8742af5c9875f0f195beffe909ae992476e26f8058171569b9","ssdeep":"","tlshash":"4601f1f4f62c924d0e08534d2b7835395194b3d8c3c64b5d3940633b6c8d4271eb32e8","first_seen":"2025-09-02T04:43:32.308504Z","last_seen":"2026-06-08T06:19:49.582279Z","times_seen":1249,"resource_available":false,"data":null}},"time_used":1116,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1115,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/fonts/EncodeSansExpanded-Black.ttf","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.071Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /fonts/EncodeSansExpanded-Black.ttf HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/fonts.css\r\nCookie: __ddg8_=YVvL9OPXH67X6Jur; __ddg10_=1767779448; __ddg9_=172.64.209.25; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 161496\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=7iBEa01IWntWNRsq; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=162.158.222.50; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-276d8\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NPwAtq2Q%2FDecsEwA0Fb0blQZkCuKxPT1WbN3q%2F8JIKNDgJvjXvf0LeK0GdMMILU29qn5LmyE%2FNWWDn%2BcTbNk5aFvmIsK2ERwiZDq1evWAK6%2FlLgsYw%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d949ae056c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":161496,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 17 tables, 1st \"GDEF\", 16 names, Microsoft, language 0x409","md5":"8d733c894ca18c1e271b8e648b605601","sha1":"ec5db396305437bdd280d2c5a857a507027e8d56","sha256":"de952ddb6b905cbddfca787502eadc44720735bbceb916264de6c427e58e89b9","sha512":"f4842689b731e5323b4d163abca8145971f1eb6fa30e88f1ca2d8467961342c90437a4965332eaa8ce74e75307ed0094164fd52913b3650838660ead87ec8e49","ssdeep":"3072:HokDRrC8OMv4GeLUoBhQI1LZrx0NrqRKoC+b1WxxEriV:HokSd1LZF0NrCKn+hZWV","tlshash":"f8f35a0bf783d735e9151e36a46893e573d6f450af36c38fa144bea8d8c70e428c52a9","first_seen":"2024-06-21T13:38:29Z","last_seen":"2026-06-08T06:19:49.614015Z","times_seen":1021,"resource_available":false,"data":null}},"time_used":757,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":72,"receive":685,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/css/styles.css","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.771Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /css/styles.css HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wmcgpVpVUb2Ar3AT4ESdgAKC2Qqgob8ocUqYL3JWoDFOflzXf3BvZ1aE8AEMR8AuKB5dWiey4l5zFDyPf5AiLmWnYk7QZlNprHsaYcx0SBq5sQjzvg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=pa3UpB5lL0zXEcCO; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.223.12; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-c67\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=2,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d928aa156c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3175,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"a7bcd1c97a642e3ba1aa56fc190274df","sha1":"00493642cb61f1400562455a55dde50333b4448c","sha256":"8e7f617969f8aa2a4d08878377cd35eb66aa17bd229562cd3a5c86bdb9b6cf90","sha512":"9098c5ce966b5edae9b80710270c641179ba70bcce2256a68b94c0b3630cff6d2d246387e2c83661e5585fb9f76fe646e6c20ade3d59f3faafcd23b57524809b","ssdeep":"","tlshash":"7f61ce53da994846761bc66922cad780339c5841cc07ee75ffd0201cadc87a99ef7b8c","first_seen":"2025-09-02T04:43:32.311331Z","last_seen":"2026-03-09T06:21:12.069854Z","times_seen":579,"resource_available":false,"data":null}},"time_used":92,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":92,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/stars.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.786Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/stars.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=63SpEsUZFN2lHpx8CTsgs1YVLNeQKgHZAWqR%2Fd3P8CqrULAp8gMBqm0yLf5Gtt84kjQRq5hJPd%2BBa3bTSZYSuq5K5Gqlc8Et%2Bgk6TiYr8Wiz8FbkCw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=4sEk7AvNoEkGb07D; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.99; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-89b\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d929aab56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2203,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b5f46c787a1e0651d75603195a101a46","sha1":"2e1b5eab0082dd1cde7729696f9aaea6ae00e171","sha256":"adfbc7c2eb5a7bd50ba738a956c98508155e845bee22dbd4ae2b6a28e5f82c52","sha512":"8c928c3cb1ce4c6e4a78af922a97367600a7ff1c6f84fd57c9919f807c06f8fc98be8572822376ca5efa53dec6eae031fe52c12029698321d197bcc838434ccb","ssdeep":"","tlshash":"844104a0731c93f49056f7f4fd29a96635203d7e9b8887f4c2d12a80d4b72a9d58fd88","first_seen":"2025-09-02T04:43:32.301529Z","last_seen":"2026-06-08T06:19:49.634139Z","times_seen":1255,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":80,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/user-2.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.804Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/user-2.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 8522\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=SMHhC56hM40CWEQi; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.180; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-214a\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7F94i1ayPyTJSEVo%2BpDyKgnGe1bV0DoENMEvmpKDYyy3Vox7wLgEts55B2izcPEddOLbrb3CHZkLU3zW%2FqYP6BGw6KlYB9F4sjxC%2Fol8msqiorrdqg%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d92aab456c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8522,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"fe7b48ebffc73c42d63c86080993b3da","sha1":"45646918f343af1f016525e022ced7a74f5cb981","sha256":"63041e446172548f5278482c32d96a38a1bb2eae91d9663a93772f7db5dabbda","sha512":"199d45b91b9abf6aaec31bce5e90cdcc1d2cfe691e75f22bf71ca90f4b90ac59f490aa7a0ee528870f8054d688e45a6c58908db022106296d5d7c29d7b3f6680","ssdeep":"192:y2YNMtKw9ZTHP/lEF5xrxGavYXuiu97LJ6arMQlo1lo:xYNg7rnlEF5xNY+B97LJ6arM11q","tlshash":"14028db2ffb3da06ce21db38a9b63fa9e191611ce731f78421249b17021998457cd06f","first_seen":"2025-10-31T04:32:50.961378Z","last_seen":"2026-06-08T06:19:49.598622Z","times_seen":188,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":107,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/bottom.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.829Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/bottom.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 99546\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=Iefvey1Tx109xyFh; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=172.64.209.12; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-184da\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=67LfUAuLV%2FxX3s3pzoklfnB9pWsUntP7kBJXrAQw8hwuahUNxxqbagB1Abd5dud2vUVzZz4GRaOUfQOI8GrY8j2zpVhuNGSD9mEzqlc8mg50npDV7g%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d92cac756c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":99546,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"88108cbe23f34dcfcfdb96c13db08e7a","sha1":"39ef779c20c4e99005f542b1fbcd8356569d6628","sha256":"b825967004d9a1b6348da8813f70cebf175be9a8126d7284c3cfd74f8425e5ea","sha512":"88ceb6f3fc031353ad035bf79c82c3b1d1d4aec31508b3a90917c1ff25740e3bbf5d917a2bf5db3de0ea85cbccaa637a6ab4f208171819a2447d3f9c5346d48a","ssdeep":"3072:lYuuo5b/UsbYrEKwSoY31imbmwEmlfn9qKNiXnkW:lvuo5b/lbuEKwCFimbZb9SnkW","tlshash":"1aa3121976f65a96e8541f88edc2a77932b50fe7207370da3028ff36086863d21678dc","first_seen":"2025-09-02T04:43:32.314304Z","last_seen":"2026-06-08T06:19:49.616187Z","times_seen":795,"resource_available":false,"data":null}},"time_used":1234,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1120,"receive":114,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/logo.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.774Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/logo.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YwV8uKWXOKFtBZHmuwfYm%2BSdHHIQgNMN97yE%2FqQKRrQXV%2BaHjo3LGZEI1oOaihXslXZxf7dfAXDRZVVV9nF4FvsG7LVCZzkoYtmwxNlBL0q2k4Pj8g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=GOI7wyUSh7xTAYNE; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.113; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: W/\"69000181-3c7\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d928aa256c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":967,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"eb176596f021b1c2691f508e1f933b61","sha1":"fa38852591f0366651c4ef73a5d1933b62dc5478","sha256":"c359491b578fb6929a58d33b785a6d4679c555dda092945365a97813292558e4","sha512":"1234af6b2c78c4009051a0f01da71bbc9a144bae061457bc215572ba1ccfde9b5bb83d80b5e516df16c9db676cba2ff706f8294460bcc564ab528ecea2f688a5","ssdeep":"","tlshash":"6f1157c131cc95884e48831b5b0e657b622b30e8a11942c4b9603b0bbdc9bbb1ca9bc9","first_seen":"2025-09-02T04:43:32.306896Z","last_seen":"2026-06-08T06:19:49.633678Z","times_seen":1260,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":80,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/css/intlTelInput.css","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.775Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /css/intlTelInput.css HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7RNgl90Ye1AfB8U8fDJ4LJnkexJTPni%2F3WRIxU%2F9OVPfCzbs85IPX06bGpJxAtYCfMZnxISjdFPg4PVUZBKui3158aDfJPE5pOW4GInCDYPHIEbzUQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=yA1DBanxK18JXxxI; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.55; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-5754\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=2,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d928aa356c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":22356,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (830)","md5":"2900faf324a372f5aeb5bc2d88682085","sha1":"95e348b62b3dc1a20c50be55b4f7c818d38661c4","sha256":"9a6e0d55d9eda948f4a81d55eb91b987d8c294ca4188e66e5def79b2a46c0174","sha512":"38e42b6112506777bb2930ac17bb904a435ba3630634af71e6045420876cc709b8068259d4bff86cd6491c10690337242b4fe08c410327cbf25dc7d61b41021b","ssdeep":"384:vYsXk1kdCqE9y6mporr8LJj0H12o7UA5LQ2jbc:vP0yQd9yP4oL90B7UA5LQ2jbc","tlshash":"94a2b02346b00d3e961dc1fa38a2c5b5773f0c8a35aecc96eed9504a1d87b90e1ebd54","first_seen":"2025-09-02T04:43:32.270301Z","last_seen":"2026-03-08T18:28:53.082889Z","times_seen":612,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/btc.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.776Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/btc.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5G8gmQqk4M8XpIEY4mbAiFd5CE4b8EmohSX4kszRiZY9BVCSooE293IZ01Ladik6fqCWR3jZSsqA4ABP0No01pkltNe2RE2e6RrSNsv6A8vKjWEf5g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=b5BVgIsy55k0PnCU; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.38; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-567\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d928aa456c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1383,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"08b899edc5746ab897190fc4caa0a883","sha1":"24da4aad4cd7ed97d096df6c277c6e7e185a2130","sha256":"5a837ec546b5cc6b85ba9666c287c5183c4ad87e22d4670f891bdd60297b0bae","sha512":"892ec9c3514f9cbacedc42f87ef287a468867ce3a6bfc73610aaaea7b6503339055d15cd4dacc8d9d18ba23f883d7f3f41b1229d77981b0b8ead8135caed9d3e","ssdeep":"","tlshash":"3b2120f1b3ecd5c59a8857f0552d78b17d3230f1ad1ad12c86f07fa1325a42e0928cc5","first_seen":"2025-09-02T04:43:32.272741Z","last_seen":"2026-06-08T06:19:49.611701Z","times_seen":1255,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":110,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/fonts/Inter-Regular.ttf","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.070Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /fonts/Inter-Regular.ttf HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/fonts.css\r\nCookie: __ddg8_=YVvL9OPXH67X6Jur; __ddg10_=1767779448; __ddg9_=172.64.209.25; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 310252\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=zUWclZLu3oAsBXab; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=162.158.222.25; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-4bbec\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hsE2BdPUgadbg12HFprxn3YMPy39ODxhtWvgYDDDBez5nlorsRZXBJsZjOG6L8WNErQoYzkZktA64q%2FMDZr8qKLTpGPUAJIntqFsAJclPUiIvKwfBg%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d949adf56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":310252,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 50 names, Microsoft, language 0x409","md5":"ea5879884a95551632e9eb1bba5b2128","sha1":"cfa780d0b50b2bb7eacb82984f1b18a95aaa40c5","sha256":"3127f0b873387ee37e2040135a06e9e9c05030f509eb63689529becf28b50384","sha512":"f09113b22bab8fb07920453e2cdc3ce678231f7b9f801f44471461697a10a61a9382173e177691f4170a3f9af736a4ee880fb48cc4408c8eea4e3ee850004cc8","ssdeep":"6144:PUWaT1IUkh6w/yOjngZyKMOMxMmABlNGow+BNn6m4zLkA4X:sX+Qw/rgZyKfMxMmABlNG4BNn6m4/kJX","tlshash":"5f644a17e363c31dc5132e3a8793c7a0b767bc513b12a10abb243a55da9f1b41e9b4d8","first_seen":"2023-10-14T00:46:20Z","last_seen":"2026-06-08T13:50:01.504058Z","times_seen":4018,"resource_available":false,"data":null}},"time_used":425,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":64,"receive":361,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/css/fonts.css","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.764Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /css/fonts.css HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pccE2LGmlxbF30k5Tk73UNW5KjOfSH19SFipgMiT2ZdsU2%2FhCoE7EVQvemA1DQj8Pet38w7fH6RbA3nbWoZJYHgDm%2BRVoqnTLtd19mkpTuBA3PnVWQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=K0i89Tr1yYrcPvIh; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.62; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-1565\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=2,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d928a9d56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5477,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"95c471e6f19a76e5395eab83459e2a7f","sha1":"d19dcf6489aec3e991abe79997b21c32194ea5b3","sha256":"fd9243160eb2ad2b2a63768ae48566167ea26f1dcd8eb864c92ee02c277ff975","sha512":"2bd49b8d64d58b80f0bccaefed707fe981a9ba6b2d6f21e4ffdc1557119fbd13e178a5c1516c79648b5f0190daf7af4fb03d4d0e451fb2e691b60a8ad30ca101","ssdeep":"96:QGOS7aGOJTGOW/GOLkWGOg+GOxTQGOCeGOw6qGOM1OS7bOJGOWp0OLqOgrOxTxOO:h7qyLkzS38bD7o+Xk8565N7cehe05ur5","tlshash":"33b1c910141ea833aa612eae739b7e148f4d28057155c5ab47b80c7a9cfb63783e5f4f","first_seen":"2025-07-07T11:42:21.410655Z","last_seen":"2026-05-29T07:09:00.69904Z","times_seen":568,"resource_available":false,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":89,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/user-1.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.803Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/user-1.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 7848\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=dKIxyAWwYeQ363G8; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.25; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-1ea8\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YjD%2Bc1u1i8jRv9KWOjSgSOTUzOVfpkEj36Hy8KFJOQvmk4%2FAscHXlyJGN5OoZyxB3ewlL3jE94VkZyLtnWZhZjxPCNSjFsuR4Ub5A5JEgt3vGQ%2FT7g%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d92aab356c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7848,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"cec4422723de4f1c63d3f692c267540d","sha1":"e6f45dd900b062b461909299e2fb38167de7ad31","sha256":"69b88877b07b1eeb71134013bf66a95dc3b8516e5876650ccde81857a3b98a62","sha512":"1f05ea0228d1b5ee306ee2722e8a45ef745f810868543c9ca3b6bc6b2704c1e1e40f9575d4f1308eaadf47215729c7c70a7d440e49ae5018dad10ff27f886207","ssdeep":"96:XbN26MT0D5MdtbZPAVwzV7fNKCjhYfI1WGFSOJ9PZShBzWV0KFQ/R5djlTqS9JgJ:X2YNMtKwRNIf+W2w/zWSjddYQE36cCRA","tlshash":"b9f18ef9aa6be23bda67c37c58e63e85b153b33ccb70188a217456185604188795f146","first_seen":"2025-10-31T04:32:50.924075Z","last_seen":"2026-06-08T06:19:49.621249Z","times_seen":188,"resource_available":false,"data":null}},"time_used":113,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":110,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/user-3.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.805Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/user-3.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 9462\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=dDcUmKM5ZrZWji3z; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=172.64.209.43; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-24f6\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lRgrH%2FwC3Nmfyzo2IjwbUZPm4vMAsfv4CbyIYOwvPmLZArRYGPWi%2Fs%2BtRhT3WFyRnqyflZVbjGG1UyJkfQDUk0i8xeybUSEjRfEGSKx6erXakXO6BA%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d92aab556c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9462,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"052bb6da86f045de05aca3d8b9bf0f48","sha1":"91949a031bf83d8fb94f0428be8b3183e7aa2d0e","sha256":"cb5bd0df22f44c9ec1d61929cadf93bade2cad93383835976a7a110c27069c44","sha512":"e3569e630a864f07bb5dc072bf8ce2ac63a17714646bfb8d2a391819165547e0ba828f81b3a33814fb155113c4e0ff76c8b8bba27ae4ba132fc32de9cd150e77","ssdeep":"192:H2YNMtKwy+mYhoDAE0JpIAPqVF/oo0Ao5sLu7dMd9L:WYNg7yWhoDEJprqDoo02Ltn","tlshash":"b012aff23b59db6ecae4587450e627b5e2529f3dc702355a2c2c4f23d188542630e29e","first_seen":"2025-10-31T04:32:50.946745Z","last_seen":"2026-06-08T06:19:49.604832Z","times_seen":127,"resource_available":false,"data":null}},"time_used":1141,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1140,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/info.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.811Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/info.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 59838\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=OzE293sHdQr5wEDv; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.75; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-e9be\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sObTedwoXbXVsceucqxGnbQw%2B6C3MXmaCLOIk4qbNbEdt60p60ugdfD0oUdiL9UQ7Lv2KWzV84W48yOrQ0Ee63YqqC%2F53IsuaYZzFguy%2BcNVOVV5NA%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d92aab956c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":59838,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"8955c166ea726f9df674dceb3f9186ad","sha1":"7d642254ba07756830b82c507c49856d91ded48b","sha256":"430789278409c7c3c40c011f36ab5ad7aa9dbb698bf5538b7161b91bee63090b","sha512":"1cc9d6440bcbf856f66eba36f4ba9f2a6a29cf56e340629628061a3cff76ed921adec1fe61e8f513fe4ac37083f4baa450d7e204e939eda5c5fbc27bad0fe015","ssdeep":"1536:I+GXTgppEwC2m78LI1MfqzSS8So+Pd2qoLL0ASZSh1iXmnyqrjR:IhXThtQQuir7dPoLAHZOiXmny8jR","tlshash":"0743023e29de8841c8df2c6d04a8162efa6c9b23668abc7858f6130ed3d5131e7f5d05","first_seen":"2025-09-02T04:43:32.277422Z","last_seen":"2026-06-08T06:19:49.590944Z","times_seen":1162,"resource_available":false,"data":null}},"time_used":189,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":99,"receive":90,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/info-arrow.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.818Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/info-arrow.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=l5%2BVFcxXOBZHfBz2femNTx%2Bb%2FsWuJ0BkOk%2BhB2xXURMbRzQ4nm7ohR4Wche%2FIQL97a4KE4AdppSf3h9hzEBlkK6r0UyH%2BRFjMjF7xpdSq779QzRq1Q%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=n1rzYsQwpaEStXvc; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.44; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: W/\"69000181-1e0\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d92babe56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":480,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7000561a2a36f6e67dd92e77cbb50d10","sha1":"0059c6b703952d15dc05cad181c1999380a9454a","sha256":"b05aa3927b700369237f9d2ff209fdf0f4867935cbee04cd1bbbba66231cc7e6","sha512":"8c7cedcd717b2ae9b6b59fec21c9aefabb935218e3f158f81b653b5224094bbecac514b5dfe11f4c3763914860064afbf742aca3cf7f1824a358c185ca5f0d0a","ssdeep":"","tlshash":"9ef09ea730841086e00defb4f02c544636c31cc3b488412cdd4c660ab6e47ba2d40e54","first_seen":"2025-09-02T04:43:32.262978Z","last_seen":"2026-06-08T06:19:49.602685Z","times_seen":884,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":79,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/css/tailwind.css","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.766Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /css/tailwind.css HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=q9RtmFmv9fvO22WAbVdDlYfXzaAbmAfPaBqUbzWVhvrnaUCCzoGruB5AHMbLHO0fYcLJ9VV2F004A5XOok%2FdJ%2FL96DTy2jzLe84sHLxZnGl1yYYz%2BA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=BqMWHqct1wiE1YDg; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.34; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-e97b\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=2,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d928a9e56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":59771,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (351)","md5":"982407662691a2963d5f9bf2f56b9130","sha1":"814fc4cba399c3d812c449900822cc6ec7fbcf60","sha256":"7d65253fbf0066cbaf833225e80321ea5e5867557d424cb034b0891366f9b330","sha512":"30b8bef2049812c307de1750ce5f1de7d1a4d3c962938f729f15d032391c0b933aaaee4147ac8c1bbead19bb693c02a57a2d9661021de6ce69509aa07deb5141","ssdeep":"384:wbZfn1j9535QQ/vXPPikKVI9sAmJoF7aATNYxPWrae7yl:wbZfn135JHPKkiAmU7yl","tlshash":"7843761a97e1d6683c7ad1b0a109a4c8763e2195deedcfaef8f01010df84be45da7d18","first_seen":"2025-07-07T11:42:21.482943Z","last_seen":"2026-03-20T23:12:42.294433Z","times_seen":556,"resource_available":false,"data":null}},"time_used":130,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":124,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/polonex.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.815Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/polonex.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AyJht7C6QjHaFbw9tH9ww%2FI5Etei0Kxs4VuEemikgI42mt9AW6z%2FAMDRhc0kd7gJXHeOaH0QPeDJ3cHMspW%2BXu97i7Hf9W53Mox2j9oI6SXyxGKJ%2BQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=d7syLTG8JmHSUnCs; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=172.64.209.25; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: W/\"69000181-3fd\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d92babc56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1021,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0a93f41c5d779ef0d290e4c54e2438c4","sha1":"e56f962012e24d19748c1d4f34789fab11deb64e","sha256":"c9bb6c3d073015bd7e82cb3c8e1b1e9a3fa9e15d3ade934e21068ecd59424f61","sha512":"ecc25a27648b40e5fb0370597111f401bfec58bb6b74145251062ab6ed8a6a5c9d6e15a5e3fa23687429262adaa83007366839604b4c43b8922dc7c84fa61e6f","ssdeep":"","tlshash":"ed11cefc6728920d4e0897943b6aa866107273d89189c747b5c565af6a8d06f0cba1d4","first_seen":"2025-09-02T04:43:32.322472Z","last_seen":"2026-06-08T06:19:49.594235Z","times_seen":1249,"resource_available":false,"data":null}},"time_used":559,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":559,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/like.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.061Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/like.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/tailwind.css\r\nCookie: __ddg8_=EKSFOlvm55vkcs1S; __ddg10_=1767779448; __ddg9_=172.64.209.24; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pPnsxDwOefjvaMzGH3UnQXJEbuz9Tp8JGqrHXkGy1ti14lPPle66Hj3zy2HPExlpA%2FcYFt3VyPHIi8Uny5PBFmGdRSoNTF0p%2BHfYkcOb9oO%2BUT4z%2BA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=VL4wmQl8EPGpMwBT; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=162.158.222.146; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-e1f\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d948ad956c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3615,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2c10ef99921bedb522858b8452a520f1","sha1":"d8950fd5ebd9fc4c9f7030a8ad535a03ea502ac5","sha256":"8fc5c82557271bff7c7974b940f396c0e1510e56e149061ac98368c95138f2f2","sha512":"7a9f75653a67f9d6d57ba07927fd23c238e20b57cb1aa6856d8edeebe8399b6304ae108c8c30804b59bb911fc123df24257c6148a15b94de03317ce9f156f892","ssdeep":"","tlshash":"1f71d8e583e862f9504ba770c9369fa5736b3cf9374a8e8693c8ad8da81500c584cd47","first_seen":"2025-09-02T04:43:32.282519Z","last_seen":"2026-06-08T06:19:49.58848Z","times_seen":884,"resource_available":false,"data":null}},"time_used":297,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":297,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/favicon.png","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:50.007Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/favicon.png HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=dDcUmKM5ZrZWji3z; __ddg10_=1767779449; __ddg9_=172.64.209.43; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 953\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=JDReHRiwnGpAqQGk; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:50 GMT\n__ddg10_=1767779450; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:50 GMT\n__ddg9_=162.158.222.63; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:50 GMT\r\ndate: Wed, 07 Jan 2026 09:50:50 GMT\r\ncontent-type: image/png\r\npriority: u=6,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-3b9\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DOgpGoSE%2FsD%2BT95CJV%2FuvCZVJAuxnUl560eTTLpTfgierWzBUmRmWq0TD4c%2Bg2G6i63Z1eQvKifKU3fwMg%2FckdSQ%2B4KJzPibNliZD%2FUooi4yA2skAQ%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d9a8b0e56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":953,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 33, 8-bit/color RGBA, non-interlaced","md5":"a2f7ca10e3c4dfd860c8b9f43e9b210e","sha1":"31eb72c55b2a89269d502dddbd5492c83cc2d4e4","sha256":"d7eff8631da5eb23321129952d2774c1c19ce0ea04b41e29b5227386602befc0","sha512":"66fe4e36b00bcec3a96c1ea53f22a19865e8f748672c9473d5de32c531c1734c537a052c24fce2c4a91e984b9f20aa997859d307c88a46601db8489d8d3eea14","ssdeep":"","tlshash":"6911c498bb91707cdfefe10665ab29012ba1623d0ca23c0ebc747321102687cf738302","first_seen":"2025-09-02T04:43:32.309865Z","last_seen":"2026-03-09T06:21:12.076176Z","times_seen":633,"resource_available":false,"data":null}},"time_used":114,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":114,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/css/styles.css?v=01","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.768Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /css/styles.css?v=01 HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EyZUtll%2BGOMXf4UCFKhapvJgVW5GRmGtbe%2BIXHWVIwB7OB%2BoFo%2BI0%2BwrngRL7XlXX25LayiuC6xjcZsCmZvrYf9P1Yhti6CUE4OKlhK91P%2Bs7OvMBA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=ceTjHB45asJwmvxR; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=172.64.209.10; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-c67\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=2,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d928a9f56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3175,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"a7bcd1c97a642e3ba1aa56fc190274df","sha1":"00493642cb61f1400562455a55dde50333b4448c","sha256":"8e7f617969f8aa2a4d08878377cd35eb66aa17bd229562cd3a5c86bdb9b6cf90","sha512":"9098c5ce966b5edae9b80710270c641179ba70bcce2256a68b94c0b3630cff6d2d246387e2c83661e5585fb9f76fe646e6c20ade3d59f3faafcd23b57524809b","ssdeep":"","tlshash":"7f61ce53da994846761bc66922cad780339c5841cc07ee75ffd0201cadc87a99ef7b8c","first_seen":"2025-09-02T04:43:32.311331Z","last_seen":"2026-03-09T06:21:12.069854Z","times_seen":579,"resource_available":false,"data":null}},"time_used":113,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":113,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/pros-1.svg","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.807Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/pros-1.svg HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sNqM5Rp5k2d5rsLRzZaYQreAAebBsMhNI3ov9FbN5uCLYY3Rfm2EtNtuBCU6R3xW2GIZNb2yhLrOrX7DftjFWU6HSFTqT8YIzw3V9ctjypGF2wYbnQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=GTX4nSe7LkFFo3u3; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.223.15; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69000181-1510\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: br\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\npriority: u=4,i=?0\r\ncf-cache-status: BYPASS\r\ncf-ray: 9ba28d92aab656c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5392,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e3e03487987db909519573a44bc1c14f","sha1":"e9fe3cb017ee1eeb06730a1b5481c587763e3135","sha256":"7380cdf722492fa999e321b25877905d77eb7781b3729966d36a4a580b40d924","sha512":"052f13a31dd25a9a6e0c561e9dcb24128fe21cc351a1626943534885190a0869790d1038e29b49041649c72cfdade38ed8e1c0043527ae6d56c26dd2d2d32947","ssdeep":"96:oKyaCV0Ct7eFu8TuPK/MeDurIIzfZUijQuGCZ/gNCjAJNk+n3W4ctX7BTDx:oK00dE8OK/4VXGC9yJG+O7BTDx","tlshash":"25b173c8237541a4f949b6fe071bbc542e4649e8e7118c5dcbd46e0be1420ae2d7aecb","first_seen":"2025-09-02T04:43:32.303241Z","last_seen":"2026-06-08T06:19:49.61343Z","times_seen":815,"resource_available":false,"data":null}},"time_used":100,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":99,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/images/user-6.webp","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:48.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /images/user-6.webp HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/\r\nCookie: __ddg8_=CtlPboM2L3naYc4V; __ddg10_=1767779448; __ddg9_=162.158.222.28; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 8536\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=lM899crtAbWyBWZi; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg10_=1767779448; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\n__ddg9_=162.158.222.19; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:48 GMT\r\ndate: Wed, 07 Jan 2026 09:50:48 GMT\r\ncontent-type: image/webp\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-2158\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nLZvvaKs52awkSMlWVe1geGt1aX0CM7nBw97K%2FuYL5OQnr0r3oyxxELaURs2iaRTjPfwu3jbnl9ui7n2RZ3zRSC2NO%2B7GG7nID%2FsSZNR16v1P%2BhgDQ%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d92bac256c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8536,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"0f2839f0d02e6331d58b1fab901cd940","sha1":"26e3b44f3865730646f0406807a528dfffd669d9","sha256":"49edd17cd54aec7bc621ffa8d79981d0bc7f0992e6d9fe40362906af5407aeab","sha512":"e199fcd9458dbe0a49a52156e1f2fcea007451c7285d1f775ee68ae69c6a672953038f611d9594e5c644aa23491d8b0d5d209b30e774c08c70361129acab718b","ssdeep":"192:M2YNMtKwS+t33OaXv7nrlJntX6AM4NTcgR+x/7W:vYNg7Sg3eaXvbrlJntX6ghR+x/7W","tlshash":"ed028db92eaf8372d530d9ba18f373d164ca2729e21078ca75248f364285980b5ce0d8","first_seen":"2025-10-31T04:32:50.89606Z","last_seen":"2026-06-08T06:19:49.595211Z","times_seen":188,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"astragainlux-invest.com/fonts/Inter-SemiBold.ttf","fqdn":"astragainlux-invest.com","domain":"astragainlux-invest.com","tld":"com"},"ip":{"addr":"172.67.181.16","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://astragainlux-invest.com/","date":"2026-01-07T09:50:49.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"astragainlux-invest.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Dec 2025 00:09:03 GMT","end":"Thu, 26 Mar 2026 01:06:44 GMT"},"fingerprint":{"sha1":"EE:53:66:88:68:08:11:82:31:9F:89:65:FA:AF:77:ED:B9:04:AB:C9","sha256":"6E:8E:CD:F9:56:12:23:CE:E7:A6:D5:72:9F:87:23:9B:BD:00:00:81:2D:40:8C:F8:3B:21:9B:32:1A:8E:80:59"}}},"request":{"raw":"GET /fonts/Inter-SemiBold.ttf HTTP/1.1\r\nHost: astragainlux-invest.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://astragainlux-invest.com/css/fonts.css\r\nCookie: __ddg8_=YVvL9OPXH67X6Jur; __ddg10_=1767779448; __ddg9_=172.64.209.25; __ddg1_=WEQA1kuQjyMC7EsI6Lp1\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ncontent-length: 316220\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: __ddg8_=qkmC2K2CRVDu8p5w; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg10_=1767779449; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\n__ddg9_=162.158.222.64; Domain=.astragainlux-invest.com; Path=/; Expires=Wed, 07-Jan-2026 10:10:49 GMT\r\ndate: Wed, 07 Jan 2026 09:50:49 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Oct 2025 23:34:25 GMT\r\netag: \"69000181-4d33c\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ODJ9A9lr%2Blf82PHV6WyCljamga6R5J%2BFFrLCXFtMTmHUNlzy1gZGijQhGliC%2BN7ObcoUOICuK%2FYknPaCBxpG7xaykGErzUrcFMB3kynncXPSTB4R2g%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9ba28d949ae156c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":316220,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 52 names, Microsoft, language 0x409","md5":"465266b2b986e33ef7e395f4df87b300","sha1":"5e0c44e57e7e090252d79f622899e67585bb892c","sha256":"b0b540e69bf6717016e33874670e09acf4bffc2ca3f4c1cf174a4ff696308c65","sha512":"b653746094471135e0b4cb286b45c4fe2b146a877ed3ad03bf1c116f0413c0c2e66d9245651349dcf1c322b71071b499b83129d88a17b25f3ca7b18d5a5428b6","ssdeep":"3072:tYR7HDJwbA5Maf/j41tIW+8EziE7/VgC+zvVF7ALp5p28gzEPuNOVKpxG6IXfsCQ:qR6aT19iEjAa5hgJRLQCo4TJIwH7","tlshash":"0d646a07f363831dc9062d3a47e3c7a07367bc917a12e10abb283799c98b5b45d9b5c9","first_seen":"2023-10-14T00:46:20Z","last_seen":"2026-06-08T13:50:01.529244Z","times_seen":2891,"resource_available":false,"data":null}},"time_used":454,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":114,"receive":340,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"astragainlux-invest.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}