{"report_id":"96ccaeee-2f4b-4409-94b7-035c57d3026f","version":6,"status":"done","tags":[],"date":"2026-04-22T14:48:23Z","url":{"schema":"http","addr":"bybitvar.com","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"104.21.77.94","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"bybitvar.com/en/index.html","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"title":"Gate Review 2026 \u0026 Exclusive Fee Discount Referral Guide | Web3Guide","dom":{"size":344,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (344), with no line terminators","md5":"5426e7a7871b8f61b2165d888ccd0c32","sha1":"4a5b11fd3b54f4442834310775db5d19d0b042e9","sha256":"28ed82d28915e57e2fec05e64140626ea348e1bb8554999d4bf153eac920f7d0","sha512":"d2c787ec885c19277f4edb871a5c1b6db28d9ba9444623b649a0c281ad16fdda19c1ef8f3e1bcfa9f2955fbdaadb7c426e294395c78c150c73b3f1bc4b0df9f4","ssdeep":"","tlshash":"e0e020e95e75c43469b4128610f5e39c1560b1547711e64441eddc765e10fd34c6295c","dom_hash":"domhashfa92bf49a0529f3ae8099507699ba65b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"bybitvar.com","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"104.21.77.94","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-27T14:48:23Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"bybitvar.com","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-02-07T12:01:44.165697Z","last_seen":"2026-02-28T17:23:20.347135Z","alert_count":27,"request_count":9,"received_data":155396,"sent_data":4202,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.74.8","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-04-19T22:24:53.213297Z","alert_count":0,"request_count":1,"received_data":474168,"sent_data":433,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-ZKKCHH8XT2","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.8","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"3a18ce20c5bb3bbfef0e3cdb761c307f","sha1":"c5f5da86497cb7ed3cd6e1be45ce97f8f68dbc46","sha256":"a75e7c0ef2cbd9071e43d78dbc09196461d0ece44935b0b8601df95fe8cf83ea","sha512":"951cab79b0f1978d2be3c22666db79c26baa8c9c74c33e634dcca50b4d123013872e5422821f52a4c3f122e3862b2aad2f5cf0b242398614f71d043ed3b94f72","ssdeep":"6144:vMZOJjJnrVZu0Donyo18z25leYiau0XaOU2Cs+KUFlbrU:v3nrvYny088dyls","tlshash":"31a4f8ceb3d674665396f478903f018ba57b28a2b44cc89af189cce02d7465a4277f7c","size":473564,"data":"","first_seen":"2026-04-22T14:48:25.220902Z","last_seen":"2026-04-22T14:50:06.567274Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bybitvar.com/script.js","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"400bae8aba52727432c0b85daa063217","sha1":"15d7cd36acc9a220fbba727ca002455ac045f8c3","sha256":"682d38495e97fe331a6c7f620c06faabc464f9e9f50ee393fd068692d228baff","sha512":"8c06bcea25d4170d78613f330d8c958d5acdd8e1a5c4fc24167cd7f6b39a860db42e86893853f287b7a1b154edaf2d399126a8fa5cea589d0c9b0df1168a5bfd","ssdeep":"","tlshash":"5341f26b13b9207944bb716f43cbd754a62120cbb042ed073f6d870c2f82a955df1ae6","size":2018,"data":"","first_seen":"2026-04-22T14:48:25.22334Z","last_seen":"2026-04-22T14:50:06.566579Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:blank","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"ea3c3e3a98c5a695b6948c6c012d02c8","sha1":"2b1fedfbc50ab9debfc0aa4e4d92a0bbdc334c42","sha256":"140d9508f5b901ef8cc42824f50bbbd130fb4186d12995f23acf0793481cf14b","sha512":"93f36229d922ce240b38b13f40572c6eb4b43a11e634d9c579e451707b24741d19461b79ad11b388ad6b8a7a30f191845556132d8185753408c13a2c08eb3e15","ssdeep":"","tlshash":"3dd023651b7584309599014710b5d7d42560715c7751f540c1fdcc6b6e11dd355b195c","size":217,"data":"","first_seen":"2026-04-22T14:48:25.22492Z","last_seen":"2026-04-22T14:48:25.22492Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bybitvar.com/en/index.html","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"f82444b55c73d9d75d815cbdaaecb934","sha1":"eb2384a87b03451229fc636d807cd22626e4f041","sha256":"3d04caffd54a013eacddf303b8e20feb89bc3fbcc2754462a3f9c3eff5ca377a","sha512":"3f51bb807ca3530b86f3a18a0f41d8936d3f24aa7afdbc62e39ff9a12d1986238d090649a3ab33b9a1595c601746735fa8dce2ae7a76e699f5553e5681a065f4","ssdeep":"","tlshash":"0dc08c88211b0c7051ab2a410bafa200f006321394a0da213d1a73044f20e03d744914","size":165,"data":"","first_seen":"2026-04-22T14:48:25.226226Z","last_seen":"2026-04-22T14:50:06.568657Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bybitvar.com/en/index.html","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"4d63c271a319dfd1f2efeb4e1606e4f9","sha1":"1f5af248ba2584830395abe99f43aec3511967dc","sha256":"3d1c7758171195c44b25fd902de5ebff421c87cb8df176c87f6b420c0f7a68be","sha512":"a23a38758d5d3f2dcec7337f43ff284d2b1197a88ca9a716a3b2c81cec8030087918c21baee4ea307a462ded49919bfe323ec129422ab1b68493d64cf2b335ae","ssdeep":"","tlshash":"821100753b2a1534cac6408b317ee7a93d3260257a02a084c27ccc285d18e8314efcbe","size":902,"data":"","first_seen":"2026-04-22T14:48:25.227466Z","last_seen":"2026-04-22T14:48:25.227466Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bybitvar.com/cdn-cgi/challenge-platform/scripts/jsd/main.js","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0b817d57841300062aa5fd308e0f4162","sha1":"d5ed5295a2d5b0341dc15bfc1684c5ed2db30012","sha256":"6b31b9f87c9a1323b4c3f7f95bd621d6de12b461ddff787b276353c4926282ad","sha512":"26387eea3d588c75dd231baaf899e734ac730e3073d5432f76a2292425e4220ac7a801283274c2f62965f822a09d6a4660a96f934ea6f3a5ff6f584988b243f9","ssdeep":"384:TzNsrVj5gjLQh2lmQ35+idHoVHhV9AWzZEEcgfbBnuGq8G2ij:TzkxKjLM2lhjOVuREcgDVu+ij","tlshash":"44c2e9c63cde7b79d32a6070106b31cb67ae9c487405aac9cb51a9b8bd193045da7f8c","size":26129,"data":"","first_seen":"2026-04-22T14:24:56.75314Z","last_seen":"2026-04-22T15:06:18.270657Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"bybitvar.com/logo.svg","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybitvar.com/en/index.html","date":"2026-04-22T14:48:03.952Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bybitvar.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Apr 2026 07:34:21 GMT","end":"Sun, 05 Jul 2026 08:32:53 GMT"},"fingerprint":{"sha1":"F2:75:4E:DF:7A:7E:E6:4B:8C:B1:C7:ED:26:3F:88:3F:E3:7B:08:F0","sha256":"52:A0:D1:89:23:AD:7B:70:31:2A:EC:14:8B:09:89:F3:6C:03:C2:A6:8A:07:D9:C0:08:CC:89:A1:66:24:BB:C4"}}},"request":{"raw":"GET /logo.svg HTTP/1.1\r\nHost: bybitvar.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybitvar.com/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 22 Apr 2026 14:48:04 GMT\r\ncontent-type: image/svg+xml\r\nalt-svc: h3=\":443\"; ma=86400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Wed, 08 Apr 2026 11:31:56 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=W61v3qRyvHOOxSMjIDZVVBYIbq%2FIKGfzTgjZ5%2FQRzt9AFZsHOSWXlQDkb%2BZybxaRXzhB0R8sTpisBaDj4CtXuO94B9Dwr9ch6dQGilnbm1ShJDB9K9AjnXaHR0FpEV8%3D\"}]}\r\netag: W/\"dhnqnjhe8kl66a\"\r\ncontent-encoding: br\r\ncf-ray: 9f056d60bfacb4ee-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":226,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"566d9a38af9f0f533511e3244b4f397a","sha1":"952c3e186806037925c22bd92c04f44e1303d152","sha256":"166e880f2e8879eb13753f215543f4d7a74d08e59ad2fee84a868b4d16005bba","sha512":"fe3891ae55840c005509eeadd3eb8f2ea4208a26b9a6304792aaaf9a3188d0e42cfda144d005af31294e47cdfa65636c2c87d4efeac9232151e9f8fd56e9c9b7","ssdeep":"","tlshash":"b0d0a7f5987a55ca510c1701c77c712264d978c67a80004afa6c05642a09d629c17998","first_seen":"2026-04-22T14:48:25.204251Z","last_seen":"2026-04-22T14:50:06.568083Z","times_seen":2,"resource_available":false,"data":null}},"time_used":267,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybitvar.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/0b8fb825cb67/main.js?","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bybitvar.com/en/index.html","date":"2026-04-22T14:48:04.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bybitvar.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Apr 2026 07:34:21 GMT","end":"Sun, 05 Jul 2026 08:32:53 GMT"},"fingerprint":{"sha1":"F2:75:4E:DF:7A:7E:E6:4B:8C:B1:C7:ED:26:3F:88:3F:E3:7B:08:F0","sha256":"52:A0:D1:89:23:AD:7B:70:31:2A:EC:14:8B:09:89:F3:6C:03:C2:A6:8A:07:D9:C0:08:CC:89:A1:66:24:BB:C4"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/0b8fb825cb67/main.js? HTTP/1.1\r\nHost: bybitvar.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 22 Apr 2026 14:48:04 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public\r\nx-content-type-options: nosniff\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 9f056d61c962b4ee-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":26129,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (26129), with no line terminators","md5":"0b817d57841300062aa5fd308e0f4162","sha1":"d5ed5295a2d5b0341dc15bfc1684c5ed2db30012","sha256":"6b31b9f87c9a1323b4c3f7f95bd621d6de12b461ddff787b276353c4926282ad","sha512":"26387eea3d588c75dd231baaf899e734ac730e3073d5432f76a2292425e4220ac7a801283274c2f62965f822a09d6a4660a96f934ea6f3a5ff6f584988b243f9","ssdeep":"384:TzNsrVj5gjLQh2lmQ35+idHoVHhV9AWzZEEcgfbBnuGq8G2ij:TzkxKjLM2lhjOVuREcgDVu+ij","tlshash":"44c2e9c63cde7b79d32a6070106b31cb67ae9c487405aac9cb51a9b8bd193045da7f8c","first_seen":"2026-04-22T14:24:56.75314Z","last_seen":"2026-04-22T15:06:18.270657Z","times_seen":4,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybitvar.com/logo.svg","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybitvar.com/en/index.html","date":"2026-04-22T14:48:04.187Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bybitvar.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Apr 2026 07:34:21 GMT","end":"Sun, 05 Jul 2026 08:32:53 GMT"},"fingerprint":{"sha1":"F2:75:4E:DF:7A:7E:E6:4B:8C:B1:C7:ED:26:3F:88:3F:E3:7B:08:F0","sha256":"52:A0:D1:89:23:AD:7B:70:31:2A:EC:14:8B:09:89:F3:6C:03:C2:A6:8A:07:D9:C0:08:CC:89:A1:66:24:BB:C4"}}},"request":{"raw":"GET /logo.svg HTTP/1.1\r\nHost: bybitvar.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybitvar.com/en/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 22 Apr 2026 14:48:04 GMT\r\ncontent-type: image/svg+xml\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=kSpcLjcxUV0.9t15cU7pNRSDOiarWjFgq4DE284IODI-1776869284.1900122-1.0.1.1-tNy7zKOW4oI3q0Z1s8ZhUbG5IOdPjQzQzhmbPdAR5sdz4VizJH4C0Tn2O8GjlyJ6kSAmHyHDASkROIE89S8HESzcwWq7zXFwdKHBX.N5hI2mNMIBk4byzL_G3b39IRPF_CVr5l3I7arg03TqP5KQ8n56hhIOBCEI0rUMWpVMDXs; report-to cf-csp-endpoint\r\nlast-modified: Wed, 08 Apr 2026 11:31:56 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\npriority: u=6,i=?0\r\nage: 379\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jTYIKpVgEYEMrhkPodXG3g4BOuVF1lxAmW1bq5x2iCTCWAI7ZpEi70wBBzxHLrAHr7vDy8s28EhUw5OX%2BPOhVNMFmu6SPUp8H3BA0dZIi0YOf0%2BjuunP%2BRflIV3%2BcAs%3D\"}]}, {\"group\":\"cf-csp-endpoint\",\"max_age\":86400,\"endpoints\":[{\"url\":\"https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=kSpcLjcxUV0.9t15cU7pNRSDOiarWjFgq4DE284IODI-1776869284.1900122-1.0.1.1-tNy7zKOW4oI3q0Z1s8ZhUbG5IOdPjQzQzhmbPdAR5sdz4VizJH4C0Tn2O8GjlyJ6kSAmHyHDASkROIE89S8HESzcwWq7zXFwdKHBX.N5hI2mNMIBk4byzL_G3b39IRPF_CVr5l3I7arg03TqP5KQ8n56hhIOBCEI0rUMWpVMDXs\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: W/\"dhnqnjhe8kl66a\"\r\ncontent-encoding: br\r\ncf-ray: 9f056d622a15b4ee-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":226,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"566d9a38af9f0f533511e3244b4f397a","sha1":"952c3e186806037925c22bd92c04f44e1303d152","sha256":"166e880f2e8879eb13753f215543f4d7a74d08e59ad2fee84a868b4d16005bba","sha512":"fe3891ae55840c005509eeadd3eb8f2ea4208a26b9a6304792aaaf9a3188d0e42cfda144d005af31294e47cdfa65636c2c87d4efeac9232151e9f8fd56e9c9b7","ssdeep":"","tlshash":"b0d0a7f5987a55ca510c1701c77c712264d978c67a80004afa6c05642a09d629c17998","first_seen":"2026-04-22T14:48:25.204251Z","last_seen":"2026-04-22T14:50:06.568083Z","times_seen":2,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybitvar.com/cdn-cgi/challenge-platform/h/b/jsd/oneshot/0b8fb825cb67/0.22037143141243043:1776867060:pFvseYQ3jGTeMJO0bVvbLIDZL5Lgp1PSX0aSeztZDmQ/9f056d5c1dfb35a6","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybitvar.com/en/index.html","date":"2026-04-22T14:48:04.302Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bybitvar.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Apr 2026 07:34:21 GMT","end":"Sun, 05 Jul 2026 08:32:53 GMT"},"fingerprint":{"sha1":"F2:75:4E:DF:7A:7E:E6:4B:8C:B1:C7:ED:26:3F:88:3F:E3:7B:08:F0","sha256":"52:A0:D1:89:23:AD:7B:70:31:2A:EC:14:8B:09:89:F3:6C:03:C2:A6:8A:07:D9:C0:08:CC:89:A1:66:24:BB:C4"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/b/jsd/oneshot/0b8fb825cb67/0.22037143141243043:1776867060:pFvseYQ3jGTeMJO0bVvbLIDZL5Lgp1PSX0aSeztZDmQ/9f056d5c1dfb35a6 HTTP/1.1\r\nHost: bybitvar.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 12152\r\nOrigin: https://bybitvar.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybitvar.com/en/index.html\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 22 Apr 2026 14:48:04 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-length: 0\r\ncf-chl-out-s: Izze35E4MNaNpLrS6VK9SA==$WFLgg24MPZeAVflSOAYqhg==\r\nset-cookie: cf_clearance=ulyLKuX66aQegbCeuKtMDs_8tauBjeA.5NJw7Y0zmD8-1776869284-1.2.1.1-0l6zm3IM07ALMRzog5dsBQ.fRfzJTF9D_qAHRNItczaXci6nU.Qi7HPsVuRzFAl7ZST_Ia.dE9cthxDd_Tlq1OC2ei1ByimGOrQ.1HqZ2YwWdxDhXGUHcQoiR46Oz_Xb1nXJmI8uEv1SYY4ZxlA6UzhV2JuBW7SDJIVR30wICtQdlBz.LhRSRaT3rkgzN06jrHh3oge2JI5Iyb2nHAdMlQoYcuHY7oCuTM_BuFASpUi666ikA7WykFUq4EnR.D3DoN_6xmEvaZWGpwVzH_MiXmeYLylxoSIcTGwpvWmKv6l06lHqqQUHVVRG2D.xfakYLBlhf.58dVEoVrjKVg2L0Q; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=bybitvar.com; Expires=Thu, 22 Apr 2027 14:48:04 GMT\r\ntiming-allow-origin: https://bybitvar.com\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 9f056d62dae2b4ee-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-22T19:09:25.22698Z","times_seen":14072869,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybitvar.com/en/index.html","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-22T14:48:03.215Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bybitvar.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Apr 2026 07:34:21 GMT","end":"Sun, 05 Jul 2026 08:32:53 GMT"},"fingerprint":{"sha1":"F2:75:4E:DF:7A:7E:E6:4B:8C:B1:C7:ED:26:3F:88:3F:E3:7B:08:F0","sha256":"52:A0:D1:89:23:AD:7B:70:31:2A:EC:14:8B:09:89:F3:6C:03:C2:A6:8A:07:D9:C0:08:CC:89:A1:66:24:BB:C4"}}},"request":{"raw":"GET /en/index.html HTTP/1.1\r\nHost: bybitvar.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 22 Apr 2026 14:48:03 GMT\r\ncontent-type: text/html; charset=utf-8\r\nalt-svc: h3=\":443\"; ma=86400\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=58kJnIzc5SCm9ssAmbagv48ocrn7Qmc2cSaS6%2BuWzf4jBTvhWmTPPYscRzPJkLkr%2FiNoFmHFRpW%2BW07QqEP%2BtgsFzbTPD%2FKVLVzRshAWIRcRkQDX2NyZFvE%2FVvZsEo8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Wed, 08 Apr 2026 11:31:52 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9f056d5c1dfb35a6-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}],"data":{"size":37818,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (926)","md5":"0ede064c81fb2cb436181e0ab24f2738","sha1":"bc05ff6cd33a6cf6e9ef43bf9f42904c82a33998","sha256":"b6a744fde7d03ae2e243f704e30de8f2c107caf6bb49c04611b9a9ac3595c961","sha512":"d25eca2f576c56bd1dfa4c16fb6decbdc554ddb2e675650ea68d6e0332247f262040955c4b3200e8481ae3cae6cdba085a18ce005d64701e593d9fa3e796a124","ssdeep":"384:3tjfjVXxL3TWc+jhS98ujmZVyGxIr0enx/k:3tjfRXV3r+09LjmZVyQI40x/k","tlshash":"f003732292f42536418342d1b769636f6f26e0479b0f11647bac079c5fc3e9adc3b29d","first_seen":"2026-04-22T14:48:25.213717Z","last_seen":"2026-04-22T14:48:25.213717Z","times_seen":1,"resource_available":true,"data":null}},"time_used":266,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybitvar.com/style.css","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bybitvar.com/en/index.html","date":"2026-04-22T14:48:03.663Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bybitvar.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Apr 2026 07:34:21 GMT","end":"Sun, 05 Jul 2026 08:32:53 GMT"},"fingerprint":{"sha1":"F2:75:4E:DF:7A:7E:E6:4B:8C:B1:C7:ED:26:3F:88:3F:E3:7B:08:F0","sha256":"52:A0:D1:89:23:AD:7B:70:31:2A:EC:14:8B:09:89:F3:6C:03:C2:A6:8A:07:D9:C0:08:CC:89:A1:66:24:BB:C4"}}},"request":{"raw":"GET /style.css HTTP/1.1\r\nHost: bybitvar.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybitvar.com/en/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 22 Apr 2026 14:48:03 GMT\r\ncontent-type: text/css; charset=utf-8\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\netag: \"dhnqnl5fip4pe9g\"\r\nlast-modified: Wed, 08 Apr 2026 11:31:59 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=n8cDen2kc%2FOj0F5oQQTQHIxH3t9RCeRlx8M2aULfoglFvsJB3pXZQQaoLG7hbieFARyaiMlNltPmyVlOb3GuP3OXmuAuCyaVBvE2NcdaNFPDxmXW8c3Zjv%2F4JDRMmyE%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f056d5eed26b4ee-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":18484,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (431)","md5":"c2cf0813b54418a82c052afe931a4682","sha1":"007f33fe98654cf58e9c855d858020cab734f662","sha256":"5bc349c6e0b4cb98361831e2e5d1f98f9a5edb00ae6b86e43b4ede216928fb04","sha512":"39f108f6494eaf5a24c4c71236e644da84fdb7aed1717c24c82292c8899f3991d37a25fb8b5154daf57ce9a57c71126d71e3e4a421a4b51ea23b122e060d4f87","ssdeep":"192:biDoqqGIlFbno17TfkX5Tsym50qY6X5M+9WleYQ5+/m3sXywrQq839rZht3qMUPq:mrqDT0m2ioLAXa9","tlshash":"0d82244556b31975b82ba65c5bfe8749335ce043c90ed9bd7fc822488f892f89162f4c","first_seen":"2026-04-22T14:48:25.216968Z","last_seen":"2026-04-22T14:50:06.566019Z","times_seen":2,"resource_available":false,"data":null}},"time_used":278,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":278,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybitvar.com/cdn-cgi/challenge-platform/scripts/jsd/main.js","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bybitvar.com/en/index.html","date":"2026-04-22T14:48:04.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bybitvar.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Apr 2026 07:34:21 GMT","end":"Sun, 05 Jul 2026 08:32:53 GMT"},"fingerprint":{"sha1":"F2:75:4E:DF:7A:7E:E6:4B:8C:B1:C7:ED:26:3F:88:3F:E3:7B:08:F0","sha256":"52:A0:D1:89:23:AD:7B:70:31:2A:EC:14:8B:09:89:F3:6C:03:C2:A6:8A:07:D9:C0:08:CC:89:A1:66:24:BB:C4"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1\r\nHost: bybitvar.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\ndate: Wed, 22 Apr 2026 14:48:04 GMT\r\ncontent-length: 0\r\nlocation: /cdn-cgi/challenge-platform/h/b/scripts/jsd/0b8fb825cb67/main.js?\r\ncache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public\r\naccess-control-allow-origin: *\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 9f056d61990db4ee-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":26129,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-22T19:09:25.22698Z","times_seen":14072869,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":6,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybitvar.com/","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-22T14:48:02.097Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bybitvar.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Apr 2026 07:34:21 GMT","end":"Sun, 05 Jul 2026 08:32:53 GMT"},"fingerprint":{"sha1":"F2:75:4E:DF:7A:7E:E6:4B:8C:B1:C7:ED:26:3F:88:3F:E3:7B:08:F0","sha256":"52:A0:D1:89:23:AD:7B:70:31:2A:EC:14:8B:09:89:F3:6C:03:C2:A6:8A:07:D9:C0:08:CC:89:A1:66:24:BB:C4"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bybitvar.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Wed, 22 Apr 2026 14:48:03 GMT\r\ncontent-length: 0\r\nalt-svc: h3=\":443\"; ma=86400\r\nlocation: /en/index.html\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cAV1PTLkJvL1JRh8864Z3ItrqEOWp9kvYYCHIKqRdqv5zhsUWR9ezBVhthZuMhQoVNmNEHfJt5%2Fl2%2Bc%2F2eSXhptsvLRvObYKXM%2B8dR96naBi6Kvri9fdaHtexYQlUiw%3D\"}]}\r\ncf-ray: 9f056d557ea535a6-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":37818,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-22T19:09:25.22698Z","times_seen":14072869,"resource_available":true,"data":null}},"time_used":1171,"timings":{"blocked":60,"dns":37,"connect":1,"send":0,"wait":1051,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-ZKKCHH8XT2","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.8","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bybitvar.com/en/index.html","date":"2026-04-22T14:48:03.666Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:35:08 GMT","end":"Mon, 22 Jun 2026 08:35:07 GMT"},"fingerprint":{"sha1":"7B:71:3D:9A:FE:85:53:DF:44:BB:90:D6:C4:82:1E:58:A2:A4:4B:F0","sha256":"CA:E9:C5:B9:FA:2B:F0:20:19:FF:0A:2C:CB:22:9F:C6:8B:41:0E:09:94:8E:E6:48:22:CA:02:F6:BA:10:B7:A3"}}},"request":{"raw":"GET /gtag/js?id=G-ZKKCHH8XT2 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybitvar.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Wed, 22 Apr 2026 14:48:03 GMT\r\nexpires: Wed, 22 Apr 2026 14:48:03 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 157033\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":473564,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"3a18ce20c5bb3bbfef0e3cdb761c307f","sha1":"c5f5da86497cb7ed3cd6e1be45ce97f8f68dbc46","sha256":"a75e7c0ef2cbd9071e43d78dbc09196461d0ece44935b0b8601df95fe8cf83ea","sha512":"951cab79b0f1978d2be3c22666db79c26baa8c9c74c33e634dcca50b4d123013872e5422821f52a4c3f122e3862b2aad2f5cf0b242398614f71d043ed3b94f72","ssdeep":"6144:vMZOJjJnrVZu0Donyo18z25leYiau0XaOU2Cs+KUFlbrU:v3nrvYny088dyls","tlshash":"31a4f8ceb3d674665396f478903f018ba57b28a2b44cc89af189cce02d7465a4277f7c","first_seen":"2026-04-22T14:48:25.220902Z","last_seen":"2026-04-22T14:50:06.567274Z","times_seen":2,"resource_available":true,"data":null}},"time_used":183,"timings":{"blocked":58,"dns":0,"connect":7,"send":0,"wait":35,"receive":29,"ssl":50},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bybitvar.com/script.js","fqdn":"bybitvar.com","domain":"bybitvar.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bybitvar.com/en/index.html","date":"2026-04-22T14:48:03.664Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bybitvar.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Apr 2026 07:34:21 GMT","end":"Sun, 05 Jul 2026 08:32:53 GMT"},"fingerprint":{"sha1":"F2:75:4E:DF:7A:7E:E6:4B:8C:B1:C7:ED:26:3F:88:3F:E3:7B:08:F0","sha256":"52:A0:D1:89:23:AD:7B:70:31:2A:EC:14:8B:09:89:F3:6C:03:C2:A6:8A:07:D9:C0:08:CC:89:A1:66:24:BB:C4"}}},"request":{"raw":"GET /script.js HTTP/1.1\r\nHost: bybitvar.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybitvar.com/en/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 22 Apr 2026 14:48:03 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 721\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\netag: \"dhnqnkgq00et1k2\"\r\nlast-modified: Wed, 08 Apr 2026 11:31:58 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\naccept-ranges: bytes\r\npriority: u=3,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=y%2FuSfSYRr5VQ3Olzbd1qo9PGL0%2FQWcdy8wQtaUg4l0UClIN7fZuy9nhHglwHWEyOYKb1A7HxTlZHPt4yp4n0JZWptS5yxalKTiipEvBfupfopByMpXQpWlXT6u0fNMY%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f056d5eed27b4ee-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2018,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text","md5":"400bae8aba52727432c0b85daa063217","sha1":"15d7cd36acc9a220fbba727ca002455ac045f8c3","sha256":"682d38495e97fe331a6c7f620c06faabc464f9e9f50ee393fd068692d228baff","sha512":"8c06bcea25d4170d78613f330d8c958d5acdd8e1a5c4fc24167cd7f6b39a860db42e86893853f287b7a1b154edaf2d399126a8fa5cea589d0c9b0df1168a5bfd","ssdeep":"","tlshash":"5341f26b13b9207944bb716f43cbd754a62120cbb042ed073f6d870c2f82a955df1ae6","first_seen":"2026-04-22T14:48:25.22334Z","last_seen":"2026-04-22T14:50:06.566579Z","times_seen":2,"resource_available":true,"data":null}},"time_used":281,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":281,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-22","alert":"Sinkholed","trigger":"bybitvar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}}]}