{"report_id":"a4567bce-91af-4215-ae67-d23fdac39e1e","version":6,"status":"done","tags":[],"date":"2026-03-27T22:58:47Z","url":{"schema":"https","addr":"biee.lol/","fqdn":"biee.lol","domain":"biee.lol","tld":"lol"},"ip":{"addr":"104.21.13.57","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"biee.lol/","fqdn":"biee.lol","domain":"biee.lol","tld":"lol"},"title":"$WAR - War on USD | Trade USD1 Pair | Join the Resistance","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"biee.lol/","fqdn":"biee.lol","domain":"biee.lol","tld":"lol"},"ip":{"addr":"104.21.13.57","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-01T22:58:47Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"biee.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"biee.lol","ip":{"addr":"104.21.13.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-03-08","domain_rank":0,"first_seen":"2026-03-27T22:36:15.767113Z","last_seen":"2026-03-27T22:36:15.767113Z","alert_count":7,"request_count":7,"received_data":18950726,"sent_data":3107,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"biee.lol/secureproxy?s=%2Fipfs%2FzpsDBckQFNIn-UCBYGHHEw8fe992c45b35c0ef5febc46881ff687e%3Ft%3D1774652302575","fqdn":"biee.lol","domain":"biee.lol","tld":"lol"},"ip":{"addr":"104.21.13.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9555f63057c2892b857230a5e254bba2","sha1":"38cceb93af720a1843435d1d0260861a6f799239","sha256":"b5b08ba452b0d020dd080fd3be29d4e558bc75457c77ebab86fc15fec08cfde0","sha512":"e7b280f81f5725b4eb938c5d5bd3ed501c211282546c7ab8f2e62409e58251297280e03a16eac722d78da3e5da2f423e8bbf754db55d5a0b6ae4a260987ccadb","ssdeep":"6144:qh5gDO6Euno4xvlISDhTl0WHvfUp+v+9J87XGQOwOyyGpMy:qsOZunzvlzSWP8p0Q+Bz","tlshash":"ccd499c08b4c357364802aea15fb446fdfdc0de82e4be8536bd098b5e379b8351e5998","size":634356,"data":"","first_seen":"2026-03-27T22:58:49.706139Z","last_seen":"2026-03-27T22:58:49.706139Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"biee.lol/","fqdn":"biee.lol","domain":"biee.lol","tld":"lol"},"ip":{"addr":"104.21.13.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://biee.lol/","date":"2026-03-27T22:58:22.677Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biee.lol","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Mar 2026 03:46:56 GMT","end":"Sat, 06 Jun 2026 03:46:55 GMT"},"fingerprint":{"sha1":"F6:B1:73:01:1C:1A:5C:2D:43:C5:62:9A:FD:DF:89:11:F4:D4:89:48","sha256":"C0:36:31:1F:2F:B5:3F:35:06:89:FC:C1:39:5E:B5:C5:1B:EE:27:25:4A:9D:18:D4:F3:EC:79:2F:E7:B7:56:B1"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: biee.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biee.lol/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 27 Mar 2026 22:58:22 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Sun, 08 Mar 2026 04:43:30 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\nage: 3386\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CR3bnUdHiVIe9MM20OzKO8IPYal8EJRMZU8ak72b8XsxE0iA928YfI6hXSZudGvAAoajzhm7QrXcILc9mfOUJ0%2BJDjTuZ0Mq1L5ZN6Ii5HH3EnAyv6ctpsQYqQ%3D%3D\"}]}\r\npriority: u=3,i=?0\r\ncf-ray: 9e31ffdba8ab569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-23T23:19:30.489644Z","times_seen":14120858,"resource_available":true,"data":null}},"time_used":68,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":31,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"biee.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"biee.lol/favicon.ico","fqdn":"biee.lol","domain":"biee.lol","tld":"lol"},"ip":{"addr":"104.21.13.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://biee.lol/","date":"2026-03-27T22:58:24.730Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biee.lol","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Mar 2026 03:46:56 GMT","end":"Sat, 06 Jun 2026 03:46:55 GMT"},"fingerprint":{"sha1":"F6:B1:73:01:1C:1A:5C:2D:43:C5:62:9A:FD:DF:89:11:F4:D4:89:48","sha256":"C0:36:31:1F:2F:B5:3F:35:06:89:FC:C1:39:5E:B5:C5:1B:EE:27:25:4A:9D:18:D4:F3:EC:79:2F:E7:B7:56:B1"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: biee.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biee.lol/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 27 Mar 2026 22:58:24 GMT\r\ncontent-type: image/x-icon\r\npriority: u=6,i=?0\r\nlast-modified: Sun, 08 Mar 2026 04:43:30 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 3386\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"69acfe72-29d1a\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RAHUZgWhLqu%2BdvK14yTxGyHUEhP%2B7qiRbeqLgR9788%2FXWXIKNsyXFCjxQeFqOObW8Gfl2%2BdvRI357t6pGqOTu8v25Z7wqQma6EcGzATfXAzrjGthriwng8EBAg%3D%3D\"}]}\r\ncf-ray: 9e31ffe889cd569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":171290,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 9 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel","md5":"9f5ba8052bae740658e50f155cac16da","sha1":"5bea614ba1cc4ae3cffca72768726e4eccb4d76b","sha256":"5ca8ffaa1c0981b0aa4155bad1c92d3580047084fd205ff756418a29177f7785","sha512":"d07710cb193b074c13e7e1f62f9f35d5141d1aae5c986cc60cd7952f79eedca8dab44b9281e600eb0060707427a12cc8d8a9e16658bfe905e57725d167059105","ssdeep":"384:8d6UlPR77u8am05McWQr6dM8ZUb/ZWfIZE9HRH9sXdSq8Af:8d6U1d7u8am05Ms6dMbWAZE9HbsXQLAf","tlshash":"def30699b126e000dc452f74cd25cffa446b7e48fc88a613b9d0bf8f3a36d969500597","first_seen":"2026-03-18T15:51:48.505056Z","last_seen":"2026-03-28T02:27:11.745182Z","times_seen":6,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"biee.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"biee.lol/favicon.ico","fqdn":"biee.lol","domain":"biee.lol","tld":"lol"},"ip":{"addr":"104.21.13.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://biee.lol/","date":"2026-03-27T22:58:24.909Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biee.lol","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Mar 2026 03:46:56 GMT","end":"Sat, 06 Jun 2026 03:46:55 GMT"},"fingerprint":{"sha1":"F6:B1:73:01:1C:1A:5C:2D:43:C5:62:9A:FD:DF:89:11:F4:D4:89:48","sha256":"C0:36:31:1F:2F:B5:3F:35:06:89:FC:C1:39:5E:B5:C5:1B:EE:27:25:4A:9D:18:D4:F3:EC:79:2F:E7:B7:56:B1"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: biee.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biee.lol/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 27 Mar 2026 22:58:24 GMT\r\ncontent-type: image/x-icon\r\npriority: u=6,i=?0\r\nlast-modified: Sun, 08 Mar 2026 04:43:30 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 3386\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"69acfe72-29d1a\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=A9TaqvfimXi32esMpt7ydGLjQbKrkLqeHSUeYWA%2BkBu72NSRygMyY3Lf5Y8YEprB3w5sJxfLQRWVXKw9Wz2wl1RZYvxFRYhN9SxyHUU5QTTncbuaZNYQbz6ZCg%3D%3D\"}]}\r\ncf-ray: 9e31ffe9a9dd569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":171290,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 9 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel","md5":"9f5ba8052bae740658e50f155cac16da","sha1":"5bea614ba1cc4ae3cffca72768726e4eccb4d76b","sha256":"5ca8ffaa1c0981b0aa4155bad1c92d3580047084fd205ff756418a29177f7785","sha512":"d07710cb193b074c13e7e1f62f9f35d5141d1aae5c986cc60cd7952f79eedca8dab44b9281e600eb0060707427a12cc8d8a9e16658bfe905e57725d167059105","ssdeep":"384:8d6UlPR77u8am05McWQr6dM8ZUb/ZWfIZE9HRH9sXdSq8Af:8d6U1d7u8am05Ms6dMbWAZE9HbsXQLAf","tlshash":"def30699b126e000dc452f74cd25cffa446b7e48fc88a613b9d0bf8f3a36d969500597","first_seen":"2026-03-18T15:51:48.505056Z","last_seen":"2026-03-28T02:27:11.745182Z","times_seen":6,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"biee.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"biee.lol/secureproxy?s=%2Fjmpd%2F","fqdn":"biee.lol","domain":"biee.lol","tld":"lol"},"ip":{"addr":"104.21.13.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://biee.lol/","date":"2026-03-27T22:58:25.703Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biee.lol","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Mar 2026 03:46:56 GMT","end":"Sat, 06 Jun 2026 03:46:55 GMT"},"fingerprint":{"sha1":"F6:B1:73:01:1C:1A:5C:2D:43:C5:62:9A:FD:DF:89:11:F4:D4:89:48","sha256":"C0:36:31:1F:2F:B5:3F:35:06:89:FC:C1:39:5E:B5:C5:1B:EE:27:25:4A:9D:18:D4:F3:EC:79:2F:E7:B7:56:B1"}}},"request":{"raw":"POST /secureproxy?s=%2Fjmpd%2F HTTP/1.1\r\nHost: biee.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://biee.lol/\r\ncontent-type: application/json\r\nContent-Length: 1372\r\nOrigin: https://biee.lol\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1372,"data":"{\"route\":\"n9POyFeFG1tUtiSU-z9JOx3n\",\"payload\":\"0hqM-6_N52QByQICAyEACwDkAvYCGwCoAhIAAAIBDQMAAO8nhn2XtsKCAaEaEd680QdfKquhf18CAAAMTMHLYlXofpVQblY23C86ynkkcfcAeBbOQoVReAtqtfrMf_6GsMFmRtHXGNoG39m0GSotw0aIjz_6fdwYWE_AlfHlXkDzrePlpTCvlbkmjnmVschz8ymo81Pd3V7l2w1esftpDsRFQZy2hzki7uMFcJbfyTa6iewUc1slmiS0VlAvrbK23eZVXZlmaR7C23aw8q24kBSnzwCAECemgpqrjOfGds87fzisz4ArUOrg4XbLkkzIEguBcm8X6mGF9KqJ9fPf-nDvp-_KHD_xpdGORvOfET3dtEEzkWu3D8v2EoCJ9QMylf-cMdloxFmj4CwaxcPG9QMbqLNJsrZodukbP-bzqpbVne7PxUroO-AhWk3mG7YTJO_1_60m5j1S8j4Ot_nUi74d_XvMj9zPWbleNFcTAzLEGFplh7vhSUixIs1psEVrBB159Qn8_pIYYAGYS-ksX0DW5sVHipR9q2HQu7T7oc4nM8F2yVX67BYKFTQLsD8Hw7TIh2zXxx7ZVf8UiRIl9vwyKo9zhEl4_lDcbPt5hYjm3-jhlZwl5isBlQYpCfv6FhsZjEw0AW5jNxK6XluY9AA4qtJ6Rt90DNztYxiDY80PL_PZ6uOCUf8hvkLYgJTaCYLeraWmXjdkvOpb1ELod_GI6D7hWhZmiDEQYBeIwnokPbOX2JTVU7LaYZ7jhRIlryW4mTzlI3CtFXnlZYNxisTqETZHrGJNCX3_yubnXTcgqqJ_0Swo4S7MlyfHRf592_90HgtJYPKeCThTFh7r1Igq9uOcQyw0okT843aSjlAsRK3xmO-HR__dG1Q5iJ0a_rkE2FjFuQOobiGgbXxCa_F4ldf84oe_PcgROQRgMfYsP7ovia3xddlyjll58kR1tDFr-WI_9jHDZ1RlQcFgK_TjksOkXKf8U5MaTzH-DHlvarVk-GlWrbSuWrg5pnKvoVRPCsTvWdqu1_6Gd71sFVGoY5h9KOZmt7Akx15yh0e5qMvk7fHjOHTnhORV6G6l7oCtbWGkSrvJ6An1KYfJdTV3YSo-hLSHRVFJ3p7q7c71atLi4nVjcX_9lawcCtgQ\",\"challenge\":\"eyJpZCI6Il9rdEUxWU1oRTJva19CZ01YU0EwalEiLCJub25jZSI6NDUsImhhc2giOiIwMDM5YmM4Yzk5MGE5NDZkNDg2MGE0OTZlYzdjYzY0Nzg5ZjhlZjkzZjU2NWY2YmRiYTU0N2E1ZjI2OTA5MmUwIn0=\"}"}},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Fri, 27 Mar 2026 22:58:26 GMT\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\ncache-control: no-cache\r\netag: W/\"a-bAsFyilMr4Ra1hIU5PyoyFRunpI\"\r\nx-ratelimit-limit: 10000\r\nx-ratelimit-remaining: 9999\r\nx-ratelimit-reset: 1774652365892\r\ncdn-proxyver: 1.49\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 204\r\ncdn-cachedat: 03/27/2026 22:58:26\r\ncdn-edgestorageid: 883\r\ncdn-requestid: dc0e129e840ea3a0032016bd6b2a12a6\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mnm3g3gMk2x41J4Kuvl9yNE4tVtR%2FRRq3oVPRly%2FeHgTIvmcAqQM3QjI4mvAMljwARVT%2FIcPK0O0XWACIrCXX3mphZIso%2BgtysxfFqgBH%2BVOIdhq7sWEQXYqcg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e31ffeeaa0a569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-23T23:19:30.489644Z","times_seen":14120858,"resource_available":true,"data":null}},"time_used":869,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":868,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"biee.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"biee.lol/","fqdn":"biee.lol","domain":"biee.lol","tld":"lol"},"ip":{"addr":"104.21.13.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-27T22:58:22.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biee.lol","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Mar 2026 03:46:56 GMT","end":"Sat, 06 Jun 2026 03:46:55 GMT"},"fingerprint":{"sha1":"F6:B1:73:01:1C:1A:5C:2D:43:C5:62:9A:FD:DF:89:11:F4:D4:89:48","sha256":"C0:36:31:1F:2F:B5:3F:35:06:89:FC:C1:39:5E:B5:C5:1B:EE:27:25:4A:9D:18:D4:F3:EC:79:2F:E7:B7:56:B1"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: biee.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Mar 2026 22:58:22 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sun, 08 Mar 2026 04:43:30 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=unlfylXvRsrBkILeNq7b8wct1brMUg9jCUtXaC64xTTX7lSG542461AixU5X6RLKk60a24CsTLPNdfa2CX8PYI7%2BAX4pjoBtWrePgwDhWibEsoPGqvxPGmXdfg%3D%3D\"}]}\r\nage: 3385\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9e31ffd9b8c25a0f-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8983178,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (64979)","md5":"20cbf80d7c201c790402aa202aca5376","sha1":"894bd39de31f700593b61351cd2245a7ecfeeff4","sha256":"b5574eba4aac4ba3a6f35359a14219963e73a6af871d73f7eb76a9a75fbc054a","sha512":"3d2d3812afa84cab4ec976d3bc76e1b1494233f5e131b4c778a13c68775628f7a70fa05eb7c63b598187542721650fee925afe62e74d21e92f7f793529530b2c","ssdeep":"24576:O34+Un5zCfVONAEsodMSt/KKDdBkb3e7aqyJhTfIwsN:O3qzKQNAEVMoKKht7b","tlshash":"50250137660bfcd36e29b99256653d700c10c8db5a58a21cfec8a56a38de964df3dc0c","first_seen":"2026-03-18T15:51:48.499279Z","last_seen":"2026-03-27T22:58:49.705565Z","times_seen":4,"resource_available":true,"data":null}},"time_used":160,"timings":{"blocked":58,"dns":51,"connect":1,"send":0,"wait":35,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"biee.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"biee.lol/secureproxy?s=%2Fipfs%2FzpsDBckQFNIn-UCBYGHHEw8fe992c45b35c0ef5febc46881ff687e%3Ft%3D1774652302575","fqdn":"biee.lol","domain":"biee.lol","tld":"lol"},"ip":{"addr":"104.21.13.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://biee.lol/","date":"2026-03-27T22:58:22.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biee.lol","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Mar 2026 03:46:56 GMT","end":"Sat, 06 Jun 2026 03:46:55 GMT"},"fingerprint":{"sha1":"F6:B1:73:01:1C:1A:5C:2D:43:C5:62:9A:FD:DF:89:11:F4:D4:89:48","sha256":"C0:36:31:1F:2F:B5:3F:35:06:89:FC:C1:39:5E:B5:C5:1B:EE:27:25:4A:9D:18:D4:F3:EC:79:2F:E7:B7:56:B1"}}},"request":{"raw":"GET /secureproxy?s=%2Fipfs%2FzpsDBckQFNIn-UCBYGHHEw8fe992c45b35c0ef5febc46881ff687e%3Ft%3D1774652302575 HTTP/1.1\r\nHost: biee.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biee.lol/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 27 Mar 2026 22:58:24 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nvary: Accept-Encoding\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\ncache-control: max-age=2592000\r\netag: W/\"9adf4-OMzrk69yChhDQ10dAmCGGm95kjk\"\r\nexpires: 0\r\npragma: no-cache\r\ncontent-disposition: attachment; filename=u_iHZqHRKuQREKS4kcWGyg.js\r\ncdn-proxyver: 1.49\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 03/27/2026 22:58:23\r\ncdn-edgestorageid: 1056\r\ncdn-requestid: 502b3b44c88a76618a86a858c41d83eb\r\ncdn-cache: MISS\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=URNeKI6pYlp0Pdt14X01QnxXE%2BY%2F42xlaWtTpL79TgaOV7tfvEHypZfMqxrHHPOJpkUZzBkXHvKHgLs63i32l1v%2BO2lXdQRs6Mb1ozqUVK0PeGv08zC7dsuJ4g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e31ffdb88a9569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":634356,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"9555f63057c2892b857230a5e254bba2","sha1":"38cceb93af720a1843435d1d0260861a6f799239","sha256":"b5b08ba452b0d020dd080fd3be29d4e558bc75457c77ebab86fc15fec08cfde0","sha512":"e7b280f81f5725b4eb938c5d5bd3ed501c211282546c7ab8f2e62409e58251297280e03a16eac722d78da3e5da2f423e8bbf754db55d5a0b6ae4a260987ccadb","ssdeep":"6144:qh5gDO6Euno4xvlISDhTl0WHvfUp+v+9J87XGQOwOyyGpMy:qsOZunzvlzSWP8p0Q+Bz","tlshash":"ccd499c08b4c357364802aea15fb446fdfdc0de82e4be8536bd098b5e379b8351e5998","first_seen":"2026-03-27T22:58:49.706139Z","last_seen":"2026-03-27T22:58:49.706139Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1504,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1385,"receive":119,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"biee.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"biee.lol/","fqdn":"biee.lol","domain":"biee.lol","tld":"lol"},"ip":{"addr":"104.21.13.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://biee.lol/","date":"2026-03-27T22:58:22.675Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biee.lol","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Mar 2026 03:46:56 GMT","end":"Sat, 06 Jun 2026 03:46:55 GMT"},"fingerprint":{"sha1":"F6:B1:73:01:1C:1A:5C:2D:43:C5:62:9A:FD:DF:89:11:F4:D4:89:48","sha256":"C0:36:31:1F:2F:B5:3F:35:06:89:FC:C1:39:5E:B5:C5:1B:EE:27:25:4A:9D:18:D4:F3:EC:79:2F:E7:B7:56:B1"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: biee.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biee.lol/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 27 Mar 2026 22:58:22 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Sun, 08 Mar 2026 04:43:30 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\nage: 3386\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=42tv5RexwUdns82Ido96sg2I7d3z5qCcgJOGBAm6z1RCJ%2Fs3%2BtJafIfYkTP9YiXqOpsoIhMkDSTRavG%2F2hWcV7IMnC41zswQX2QrKinWhGIZJrwaFYWrKtFXDQ%3D%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9e31ffdb98aa569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8983178,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (64979)","md5":"20cbf80d7c201c790402aa202aca5376","sha1":"894bd39de31f700593b61351cd2245a7ecfeeff4","sha256":"b5574eba4aac4ba3a6f35359a14219963e73a6af871d73f7eb76a9a75fbc054a","sha512":"3d2d3812afa84cab4ec976d3bc76e1b1494233f5e131b4c778a13c68775628f7a70fa05eb7c63b598187542721650fee925afe62e74d21e92f7f793529530b2c","ssdeep":"24576:O34+Un5zCfVONAEsodMSt/KKDdBkb3e7aqyJhTfIwsN:O3qzKQNAEVMoKKht7b","tlshash":"50250137660bfcd36e29b99256653d700c10c8db5a58a21cfec8a56a38de964df3dc0c","first_seen":"2026-03-18T15:51:48.499279Z","last_seen":"2026-03-27T22:58:49.705565Z","times_seen":4,"resource_available":true,"data":null}},"time_used":361,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":328,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"biee.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}