{"report_id":"ab1382f2-06e0-4ec8-b7af-ab72d36b4688","version":6,"status":"done","tags":[],"date":"2026-01-30T20:45:09Z","url":{"schema":"http","addr":"carbontradebanks.com","fqdn":"carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":0,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"www.carbontradebanks.com/","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"title":"尊龙网址登录官网-尊龙新版官网网页版","dom":{"size":56879,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (25862)","md5":"9f9f19e2e8e945bb9c23145c85f97a37","sha1":"e50dc3d54c47fb7e814a7364dd090359e554b938","sha256":"3969640e9f828e51a95a1dc5ee9376e903e5c17ab9b9de8be632ef825056b8be","sha512":"26562f2d5aad61bd3c7ed3157fcce6007b9433529505af93ad63b0fd26c35dc80f19587d26813391580de9a1b52f978708abb55ccb6622dd1265fed0da74cb6e","ssdeep":"1536:s5xwCxdK2byboHtvlivS4iXHT1hiQqGz+Dx/dnU:s5xwH2ygtvlivS4i7FUxi","tlshash":"d943f12428a63823124045c4d17c3a2bfd54e62fc59a1528316c19e91fb7fcbec6f7da","dom_hash":"domhash3a8a2e50d4a4c54eeb3792335a57c94c","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"carbontradebanks.com","fqdn":"carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":0,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-06T20:45:09Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.carbontradebanks.com","ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"domain_registered":"2024-02-07","domain_rank":0,"first_seen":"2026-01-30T20:45:11.366782Z","last_seen":"2026-01-30T20:45:11.366782Z","alert_count":0,"request_count":29,"received_data":2132374,"sent_data":14358,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OWL Carousel","description":"OWL Carousel is an enabled jQuery plugin that lets you create responsive carousel sliders.","website":"https://owlcarousel2.github.io/OwlCarousel2/","common_platform_enumeration":"","icon":"OWL Carousel.png","categories":["JavaScript libraries"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}]},{"fqdn":"www.kflaoge.net","ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"domain_registered":"2025-12-28","domain_rank":0,"first_seen":"2025-12-31T11:29:58.135659Z","last_seen":"2026-01-30T20:16:05.075116Z","alert_count":38,"request_count":19,"received_data":1038247,"sent_data":8451,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"carbontradebanks.com","ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"domain_registered":"2024-02-07","domain_rank":0,"first_seen":"2026-01-30T20:16:04.531497Z","last_seen":"2026-01-30T20:16:04.531497Z","alert_count":0,"request_count":1,"received_data":37476,"sent_data":489,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"collect-v6.51.la","ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"domain_registered":"2005-01-17","domain_rank":348646,"first_seen":"2021-03-08T16:03:54Z","last_seen":"2026-01-26T03:12:29.058923Z","alert_count":0,"request_count":2,"received_data":728,"sent_data":960,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.251.142.232","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-01-25T22:20:32.726712Z","alert_count":0,"request_count":2,"received_data":873658,"sent_data":881,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.carbontradebanks.com/","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"86a77a85268aa0b6e5c50e3d0490d9ba","sha1":"14d0f9e0625547636f99b392695926ed04f5a81d","sha256":"a7e58cc31a80bf607917dc03ba87aa210c1665bbc517f2ec038beecb88604e42","sha512":"caa19b9f1b5d87c087bba628c268722d464467142d199a8f4f14bc7ba6e9c35f76d3a63f0ab2a6f0ff34632f91b63d2f5d3ef4f2b1986d79e58c95f03b3eb0ec","ssdeep":"","tlshash":"70f09eaedc41a16867c235f85b9bd64bd05e0024d409e853a4d5c5ce2d38fd5043538c","size":516,"data":"","first_seen":"2024-08-20T00:46:28.411904Z","last_seen":"2026-06-01T03:54:10.889031Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-Z5NKFLZGBH","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.142.232","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ba927e427be5e3a5531a7b5277000711","sha1":"3dbc76007b908ba30c9cdb46b34a26d3ea9c9869","sha256":"13528334b05f4069315e34a6f1e47303afdc01f417fcca1a98e7dc819d764e82","sha512":"9458a0b62db8d8c3980e3c7ecf0b9dbe2dbb2473bd6221b2b43fc9221e4632312387d33cb64d3246a67e65f5893eb8b5206d8bfc48be006e167e8ddb1e380f5d","ssdeep":"6144:oa2dvzR1IdaoCsx4V/Gu+rPuz6h8ZSlTpiRpyM3wISktcXId:LUv1idaoCsx2/Gu+yz6h833w+d","tlshash":"5d9409ce73c674269396e478503f018ba57b29a2f44dc89af189cce42d74a9a4137f7c","size":430332,"data":"","first_seen":"2026-01-30T20:16:10.450814Z","last_seen":"2026-01-30T20:45:12.984091Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"49b05d999b4f66c58e08b7e595003cec","sha1":"6555427495d2d61a9ed1742ecfbaa500ea7d0685","sha256":"429adbedaf2fea30a509104c61788f7574c59cf994835d11670233eac146d11d","sha512":"e5f71d5380f2af7fca4c6f4369f0d8bc7eaa31b1eef286b20b2c68354a689b072e97914d4b9a0463d95c36c4511b30e2cd66dd35bf78140d89791b4d7c4575a6","ssdeep":"","tlshash":"0af028042daaa74cb30205f4da38d214b2b9d2326514de2835af06681b447d9cd3f860","size":614,"data":"","first_seen":"2025-04-26T00:19:36.47374Z","last_seen":"2026-05-11T00:24:45.734939Z","times_seen":537,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/js/jquery.js","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e39d7f174407886a84c437f14182e57a","sha1":"77e9eed704c96c3eb0180d35c6ba430b3f69a43a","sha256":"c1bcc5f2066e4476e6dbab0b5a9b9700b86f4d6ebeb2900d73ee97e53753d4f9","sha512":"3e153156a11b21a66500b592b574bc2e2ebddd41014216177c0c2d5e6b31f2d0a742f68899527dbae47309df2922f81544450f73e3e2981c88cd9ecae0c570e7","ssdeep":"1536:Z4mCgi8DyCuXXFiJ+L0kJQsJVPEKLQRZdC/RAfDknv+p0WzH/Io9Z7qABZnu0sFy:ZGsKXAI2p0WP9bDrstfa5","tlshash":"9393f8ddb2d1b06257bb21bd006f540ff236195e280d8850f129e8eabc74a4d9277fad","size":93106,"data":"","first_seen":"2023-03-07T01:15:08Z","last_seen":"2026-06-08T18:09:43.523332Z","times_seen":2154,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"46fa945eae4f1c4f350c004256d665db","sha1":"7604d0cdb92ac340a4c3b239dde4eec8d98ab82b","sha256":"5379ab3dda07f8fada7f44b9bedf375a7c3ea889a3e77ddf7087354f2d4fad1d","sha512":"4317b62bb4360fd2e3fc97ec76f418ee4ee3668ad486a6aeb594f07b0ceb99d19d3a04370fa5bc63b6e71e4ecdf324d325632e4dcadb55abb63fe4e7e2cc2c83","ssdeep":"","tlshash":"c490020086420705622e308029b369c3305300c000bc444c862470410260428e02da8b","size":54,"data":"","first_seen":"2025-11-22T13:31:39.943369Z","last_seen":"2026-06-07T23:55:39.151414Z","times_seen":476,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sdk.51.la/js-sdk-pro.min.js","fqdn":"sdk.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8a41c9449b73e8ba0224c6be1f0b7e8","sha1":"33d79319d4110bcf5c44c36f7dd4a291972ac546","sha256":"52079c09a7355f4ce3af750602ebb9aebae8238583601f8a06268eecccf13565","sha512":"472d0395a65a3ade2d215559b196a88ffcdacde3ac0f573eb8663b524f201d72c9339bcacbc198d82452a0ac367c0efd407b12795943cdd2755d95a8cf71b977","ssdeep":"768:swetbD3SkE+a/l1jaKUiQU5eqEh9GMXBOXAA/EXBeJMlbJfuPT:BetbD3SVT/3+KUc5eqEh9GMXBYEXBeJ7","tlshash":"dbf23d9577c0317cc3c783ea362b501ae1a69e910059a8bcf345f6907d34e56a37fba8","size":36114,"data":"","first_seen":"2025-03-10T03:40:31.536734Z","last_seen":"2026-06-08T00:40:13.201748Z","times_seen":98189,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/js/index.js","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f8c7b80b27dc9426fc48f194b82f3b3f","sha1":"55be6987384c2ea89e2f867012f5b6196bafeb8d","sha256":"854af68d4329fcfd2c839925fcb36a4299d2d5b0c4768aadd8b1a5d555c45594","sha512":"ea550756670fca4b7043a8281fe3d6defb3f2387b1c2b3f00dc8b113c436cfd239181467cb955474b1876a2e541df5f66fbffc81fe6ed79b594f4539bb55b876","ssdeep":"384:YmFEdyK7p/G7Z89sbN5XG5PsfnLEXoEwKSRX/c:pFQc9IqfLjASRX/c","tlshash":"09423288a2f87652077214be0f47a0547c63a627be47df0c758e5b98af4b73690943e3","size":13099,"data":"","first_seen":"2026-01-28T07:57:28.745816Z","last_seen":"2026-01-31T13:13:56.3562Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/templets/tj.js","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d961610b0f3e25d610d263a0db69d59d","sha1":"71594330adee6b19612f9f1da486ea7103c019c9","sha256":"d7843957d33e4c3e95a5d8d9845888213d24720e5a061d1628ba13eece822b0d","sha512":"f213b288bffa887c4bc0da057a99edf6b7f280e90cdeb576a93292ac51dd8695d1091ef7b17b95228d0bb3fd1634917753b0fbe85f7ebee2397ca771a1592b51","ssdeep":"","tlshash":"9421fc9e7c1695b027a21a6a573be91cf4ae103a4801e412b8cdd8491f30ffb4a25ec8","size":1371,"data":"","first_seen":"2024-02-12T09:29:02Z","last_seen":"2026-06-08T14:30:20.237073Z","times_seen":508,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"6d9e945c0237022ffff0799da2682583","sha1":"edcf61f522225a198b920fe9ca3123a98c66362a","sha256":"ec1b2d27dcd3989343405e373b40d5ea0a53e3214a1adf59222d0645684cff19","sha512":"050b404b67a8dfe6862d955e6aae3bb7868ba8e45ccdf3d149a657c4ee5da23d1bf358851b40eb14bf0bf59bbf418db78f782652f25292e18cd088e2af54648b","ssdeep":"","tlshash":"22f0273183d76a2dd0578265d0b0868c773bc6089be54b1c6b77397211894c56c723ec","size":459,"data":"","first_seen":"2025-12-31T11:30:05.397665Z","last_seen":"2026-02-15T20:57:11.143003Z","times_seen":102,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sdk.51.la/js-sdk-pro.min.js","fqdn":"sdk.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8a41c9449b73e8ba0224c6be1f0b7e8","sha1":"33d79319d4110bcf5c44c36f7dd4a291972ac546","sha256":"52079c09a7355f4ce3af750602ebb9aebae8238583601f8a06268eecccf13565","sha512":"472d0395a65a3ade2d215559b196a88ffcdacde3ac0f573eb8663b524f201d72c9339bcacbc198d82452a0ac367c0efd407b12795943cdd2755d95a8cf71b977","ssdeep":"768:swetbD3SkE+a/l1jaKUiQU5eqEh9GMXBOXAA/EXBeJMlbJfuPT:BetbD3SVT/3+KUc5eqEh9GMXBYEXBeJ7","tlshash":"dbf23d9577c0317cc3c783ea362b501ae1a69e910059a8bcf345f6907d34e56a37fba8","size":36114,"data":"","first_seen":"2025-03-10T03:40:31.536734Z","last_seen":"2026-06-08T00:40:13.201748Z","times_seen":98189,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/js/qrcode.js","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"517b55d3688ce9ef1085a3d9632bcb97","sha1":"2d06c1f823f34c19981c6ae0b0eb0f5861c5e14b","sha256":"c541ef06327885a8415bca8df6071e14189b4855336def4f36db54bde8484f36","sha512":"08d80845e706a3b9e985b799d3849cd7791ad3ba5aa9d793bb4591d4833890d7299810144874905f416c94d8530da74be0ee520066a91ade05a1da8bf0ccb498","ssdeep":"384:WRQ2kvcAAdTRhQLThP2yO9/9G84U5xOiKQYHHHsglDep9m1yfB8dKLMyA+LyUyy9:xThP2V/9N4U/gQYPXa8CAPLyrZ","tlshash":"8c92c7e4f36542f6915e6cd4283f104b64a0a4636c1490acbfb5c1e6a9f8fe0647af74","size":19927,"data":"","first_seen":"2023-03-07T01:14:56Z","last_seen":"2026-06-08T18:50:16.264642Z","times_seen":61633,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/js/swiper-bundle.min.js","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8b357cc5e8365726e8663674de5d6593","sha1":"583bc844b5d43db5f316940a18647bf2e1351918","sha256":"330fe5965859f5757348be82340b21f1d473cc9b3fb8c3b1fcd4e082aaf4c0a9","sha512":"5c79d6656bf2e539029cf80b53b5ec5a118092cd49437b85bad5714521f4678f9d8ec1a40a4c55b18bbe2607eb0e272f6c29a37d47f51de316614bd460a823cd","ssdeep":"3072:IJkYe9swz2jkTbkC74OrynImO/TYW9D/EL74ami0lLHb:IJte9rz2jkTbkC8OrynImQTYW9D/iP0x","tlshash":"f3d30a997320b5a552e726cb93a8c511a2b50800b40ad5e870bd4c6b6d7ec9c13feffd","size":135574,"data":"","first_seen":"2023-03-07T12:38:33Z","last_seen":"2026-06-08T14:30:20.240344Z","times_seen":2475,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-MF58H2XB75","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.142.232","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"be066ec5f45d16f89c488fce220d6cad","sha1":"621758045dfa72773e3502954dc4512fbff0624f","sha256":"9807871afb9d54df73e2fb035aee5e5417896c5c7de9075e89bd760cf8e7d049","sha512":"b2edb60ebb43389388c4b844a40f92c95cedd172f763797289a340fa71491f26360e16f0780d1c8c2aafdfbfee90ba5906cc37036a1bb00d8a2e5c6a3e7f8fc7","ssdeep":"6144:5a2dvzR1I8aoCsx4V/Gu+rPuz6h8ZSlTpiRpyM3wISktcXG1:QUv1i8aoCsx2/Gu+yz6h833ws1","tlshash":"819419ce73c674269396f478502f018ba57b29a2f45dc89af189cce42d34a9a4137f7c","size":442138,"data":"","first_seen":"2026-01-30T20:16:10.443955Z","last_seen":"2026-01-30T20:45:12.985046Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/templets/gg.js","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"23cbb9107445f050353dac7c3d122342","sha1":"7d6a10d7caf2d7ffa87f8c8f84d208c37de77970","sha256":"583c1d164077c3a7e2962cd1ff2951119f4ab219d4bf6cd92f3a3526c814cb90","sha512":"52c98937e6991eaccb3de6916815e73cff0c389c8222e322c6120a995930bad46078ce458cae27dd31b75dec264efb2f9f47ff5629e3eb02fe9991ed1ac703e5","ssdeep":"","tlshash":"1d11ab32638d263ce18613a2d5f4c7887b7bd619976566d8692d3463409cc412ca3af8","size":1005,"data":"","first_seen":"2025-12-31T11:30:05.393038Z","last_seen":"2026-02-15T20:57:11.127991Z","times_seen":102,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"d20d45dbcbce80c224bc45bb90a1ad94","sha1":"c3f7cef741d21017af3f1727f261288e95a4b86c","sha256":"374d29c26172bce95178e9a1f5fcbdf9ed5ccc16f6b609aa75c798a72701e9ef","sha512":"b868bc51feed122fe436cfed8f8b76b99b108a12ce6fc21493cf555f20a8779387dcde10fbe58d0f0fc9e5986b42f40768119be407696e4cea3fbb3f14fd3a4c","ssdeep":"","tlshash":"d0f0273183d7692dd0578265d0b0864c7737c6089be50b1c6a763972114948168723ec","size":440,"data":"","first_seen":"2025-12-31T11:30:05.40502Z","last_seen":"2026-02-15T20:57:11.145008Z","times_seen":102,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"45e17aef8aa87a09a10c6bd37f6a81cd","sha1":"414c6def3075dbc5d4e954857d01062fbbfe3395","sha256":"9e57974d49b3d781f2c6a0cd9998f7445c88737f3d5db891c6cd10abbd218c91","sha512":"85678bc5dc29a9da10476caa5c2b463c2a9f7d645d0c6d0a90fb299f2f4a16df1683ed486fcb60e674647c8c5c3ba1b0d69b4d63d50ba2501830fdeac4ee3484","ssdeep":"","tlshash":"bd9004550440c75573d11551d05f1415d1d74407013c3c101c3d053d51545fd407dcc1","size":48,"data":"","first_seen":"2023-06-07T21:17:55Z","last_seen":"2026-05-11T00:24:45.746557Z","times_seen":586,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"42d39d890adcf6bd0b7aab2b70c7994b","sha1":"f910d6780ad60a25e10df1f497baf114eb11c3a0","sha256":"9304f8c8466a6a39b0c2a6c511584a71a3c85136263acac4ed110fdf0fa9b471","sha512":"57a3c47a8521a79d63aee1faf94ddd0b0fa2541ca455cf116acae772085b5f453a492dc38a2a086dde72cf5e77e4ae33ad07f6ea563bd5043170425faa8deb27","ssdeep":"","tlshash":"3e9004d50c00c57573c11571d01f3015d5c5440701753c103d3d053d71147dcc07dc15","size":50,"data":"","first_seen":"2023-06-07T21:17:55Z","last_seen":"2026-05-11T00:24:45.736187Z","times_seen":585,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"180a4dd1c45e197359baffe331b99dc6","sha1":"a6676d550e0a0bbd7139c1145422dd6d150c8c98","sha256":"970a7bb49fd010eb67a09ee9d804cd742de2b6e4a65c807d398b7516411bf04e","sha512":"aeaee557d293d7253639657429ae0de544d21fc20a0964733e8ef187fabb067aacb19a9e4650b9a9bf08456249a5fe83771bd646f8776ae49a0cf2af18e33342","ssdeep":"","tlshash":"19a0020e6e8ec05d445008c4d9b4f87d76a4b5501310cd6c51c8596960497c48c07955","size":61,"data":"","first_seen":"2023-06-07T21:17:55Z","last_seen":"2026-05-11T00:24:45.736702Z","times_seen":586,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"bc41573c6bb53bd51c08626feee870db","sha1":"bc91c74382d4a88c35f4f74b28b8de03a32bf3dd","sha256":"8f147be1ce08a14e099bfc3292a27f18a781a9dd52f6bdc02b99944425aa1f4f","sha512":"c8cecc9bd4681803f2f89609e83c6d20dcfa1533432031c55893a53a2215c977dbef195d6195c6611d71afb16b6f6a5f4d1318e1dd091b81c5bd34dee750a8ed","ssdeep":"","tlshash":"50a0020a6e9ec155440008c8ddb4e4297258a4540310cd7847c9596950497d48c0d655","size":61,"data":"","first_seen":"2023-06-07T21:17:55Z","last_seen":"2026-05-11T00:24:45.737234Z","times_seen":585,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"2368b04a33f8e40315ed25dea469853b","sha1":"e2c3655108ffc9b7a6f8610e8ed9ba969dcca183","sha256":"dd7a422d459a48b411281cb0e592a3c4d7b6a7ec05b09f74a66c0358fdcf38dc","sha512":"0a242beeaba41223381c484ec7802fc4a8e3c1210bcfede37f3e4bb259fbc3ccb27dd60ba57e87118f76e2e56185e60c8e7f7e561f94a666076326ca1bb3d4f6","ssdeep":"","tlshash":"03a0021a6e9ec154450009d4d9b6e8297275a5600310cc6841d8586d90897c58c4d555","size":60,"data":"","first_seen":"2023-06-07T21:17:55Z","last_seen":"2026-05-11T00:24:45.737769Z","times_seen":585,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"12b9a53e3e850fc1548a69a09de52f65","sha1":"d6b8d41210e87565d0e63e0d200fb48ec4cbf96b","sha256":"dedf2422d621513b693ce33a2d14002366a60854b3ae4bfe7d235eeee2605daf","sha512":"4dac75852e107da9e6866ea52903479096e6daa8dce7fdb9a128998612d22448dce8b62083c59de0b736eef6dfc86c5fd8c8f64d49aaf48e51afb5be039cdada","ssdeep":"","tlshash":"09a011e3ae08c0a223888082a230e0ac80a3a02aa8a2b0a2a0ec008822000c30800c82","size":86,"data":"","first_seen":"2023-05-31T11:03:28Z","last_seen":"2026-06-07T04:35:51.268835Z","times_seen":753,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"e989969b9beea39ec724c4c55bd47670","sha1":"5e30fbb228f24185b957831cc14b1c68ab5a074e","sha256":"28e4ba13d756bd90990ed2af89a02b0d35c4fbf10c16d4152c6a9dabdc925dd9","sha512":"2140585b5dd037bca831bb1e0097d58121ac8c4c2aa3daa275c41c5cd6e06d3137bf3f30b851d80dcb5c03047540d96f32b39d55cfddf6730f43816a64899f2d","ssdeep":"","tlshash":"daf09eae5c41e5686bd235d85babd24fd05e0024140de853a4d5c5ce3d38fe5083578c","size":508,"data":"","first_seen":"2023-10-27T07:56:55Z","last_seen":"2026-06-07T04:35:51.267738Z","times_seen":727,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200914105140_917.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.212Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200914105140_917.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb4-19131\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":102705,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x532, components 3","md5":"e971bc28379439b99acb5f3340dd305e","sha1":"73f4060d1419b36a6d4f0020db0b6e479cf059d5","sha256":"aedfa01175c58d46e02cc43729acc0f9bf2cbc2115898c86567c5f898f656957","sha512":"1fc9f798840d6126307a933a889330154755133c5c14bd97e01c1e5137c01784374672ab1f87e0b682a1eba56399b3d3b3aba1ef639fceb703a550710b4c4935","ssdeep":"1536:n8JL2zRP/DCnP1tzKuXEAm54DlzlkxgcHLqrJoQLmkGYSQatBRV0fYpmRYhGJVCC:C4AzuVAbDlGxxHmrJoUPGYmBz0fEYYHY","tlshash":"5ea3122672c4e5f06bfcea7d227b98dcb41a227070f74e1c085ad731b93625c70a6646","first_seen":"2026-01-30T20:16:10.427131Z","last_seen":"2026-01-30T20:45:12.94011Z","times_seen":2,"resource_available":false,"data":null}},"time_used":677,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":677,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200910163004_915.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.221Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200910163004_915.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb8-821d\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33309,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 200x200, components 3","md5":"640468813d6a9c0ca0e8a3557dc989dc","sha1":"e0f0156ab4b9fcf8b59498c4f0cb242aad913e31","sha256":"8aa97aea628740dc18782e744ac442395ae39f09ba1a8e83fd5d2f4f053e78eb","sha512":"f2b9e29b1f5a6fd6a9cc3c8aef5aa91658b09b6cc8dbc1bcba75643387b011c0108a685a615445dec6c103736af0d668fed4bf7cb04eb41ed678e2be6bf90c55","ssdeep":"768:bJS7KdCn8U76UQq/9/vmaDrwnsNLXJSOQi46f1GkseEm3Grw:b8O2wzq/xb/wYXJSVP6fkkse73Grw","tlshash":"e2e2f151f9370493e96d644569724213b2a68f30bc1758763ba7c30bf88b0d75c8bafa","first_seen":"2026-01-30T20:16:10.393607Z","last_seen":"2026-01-30T20:45:12.944346Z","times_seen":2,"resource_available":false,"data":null}},"time_used":667,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":667,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/css/common.css","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:49.652Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /css/common.css HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/css/index.css\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\ncontent-type: text/css\r\ncontent-length: 439\r\nlast-modified: Fri, 02 Jun 2023 08:43:30 GMT\r\netag: \"6479abb2-1b7\"\r\nexpires: Sat, 31 Jan 2026 08:44:49 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":439,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"c3fb368a2b593c66c16f32eadec5b66b","sha1":"59990a32bd6f9b88f82537681ebafd9e6563923f","sha256":"6851ff07e9d1423bbd35445a1dc8a057ac69a6b46154131077ab81adf773fe95","sha512":"19325851706ab069a29618ce7c93d24281144967e62a7d6872e8f7f5f827802e57e5cc242aa81591dfd1f6b87caf7a7fc43919128bb340a53e59533959f25e29","ssdeep":"","tlshash":"fcf0ab58950b4002b933f16457a08b6e50a0d0927a83423eb6e0109627ceaae9b6cbec","first_seen":"2023-06-07T21:17:55Z","last_seen":"2026-06-08T14:30:20.235881Z","times_seen":670,"resource_available":false,"data":null}},"time_used":114,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":114,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/images/icon-more.png","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:50.377Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /images/icon-more.png HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/css/pc.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:50 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 26 May 2023 03:26:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"647026e6-7314\"\r\nexpires: Sun, 01 Mar 2026 20:44:50 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29460,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 308 x 100, 8-bit/color RGBA, non-interlaced","md5":"4fb5009db38cf58c29fff1e64f39ec7b","sha1":"586cd49037ba06b620ef3f4f1e7d55f05b01c94b","sha256":"84b498317fb67eb9bd13e604dd1dc493c0e52522be4f142127ae1de753530b8a","sha512":"a650c737bc19f89673719816b390c019574ed68e73f2cf1f1c7fbffc931641630cce75c0a7ad569266ad6a56c2d6e44b6161bf76ae8ea8dfad145469082dab2a","ssdeep":"768:ZP/YUFyv8QJwpgxhg6nMS7n8dhSyRW51A6M5pg8SCKcAVRxXf:ZP/YPv8QigxhZ4d6M5pO0WrXf","tlshash":"3ad2e1fe9c55ab1db80f430507a59d015b4929aa0fe3a1c4a68c834641923b8f7bf73f","first_seen":"2023-06-07T21:17:55Z","last_seen":"2026-06-07T23:55:39.112367Z","times_seen":683,"resource_available":false,"data":null}},"time_used":157,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":157,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/images/banner_pc.jpg","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:50.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /images/banner_pc.jpg HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:50 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Fri, 11 Aug 2023 01:08:02 GMT\r\nvary: Accept-Encoding\r\netag: W/\"64d589f2-74af5\"\r\nexpires: Sun, 01 Mar 2026 20:44:50 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":477941,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1200x340, components 3","md5":"2a8c2600db609e2a7370c04fdba851cb","sha1":"3577705f0b0ec475210bb323eac3b6f7a8f131d9","sha256":"485d6cb78a3e0a1b9ad9fcafaeca0bc0b9527650bb1ef4601de0dbbd37b855d9","sha512":"26c9337cc6e0ca65e90e3117184663da83800469b641ec6f105a27a2076a14ed14d606b930ea395a6b5b95b796930247fd88100c30f9708ceb6bfdee7d105ad8","ssdeep":"6144:gek+C4k9srT2FZ0RYrRnzFbzCkhFdDX9rBnvekPPzecsgKgmqp2Mow+FEo:g4qAT270ar5NdRX7mkDe/gSe+Fn","tlshash":"d4a4237c73e35a1da3dc56a971de8dcc8b54618cfe4db4121737fc62811cd2829aad28","first_seen":"2023-08-14T11:25:26Z","last_seen":"2026-06-07T23:55:39.126822Z","times_seen":687,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/images/hand.png","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:50.372Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /images/hand.png HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/css/pc.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:50 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 26 May 2023 03:26:28 GMT\r\nvary: Accept-Encoding\r\netag: W/\"647026e4-28e6\"\r\nexpires: Sun, 01 Mar 2026 20:44:50 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10470,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 93 x 96, 8-bit/color RGBA, non-interlaced","md5":"5c9c19d140ec277fe4edbd0c384c897c","sha1":"4d6b18c911fdf8dc3bedbbf5d4346fd20d76cb29","sha256":"e10720180be114a05bd4331829bd98a86c35b7583b0afc70cf0d1640f8f38253","sha512":"fe83bc3cc81f9afcbf117af411e2eec2af5ddcb27e581e707adf501800df447fae5e7d4cb8ee961faae80c1259264e40a7a1ec6779a137c57a59234fe20c5fdd","ssdeep":"192:Ld1rkSJk08KbqsBQPQGwfhQIuxUhqdHEDNf/mYBVE:xdzwK2PQGwefb4E","tlshash":"9d22aea3460285fbf1f4c662ce9384bc2079db84f9b6fa7d188c8471694982893dd486","first_seen":"2023-06-07T21:17:55Z","last_seen":"2026-06-07T23:55:39.12627Z","times_seen":683,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":127,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/templets/tj.js","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.198Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /templets/tj.js HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 03 Oct 2024 00:59:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdec7e-55e\"\r\nexpires: Sat, 31 Jan 2026 08:44:48 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1374,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (554), with CRLF line terminators","md5":"d961610b0f3e25d610d263a0db69d59d","sha1":"71594330adee6b19612f9f1da486ea7103c019c9","sha256":"d7843957d33e4c3e95a5d8d9845888213d24720e5a061d1628ba13eece822b0d","sha512":"f213b288bffa887c4bc0da057a99edf6b7f280e90cdeb576a93292ac51dd8695d1091ef7b17b95228d0bb3fd1634917753b0fbe85f7ebee2397ca771a1592b51","ssdeep":"","tlshash":"9421fc9e7c1695b027a21a6a573be91cf4ae103a4801e412b8cdd8491f30ffb4a25ec8","first_seen":"2024-02-12T09:29:02Z","last_seen":"2026-06-08T14:30:20.237073Z","times_seen":508,"resource_available":true,"data":null}},"time_used":470,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":470,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200916155106_838.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.203Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200916155106_838.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb4-67c66\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":425062,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x782, components 3","md5":"b5845746bcef67a1db30c8fb74abaed8","sha1":"259b3ef6509420fd3d45bc3a450866a0869dfe09","sha256":"ab4ff7239142198ddee4a691ee8b14f24ee21abb923f63009041f7a2eb5ec07d","sha512":"aa9172f5e858515d65541b63e9fb6cedc4c5ab566be453e189762bd28aa5ea6f03b1757c89c7f6d1c8c6f7b95a272b56f4f19dfc05f8999079a01b9e2c2b072c","ssdeep":"12288:XuSTdoE8MNMp4YbO7Ymv2unWvizi17ts595US:PoE5+SYmYd6zytsv51","tlshash":"b994239074e218c8be4a322bdd5129b73e7322da44b719738d1acef712cf09be48555e","first_seen":"2026-01-30T20:16:10.41169Z","last_seen":"2026-01-30T20:45:12.957084Z","times_seen":2,"resource_available":false,"data":null}},"time_used":681,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":681,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200917193318_586.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.207Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200917193318_586.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb4-e2aa\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":58026,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 304x381, components 3","md5":"fba6df651c53e2bcb09ffcbeebec9a4d","sha1":"ba02cb8bdbde58f534b995af8eb89aef8e1434d2","sha256":"a0c8b9a8da3296a5c3f7b386b90888543facc0b809e31262e3e06bfeca7f50d9","sha512":"af292fb876e71b5b771e1ddb6f704f3207e642218709a17b6cede7d95208161fdd318f0a2712a9824a3d2725d9c692c3eaa4dce1fbec9a8f8027187562069e4a","ssdeep":"1536:swMenxphSzshxUngE+e6PvleW/raBXj6eJucvAMquCg:/Men/4Yf4gE+sW/raBXVQcvAMh/","tlshash":"92430164fcd86da1f1f15aad464981784b01b0cc24f3ed65cfc98c24fa9a1752319ace","first_seen":"2026-01-30T20:16:10.415037Z","last_seen":"2026-01-30T20:45:12.958917Z","times_seen":2,"resource_available":false,"data":null}},"time_used":679,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":679,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202103/1615016057835385.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.209Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202103/1615016057835385.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:12:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdef60-1d61\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7521,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 121x75, components 3","md5":"88043e80f5a2e0a644e38ec3f547b8bd","sha1":"bf333aee769b7c55cfef95dde67838c508d9d0a9","sha256":"84d6eb8776b35c81e8d1458105cf8ca9fb8c6a51effe600e235938f11cba0259","sha512":"87764bcd48bd2bc1814428cfe21c97bba76e2fbba691f7e86cb2b7bd8f451cc39e4f58a9dca7d1ba2e64971233025b5685e6efbefdb63ad3b9386d4a257f66eb","ssdeep":"192:n8jYs/NBSgtWzu1DKsZCunKoiOu8Ll8+xy:nxs/NFtWGXZC4gOuGl8+o","tlshash":"ecf19e3cbdc23cb04df4a91131eed2721623b0a897e359d6909ce30775850e9686aebd","first_seen":"2026-01-30T20:16:10.432311Z","last_seen":"2026-01-30T20:45:12.960305Z","times_seen":2,"resource_available":false,"data":null}},"time_used":678,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":678,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/css/pc.css","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:49.834Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /css/pc.css HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 31 Oct 2023 13:57:19 GMT\r\nvary: Accept-Encoding\r\netag: W/\"654107bf-1045\"\r\nexpires: Sat, 31 Jan 2026 08:44:49 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4165,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"edf10232a576d996473b375aa6054db3","sha1":"16885c9298d3f08bf9c991186e6e39a94841e250","sha256":"92e662a6dae50fbe071805f7e767562fdf5faaa7a7e801c75fa32f31ee4f6b8a","sha512":"84db6d7c5c7ae32dd76553fe7a8907126cb8417e525a4af05326c252b08b95ec7c136279bccb5d97431549c865651cc2dfa7a28fde144b0d0fc691207a2aace2","ssdeep":"48:ptfCOXLrJJddHaUEqzlZZBpLMZuOO2/GDtd//qVR4dCTFTjJnC:ppX3JJd8W3ZBpwiZd//cR4IJnJnC","tlshash":"f681dd11ca46388ab075f2f96f33161ce3564447c301012db7e4b2aa9fba645a57efcc","first_seen":"2025-04-26T00:19:36.444282Z","last_seen":"2026-06-07T23:55:39.140881Z","times_seen":641,"resource_available":false,"data":null}},"time_used":115,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":115,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"carbontradebanks.com/","fqdn":"carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-30T20:44:47.265Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:47 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://www.carbontradebanks.com/\r\nstrict-transport-security: max-age=63072000; includeSubdomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: public, max-age=31536000, immutable\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":37090,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T19:34:27.179619Z","times_seen":16247994,"resource_available":true,"data":null}},"time_used":845,"timings":{"blocked":344,"dns":17,"connect":158,"send":0,"wait":158,"receive":0,"ssl":166},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/css/tdacss/aos.min.css","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.192Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/css/tdacss/aos.min.css HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 03 Oct 2024 01:05:21 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedd1-7b4f\"\r\nexpires: Sat, 31 Jan 2026 08:44:48 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":31567,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (31567), with no line terminators","md5":"75340d65c922e622214b03a1fff2390d","sha1":"753019d269bc4b08d93914d4ac395f9c413e6f73","sha256":"22f07c8dabac0d45b6ac4452e8683527954fab5509bbe3e5835651b08a39a56e","sha512":"cf35d38003aedb007730c7f59c001c0892015aee8a449ae8f8e86b122550333b14a70e783267ac43d9989729b61b301911b2da91f893b2151af2663bfab81ef0","ssdeep":"768:h/mVj5E+jZdzjRVnjlCojdsCjpn1jlTZjdUKjJY7YNjxpnjBxDjFesj14mjBj5jn:0j5E+jZdzjRVnjlCojdsCjpn1jlTZjd1","tlshash":"bbe21c99bf4d620893b7871243cf1848ce3ae94a6a10dd4df73d340a5b06d2a7737b66","first_seen":"2026-01-15T21:49:58.145902Z","last_seen":"2026-06-02T23:33:03.920122Z","times_seen":7,"resource_available":false,"data":null}},"time_used":316,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":316,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/templets/gg.js","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.200Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /templets/gg.js HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 1005\r\nlast-modified: Tue, 30 Dec 2025 16:41:04 GMT\r\netag: \"695400a0-3ed\"\r\nexpires: Sat, 31 Jan 2026 08:44:48 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1005,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (452), with CRLF line terminators","md5":"23cbb9107445f050353dac7c3d122342","sha1":"7d6a10d7caf2d7ffa87f8c8f84d208c37de77970","sha256":"583c1d164077c3a7e2962cd1ff2951119f4ab219d4bf6cd92f3a3526c814cb90","sha512":"52c98937e6991eaccb3de6916815e73cff0c389c8222e322c6120a995930bad46078ce458cae27dd31b75dec264efb2f9f47ff5629e3eb02fe9991ed1ac703e5","ssdeep":"","tlshash":"1d11ab32638d263ce18613a2d5f4c7887b7bd619976566d8692d3463409cc412ca3af8","first_seen":"2025-12-31T11:30:05.393038Z","last_seen":"2026-02-15T20:57:11.127991Z","times_seen":102,"resource_available":true,"data":null}},"time_used":469,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":469,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200916170742_779.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.210Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200916170742_779.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb4-10bcc\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":68556,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 556x190, components 3","md5":"38d53e9c3c70509ea33fea62926ebaa2","sha1":"a09ce8db59b5d60c358df1e000adbb790cee22ad","sha256":"c6a2f396e258e0637d4c8b60faa7ac28caa0981599623d8207955511b44f3bea","sha512":"3ecf35acf49f77d5d052c5a903fac75d9308ecf5136bb75891c54475d9c47ec9903999bfd1331aef518f98656f7d19f8f3f77a6502049f07f177b3acf6f1f996","ssdeep":"1536:s2K40J7aGXhLFK4mFX2Uv7nszvNeo+vch/nVyfkTw/qImrdqKY6:GhNxLQ7TTszIze91w/qImN","tlshash":"c8630295a1d55ce5e9bcb8f99822d0fccc23d86163cfe30d60905112b8e141bb2f6de8","first_seen":"2026-01-30T20:16:10.398385Z","last_seen":"2026-01-30T20:45:12.96534Z","times_seen":2,"resource_available":false,"data":null}},"time_used":678,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":678,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200915150643_851.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.218Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200915150643_851.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:55 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb7-729e\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29342,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 304x360, components 3","md5":"b119a531f965884a8bd38803db3d37fa","sha1":"2846bb69a844ffef16d800d6ebbaa3b8ffdac569","sha256":"e244c8663fe47bf6caf619dffb1ee5bd6ec2c8420e0038aa5c257ddaecdf8866","sha512":"b0fce41b02f2a1cddd851df47772a983a30c3922f2fe4f28a86a941509e4f25a5e8cad1964ce7516f6f1030ea0f2d310e219d5d67d8be739c9c54279de5a13f7","ssdeep":"768:nZ3kDJK7LOZ1c8jNpHXsHDU1sYZ9PYTuUg+RZq+Dg:nZ3g0uZ1c8ppcAqYzPa6","tlshash":"b1d2e169fea0dc04e487bea54891843f2deea0e003b7a657dd4a3213bc886513d771f9","first_seen":"2026-01-30T20:16:10.41739Z","last_seen":"2026-01-30T20:45:12.966387Z","times_seen":2,"resource_available":false,"data":null}},"time_used":672,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":672,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200910164123_827.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.220Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200910164123_827.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb8-821d\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33309,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 200x200, components 3","md5":"640468813d6a9c0ca0e8a3557dc989dc","sha1":"e0f0156ab4b9fcf8b59498c4f0cb242aad913e31","sha256":"8aa97aea628740dc18782e744ac442395ae39f09ba1a8e83fd5d2f4f053e78eb","sha512":"f2b9e29b1f5a6fd6a9cc3c8aef5aa91658b09b6cc8dbc1bcba75643387b011c0108a685a615445dec6c103736af0d668fed4bf7cb04eb41ed678e2be6bf90c55","ssdeep":"768:bJS7KdCn8U76UQq/9/vmaDrwnsNLXJSOQi46f1GkseEm3Grw:b8O2wzq/xb/wYXJSVP6fkkse73Grw","tlshash":"e2e2f151f9370493e96d644569724213b2a68f30bc1758763ba7c30bf88b0d75c8bafa","first_seen":"2026-01-30T20:16:10.393607Z","last_seen":"2026-01-30T20:45:12.944346Z","times_seen":2,"resource_available":false,"data":null}},"time_used":669,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":669,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/css/tdacss/bootstrap.min.css","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.185Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/css/tdacss/bootstrap.min.css HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 03 Oct 2024 01:05:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedd3-1d83b\"\r\nexpires: Sat, 31 Jan 2026 08:44:48 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":120891,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65367), with CRLF line terminators","md5":"752de99ad4065d763a78079b424c945a","sha1":"3aca76e513db865080ca8652b46ed6964a454b15","sha256":"09e2f93eeea898e8de2e2ac7ece144e16fbda3626fe6f69e498e10444cc97785","sha512":"0d55b53f549897b26dee51759346ebde9cc80e8b02d7eaf979f6ec5d823d5ae0082773eea9e45989420f08d5d8c751030c4696358e2dff2549c64fc5b592623c","ssdeep":"768:OoScGxw/Vc/wWlJutQ+IuiHlq5mwIY58LAPuFK6v2ct12Bn8EP8ecQVvH1Fx:Obw/ayvIuiHlq5mA8sJ64JPgU","tlshash":"fcc3c7a0f21031ea7333c55a75d0ed872219a153e66a4fb7f22f25d88f845ca1673f1a","first_seen":"2025-02-23T08:14:11.941166Z","last_seen":"2026-06-04T07:50:04.238116Z","times_seen":8,"resource_available":false,"data":null}},"time_used":319,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":319,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200917193310_235.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.206Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200917193310_235.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb4-eba3\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":60323,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 304x381, components 3","md5":"bd279c26ff44a312968d09a5e8a1c037","sha1":"e8f81f6d713f1a0047777d0b2deed916e918d63d","sha256":"4c8953ea1e09c84620c697cec9dbec825f099d2c00a932f80da365f2d86c5e44","sha512":"4fcfa3aeb3b268e056cbf4c3dd776dff8fee6e7037f7b52100fd0b692d5d7cea31b5270cfab0b6dd8508e0a4d982afc8c17e1b3cbac108ccc3e2d5b8e2947212","ssdeep":"1536:sEl9ymnYkFH1eYp6i9f+O43/NfD7X5yZ5qoSNStZp9M:X9ymn9F0YpsO43/9wZgoSNStZp9M","tlshash":"0143024e3803aa05aadcd2d795c3b1e8f64a5740d60ba128cf71af477e370669f810d3","first_seen":"2026-01-30T20:16:10.423878Z","last_seen":"2026-01-30T20:45:12.968334Z","times_seen":2,"resource_available":false,"data":null}},"time_used":680,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":680,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200914105021_703.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.215Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200914105021_703.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb4-225ae\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":140718,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x532, components 3","md5":"c37f27959b8ea7288423a4174b17e853","sha1":"5ae6e3d5f12f9f9685fce0ca88454745ed135bb4","sha256":"2ec834ffaaca202552e1b543d3d2d5a3fc5d0aacbc302ab7a2b8bbce68968506","sha512":"9661bdb1e9a677b87599a6cd4204521ff64c2224731edd4c80a4d16e44a21f2b6b5f239f6caeb7707406e13aefc24571e1fa6d394d4e3d1e67924722c3af17bb","ssdeep":"3072:Kvi8lxkMw8En9wgh29z3r/vPAvgS6xoanjSUotU4MyWfgxZrM/Mid:4XeMHEn969zrfAv8xoannom4MyxVWMid","tlshash":"0ad31212d480dcfb7ad320beb3f9c4a38d327dc05a536fa518a1655960e67fe19183ca","first_seen":"2026-01-30T20:16:10.402341Z","last_seen":"2026-01-30T20:45:12.969259Z","times_seen":2,"resource_available":false,"data":null}},"time_used":676,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":676,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/css/animate.css","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:49.417Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /css/animate.css HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 22 Jun 2022 03:40:28 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62b28f2c-63b\"\r\nexpires: Sat, 31 Jan 2026 08:44:49 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1595,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"8999cda281dc87bf0e89a2db85a57f05","sha1":"80df978d0cd1e197c49a6b57173090bf4462d8fa","sha256":"6f7958ab1a89de0c51c187203e502057e1ea51951b7e687b1f1e034f74623752","sha512":"97892fd6bc0d0c322652873142967979914b726d392a2073512f29e05106c90f645d4faee56da59bdaf3b8f273958c0f1c188c3b16f113ab97f97f9149618472","ssdeep":"","tlshash":"61318e6a4a47a04e7737e2b12b27239c99384085f4530f1c77fe34ebb656954123bfa1","first_seen":"2023-07-21T01:05:39Z","last_seen":"2026-06-08T14:30:20.250625Z","times_seen":648,"resource_available":false,"data":null}},"time_used":214,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":214,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200916155024_913.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.202Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200916155024_913.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb4-84c02\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":543746,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x782, components 3","md5":"6c1f8a10fcb19d2a1230ccd6fc096275","sha1":"5ee6f0df621d6d467c8a03684f38fa368316a121","sha256":"db10d0fe9f3bdf7f816cac521a193dbb43f086602379c1b30467fa919d53faaf","sha512":"94f8f512118f0ec90eea2186fd5651ffe5d16215a0a52e680d7145459cecfdfe1c36be2f1b837ee4a66809301731b98e5943659e5e29ae4070b338af7e859010","ssdeep":"12288:AcVI9uePSGeufWBdWuiq0/N3FO328y9juDl4Gay7H+2oA/Ohd:FjZ3ufoVkCDl4GZ7ea2v","tlshash":"7dc4230853bc2cb67d56128a60d1d7a388cfee686b2a7157243c687107c75dafec0d9b","first_seen":"2026-01-30T20:16:10.460389Z","last_seen":"2026-01-30T20:45:12.970504Z","times_seen":2,"resource_available":false,"data":null}},"time_used":469,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":469,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/favicon.ico","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:49.643Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nCookie: _ga_Z5NKFLZGBH=GS2.1.s1769805888$o1$g0$t1769805888$j60$l0$h0; _ga=GA1.1.1539903301.1769805889; __vtins__3GBwJi1VhYXTbBWt=%7B%22sid%22%3A%20%225f599523-45aa-54a8-8e99-70ebabe8c804%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201769807689289%2C%20%22ct%22%3A%201769805889289%7D; __51uvsct__3GBwJi1VhYXTbBWt=1; __51vcke__3GBwJi1VhYXTbBWt=bc3668d9-9b6f-5e60-af6c-0f90a5f26c1a; __51vuft__3GBwJi1VhYXTbBWt=1769805889292\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 4286\r\nlast-modified: Mon, 03 Nov 2025 17:52:27 GMT\r\netag: \"6908ebdb-10be\"\r\nstrict-transport-security: max-age=63072000; includeSubdomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: public, max-age=31536000, immutable\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"19f1695b666f83fb82f706d7985ee432","sha1":"e0eff93e72d5304a6970ff4ccbca957557a69af8","sha256":"cc454ffaf8064d2946905eb19caa28138b88a4c2d8d37972e8151cd4d1dd2b79","sha512":"c6fcae6d0f4043cf29ce5314a58f7695c7aef28f99005f400e084aa1c2f1dda59d1c97519c1fef82a3da78e595e77b38fda98883998b65b8d0db247b8cd27e70","ssdeep":"48:BFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFqFFFLjHyFFGFFaFFaFF9pFsfhcFFFFFv:shSHyGCWFXVv/53QkD9ahfbIFHX5","tlshash":"7791d85543bc1dc4c164befa80635e18b34a560399c5aec58fff2bd80e2f35c1e18694","first_seen":"2023-05-09T10:51:50Z","last_seen":"2026-06-08T14:30:20.236448Z","times_seen":817,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"collect-v6.51.la/v6/collect?dt=4","fqdn":"collect-v6.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:49.800Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.51.la","organization":"广州有啦网络科技有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 18 Mar 2025 04:08:22 GMT","end":"Sun, 19 Apr 2026 04:08:21 GMT"},"fingerprint":{"sha1":"AE:CB:32:71:EE:EE:E6:72:A4:88:B2:9F:4F:C4:E5:B5:A8:C2:73:6C","sha256":"7C:F1:09:2F:6A:8C:5B:F8:63:DF:D3:32:B0:F3:F8:E7:01:29:0E:F2:55:8B:4F:6C:58:55:8E:44:E9:EC:15:F4"}}},"request":{"raw":"POST /v6/collect?dt=4 HTTP/1.1\r\nHost: collect-v6.51.la\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Length: 319\r\nOrigin: https://www.kflaoge.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 210 No Reason Phrase\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.kflaoge.net\r\naccess-control-allow-credentials: true\r\nserver: TencentEdgeOne\r\ncontent-length: 0\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\neo-log-uuid: 15533594192058480217\r\neo-cache-status: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"210","status_text":"No Reason Phrase","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T19:34:27.179619Z","times_seen":16247994,"resource_available":true,"data":null}},"time_used":228,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":228,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/images/logo.png","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:50.370Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /images/logo.png HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/css/pc.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:50 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 11 Dec 2025 09:33:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"693a9000-28e3\"\r\nexpires: Sun, 01 Mar 2026 20:44:50 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10467,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 529 x 96, 8-bit colormap, non-interlaced","md5":"9c35073359ed452747743a29c0192849","sha1":"9bda9ccccf8c8fe5f3c0ddbe0ef448125a35734f","sha256":"fe45c9536901c3aeef965c3f40fdfbd67e06035c3231c654c23dbaccd123166a","sha512":"93d2d1337cff0d4fc5ad3ff03a1234db997aff9bb3c9b2a30586a26dbe4814b3af09ba057856c2eabeb265940aff7dfe7883cef840d4f7802db19e9e5c6bfaca","ssdeep":"192:GdsjlShdePhtzVUPrKXN0wV40IBT4+S94XMsOM0zehvU46uNBd:4sjshYPhtOPre0wtI14IXBhkuNBd","tlshash":"e222ae153fa7ba4f13438d216825b4f5f2222cbad00222419196fcff523bb5ba12675e","first_seen":"2025-12-12T06:17:28.440196Z","last_seen":"2026-06-08T18:20:21.513753Z","times_seen":1272,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":127,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/images/asideK8.png","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:50.378Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /images/asideK8.png HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/css/pc.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:50 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 26 May 2023 03:26:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"647026e6-27ef\"\r\nexpires: Sun, 01 Mar 2026 20:44:50 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10223,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 190 x 250, 8-bit/color RGBA, non-interlaced","md5":"42404065ec9bf79e827c355f4ec11359","sha1":"4e946d20b84944f515172533f7b26642c89005a5","sha256":"ad28e83f7ec1ef2a5a45d602049bdcab467bb71522864f5b671649d4bf7f27ae","sha512":"6841dccb06bfcaf1a98f8e5b13031750b03aee7c24624ee458e99634f6a0d64ed1b37f00e2afd48471807d8656a8b8f4e2bb225b7d6d84300e64ccd5e8cf75fe","ssdeep":"192:RSm6KaJMd/FOP0aabk6TErLxoshou4eYk3/Tf2W+ML1MhWdBYD/iLet2n80RXuoH:4fKVQH6TEGzu4fkL0hWdM/Ev88ND","tlshash":"de22ae49c62180ef19dbdfd8acfb416d23d58c17b93b30561c17cce1b139a62286a1e9","first_seen":"2023-06-07T21:17:55Z","last_seen":"2026-06-07T23:55:39.129612Z","times_seen":690,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":159,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/js/index.js","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:49.422Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /js/index.js HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 28 Jan 2026 01:37:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6979683c-34d3\"\r\nexpires: Sat, 31 Jan 2026 08:44:49 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13523,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"f8c7b80b27dc9426fc48f194b82f3b3f","sha1":"55be6987384c2ea89e2f867012f5b6196bafeb8d","sha256":"854af68d4329fcfd2c839925fcb36a4299d2d5b0c4768aadd8b1a5d555c45594","sha512":"ea550756670fca4b7043a8281fe3d6defb3f2387b1c2b3f00dc8b113c436cfd239181467cb955474b1876a2e541df5f66fbffc81fe6ed79b594f4539bb55b876","ssdeep":"384:YmFEdyK7p/G7Z89sbN5XG5PsfnLEXoEwKSRX/c:pFQc9IqfLjASRX/c","tlshash":"09423288a2f87652077214be0f47a0547c63a627be47df0c758e5b98af4b73690943e3","first_seen":"2026-01-28T07:57:28.745816Z","last_seen":"2026-01-31T13:13:56.3562Z","times_seen":8,"resource_available":true,"data":null}},"time_used":225,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":225,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/css/init.css","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:49.650Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /css/init.css HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/css/index.css\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\ncontent-type: text/css\r\ncontent-length: 509\r\nlast-modified: Thu, 01 Jun 2023 03:51:18 GMT\r\netag: \"647815b6-1fd\"\r\nexpires: Sat, 31 Jan 2026 08:44:49 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":509,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"4ec70538c55fa190eaa489f629b034c4","sha1":"449da9173f731324832c89dc2409135e4f2b51dc","sha256":"ad05a094bc58332c33fb150b2345f94a670bdfb2673d85120c447f13e581230f","sha512":"13daafc2c93d50699475f5ac80b439a7716e73a3f052b94e169f473af72014b91c34d086c323a8c49d7196f3e7bac37166b346759bd69f9e1aad9b25b4c43b68","ssdeep":"","tlshash":"fcf02b8e4161d2846236cf3123a289206f1940f25f115364b99c9cac934375a0520dab","first_seen":"2023-06-08T15:48:22Z","last_seen":"2026-06-08T14:30:20.251555Z","times_seen":699,"resource_available":false,"data":null}},"time_used":114,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":114,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/css/tdacss/slick.css","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.197Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/css/tdacss/slick.css HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 03 Oct 2024 01:05:20 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedd0-767\"\r\nexpires: Sat, 31 Jan 2026 08:44:48 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1895,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"d3798a0e6e259a7aa8279e1de20225bc","sha1":"295815717c3694425195472a6488a5bb521300df","sha256":"fc4f181c656dfdf57a1495f8699cb721f71b54451ffa36fd1375fc039167a134","sha512":"73d8c2385448faef550731aa95d02cf8d5adc200c38bbe302822de090f7acbfbef50273b6e9e860aafdbad3d363a579d2e2c4725fecd8b2b3a1b1fdd6f0d5645","ssdeep":"","tlshash":"6641e9dc0652c5d6873384444fd38649eeefa0930c251698ba8d47098fbfae8a9c5e77","first_seen":"2025-10-19T11:10:45.082145Z","last_seen":"2026-06-04T07:50:04.235215Z","times_seen":5,"resource_available":false,"data":null}},"time_used":314,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":314,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200915144845_390.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.219Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200915144845_390.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb8-729e\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29342,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 304x360, components 3","md5":"b119a531f965884a8bd38803db3d37fa","sha1":"2846bb69a844ffef16d800d6ebbaa3b8ffdac569","sha256":"e244c8663fe47bf6caf619dffb1ee5bd6ec2c8420e0038aa5c257ddaecdf8866","sha512":"b0fce41b02f2a1cddd851df47772a983a30c3922f2fe4f28a86a941509e4f25a5e8cad1964ce7516f6f1030ea0f2d310e219d5d67d8be739c9c54279de5a13f7","ssdeep":"768:nZ3kDJK7LOZ1c8jNpHXsHDU1sYZ9PYTuUg+RZq+Dg:nZ3g0uZ1c8ppcAqYzPa6","tlshash":"b1d2e169fea0dc04e487bea54891843f2deea0e003b7a657dd4a3213bc886513d771f9","first_seen":"2026-01-30T20:16:10.41739Z","last_seen":"2026-01-30T20:45:12.966387Z","times_seen":2,"resource_available":false,"data":null}},"time_used":671,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":671,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.659Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\ncontent-type: text/html\r\nlast-modified: Sun, 28 Dec 2025 07:23:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6950daf8-128e\"\r\nstrict-transport-security: max-age=63072000; includeSubdomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: public, max-age=31536000, immutable\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4750,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"adfef6977d438730bc98aad4345ec086","sha1":"b3ae4473115e55ee969d837a7e6d128297290184","sha256":"2a6192415121201c7fed8212d48c91aae382c337b3c88376267f95f09c433663","sha512":"68224b98d27ea19a8701bd764978ae8e0be1a7fb6cb2436355a0ca9c433abb3e80325dd890e1db6660388ee17b015501410dd505a2e2e9d97fc11a385f444203","ssdeep":"48:G6P0IGl9DE5xg/C12tjt5GwFBhVVEuaHrIEfaEkLX8bdLb1ImU:Gs55xWa2tjt5GwFBhVVEdIEXkWd/1I3","tlshash":"c3a1ce5114fa6417914180d4aab2eb0f7fc4ea07ca1b860872ec4bd54febec3ec9b519","first_seen":"2025-12-29T04:23:01.12217Z","last_seen":"2026-02-15T20:57:11.131883Z","times_seen":104,"resource_available":false,"data":null}},"time_used":989,"timings":{"blocked":437,"dns":63,"connect":114,"send":0,"wait":114,"receive":0,"ssl":258},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/images/title_pc.png","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:50.368Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /images/title_pc.png HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/css/pc.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:50 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 26 May 2023 03:26:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"647026e6-fd22\"\r\nexpires: Sun, 01 Mar 2026 20:44:50 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":64802,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1496 x 110, 8-bit/color RGBA, non-interlaced","md5":"68dc9e34f86b683d2c523b89108b7313","sha1":"dc73f91c21a72cfbc64c4950c6ca96355b405405","sha256":"13409f41c767c0ad43fc32ace948ace85c05ecfd9b8b62dee58ef743e2281aca","sha512":"162445a74eb9a5ca0e1733a86ebdd3dbff7dcca3b3f319ec51f273ad71b016eb892e65bdb4731ee785080bad121783fb0e0375e5761e5f76d1a4f4d7cb780f16","ssdeep":"1536:vnTiS/t0SmyyZXc5/LZjPLO5dpGzZXQJd53deI/ekz9qHyQnMbN:D1D8U1Y/gZAJd1AIxuyUUN","tlshash":"d453f10150e4931278e6213459e5f393051ff40d04fb2e2f64efcc9aabd9d45bb9267a","first_seen":"2023-06-07T21:17:55Z","last_seen":"2026-06-07T23:55:39.127954Z","times_seen":683,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/css/tdacss/jquery.validator.css","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.187Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/css/tdacss/jquery.validator.css HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 03 Oct 2024 01:05:20 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedd0-10a1\"\r\nexpires: Sat, 31 Jan 2026 08:44:48 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4257,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"37ded8680abbadf28794e16fa3fdef71","sha1":"a4107b9aa07d8e74b7961241040f1377f22d8c27","sha256":"2f8ff5fd7e5fe3ef0cab6fc602607f27a2040e717522211b1bd212f9e8e5386c","sha512":"ed8ee84a474f3dbee826cde0c644146f0800b604dbfacaafb5dec46e7dc0d86a4535e5856638a77cda4cd04fd09ccef0e962e9ca5d88b1771be6bbec9c4ca193","ssdeep":"48:nVJQIVpAyvI4gai8AEOyJTCFJjloqwrZIr3RNlNzole5AJnolRn5l4QOOXolnyta:VeIYYIxEOa+J9B+UWiR5NonmUZ","tlshash":"16919cc6a9f04d04623dd258145a72a17b9f0092614fbf589eb3320c7edc8e76a5b63a","first_seen":"2025-06-17T04:23:33.087796Z","last_seen":"2026-06-04T07:50:04.235842Z","times_seen":7,"resource_available":false,"data":null}},"time_used":319,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":319,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/css/tdacss/owl.carousel.min.css","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.190Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/css/tdacss/owl.carousel.min.css HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 03 Oct 2024 01:05:20 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedd0-d05\"\r\nexpires: Sat, 31 Jan 2026 08:44:48 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3333,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3161), with CRLF line terminators","md5":"d6e7e62fcacbd77ccc2fe13d03855c87","sha1":"d1c7d69ba62f0188f921209bfa490dc145bab2df","sha256":"ad4768a7bec4d8e8016191aacdfddeafddc160159941395d5ae3af412318a324","sha512":"c5eddd6cac9027946de2740a8e11307e7deac2db71d19bfd280f9d04dc11bce506276e4f6ea4c0e1515646bdc7303206ad38c29648270ed610983bb4c4deaeb5","ssdeep":"","tlshash":"9c61bae1314b215f485f831219d95e86393dcc52d8660a8a92bbd31447dae6d213ffcf","first_seen":"2025-06-13T23:41:29.367524Z","last_seen":"2026-06-04T07:50:04.228126Z","times_seen":6,"resource_available":false,"data":null}},"time_used":316,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":316,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/css/tdacss/main.css","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.195Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/css/tdacss/main.css HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 03 Oct 2024 01:05:20 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedd0-3b33\"\r\nexpires: Sat, 31 Jan 2026 08:44:48 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15155,"size_decoded":0,"mime_type":"text/css","magic":"troff or preprocessor input, Unicode text, UTF-8 text","md5":"f03d8bc4922bdbccf4808147d8089bb2","sha1":"d7230b85d5b82059f91c4cbb8473d1874970d46a","sha256":"389d24387bf3147068fa4536b0d28c2083bd973cc45abe362dd326d235f64092","sha512":"e77f7da33783d6a1a288e3d2e56076562482cd33ac049f126742d7272c6ac83d0ac0664cff957ea6c2efdac4ff43d6ac8369383de70dac4c8be1e8a29a6d8129","ssdeep":"192:Emuvw5bgKmJ4ja7AvBHmKb1pde1ocX/wyObWc2L/gl0cQYUaWchcthcsKN2k0XLe:h8KF3b8Rc0EW6","tlshash":"5a628a6b17b31969781ba46d5f7e7304321dd467920edea87e4c630edfc83a045a2b8c","first_seen":"2026-01-30T20:16:10.430605Z","last_seen":"2026-01-30T20:45:12.979607Z","times_seen":2,"resource_available":false,"data":null}},"time_used":314,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":314,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"collect-v6.51.la/v6/collect?dt=4","fqdn":"collect-v6.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:49.300Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.51.la","organization":"广州有啦网络科技有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 18 Mar 2025 04:08:22 GMT","end":"Sun, 19 Apr 2026 04:08:21 GMT"},"fingerprint":{"sha1":"AE:CB:32:71:EE:EE:E6:72:A4:88:B2:9F:4F:C4:E5:B5:A8:C2:73:6C","sha256":"7C:F1:09:2F:6A:8C:5B:F8:63:DF:D3:32:B0:F3:F8:E7:01:29:0E:F2:55:8B:4F:6C:58:55:8E:44:E9:EC:15:F4"}}},"request":{"raw":"POST /v6/collect?dt=4 HTTP/1.1\r\nHost: collect-v6.51.la\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Length: 360\r\nOrigin: https://www.carbontradebanks.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 210 No Reason Phrase\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.carbontradebanks.com\r\naccess-control-allow-credentials: true\r\nserver: TencentEdgeOne\r\ncontent-length: 0\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\neo-log-uuid: 5237040783475327100\r\neo-cache-status: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"210","status_text":"No Reason Phrase","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T19:34:27.179619Z","times_seen":16247994,"resource_available":true,"data":null}},"time_used":665,"timings":{"blocked":406,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/images/main1_pc.png","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:50.374Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /images/main1_pc.png HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/css/pc.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:50 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 26 May 2023 03:26:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"647026e6-21174\"\r\nexpires: Sun, 01 Mar 2026 20:44:50 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":135540,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1180 x 610, 8-bit/color RGBA, non-interlaced","md5":"95b0e0a05d17b78a4a3e935320390a28","sha1":"bbe725d10ab84e77dd6c3ddb803c6ec969478ab6","sha256":"e15cf5ae4110ae65656e1fb67d89015ffc2bad91df26b01a5e635c6ca3359c20","sha512":"01fbd6e4740bef43046454ddf3062f90ee466b8db103c105cd28813b12e93167717d5965f03590bc61236cf83d8baf44fd0629ed1b7e343acbb43cca12fb9d82","ssdeep":"3072:e7pF5Ck+z7uA6IMDD+AA1ZOIxw689wg9iCJS5lfCWXhMRPOgvz0Zbp6S:uzQN63+AoZOO8Cg2CKuhOgvz26S","tlshash":"a0d302596b36d90dcfd704b8ab4c9b7723aad027a6e46852c0b4024e4787d7ecd4cc6e","first_seen":"2023-06-07T21:17:55Z","last_seen":"2026-06-07T23:55:39.09618Z","times_seen":682,"resource_available":false,"data":null}},"time_used":130,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":130,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200917193325_628.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.208Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200917193325_628.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb4-aaa3\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43683,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 304x381, components 3","md5":"b4982543bfa930b3fdc2dc53a0a5f263","sha1":"8be14fd091e6dab0bbce0420135229984b9cc48a","sha256":"020d5550c01a14e1a56bc6c94e4d84bdb98656e50d0e0737a63ab57683c75588","sha512":"5bb47dcdf0934c594b6b1ba62408da2bc74907563b67ff745bea9ea19619bf42af0a0d6347ef5cb6a56d1493a8bdac02b4105a56b36303db577fc6c7e45f8fb8","ssdeep":"768:QDODWLhIoKl2CA5evRHVaYCQeeLlPLSh/DrHRQc//jRZpVPpI7rTF9x:sOyNI52tHQeIlPL8/B//17VPunTV","tlshash":"5313f1958057dc764e98ca153eefc0fdc5210b3475d38638b3b824b668be8584a357da","first_seen":"2026-01-30T20:16:10.449335Z","last_seen":"2026-01-30T20:45:12.981288Z","times_seen":2,"resource_available":false,"data":null}},"time_used":679,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":679,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200914105043_996.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.214Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200914105043_996.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb4-1928d\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":103053,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x532, components 3","md5":"e43b950afbba078a0568bac133577b6a","sha1":"fe6b161e30fc795db06acbf60bb1f8a3966b804b","sha256":"630a71c17ac4c4dd36c77ccbe88bfd22b19e3225d4ca17ad0dbb98c5930e291f","sha512":"b814ea588b8f2fc6531ecd8defce8b3189b2874d4c7f5250df0d25cb6c653feb8e0536612ad7dc4c442c18ddea6fd84e014c7422dca31f29ef1e11c970e236b7","ssdeep":"1536:nMtuPhuiMsn/lzrE6tM99bq961GqWcUuDQP1M549i8b0SD86vo6KV+d0q+Hallb:RPwiMsndX1iVJJkPHI2JAZV+d0q+6P","tlshash":"6fa301882ba0796fec6d9a02a477c77a731301b1f8b3cf966c5c51a37d381a29851f46","first_seen":"2026-01-30T20:16:10.464273Z","last_seen":"2026-01-30T20:45:12.982255Z","times_seen":2,"resource_available":false,"data":null}},"time_used":677,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":677,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/css/index.css","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:49.414Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /css/index.css HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\ncontent-type: text/css\r\ncontent-length: 67\r\nlast-modified: Thu, 01 Jun 2023 07:16:42 GMT\r\netag: \"647845da-43\"\r\nexpires: Sat, 31 Jan 2026 08:44:49 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":67,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"ab430f227fad6afd46d758ab1036a9ee","sha1":"b17326dbfb448614e6d466174bf456481ac9765e","sha256":"780ea063588dc15618aea0a2cff489976c22442de4537ace1dab313644aa4e96","sha512":"74b746ce61e62e068a2154ece633e5b3e439c1779d41de4295026483a407891b8eb083d855c6809b6e24a59641f9cac6ca81314a0a9d738f8ae057744a73a420","ssdeep":"","tlshash":"78a0021200860e45c1128508a8321a3e527cfe496a02fb78765222367ba5c121041552","first_seen":"2023-06-07T21:17:55Z","last_seen":"2026-06-08T14:30:20.250009Z","times_seen":697,"resource_available":false,"data":null}},"time_used":215,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":215,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-Z5NKFLZGBH","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.142.232","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.653Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:51:06 GMT","end":"Mon, 23 Mar 2026 19:51:05 GMT"},"fingerprint":{"sha1":"66:A1:61:62:8E:0D:AB:F0:EF:5F:4C:AF:37:49:48:06:29:96:E9:34","sha256":"D7:A4:98:64:D8:F7:BE:4D:88:E8:1A:4B:70:69:43:46:6E:47:36:BD:31:38:07:95:66:16:C2:14:9E:82:E8:9B"}}},"request":{"raw":"GET /gtag/js?id=G-Z5NKFLZGBH HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\nexpires: Fri, 30 Jan 2026 20:44:48 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 143164\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":430332,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (5882)","md5":"ba927e427be5e3a5531a7b5277000711","sha1":"3dbc76007b908ba30c9cdb46b34a26d3ea9c9869","sha256":"13528334b05f4069315e34a6f1e47303afdc01f417fcca1a98e7dc819d764e82","sha512":"9458a0b62db8d8c3980e3c7ecf0b9dbe2dbb2473bd6221b2b43fc9221e4632312387d33cb64d3246a67e65f5893eb8b5206d8bfc48be006e167e8ddb1e380f5d","ssdeep":"6144:oa2dvzR1IdaoCsx4V/Gu+rPuz6h8ZSlTpiRpyM3wISktcXId:LUv1idaoCsx2/Gu+yz6h833w+d","tlshash":"5d9409ce73c674269396e478503f018ba57b29a2f44dc89af189cce42d74a9a4137f7c","first_seen":"2026-01-30T20:16:10.450814Z","last_seen":"2026-01-30T20:45:12.984091Z","times_seen":2,"resource_available":true,"data":null}},"time_used":262,"timings":{"blocked":82,"dns":1,"connect":21,"send":0,"wait":38,"receive":58,"ssl":60},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-MF58H2XB75","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.142.232","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:49.289Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:51:06 GMT","end":"Mon, 23 Mar 2026 19:51:05 GMT"},"fingerprint":{"sha1":"66:A1:61:62:8E:0D:AB:F0:EF:5F:4C:AF:37:49:48:06:29:96:E9:34","sha256":"D7:A4:98:64:D8:F7:BE:4D:88:E8:1A:4B:70:69:43:46:6E:47:36:BD:31:38:07:95:66:16:C2:14:9E:82:E8:9B"}}},"request":{"raw":"GET /gtag/js?id=G-MF58H2XB75 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\nexpires: Fri, 30 Jan 2026 20:44:49 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 145695\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":442138,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (7828)","md5":"be066ec5f45d16f89c488fce220d6cad","sha1":"621758045dfa72773e3502954dc4512fbff0624f","sha256":"9807871afb9d54df73e2fb035aee5e5417896c5c7de9075e89bd760cf8e7d049","sha512":"b2edb60ebb43389388c4b844a40f92c95cedd172f763797289a340fa71491f26360e16f0780d1c8c2aafdfbfee90ba5906cc37036a1bb00d8a2e5c6a3e7f8fc7","ssdeep":"6144:5a2dvzR1I8aoCsx4V/Gu+rPuz6h8ZSlTpiRpyM3wISktcXG1:QUv1i8aoCsx2/Gu+yz6h833ws1","tlshash":"819419ce73c674269396f478502f018ba57b29a2f45dc89af189cce42d34a9a4137f7c","first_seen":"2026-01-30T20:16:10.443955Z","last_seen":"2026-01-30T20:45:12.985046Z","times_seen":2,"resource_available":true,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":48,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/js/swiper-bundle.min.js","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:49.290Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /js/swiper-bundle.min.js HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 16 Nov 2022 03:43:34 GMT\r\nvary: Accept-Encoding\r\netag: W/\"63745c66-21196\"\r\nexpires: Sat, 31 Jan 2026 08:44:49 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":135574,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65280)","md5":"8b357cc5e8365726e8663674de5d6593","sha1":"583bc844b5d43db5f316940a18647bf2e1351918","sha256":"330fe5965859f5757348be82340b21f1d473cc9b3fb8c3b1fcd4e082aaf4c0a9","sha512":"5c79d6656bf2e539029cf80b53b5ec5a118092cd49437b85bad5714521f4678f9d8ec1a40a4c55b18bbe2607eb0e272f6c29a37d47f51de316614bd460a823cd","ssdeep":"3072:IJkYe9swz2jkTbkC74OrynImO/TYW9D/EL74ami0lLHb:IJte9rz2jkTbkC8OrynImQTYW9D/iP0x","tlshash":"f3d30a997320b5a552e726cb93a8c511a2b50800b40ad5e870bd4c6b6d7ec9c13feffd","first_seen":"2023-03-07T12:38:33Z","last_seen":"2026-06-08T14:30:20.240344Z","times_seen":2475,"resource_available":true,"data":null}},"time_used":226,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":226,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/js/qrcode.js","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:49.420Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /js/qrcode.js HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 01 Jun 2023 09:39:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6478676a-4dd7\"\r\nexpires: Sat, 31 Jan 2026 08:44:49 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19927,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (19927), with no line terminators","md5":"517b55d3688ce9ef1085a3d9632bcb97","sha1":"2d06c1f823f34c19981c6ae0b0eb0f5861c5e14b","sha256":"c541ef06327885a8415bca8df6071e14189b4855336def4f36db54bde8484f36","sha512":"08d80845e706a3b9e985b799d3849cd7791ad3ba5aa9d793bb4591d4833890d7299810144874905f416c94d8530da74be0ee520066a91ade05a1da8bf0ccb498","ssdeep":"384:WRQ2kvcAAdTRhQLThP2yO9/9G84U5xOiKQYHHHsglDep9m1yfB8dKLMyA+LyUyy9:xThP2V/9N4U/gQYPXa8CAPLyrZ","tlshash":"8c92c7e4f36542f6915e6cd4283f104b64a0a4636c1490acbfb5c1e6a9f8fe0647af74","first_seen":"2023-03-07T01:14:56Z","last_seen":"2026-06-08T18:50:16.264642Z","times_seen":61633,"resource_available":true,"data":null}},"time_used":226,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":226,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/css/swiper-bundle.min.css","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:49.285Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /css/swiper-bundle.min.css HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 16 Nov 2022 03:43:34 GMT\r\nvary: Accept-Encoding\r\netag: W/\"63745c66-3cca\"\r\nexpires: Sat, 31 Jan 2026 08:44:49 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15562,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (15306)","md5":"8188534e7df1ec7fece646687f2d7d77","sha1":"42d5e077e634d4ee917072138bba1fe52896e3b4","sha256":"5297ba46897d0955bf211bd3d4239fc52a7add3a8830e7dec65523c022a75a9c","sha512":"0589f5519729ce4822e1c168af353353f16ab1ec0871f5c3600534b538457de8629ab52ba7984eb5c58f2355a9962f2b2a8a5422168309bc573edb410d321280","ssdeep":"192:s4mUJbiKneTTzbHZ+SKUP3p/a/AMQfHffxVeesedOJ9A5Pz+c3At2/6:sJUbeTXbHZ+GA/AVfHfS4XYz","tlshash":"7062126853402c2763274f370b71cbb9ddb444825b93896ea1c0ed84d7b6cb9236f6e9","first_seen":"2023-04-07T21:50:47Z","last_seen":"2026-06-08T14:30:20.242502Z","times_seen":2221,"resource_available":false,"data":null}},"time_used":116,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":116,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/css/tdacss/app.css","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/css/tdacss/app.css HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 03 Oct 2024 01:05:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedd3-13076\"\r\nexpires: Sat, 31 Jan 2026 08:44:48 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":77942,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (925)","md5":"62ade744489b8142a99a9eff3f672c6b","sha1":"09518e8dfc6a9eef453dfd8ce702edc4d838a57b","sha256":"c78e5b5387392a09bea10b87f3df5d025447e8330e1cf97a9e304fe266e9a57b","sha512":"0a56273b2d42f06dc468910e96b6114bf0633eb2f59d73da67f1906d47bc3cf3eb025bc5b72cc26e13fac2de913782762c156f82734830190c32428595aa7e22","ssdeep":"1536:BbjLvgU5xF1fNz/4Va1KWb0InNGQE3GP9DgEXOyk7mgsSoyDtUlNVwHT:BbjLvgU5x3fNz/4VaMWbLN63GP90EXOT","tlshash":"887372c6b3ba4a48741fd5a63946ab53336de143d25fcd74bae5305cef881a10133b8a","first_seen":"2026-01-30T20:16:10.442352Z","last_seen":"2026-01-30T20:45:12.988311Z","times_seen":2,"resource_available":false,"data":null}},"time_used":315,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":315,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200915161229_171.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.217Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200915161229_171.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb4-729e\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29342,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 304x360, components 3","md5":"b119a531f965884a8bd38803db3d37fa","sha1":"2846bb69a844ffef16d800d6ebbaa3b8ffdac569","sha256":"e244c8663fe47bf6caf619dffb1ee5bd6ec2c8420e0038aa5c257ddaecdf8866","sha512":"b0fce41b02f2a1cddd851df47772a983a30c3922f2fe4f28a86a941509e4f25a5e8cad1964ce7516f6f1030ea0f2d310e219d5d67d8be739c9c54279de5a13f7","ssdeep":"768:nZ3kDJK7LOZ1c8jNpHXsHDU1sYZ9PYTuUg+RZq+Dg:nZ3g0uZ1c8ppcAqYzPa6","tlshash":"b1d2e169fea0dc04e487bea54891843f2deea0e003b7a657dd4a3213bc886513d771f9","first_seen":"2026-01-30T20:16:10.41739Z","last_seen":"2026-01-30T20:45:12.966387Z","times_seen":2,"resource_available":false,"data":null}},"time_used":675,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":675,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200915155344_939.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.217Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200915155344_939.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:55 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb7-729e\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29342,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 304x360, components 3","md5":"b119a531f965884a8bd38803db3d37fa","sha1":"2846bb69a844ffef16d800d6ebbaa3b8ffdac569","sha256":"e244c8663fe47bf6caf619dffb1ee5bd6ec2c8420e0038aa5c257ddaecdf8866","sha512":"b0fce41b02f2a1cddd851df47772a983a30c3922f2fe4f28a86a941509e4f25a5e8cad1964ce7516f6f1030ea0f2d310e219d5d67d8be739c9c54279de5a13f7","ssdeep":"768:nZ3kDJK7LOZ1c8jNpHXsHDU1sYZ9PYTuUg+RZq+Dg:nZ3g0uZ1c8ppcAqYzPa6","tlshash":"b1d2e169fea0dc04e487bea54891843f2deea0e003b7a657dd4a3213bc886513d771f9","first_seen":"2026-01-30T20:16:10.41739Z","last_seen":"2026-01-30T20:45:12.966387Z","times_seen":2,"resource_available":false,"data":null}},"time_used":674,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":674,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/js/jquery.js","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:49.419Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /js/jquery.js HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 14 Mar 2022 02:26:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"622ea7b8-16bb2\"\r\nexpires: Sat, 31 Jan 2026 08:44:49 GMT\r\ncache-control: max-age=43200, public, max-age=43200\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":93106,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32072), with CRLF line terminators","md5":"e39d7f174407886a84c437f14182e57a","sha1":"77e9eed704c96c3eb0180d35c6ba430b3f69a43a","sha256":"c1bcc5f2066e4476e6dbab0b5a9b9700b86f4d6ebeb2900d73ee97e53753d4f9","sha512":"3e153156a11b21a66500b592b574bc2e2ebddd41014216177c0c2d5e6b31f2d0a742f68899527dbae47309df2922f81544450f73e3e2981c88cd9ecae0c570e7","ssdeep":"1536:Z4mCgi8DyCuXXFiJ+L0kJQsJVPEKLQRZdC/RAfDknv+p0WzH/Io9Z7qABZnu0sFy:ZGsKXAI2p0WP9bDrstfa5","tlshash":"9393f8ddb2d1b06257bb21bd006f540ff236195e280d8850f129e8eabc74a4d9277fad","first_seen":"2023-03-07T01:15:08Z","last_seen":"2026-06-08T18:09:43.523332Z","times_seen":2154,"resource_available":true,"data":null}},"time_used":212,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":212,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/du202009/20200915162616_714.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.216Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/du202009/20200915162616_714.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb4-729e\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29342,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 304x360, components 3","md5":"b119a531f965884a8bd38803db3d37fa","sha1":"2846bb69a844ffef16d800d6ebbaa3b8ffdac569","sha256":"e244c8663fe47bf6caf619dffb1ee5bd6ec2c8420e0038aa5c257ddaecdf8866","sha512":"b0fce41b02f2a1cddd851df47772a983a30c3922f2fe4f28a86a941509e4f25a5e8cad1964ce7516f6f1030ea0f2d310e219d5d67d8be739c9c54279de5a13f7","ssdeep":"768:nZ3kDJK7LOZ1c8jNpHXsHDU1sYZ9PYTuUg+RZq+Dg:nZ3g0uZ1c8ppcAqYzPa6","tlshash":"b1d2e169fea0dc04e487bea54891843f2deea0e003b7a657dd4a3213bc886513d771f9","first_seen":"2026-01-30T20:16:10.41739Z","last_seen":"2026-01-30T20:45:12.966387Z","times_seen":2,"resource_available":false,"data":null}},"time_used":675,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":675,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kflaoge.net/images/icon-favorite.png","fqdn":"www.kflaoge.net","domain":"kflaoge.net","tld":"net"},"ip":{"addr":"69.30.246.243","port":443,"asn":32097,"as":"WII","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.kflaoge.net/","date":"2026-01-30T20:44:49.291Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kflaoge.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Dec 2025 06:08:01 GMT","end":"Sat, 28 Mar 2026 06:08:00 GMT"},"fingerprint":{"sha1":"30:97:FF:9A:86:E4:43:6C:F6:2E:93:77:3E:A8:61:5C:73:47:4D:84","sha256":"FE:AC:20:1A:C3:7C:AF:23:AA:C0:CE:41:C3:CB:3B:44:D8:63:FE:9D:27:2D:90:A8:5D:F4:FB:B8:D0:F3:56:23"}}},"request":{"raw":"GET /images/icon-favorite.png HTTP/1.1\r\nHost: www.kflaoge.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.kflaoge.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:49 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 26 May 2023 03:26:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"647026e6-ed4\"\r\nexpires: Sun, 01 Mar 2026 20:44:49 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3796,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced","md5":"538f2cae6da27fcc3feb66fd17679edb","sha1":"cec256c6bd2ed6cd84507f584a40a7051e1cc53e","sha256":"3b045bc6fd525a8ea6116a1bb3ee9e50b2282b8deeece5ded80503b05481d73a","sha512":"aaa01a2543c8b7b83e0952b91fdea1cd28edfbff7ca3fc2090ee18f14cd69f7c2490add22d171ca2da53eb08f8f007c2d20c9ee6e385600f861919ac37a2581f","ssdeep":"","tlshash":"f0713a53188a4d25eb3a867226aabca7cd5101cb2682de1edc1af56fbf187d44d410c7","first_seen":"2023-06-07T21:17:55Z","last_seen":"2026-06-08T14:30:20.243856Z","times_seen":695,"resource_available":false,"data":null}},"time_used":339,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":339,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"www.kflaoge.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-30T20:44:47.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:47 GMT\r\ncontent-type: text/html\r\nlast-modified: Fri, 04 Jul 2025 16:52:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"686806c9-90e2\"\r\nstrict-transport-security: max-age=63072000; includeSubdomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: public, max-age=31536000, immutable\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OWL Carousel","description":"OWL Carousel is an enabled jQuery plugin that lets you create responsive carousel sliders.","website":"https://owlcarousel2.github.io/OwlCarousel2/","common_platform_enumeration":"","icon":"OWL Carousel.png","categories":["JavaScript libraries"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}],"data":{"size":37090,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (354)","md5":"b59b98553c13d18aa71dc74b4ad157b7","sha1":"f0ab87a0d5ce81fde8f18adaaba8ca6deb6b4aab","sha256":"d82d4b8d2e691d037b6f1e1dfb46110e0fe94a5801526c2ffa7a47547d7fd1b2","sha512":"bf5aeba1d539c11f14e40815b4138db76b14f9ac46839a17598c31f5209ebf9ab614e98179e006875733065e135d45d129d1f9916536b1db9c38171eae1b906d","ssdeep":"384:ZI2hOn7hS6gD8RQS61iaUvjtggRMdlfTPbj2zOPuwuS2Da:ZId9SCOSoiaUvRghVPbj2zOPLuSOa","tlshash":"8ef2ed2258f5202e11b2e2856d657b2eefd2b247d94a6e0432ac5fdddfd3e46cc0314a","first_seen":"2026-01-30T20:16:10.435749Z","last_seen":"2026-01-30T20:45:12.990914Z","times_seen":2,"resource_available":false,"data":null}},"time_used":194,"timings":{"blocked":35,"dns":0,"connect":0,"send":0,"wait":159,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.carbontradebanks.com/uploads/image/tdaimages/01.jpg","fqdn":"www.carbontradebanks.com","domain":"carbontradebanks.com","tld":"com"},"ip":{"addr":"23.95.190.44","port":443,"asn":36352,"as":"AS-COLOCROSSING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.carbontradebanks.com/","date":"2026-01-30T20:44:48.204Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"carbontradebanks.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 13:54:12 GMT","end":"Wed, 25 Mar 2026 13:54:11 GMT"},"fingerprint":{"sha1":"3E:3C:B9:A3:33:18:4B:C9:FF:35:46:C0:15:C5:E5:82:B9:10:A3:42","sha256":"81:D2:46:85:8F:18:2F:8A:AC:AB:5A:B8:10:49:1A:B0:64:1F:BF:2C:2C:C1:63:CF:CE:69:4E:D7:EE:C4:5A:F5"}}},"request":{"raw":"GET /uploads/image/tdaimages/01.jpg HTTP/1.1\r\nHost: www.carbontradebanks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.carbontradebanks.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 20:44:48 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 03 Oct 2024 01:04:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fdedb4-df2b\"\r\nexpires: Sun, 01 Mar 2026 20:44:48 GMT\r\ncache-control: max-age=2592000, public, max-age=2592000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":57131,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 304x568, components 3","md5":"c7c74e561c31f5c850254afc5c95ca81","sha1":"11675e9f9bd4a9377490bbfd028986c004821ca7","sha256":"af915e8c49cd5d96ffd3a2b1c1de5449b6e62d98c94e8e07899937b042db2ae4","sha512":"60cbd7d8ad99772c7e211e92b97b76d870c02b959c1531d359ab4d33ab88fa8781538de0f5672a8baab9fde6a47f1acd0f7f78cb5cf6342db2f243dd98e80f77","ssdeep":"768:QD0katXmJRtFWBlXmhDHUpUCHMcZUowsn5W5DVBJvOsa6gi094q63AU9SOCCe5e9:sNpPtFWBcIHMJsg86gi0SlY2DFVRX","tlshash":"f2430258558f7f3ef4cfa6b413c9c2a8849ea4815a934d62cbd2a452307e9cbc633353","first_seen":"2026-01-30T20:16:10.447822Z","last_seen":"2026-01-30T20:45:12.992121Z","times_seen":2,"resource_available":false,"data":null}},"time_used":681,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":681,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}