{"report_id":"c917d7c1-8a2b-4134-af61-b2b92fc5d03e","version":6,"status":"done","tags":[],"date":"2026-04-06T12:59:13Z","url":{"schema":"http","addr":"batonexz.com","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"104.21.62.109","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"batonexz.com/#/home","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"title":"Batonex","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"batonexz.com","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"104.21.62.109","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-11T12:59:13Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-04-05T22:20:18.514512Z","alert_count":0,"request_count":2,"received_data":14032,"sent_data":934,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"batonexz.com","ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-09-28","domain_rank":0,"first_seen":"2026-04-06T12:59:17.064877Z","last_seen":"2026-04-06T12:59:17.064877Z","alert_count":129,"request_count":43,"received_data":13823269,"sent_data":17835,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"bin.bnbstatic.com","ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2018-03-27","domain_rank":229363,"first_seen":"2019-06-17T01:31:06Z","last_seen":"2026-04-05T08:18:29.147565Z","alert_count":0,"request_count":29,"received_data":106393,"sent_data":12569,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"api.batonexz.com","ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-09-28","domain_rank":0,"first_seen":"2026-04-06T12:59:17.070808Z","last_seen":"2026-04-06T12:59:17.070808Z","alert_count":42,"request_count":14,"received_data":124057,"sent_data":7582,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-04-05T22:16:34.770209Z","alert_count":0,"request_count":2,"received_data":73526,"sent_data":1122,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"batonexz.com/assets/CommonMethod.a85f8cc7.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"8c69f04ad7abf088ea5712f20ccf8f05","sha1":"a652b08cbf4499e778161f2970351b0b30e98ef6","sha256":"1b133808c2d78a3ab10be6fd7fde1e659f3c19ca15d4e5649bbc1a7b47dbc38e","sha512":"96483a6d8315031dd3a9e0111b83368a5396480126146c3b273878e538391ae910b32902e7198e406a825e427b54617786aa977fd45666384011f8c7ceb373ee","ssdeep":"","tlshash":"8b11c0d0e48dfb290368df65a2248033f25d59b51e288368c0f95d657b29449b79ea20","size":871,"data":"","first_seen":"2026-04-06T12:59:21.068919Z","last_seen":"2026-04-06T13:42:54.561721Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.vue_vue_type_style_index_0_lang.33eaf49b.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"1002b0620e3d2cb9f56062a9680c5420","sha1":"05258a99e56fa457552adf36256038569ac29c66","sha256":"34a8c0a3c304b74c644bcccc467edd9dbc385e43443a29d0b94626c425ca8f7a","sha512":"6fa71bde932d6efb8e8b0cc05b680bd68dc75dee7dcce9a8030d7465d34cee3c50553544e7c6d12f7be0106befd1943d9805d594211da812581ed1859732d725","ssdeep":"","tlshash":"79f09e69e95ddef604cf4c8436028e58e45e4eadab3a6b908aad003529d9009621c31c","size":509,"data":"","first_seen":"2026-04-06T12:59:21.090274Z","last_seen":"2026-04-06T13:42:54.570788Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/core.esm.b4c18107.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"fcf762aec063d693c66f21eca26e3091","sha1":"d83510b38c0c7a4e4627ceda1107b68cfd28cef2","sha256":"11e6ff1f95930e8379e15090080d15075acbd04b1ec637ffde99a2a886bf7b09","sha512":"3943ad0be62413edb66655e619ce6a93b35ad9c48bea4ace929536f9d9eb9a35c8d97e46ae1a610c0d745d3bc390755cee2dc93e746552e2c708b667177e6141","ssdeep":"768:/7kqnFvzaZ10VDhaQt30RSDCE4bHDjPTOJWmmB:/7kGq0VdJetB","tlshash":"5203fa8ab620786403cfa2b9e35f27091137505d710544acb859fffe5dbe92c12a7bb8","size":40515,"data":"","first_seen":"2025-06-07T20:38:42.079529Z","last_seen":"2026-04-06T13:42:54.579428Z","times_seen":59,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/en.4ee8d43d.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c5c4f9a9fdb7564ee2f091c02e608a39","sha1":"a5c99e5e970b01695d0c9a197d888f7686e37b5f","sha256":"fdb4dfee5278aed3b8b82764919db2d2fbe13becf8f682a8e0badb9618f5e9d8","sha512":"17f60db31e9f7c852f45c42ecf1867a846a10f2c3a2aa7bd54a03e28911dc0ec9bd9bb390fa9f1f8a41dde1022bb79ba68eb555ea792b9c9e53075846026ddd0","ssdeep":"768:U9tZcEw/od6rOOEAFsihMAMy2rAaAMF5oP6+6sPnKLDLqAIo7TTnpmwO6fpk7aOy:hposOOEelF2rdF5jsPKfTnujyWXjC8g","tlshash":"ca43298e7e1a94aa09f3937279ce1f5420fa05c18265841f4bfcc5fc53e2b5a6367728","size":56500,"data":"","first_seen":"2026-02-24T15:46:15.789674Z","last_seen":"2026-04-06T13:42:54.585219Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"326ba2a469ea9b0129cdbfcc76d47815","sha1":"f92d7a6363beaf4389c78f3275a017584ee9ef05","sha256":"cb1cd3781ad708ae518080f448ea0e4aa469937ce57ffbe167fe13b5fa84aede","sha512":"6695fb0a63aab7dc9f837bbd782feac576db49bb6967c7d79961e1bddd1a54512603bf1191ddb57411371f77fbae7d78dc743e5a3b61b069a83c01fd88cb846a","ssdeep":"","tlshash":"ca11abfe291a642d6303444e976b7801643650a9001a185277cc9a9dbb9ab7dd0cfb8c","size":1048,"data":"","first_seen":"2026-04-06T12:59:21.119586Z","last_seen":"2026-04-06T13:42:54.598762Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/en.4ee8d43d.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c5c4f9a9fdb7564ee2f091c02e608a39","sha1":"a5c99e5e970b01695d0c9a197d888f7686e37b5f","sha256":"fdb4dfee5278aed3b8b82764919db2d2fbe13becf8f682a8e0badb9618f5e9d8","sha512":"17f60db31e9f7c852f45c42ecf1867a846a10f2c3a2aa7bd54a03e28911dc0ec9bd9bb390fa9f1f8a41dde1022bb79ba68eb555ea792b9c9e53075846026ddd0","ssdeep":"768:U9tZcEw/od6rOOEAFsihMAMy2rAaAMF5oP6+6sPnKLDLqAIo7TTnpmwO6fpk7aOy:hposOOEelF2rdF5jsPKfTnujyWXjC8g","tlshash":"ca43298e7e1a94aa09f3937279ce1f5420fa05c18265841f4bfcc5fc53e2b5a6367728","size":56500,"data":"","first_seen":"2026-02-24T15:46:15.789674Z","last_seen":"2026-04-06T13:42:54.585219Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/charting_library/charting_library.min.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","size":10859,"data":"","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-04-06T13:54:46.115966Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/#/home","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"326ba2a469ea9b0129cdbfcc76d47815","sha1":"f92d7a6363beaf4389c78f3275a017584ee9ef05","sha256":"cb1cd3781ad708ae518080f448ea0e4aa469937ce57ffbe167fe13b5fa84aede","sha512":"6695fb0a63aab7dc9f837bbd782feac576db49bb6967c7d79961e1bddd1a54512603bf1191ddb57411371f77fbae7d78dc743e5a3b61b069a83c01fd88cb846a","ssdeep":"","tlshash":"ca11abfe291a642d6303444e976b7801643650a9001a185277cc9a9dbb9ab7dd0cfb8c","size":1048,"data":"","first_seen":"2026-04-06T12:59:21.119586Z","last_seen":"2026-04-06T13:42:54.598762Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/#/home","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"252ec39e0b25c7865069acfe0b21c48d","sha1":"e91392b40c3e46c5efaac3b90d8e7d7e54d7d737","sha256":"3ca854ffec90cecdc823f5b16d993f933c5e1f2a8320798ee8ca7a1665c697b4","sha512":"69e169c32b176ce4cd917194f0c31f08d8e0d4566133ce44a53d95fc1ca8f32fb84102f1f297dabedd717e685221fa22d31e8e031c63a3cb00636cc5bb99261c","ssdeep":"","tlshash":"21f04c9377a45a43a6771b2869ea17a1f180c73f4418ac0f74b56e481fb58204696caf","size":589,"data":"","first_seen":"2026-02-24T15:46:15.791694Z","last_seen":"2026-04-06T13:42:54.597715Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/charting_library/charting_library.min.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","size":10859,"data":"","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-04-06T13:54:46.115966Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.vue_vue_type_style_index_0_lang.33eaf49b.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"1002b0620e3d2cb9f56062a9680c5420","sha1":"05258a99e56fa457552adf36256038569ac29c66","sha256":"34a8c0a3c304b74c644bcccc467edd9dbc385e43443a29d0b94626c425ca8f7a","sha512":"6fa71bde932d6efb8e8b0cc05b680bd68dc75dee7dcce9a8030d7465d34cee3c50553544e7c6d12f7be0106befd1943d9805d594211da812581ed1859732d725","ssdeep":"","tlshash":"79f09e69e95ddef604cf4c8436028e58e45e4eadab3a6b908aad003529d9009621c31c","size":509,"data":"","first_seen":"2026-04-06T12:59:21.090274Z","last_seen":"2026-04-06T13:42:54.570788Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/core.esm.b4c18107.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"fcf762aec063d693c66f21eca26e3091","sha1":"d83510b38c0c7a4e4627ceda1107b68cfd28cef2","sha256":"11e6ff1f95930e8379e15090080d15075acbd04b1ec637ffde99a2a886bf7b09","sha512":"3943ad0be62413edb66655e619ce6a93b35ad9c48bea4ace929536f9d9eb9a35c8d97e46ae1a610c0d745d3bc390755cee2dc93e746552e2c708b667177e6141","ssdeep":"768:/7kqnFvzaZ10VDhaQt30RSDCE4bHDjPTOJWmmB:/7kGq0VdJetB","tlshash":"5203fa8ab620786403cfa2b9e35f27091137505d710544acb859fffe5dbe92c12a7bb8","size":40515,"data":"","first_seen":"2025-06-07T20:38:42.079529Z","last_seen":"2026-04-06T13:42:54.579428Z","times_seen":59,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/CommonMethod.a85f8cc7.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"8c69f04ad7abf088ea5712f20ccf8f05","sha1":"a652b08cbf4499e778161f2970351b0b30e98ef6","sha256":"1b133808c2d78a3ab10be6fd7fde1e659f3c19ca15d4e5649bbc1a7b47dbc38e","sha512":"96483a6d8315031dd3a9e0111b83368a5396480126146c3b273878e538391ae910b32902e7198e406a825e427b54617786aa977fd45666384011f8c7ceb373ee","ssdeep":"","tlshash":"8b11c0d0e48dfb290368df65a2248033f25d59b51e288368c0f95d657b29449b79ea20","size":871,"data":"","first_seen":"2026-04-06T12:59:21.068919Z","last_seen":"2026-04-06T13:42:54.561721Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.20a9dff7.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"88dac2a93492710bd85e91f63bacd206","sha1":"8e66f1a5d8d686a1a93dd850c016024349f1102e","sha256":"1f84fa92179069a20d93ef2364883cbb5414a04284514d8b190094eaafb824e9","sha512":"43e4cbf0b64bd6794bcfefbe4cd7eb6bf18df75cbe742e68cad33c71ce88a7a8fb762ff61dc2005ad4caff6d897c4bc2f65217c0e6748d0e980b60c0f3532f63","ssdeep":"384:4W6mxnhS+ueTrixFfzl0tOXUegZ3ccnRzvqQGy6RVpdVQ/IdqRa5:7xxnkATefLliUlgZ3jRWQkRVpvQ/IYa5","tlshash":"abc230b9f92a8978f5f78861115c3409220cffd3c1108653b5fc2a199b93dbc278e72a","size":27647,"data":"","first_seen":"2026-04-06T12:59:21.088475Z","last_seen":"2026-04-06T13:42:54.515784Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/#/","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"252ec39e0b25c7865069acfe0b21c48d","sha1":"e91392b40c3e46c5efaac3b90d8e7d7e54d7d737","sha256":"3ca854ffec90cecdc823f5b16d993f933c5e1f2a8320798ee8ca7a1665c697b4","sha512":"69e169c32b176ce4cd917194f0c31f08d8e0d4566133ce44a53d95fc1ca8f32fb84102f1f297dabedd717e685221fa22d31e8e031c63a3cb00636cc5bb99261c","ssdeep":"","tlshash":"21f04c9377a45a43a6771b2869ea17a1f180c73f4418ac0f74b56e481fb58204696caf","size":589,"data":"","first_seen":"2026-02-24T15:46:15.791694Z","last_seen":"2026-04-06T13:42:54.597715Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.20a9dff7.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"88dac2a93492710bd85e91f63bacd206","sha1":"8e66f1a5d8d686a1a93dd850c016024349f1102e","sha256":"1f84fa92179069a20d93ef2364883cbb5414a04284514d8b190094eaafb824e9","sha512":"43e4cbf0b64bd6794bcfefbe4cd7eb6bf18df75cbe742e68cad33c71ce88a7a8fb762ff61dc2005ad4caff6d897c4bc2f65217c0e6748d0e980b60c0f3532f63","ssdeep":"384:4W6mxnhS+ueTrixFfzl0tOXUegZ3ccnRzvqQGy6RVpdVQ/IdqRa5:7xxnkATefLliUlgZ3jRWQkRVpvQ/IYa5","tlshash":"abc230b9f92a8978f5f78861115c3409220cffd3c1108653b5fc2a199b93dbc278e72a","size":27647,"data":"","first_seen":"2026-04-06T12:59:21.088475Z","last_seen":"2026-04-06T13:42:54.515784Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"batonexz.com/assets/core.esm.b4c18107.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:55.477Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/core.esm.b4c18107.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:55 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=K8i0fnMeq9dxp7alGiQQPL4kDXnyic6f5ccBwlT8wmEti3Ca%2BfagrEVRYI69qqoxDpOuxYjV8LagtmIb4OBb6bHj%2BGRyA%2F26SBDPu4J%2Ff3ksGKp9KZmZ7UHjPyLPZ8w%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69c9fce1-9e43\"\r\ncf-ray: 9e80f780b849b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":40515,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (39692)","md5":"fcf762aec063d693c66f21eca26e3091","sha1":"d83510b38c0c7a4e4627ceda1107b68cfd28cef2","sha256":"11e6ff1f95930e8379e15090080d15075acbd04b1ec637ffde99a2a886bf7b09","sha512":"3943ad0be62413edb66655e619ce6a93b35ad9c48bea4ace929536f9d9eb9a35c8d97e46ae1a610c0d745d3bc390755cee2dc93e746552e2c708b667177e6141","ssdeep":"768:/7kqnFvzaZ10VDhaQt30RSDCE4bHDjPTOJWmmB:/7kGq0VdJetB","tlshash":"5203fa8ab620786403cfa2b9e35f27091137505d710544acb859fffe5dbe92c12a7bb8","first_seen":"2025-06-07T20:38:42.079529Z","last_seen":"2026-04-06T13:42:54.579428Z","times_seen":59,"resource_available":true,"data":null}},"time_used":728,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":493,"receive":235,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/CommonMethod.a85f8cc7.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:56.215Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/CommonMethod.a85f8cc7.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:56 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=J0YX0JpDnR73ToigZPyTrFzT8AXAFe7pfDa86dP4G%2FiRpmhTFqBH%2BYExqz5%2FyrTiL8JhUpUQ83aWbSgRvJcb%2BeXxEREqIX8iOl4rJCmrpu6KGOhoZmugc85SKKVf4GI%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-367\"\r\ncf-ray: 9e80f78558beb4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":871,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (870)","md5":"8c69f04ad7abf088ea5712f20ccf8f05","sha1":"a652b08cbf4499e778161f2970351b0b30e98ef6","sha256":"1b133808c2d78a3ab10be6fd7fde1e659f3c19ca15d4e5649bbc1a7b47dbc38e","sha512":"96483a6d8315031dd3a9e0111b83368a5396480126146c3b273878e538391ae910b32902e7198e406a825e427b54617786aa977fd45666384011f8c7ceb373ee","ssdeep":"","tlshash":"8b11c0d0e48dfb290368df65a2248033f25d59b51e288368c0f95d657b29449b79ea20","first_seen":"2026-04-06T12:59:21.068919Z","last_seen":"2026-04-06T13:42:54.561721Z","times_seen":2,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/charting_library/charting_library.min.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:58.548Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /charting_library/charting_library.min.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://batonexz.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:58 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=T59Q5HfoaaIs%2FdkinQFpCKA%2FNXIhFzmjWXxtRPp%2FcAax0MI05BFK6e%2BlNkNsoezWexdszm6N2U5FycjT44D5T%2BspU8tveSMGdUYbhWlVwWBOwNc5ZRj7FPfB7ZPzxYo%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:30 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 6\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fcde-2a6b\"\r\ncf-ray: 9e80f793e970b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10859,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10857), with CRLF line terminators","md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-04-06T13:54:46.115966Z","times_seen":627,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/platform/batonex/config.js?1775480339728","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.736Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /platform/batonex/config.js?1775480339728 HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:59 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YQNQlJZWo%2B9Uj6366aoEKknZcXpE6EZe8CHqaG0IpjD2l8KT8wgcZ0ZIGuC%2F6jNkkvwHYZ%2BoChXKru3IAcRG1kxwLUAUcd%2BM4Xix8F2Bxe2uGUhHVPfQyP7PjL7aLB0%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:31 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69c9fcdf-233\"\r\ncf-ray: 9e80f79b59c2b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":563,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"c59ae6a91d74382f52a10ebbdf6ec8f4","sha1":"bb7360caca421c3a8fa7ae04f754bc24eb7adeba","sha256":"d4d5febf0a9a76bdc502b81ebc1f9638f557837577ebcd8e6d79667a9391a6d3","sha512":"a4fd9a66761c05aba16eda6ab25604e1c3ba18c1a0c772e66ff75a98f97936ae100dcd4837fc3ff0d8bf7a60c41639838c828e870aa129bf880d446c54e3070d","ssdeep":"","tlshash":"2df04c5377645a4362771b2469d513a1f180c72f4418ac0f74b569481fb4810469286b","first_seen":"2026-02-24T15:46:15.760973Z","last_seen":"2026-04-06T13:42:54.518838Z","times_seen":6,"resource_available":false,"data":null}},"time_used":249,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":249,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/ETH.png?1775480340764","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/ETH.png?1775480340764 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1100\r\nage: 9035\r\ndate: Mon, 06 Apr 2026 10:28:26 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:30:28 GMT\r\netag: \"8658d5935ab59ee39d15c39226279d46\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: fcMwz_FrxevnVgNtIlzpA9y6vfUJIaPK\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: D0b_07s2EP58s7nSARtFKj-k5ABc1f0ShOaAb7MgHFBr4R3KvM1Mpg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1100,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"8658d5935ab59ee39d15c39226279d46","sha1":"27463866eb9fa6fe4b6d2bd2cd3d6fd88392cb43","sha256":"595a7c97f329934d40fa297958ccbb31d3cd101c2965b02a32a7c96fd49c9e11","sha512":"0179fd67c6baa7d46fba32986a8f6fe1586f2d9d3c57161bc33ecae609d6e608e8d9bfcdad0459bf41ba087843955a45ce5daca8ea223cb33138de6b4c8b13db","ssdeep":"","tlshash":"f211b6b64261eec7905c8a22da820b38ed2d9718f01c3f06ef73efb39225b045105d0a","first_seen":"2023-05-25T23:01:30Z","last_seen":"2026-04-06T17:19:52.872022Z","times_seen":1477,"resource_available":false,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/platform/batonex/favicon.ico?2.0.1774845153396","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:54.914Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /platform/batonex/favicon.ico?2.0.1774845153396 HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:55 GMT\r\ncontent-type: image/x-icon\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DKfV1YJVpJCHBmDPd%2FP2SI8Nc90DBHYM3UwVrhMooVXbh0ATUU1kGQFU%2FgIj5NgvN4TthlpGaNZCPoDIf7GmFbh3KVWnKbAlbTrz5kebsFbF0A68E4jni9nis%2FP9wdI%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:31 GMT\r\npriority: u=6,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69c9fcdf-243e\"\r\ncf-ray: 9e80f77d2810b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9278,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel","md5":"a701099be83c94d0d33822b301359d56","sha1":"103662981a7bcf8c526f4dc612bd274f82b28e88","sha256":"642eeded378dcdd8f1c4a7dec5bc7578b0a6d7bc8d6694f14832e3fbfc7cfa04","sha512":"01b8e1d0b1048239ae23e4f573951cfbbde203ef1e1312eda3ea2c951017ae1496c92ae457ff5a5fd503c5772cd79d6a948b26d9e7edaae9306bc07900bf0129","ssdeep":"192:ySGLtj7611s3s04c00006mQmYmR4oILgaui:yS+976Q33x00006TXeqLgaR","tlshash":"391299027680b8dec47d13bed022eb7d055bafd4721592a785f88de33654f4abda3281","first_seen":"2026-02-24T15:46:15.790707Z","last_seen":"2026-04-06T13:42:54.575209Z","times_seen":6,"resource_available":false,"data":null}},"time_used":479,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":478,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.468dfad9.css","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.775Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.468dfad9.css HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:59 GMT\r\ncontent-type: text/css\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zVu9Ve%2B3g94%2BzsYqQMrveVdUKBqDxMjZXvX0eIh3W3Zn111d7ImCz98AJPov%2FRB6ORidDNy4yIypQL51TP3bV3mcp0S1fb0d6S73wOfIetRY6II6Uyka90xeTsHRSk0%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 3\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-3a67\"\r\ncf-ray: 9e80f79b99cab4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14951,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (14950)","md5":"2f0a4c337e6e19ead978ca97cb6de8e6","sha1":"5d28863eeb338cfe15a8f86a7c6cb2e3cfdb655c","sha256":"468dfad9073af2ff84be019f57aa838f21a130ec44006aab3f75d9af2474b94f","sha512":"b199843e09cfcd0a95cf0c72aa88acbde4e8a507fd3e96b3d7d8dbd78d28d7f33803265f07326d25583d011e06fdc2f08fc0bcabd9e62f82285046abe82e358f","ssdeep":"96:GEE2Z4ATSDrDVqXMPGFrpwrYDg5O3PouNTZQ3zW8voSQStltd1kkDQ/U6DgKtA5w:hE2OrIXMukY1ouXQ3SWoSQStllbaUoQw","tlshash":"fa626158b55c2136b837e4096d98878e7002fb9b881b63dddc89a56ecdc39f32738341","first_seen":"2026-02-24T15:46:15.757394Z","last_seen":"2026-04-06T13:42:54.578355Z","times_seen":6,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/core.esm.b4c18107.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.848Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/core.esm.b4c18107.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:59 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=awshZo71dY5CBaGKDvsMw%2BqXS6ZdPwOhg%2BRnvWT%2BFjcx7JcRMTP8IL%2FPMAJsTnmGEK%2F3AQdBM5EnWkmfAh1OGyrooao%2Bh4v9dg%2FXX3Xut8lehvriLHw%2BOCm831s8fwA%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 3\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-9e43\"\r\ncf-ray: 9e80f79c09d5b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":40515,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (39692)","md5":"fcf762aec063d693c66f21eca26e3091","sha1":"d83510b38c0c7a4e4627ceda1107b68cfd28cef2","sha256":"11e6ff1f95930e8379e15090080d15075acbd04b1ec637ffde99a2a886bf7b09","sha512":"3943ad0be62413edb66655e619ce6a93b35ad9c48bea4ace929536f9d9eb9a35c8d97e46ae1a610c0d745d3bc390755cee2dc93e746552e2c708b667177e6141","ssdeep":"768:/7kqnFvzaZ10VDhaQt30RSDCE4bHDjPTOJWmmB:/7kGq0VdJetB","tlshash":"5203fa8ab620786403cfa2b9e35f27091137505d710544acb859fffe5dbe92c12a7bb8","first_seen":"2025-06-07T20:38:42.079529Z","last_seen":"2026-04-06T13:42:54.579428Z","times_seen":59,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/resource/images/common/home/bannerimg.png","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.746Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /resource/images/common/home/bannerimg.png HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 137583\r\nlast-modified: Mon, 30 Mar 2026 04:32:31 GMT\r\npriority: u=4,i=?0\r\netag: \"69c9fcdf-2196f\"\r\naccept-ranges: bytes\r\nage: 2\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HoStRSvQIOgfPnktWIeurnJc7NtpzFVEE4Hk6kmppaLmocWRiXvHI0hhkCKTs0AAxu3KihUc%2FrFqt1zxC1TKOzn2sbQQjgei0QefDrM%2FlOea6UOsgOIMZBZZ%2Fa%2B0qN8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f7a1aa14b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":137583,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1096 x 982, 8-bit colormap, non-interlaced","md5":"81bde0f76b8d8c587f93c31ca0118911","sha1":"d7696679f1f1278787cc6242af6a2e9a9af49ccd","sha256":"b3c59f9007ae88ab2eb802cf5b2f48e0c8fd71d96e02182af7975cf0ef29350d","sha512":"c7958c6ace2b3db1cea047c4373ff2722b43da16fc7993f748dc87d6f4ddfe0946f36c7cadd76ab9e25e7e4b316636d4a208dbb1f2623ead1441676336ca890f","ssdeep":"3072:o8xzSTATdbv2PiNXSQy48F60fv1h089EECVPYTUlki5rWx6M6vD:n8ATdD1SQy48gOv1hDCmUlFAx6MED","tlshash":"46d312d39adb5b94ce0788707341af093dae6a21fdea24514089da0f55ae3b48dc093f","first_seen":"2024-08-19T17:34:46.604947Z","last_seen":"2026-04-06T13:42:54.528405Z","times_seen":83,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":7,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/platform/batonex/config.js?1775480335417","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:55.424Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /platform/batonex/config.js?1775480335417 HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:55 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BWysJdEg5P7W7EqfMlJ0RcZQ2xFJRz1u0TXD%2BmJuR2zEnIksE77pAVvEGDDWMkjorQ3MmV55NBvk1uDV2k%2FZfy%2F6Z5ZMEejQd2BpuNIczkXqMSXS88spZBdFD7KhF5Y%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:31 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69c9fcdf-233\"\r\ncf-ray: 9e80f7806834b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":563,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"c59ae6a91d74382f52a10ebbdf6ec8f4","sha1":"bb7360caca421c3a8fa7ae04f754bc24eb7adeba","sha256":"d4d5febf0a9a76bdc502b81ebc1f9638f557837577ebcd8e6d79667a9391a6d3","sha512":"a4fd9a66761c05aba16eda6ab25604e1c3ba18c1a0c772e66ff75a98f97936ae100dcd4837fc3ff0d8bf7a60c41639838c828e870aa129bf880d446c54e3070d","ssdeep":"","tlshash":"2df04c5377645a4362771b2469d513a1f180c72f4418ac0f74b569481fb4810469286b","first_seen":"2026-02-24T15:46:15.760973Z","last_seen":"2026-04-06T13:42:54.518838Z","times_seen":6,"resource_available":false,"data":null}},"time_used":494,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":494,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/platform/batonex/logo_144.png?2.0.1774845153396","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.289Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /platform/batonex/logo_144.png?2.0.1774845153396 HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:59 GMT\r\ncontent-type: image/png\r\ncontent-length: 29421\r\nlast-modified: Mon, 30 Mar 2026 04:32:31 GMT\r\npriority: u=6,i=?0\r\netag: \"69c9fcdf-72ed\"\r\naccept-ranges: bytes\r\nage: 3\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4xS2ChuRA6YrhSleOG5GWb9Egnuihk5iC%2BdQJ2uNlRafcubGjOzjROsAq3n08v4UI423f9%2F9oexr1tNmnUnQciUYg4T6nimRF5iUbpYkBKxO46QBto8AcWa9QTDUAXI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f79899a2b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":29421,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 240 x 240, 8-bit/color RGB, non-interlaced","md5":"50bfb85d068992a942fb5c0043fddf2f","sha1":"9947b51e9e58ac86a3b83f75925736ecac96a63a","sha256":"3981b26c5e7f2a9b1cb7b49bc08cd5f7d58e166961b55e74e30d4a90a735397f","sha512":"ad86e476abdcd7331d0bbbae776888cf147a2fa7b8597595953999b8cfbae5175dbff51d52428f702b04899e5c22d0a0da1952d50f847db9dce6602b74b0fba7","ssdeep":"384:e6GkUwZBlb0t7SonMrSPZmngttUP/NHuFR:e6bUwlb0NnFw3NOP","tlshash":"c0d29f78ecb2b18048dd62354eda1c044da3968bf9901d4ef6dd4a0d2f667ed1cebb06","first_seen":"2026-02-24T15:46:15.784634Z","last_seen":"2026-04-06T13:42:54.584287Z","times_seen":6,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"api.batonexz.com/ws/d405bd41-d28b-4439-953f-f2cb70b9f87b","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.721Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /ws/d405bd41-d28b-4439-953f-f2cb70b9f87b HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://batonexz.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: AFauZY6a/YgYCRc2KpT9fg==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 \r\nDate: Mon, 06 Apr 2026 12:59:00 GMT\r\nConnection: upgrade\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://batonexz.com\r\nAccess-Control-Allow-Credentials: true\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: s/po7qWtBc6xmkf/bS8/+1Sq494=\r\nSec-WebSocket-Extensions: permessage-deflate\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Ud1XCAivhxdmNQv2fHeheCDtMpIP28WIlyvEg1OhBWnVjK8EVQppn%2BleGr3%2BihY3hmJ2Nhj%2Bd35iO%2FUlFCD42u4K%2Bw%2FIgas4qMKg9wVgH%2F35QN2uh2sifx5oH%2FoMbZunoGZp\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 9e80f79b6ac656ca-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=1504\u0026min_rtt=1050\u0026rtt_var=905\u0026sent=5\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=3116\u0026recv_bytes=1193\u0026delivery_rate=1785450\u0026cwnd=53\u0026unsent_bytes=0\u0026cid=0c8b57c215ee50b0\u0026ts=459\u0026x=0\"\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T18:11:47.329902Z","times_seen":13432264,"resource_available":true,"data":null}},"time_used":467,"timings":{"blocked":0,"dns":1,"connect":2,"send":0,"wait":444,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/LEVER.png?1775480340780","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.855Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/LEVER.png?1775480340780 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 690\r\nage: 8972\r\ndate: Mon, 06 Apr 2026 10:29:29 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:05:38 GMT\r\netag: \"4dcae47b7d96f2fbb2d801dfd47b5c1e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: oACzLePdzh2djr7fhCtdz_tZCjL_rtOA\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: SOhdjLTD4fZD95dX5E3VHIsDO9MR5fdO_HVSA_nXSjai-_7Bqs1-Jw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":690,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"4dcae47b7d96f2fbb2d801dfd47b5c1e","sha1":"29a20b523a063b8043f3b6e760496c8328c26e93","sha256":"695bf855827cc465acc27a004c5066ef17468d51d3afac72e8b6fd0a80b594cb","sha512":"79aa8c8acbaf7aa42b5cfb8e7ce99b7d21903e9c90fadcdd847ec80e16f9531a5c44446f5febc937053d13ba4a0dc6ada737ec0b229d8ece9346f6009c28c5cf","ssdeep":"","tlshash":"960144adc154a8b4f10e55216c9045c15931fee82888451e4564e5183396a10f6cf2df","first_seen":"2024-11-06T16:41:01.114719Z","last_seen":"2026-04-06T13:42:54.5175Z","times_seen":61,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/SUI.png?1775480340815","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.923Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/SUI.png?1775480340815 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 5321\r\nage: 9003\r\ndate: Mon, 06 Apr 2026 10:28:58 GMT\r\nlast-modified: Mon, 12 Aug 2024 11:52:52 GMT\r\netag: \"e243d03f847e04a3bcaf9238d2d79587\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: XxFuErkd.BHkkSHPdCwVHA1M42.o_n0C\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: CnBor5fT5XyEb9wSaw4qOuY9exQt9TSpMBLV3h2Hhq2kt2tbDwuh6A==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":5321,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"e243d03f847e04a3bcaf9238d2d79587","sha1":"badc33000a29d7c9677f95c4155a49609eee722b","sha256":"786590835f83f15e22d1d73a2147878b00625e91912ca04e8e0c6775c56dea4a","sha512":"798f634225925aa9e02d11634c010de038d70b0fa197ee014443ae9ef782f0a90a35b18a48ee4f417380acbc8e1c9df2ded77ddba10c0fa7d1784f28a3fbf013","ssdeep":"96:dmY//imlSbkkYlFPTQOqidjRGZRIMHp/k7uOrNiUyrcMUz:8Y/qmsIP0OqiUhHpMFrkc/z","tlshash":"c1b17d106cd0e052d9ebcf9ea6959e736072cd5a5c0ae24d3a08e3262f7f07c42e90e1","first_seen":"2025-04-01T12:16:01.548942Z","last_seen":"2026-04-06T13:46:06.464422Z","times_seen":107,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/notosans/v42/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7du3mnPyxVig.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.981Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/notosans/v42/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7du3mnPyxVig.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 35928\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 02 Apr 2026 08:25:54 GMT\r\nexpires: Fri, 02 Apr 2027 08:25:54 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 10 Sep 2025 16:23:36 GMT\r\ncontent-type: font/woff2\r\nage: 361987\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35928,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 35928, version 1.0","md5":"a317875aac104234bd7c39df8c501fbb","sha1":"870661970316f61acaab613e3209b9c09e2961f3","sha256":"065e2ab41209dcd60b1c88517c71a741803e3b0647059cb8ee7efff522ed1d40","sha512":"619f405a133ec8227767f08c598399a737d30cea6f76d3c065d2d97ce162bae040ced7fca13ed874d66a1f98472a3a07cf12bb146f432c8d4df24745488e13d0","ssdeep":"768:ybZHErhpxKts8YgN3IJe53ZnJREjqvYSVgXsdp+v0Gd:ybxErktsfgN3fXlicOzd","tlshash":"bef2f11c1a34eb974328047b840084b533ea6da7d63192b121a5fb44cca46fafecfdd6","first_seen":"2025-09-11T17:08:53.61315Z","last_seen":"2026-04-06T18:35:41.780066Z","times_seen":17872,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":120,"dns":1,"connect":23,"send":0,"wait":8,"receive":3,"ssl":92},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/TRX.png?1775480340772","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.825Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/TRX.png?1775480340772 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1315\r\nage: 9034\r\ndate: Mon, 06 Apr 2026 10:28:27 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:29:49 GMT\r\netag: \"79cbcbdfcc32e9ed14054fb9f306d76b\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: n6Q72N4CRo3VkIHj4mksUjkTB7ZCHWEN\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: CJNttLNoe0_-qJ0c83Ji5kl60DjFCgaBUhLcsqjTeiB_2vfBq7QLbQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1315,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"79cbcbdfcc32e9ed14054fb9f306d76b","sha1":"d0fe46ecc0664340d7027500d23cb6ee7b8de4f6","sha256":"ac3824adc2a37e25d5e63fe30c4de623c0985730450f3e12b58bcc58677d107d","sha512":"98eb00b634f4214e5d546aff3c51c6e889a337ed9e9a59d96b2dc189bb822352d01d2d53e02db22255c2c3f44836ce30c52c8e22199eca10c8e431d17560cedd","ssdeep":"","tlshash":"1f21f8b87b5d652cc209c890e8364aa77098f9ae0512041e3830ec3dfee098be2567c3","first_seen":"2023-05-04T03:36:11Z","last_seen":"2026-04-06T17:19:52.860009Z","times_seen":930,"resource_available":false,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/SUI.png?1775480340778","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.842Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/SUI.png?1775480340778 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 5321\r\nage: 9003\r\ndate: Mon, 06 Apr 2026 10:28:58 GMT\r\nlast-modified: Mon, 12 Aug 2024 11:52:52 GMT\r\netag: \"e243d03f847e04a3bcaf9238d2d79587\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: XxFuErkd.BHkkSHPdCwVHA1M42.o_n0C\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: -HLpP8Nqz93qRXJ2MTiqa7WvaoFmGLV-sxq-rIucFZ8WoXzBACIOzg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":5321,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"e243d03f847e04a3bcaf9238d2d79587","sha1":"badc33000a29d7c9677f95c4155a49609eee722b","sha256":"786590835f83f15e22d1d73a2147878b00625e91912ca04e8e0c6775c56dea4a","sha512":"798f634225925aa9e02d11634c010de038d70b0fa197ee014443ae9ef782f0a90a35b18a48ee4f417380acbc8e1c9df2ded77ddba10c0fa7d1784f28a3fbf013","ssdeep":"96:dmY//imlSbkkYlFPTQOqidjRGZRIMHp/k7uOrNiUyrcMUz:8Y/qmsIP0OqiUhHpMFrkc/z","tlshash":"c1b17d106cd0e052d9ebcf9ea6959e736072cd5a5c0ae24d3a08e3262f7f07c42e90e1","first_seen":"2025-04-01T12:16:01.548942Z","last_seen":"2026-04-06T13:46:06.464422Z","times_seen":107,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.b159ead8.css","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:51.970Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.b159ead8.css HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:52 GMT\r\ncontent-type: text/css\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OI3qPn6Vszu%2BCYdq%2FyOfcMJH56QvHsPsJYHj39T1h2dmTAmi3aT93QEYbKT%2FwbyHupkvtE4Oy2Tp4k5r9qFzaLphwWZt0LNAWvXCE3rzAJIZ5gRRYwzqTDVRhFiaKF0%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69c9fce1-8ab1e\"\r\ncf-ray: 9e80f76acf49b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":568094,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"913c4d9612ce108f1cb387ceabde8d76","sha1":"991b478fe9d76d2f79cd026cb6847b7d6428cb5f","sha256":"b159ead844975f25b3d119829a4f1c06ed25ac9ad4726633810c2814c166f744","sha512":"dc68da6fb003f70d9e6110d7335a5fae900c38bf9d7510b7f2d2908f712834402983dd73773fe5182372a740f4806b981c7f441f95127a1cd56f002bd9cb9c43","ssdeep":"6144:/SI0MGuhT7M8EcH7pTVkad36fFhsSIcO3jVMa/4uta78+B36JL7u1A+wMif/x0rv:b457hPoG","tlshash":"d6c4d755e753513f2e17e63d6bc5e9d8bb28dea1dd11cba1f640a00849c3af102a3d2b","first_seen":"2026-02-24T15:46:15.78571Z","last_seen":"2026-04-06T13:42:54.524829Z","times_seen":6,"resource_available":false,"data":null}},"time_used":1600,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":472,"receive":1128,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.b159ead8.css","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:58.554Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.b159ead8.css HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:58 GMT\r\ncontent-type: text/css\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pRfl67rPFmIb9HqWB160usJPEZv0gJPBFUcQiMsguIPm7jFTkMNDllQzIQE1K3tHA7PyDFDDcF5vrsjSvXd89Tl967xoBPXS5HPiw9GDGaoRYR99UDef4emI2DTa3do%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 6\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-8ab1e\"\r\ncf-ray: 9e80f793e972b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":568094,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"913c4d9612ce108f1cb387ceabde8d76","sha1":"991b478fe9d76d2f79cd026cb6847b7d6428cb5f","sha256":"b159ead844975f25b3d119829a4f1c06ed25ac9ad4726633810c2814c166f744","sha512":"dc68da6fb003f70d9e6110d7335a5fae900c38bf9d7510b7f2d2908f712834402983dd73773fe5182372a740f4806b981c7f441f95127a1cd56f002bd9cb9c43","ssdeep":"6144:/SI0MGuhT7M8EcH7pTVkad36fFhsSIcO3jVMa/4uta78+B36JL7u1A+wMif/x0rv:b457hPoG","tlshash":"d6c4d755e753513f2e17e63d6bc5e9d8bb28dea1dd11cba1f640a00849c3af102a3d2b","first_seen":"2026-02-24T15:46:15.78571Z","last_seen":"2026-04-06T13:42:54.524829Z","times_seen":6,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/XRP.png?1775480340765","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.777Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/XRP.png?1775480340765 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 953\r\nage: 9034\r\ndate: Mon, 06 Apr 2026 10:28:27 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:28:04 GMT\r\netag: \"92f9d15be55070c0f267e7b9609211da\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: QRK6OD8vVyictvg2hsHVXOfI_qefjrI8\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: V0MkHKwNiQmZ60jtOQfMcVw7EbUwDG3WAa5rafuw4vH6V02cZ0KTBg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":953,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"92f9d15be55070c0f267e7b9609211da","sha1":"d25e8395244487e169b16cb9508e434ea1ea61dd","sha256":"0e7d0965ce52308846834de79ad8305ea31542444a1ba54888843fc0214418f4","sha512":"d39d1087b689cf8f8d543a282dfc802e0e996ddbdb0553b7376958b0be63dd8f6230451cc3cd3df7d63748ab2165e8e82433c35d4131a7a2c137445ecfeee95b","ssdeep":"","tlshash":"e91188a14b659e01632bcd7fcb2a0142b20b22efb465d716a88f533d0795d871059f85","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-04-06T17:19:52.905445Z","times_seen":1368,"resource_available":false,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/BNB.png?1775480340804","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.899Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/BNB.png?1775480340804 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2560\r\nage: 9035\r\ndate: Mon, 06 Apr 2026 10:28:26 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:30:22 GMT\r\netag: \"cb84d3ca48a52e3df1025731a8bef4ec\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: VPOEiAD2nY8z9QSV1.wLDACbBRxBtI9s\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: f0VaM6LxR_G7IguQ-UqstcW8XetHKyYmOR2aW__nZ9hfrz9a4VnYbw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":2560,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit colormap, non-interlaced","md5":"cb84d3ca48a52e3df1025731a8bef4ec","sha1":"b059f2eb3aaf93145fd62647cb908c5532e06795","sha256":"0f4502d8c5254df1eb0eb8d124c7684b4f02e2a5004525d5bd7acd18a6ebb9fc","sha512":"d7cd5d9aface1bb4718d418d1f7108bbbde7e8e24e926ce4bd4a88f51c715759e55741de3d6b17e7e54dea502761817e093e768a337fc0030a259fe9b4338151","ssdeep":"","tlshash":"7e513a6a47020c971334d44f89fc3eea1d6edc1ad421e0aeee0197fa18101c18dbe343","first_seen":"2023-05-25T23:01:30Z","last_seen":"2026-04-06T17:19:52.861711Z","times_seen":1331,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.20a9dff7.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:55.474Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.20a9dff7.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:55 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0H2vMOMnIyMLi1l15thYuNZYNNVLA7Y67zO0h6J3E9%2FUmsJ6RMtqDwAMqOBVWHPAJRllwH41wCwqFoTK2%2FUnTXtawyalzrDU%2F4Gc%2BFUGWmaeJFfjkL%2F1897JmkKEcxM%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69c9fce1-6bff\"\r\ncf-ray: 9e80f780b842b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":27647,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (27646)","md5":"88dac2a93492710bd85e91f63bacd206","sha1":"8e66f1a5d8d686a1a93dd850c016024349f1102e","sha256":"1f84fa92179069a20d93ef2364883cbb5414a04284514d8b190094eaafb824e9","sha512":"43e4cbf0b64bd6794bcfefbe4cd7eb6bf18df75cbe742e68cad33c71ce88a7a8fb762ff61dc2005ad4caff6d897c4bc2f65217c0e6748d0e980b60c0f3532f63","ssdeep":"384:4W6mxnhS+ueTrixFfzl0tOXUegZ3ccnRzvqQGy6RVpdVQ/IdqRa5:7xxnkATefLliUlgZ3jRWQkRVpvQ/IYa5","tlshash":"abc230b9f92a8978f5f78861115c3409220cffd3c1108653b5fc2a199b93dbc278e72a","first_seen":"2026-04-06T12:59:21.088475Z","last_seen":"2026-04-06T13:42:54.515784Z","times_seen":2,"resource_available":true,"data":null}},"time_used":486,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":236,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.vue_vue_type_style_index_0_lang.33eaf49b.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:56.214Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.vue_vue_type_style_index_0_lang.33eaf49b.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:56 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fHMZzTdxgZKB9dIpVG5sQGRwmNusC4BJS3HfQ96rh1mrOBWP9ohz0I1odbTRC2KXWmnSdMABWgndlGP7Hk1MvwcBaq%2FkdXUhrov0CYG4M4XuSxSI%2BTMbzeatAJsYtXQ%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-1fd\"\r\ncf-ray: 9e80f78558bdb4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":509,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (508)","md5":"1002b0620e3d2cb9f56062a9680c5420","sha1":"05258a99e56fa457552adf36256038569ac29c66","sha256":"34a8c0a3c304b74c644bcccc467edd9dbc385e43443a29d0b94626c425ca8f7a","sha512":"6fa71bde932d6efb8e8b0cc05b680bd68dc75dee7dcce9a8030d7465d34cee3c50553544e7c6d12f7be0106befd1943d9805d594211da812581ed1859732d725","ssdeep":"","tlshash":"79f09e69e95ddef604cf4c8436028e58e45e4eadab3a6b908aad003529d9009621c31c","first_seen":"2026-04-06T12:59:21.090274Z","last_seen":"2026-04-06T13:42:54.570788Z","times_seen":2,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/USDC.png?1775480340812","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.922Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/USDC.png?1775480340812 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1390\r\nage: 9034\r\ndate: Mon, 06 Apr 2026 10:28:27 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:24:09 GMT\r\netag: \"4a0e5e239b274e9ec4a17ac738ab46bb\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: LMAigT3VdSbYQlD0RdT_CyzcgN1amCKd\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: tRGu-LUM-pefBwGCJ9j30gOmCQSIyfdiPVtJL0GN3lSOi6V58xhIkQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1390,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"4a0e5e239b274e9ec4a17ac738ab46bb","sha1":"ba18ca71aeb54d5d2b3f197fdf2bb9b7ecbacab7","sha256":"1cb080bee7d509d8ec9e8eebbd89fd838c36fab0438dedf3d178158fff34eabe","sha512":"0b88ef9224480bde1211e74ee3c32dcb9f36b7dd185c1b22871aa8dee3581c04944964c867bc7c83fcc81337a2a78f0d86d40b2501fcb7e85e17a2b07cd2b826","ssdeep":"","tlshash":"f4210be3c3569f41f71e9ee6c1d809e61c24b441b02127529f05ba15dd2cbc4a6e2fc7","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-04-06T13:42:54.576352Z","times_seen":238,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.batonexz.com/api/common/getCoinList","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:55.454Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"OPTIONS /api/common/getCoinList HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,satoken\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Mon, 06 Apr 2026 12:58:55 GMT\r\nserver: cloudflare\r\naccess-control-allow-origin: https://batonexz.com\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-credentials: true\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OhJs7vtIbNkou41SW6TJ47JkpMGI7Frybxscf0HvHdDqqSJoucIkDKFs69dJPi67lBJuUcnO%2BF424onLre%2FX0NMx5pJdb%2Fi4z%2BeZWeiLFzAbpK1qPG0BSddm5%2FZLweZ2L6lX\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f780d85135a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T18:11:47.329902Z","times_seen":13432264,"resource_available":true,"data":null}},"time_used":509,"timings":{"blocked":41,"dns":8,"connect":1,"send":0,"wait":424,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/resource/images/common/home/investimg.png?1775480340837","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.945Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /resource/images/common/home/investimg.png?1775480340837 HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:01 GMT\r\ncontent-type: image/png\r\ncontent-length: 77509\r\nlast-modified: Mon, 30 Mar 2026 04:32:31 GMT\r\npriority: u=4,i=?0\r\netag: \"69c9fcdf-12ec5\"\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9z3EQIM22Lx%2FYiU%2FQsenYal4UBWcIxt9YEwX%2FOjmXXFS9QHiigW4lLOgOksQ7e6YkosjwJCoBfkjbbWgLfhQK2X%2FrmB63bA8RQyhVphLQwPBFlhAb44mcjpLCqXFb%2F4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f7a2ca2ab4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":77509,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 960 x 960, 8-bit colormap, non-interlaced","md5":"9267ad6af6eaacc24390a8f33870ef76","sha1":"6541d731da0afcd1af6587e1b4c13bc5f1fe4d52","sha256":"aa6a9c639280f31ff25cd23af4f8cb4f12b731b972a4468ae251daad06117b11","sha512":"de85a8516252d1fc79ef5fd40ddc19ebd4e3f7ca0e933bb0ae91715748bde79cca7b3e650851d421dfa44e69236722340f17deacae4b2e83150aebfea98b9eaa","ssdeep":"1536:i4LGU8vqIyjyXqRwksQsohMUqQHwqO3X6GU0NSKqYN/o/rTTkPjtbG7jqs:i4LGWIyjyaGksQvLqQHwx97SKqC/o/rh","tlshash":"df73013bb7bc0646900205a14fb212e92b660cbbe647fc86fe711ea19936d2b5115acc","first_seen":"2024-08-19T17:34:46.66014Z","last_seen":"2026-04-06T13:42:54.592599Z","times_seen":75,"resource_available":false,"data":null}},"time_used":1006,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":510,"receive":496,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/charting_library/charting_library.min.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:51.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /charting_library/charting_library.min.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://batonexz.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:52 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0zgr6gCy%2BMwIiYAf%2BnYZkkOBB9hKAL%2Bikm1BBsAPuOXOdmEBoZXvwPunxE1HMYkSjbvbc3vOIWzPD3ASg0R2qcmH4Cp3WCUPRU30yL4h5tfG7O9ryPrJHT3v1om33RU%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:30 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69c9fcde-2a6b\"\r\ncf-ray: 9e80f76acf46b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10859,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10857), with CRLF line terminators","md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-04-06T13:54:46.115966Z","times_seen":627,"resource_available":true,"data":null}},"time_used":492,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":492,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/ALGO.png?1775480340775","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.838Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/ALGO.png?1775480340775 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 14387\r\nage: 9020\r\ndate: Mon, 06 Apr 2026 10:28:41 GMT\r\nlast-modified: Wed, 05 Feb 2025 09:12:33 GMT\r\netag: \"d28c209d8c737843e40caa035d5ed881\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: nG0hgtUzf8nhIR5nGv5WYWmJNtUAXF7U\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: 1JlhavvfjYxVBjl8GZpxRds1Ya7P9xkZrUa9zmQMt4JhKohMonSjfw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":14387,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"d28c209d8c737843e40caa035d5ed881","sha1":"3cbb497e0ab2689e1471187f43bd25451456c63b","sha256":"f2e9b1b10cb1644dd597d3572042bd358c73f0a24677510c7688e1d803460ba6","sha512":"0a7aeb42efa1578588a204a28575f1f48650cc9ba2cebb4f7f9440dd7ee527efd7242731e38bd88ed1947cacb31a4b2db6ee17defb8e163491f98cf9cb5a98cd","ssdeep":"384:VcuxZ17bGVKC9ZFYXq1SVm3V3sOwcxvP1XC3EqSsY9GTR0:uuxZ1bToC6UVm3VPz1Xl9f","tlshash":"2c52cf6cc6a22f93d36d9d0943fd7895734e0a06b2f16493898d9460d98603d3e9fae3","first_seen":"2025-09-07T17:41:22.057365Z","last_seen":"2026-04-06T13:42:54.582338Z","times_seen":23,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/en.4ee8d43d.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.684Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/en.4ee8d43d.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:00 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WTMYz1WcM%2BEgl0EfgZxHkAi4p3ZeJVKWboc%2F2metr4KaC%2BzQ9w9Y%2Bfu1%2BhIJcFiZpGm%2B5JxVdlefQbBTzJQlwMhBUSSozDYDowHHGbGFgcqkNzytYBO9lrldYB8Re0o%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 3\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-dcb4\"\r\ncf-ray: 9e80f7a14a0fb4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":56500,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (56499)","md5":"c5c4f9a9fdb7564ee2f091c02e608a39","sha1":"a5c99e5e970b01695d0c9a197d888f7686e37b5f","sha256":"fdb4dfee5278aed3b8b82764919db2d2fbe13becf8f682a8e0badb9618f5e9d8","sha512":"17f60db31e9f7c852f45c42ecf1867a846a10f2c3a2aa7bd54a03e28911dc0ec9bd9bb390fa9f1f8a41dde1022bb79ba68eb555ea792b9c9e53075846026ddd0","ssdeep":"768:U9tZcEw/od6rOOEAFsihMAMy2rAaAMF5oP6+6sPnKLDLqAIo7TTnpmwO6fpk7aOy:hposOOEelF2rdF5jsPKfTnujyWXjC8g","tlshash":"ca43298e7e1a94aa09f3937279ce1f5420fa05c18265841f4bfcc5fc53e2b5a6367728","first_seen":"2026-02-24T15:46:15.789674Z","last_seen":"2026-04-06T13:42:54.585219Z","times_seen":6,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/DOGE.png?1775480340771","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.812Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/DOGE.png?1775480340771 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2808\r\nage: 9028\r\ndate: Mon, 06 Apr 2026 10:28:33 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:23:16 GMT\r\netag: \"d55dd75446d505958e5210985b246bed\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: 4UYcBvJMh_uo_yVng7x5Db27Q1WSKk7g\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: RxE89ZQ4qV7ytkY7tpHdgy-yZuWglF0qJtqwsYp36t2A2ptokGzDtw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":2808,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"d55dd75446d505958e5210985b246bed","sha1":"df83b77aa8f8647f67f478e02c23f864a592f6d6","sha256":"8abf24f47bc3b4def59a6e6441a9f2dbb8d20c953c2c5373f219ab614a8f208d","sha512":"b65c5b9eca2ac0bef1dfdf742eb6ce365c3368650b37cd847ce12b955e683d3843cdeab9ec25beed31976e9b3ab571e59d4c66431e44345e7c57347a72bb758f","ssdeep":"","tlshash":"a6515c150736fcaac55846a3889f0970c8ee362be160571a7664cc17ff949494a17743","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-04-06T17:19:52.854973Z","times_seen":805,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/BTC.png?1775480337349","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:57.353Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/BTC.png?1775480337349 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1125\r\ndate: Mon, 06 Apr 2026 10:28:25 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:30:33 GMT\r\netag: \"75f196b437f9d87fdc198bc904c66c4c\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: KEU_GNz.cEPy87FxxsLaGlv3ekYfu6Aa\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fd72662d19f1605cb71a8fd4814daf52.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: OMxceKJqeIvNqwcyHkvHZvy1RJsDZfOY7dHeeqdWLmQPcZ4bvHq2ZA==\r\nage: 9033\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1125,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"75f196b437f9d87fdc198bc904c66c4c","sha1":"79b6e300761520f7ad41856878999dbc1fafc137","sha256":"f72b9a231c13012613217eec2bec27b923204e8c6cebc2b2ae51485d2b5d679d","sha512":"de4633885db64868d13a4a4699631acf0b00af0b2cda542c5be26b4dce3a1f8b4e071949280ddd9f3c59eb7a236d5d8d7003ffcb9633e0749fb62d46c780ac60","ssdeep":"","tlshash":"2421f9d3df09102ec4029c9cd4730c6bcc287a963410445b5f7c823fcc0b6496864b67","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-04-06T17:19:52.840504Z","times_seen":1463,"resource_available":false,"data":null}},"time_used":149,"timings":{"blocked":70,"dns":23,"connect":1,"send":0,"wait":8,"receive":1,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/#/home","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-06T12:58:57.926Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:58 GMT\r\ncontent-type: text/html\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\nvary: accept-encoding\r\npriority: u=1,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zdMO7nJXSx1gwycWsUuGHHVzxe6VmXIqFnu32DxrMnvVUZGsg3PBjWtOjeVVJj%2FS89sVB13h1QWGzXA%2BK0FB7adlCzcTb86jBgibbKuo8j9iBzl%2FKwqR3fGFfMlpLXU%3D\"}]}\r\ncf-ray: 9e80f78ff956b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3993,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2112), with CRLF, LF line terminators","md5":"6b850578402a9d406a963f16dca409bd","sha1":"1e21ea57aef235a93b76bda350c92b89e3c48198","sha256":"7f25acc13bbadb07bd9e19af099c0f3b4f0afca94068ca667e43587a75bce4a2","sha512":"7fa7c567de6c727a5a0fcb979f27365a6ebcb6e6bc88a7777109d7f7d499d6ef3acc7f43808cb0a26338abcf3044c5d0acba4dd5a8d363e0177c52737e4e4fbe","ssdeep":"","tlshash":"298173a70da4cc1d23b1452feee3b058da15104b5a559c72b5ec00eacff6fa884c7ba5","first_seen":"2026-04-06T12:59:21.099172Z","last_seen":"2026-04-06T13:42:54.572749Z","times_seen":2,"resource_available":true,"data":null}},"time_used":485,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":485,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/USDC.png?1775480340777","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.840Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/USDC.png?1775480340777 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1390\r\nage: 9034\r\ndate: Mon, 06 Apr 2026 10:28:27 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:24:09 GMT\r\netag: \"4a0e5e239b274e9ec4a17ac738ab46bb\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: LMAigT3VdSbYQlD0RdT_CyzcgN1amCKd\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: pjFi_dq3XGlFA3zTs6k-07IEFcDfN3C9STxhGeFKFhFMuLIAcH0Vlw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1390,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"4a0e5e239b274e9ec4a17ac738ab46bb","sha1":"ba18ca71aeb54d5d2b3f197fdf2bb9b7ecbacab7","sha256":"1cb080bee7d509d8ec9e8eebbd89fd838c36fab0438dedf3d178158fff34eabe","sha512":"0b88ef9224480bde1211e74ee3c32dcb9f36b7dd185c1b22871aa8dee3581c04944964c867bc7c83fcc81337a2a78f0d86d40b2501fcb7e85e17a2b07cd2b826","ssdeep":"","tlshash":"f4210be3c3569f41f71e9ee6c1d809e61c24b441b02127529f05ba15dd2cbc4a6e2fc7","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-04-06T13:42:54.576352Z","times_seen":238,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/CommonMethod.a85f8cc7.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:55.476Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/CommonMethod.a85f8cc7.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:55 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IJXEifTYqTiGOk2X2wh%2B4wImRHN9wDAhd%2BlHJs9P7%2F2V1Oox1rXzcY2RHI1RDmYWekxfn5tTLxxh7XnVxk2dQSO8wHF6VMC%2FzxqtSLs%2FdBsVKaxdXSMlDuH9aim%2FMnA%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69c9fce1-367\"\r\ncf-ray: 9e80f780b848b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":871,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (870)","md5":"8c69f04ad7abf088ea5712f20ccf8f05","sha1":"a652b08cbf4499e778161f2970351b0b30e98ef6","sha256":"1b133808c2d78a3ab10be6fd7fde1e659f3c19ca15d4e5649bbc1a7b47dbc38e","sha512":"96483a6d8315031dd3a9e0111b83368a5396480126146c3b273878e538391ae910b32902e7198e406a825e427b54617786aa977fd45666384011f8c7ceb373ee","ssdeep":"","tlshash":"8b11c0d0e48dfb290368df65a2248033f25d59b51e288368c0f95d657b29449b79ea20","first_seen":"2026-04-06T12:59:21.068919Z","last_seen":"2026-04-06T13:42:54.561721Z","times_seen":2,"resource_available":true,"data":null}},"time_used":511,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":510,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.vue_vue_type_style_index_0_lang.33eaf49b.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.785Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.vue_vue_type_style_index_0_lang.33eaf49b.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:59 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=33rTpzowwXz1F6UixGIEpKEeINFnpSpdcaU0GlPHKmRD%2Fh0AI5wTFa8Xktlc3ex76azlfQB5FytPlSeVVS5ecbMmFY8rC4Dp3sXY1uZMWclQ4Q7lPiOE4Obf7uVZRnY%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 3\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-1fd\"\r\ncf-ray: 9e80f79ba9ccb4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":509,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (508)","md5":"1002b0620e3d2cb9f56062a9680c5420","sha1":"05258a99e56fa457552adf36256038569ac29c66","sha256":"34a8c0a3c304b74c644bcccc467edd9dbc385e43443a29d0b94626c425ca8f7a","sha512":"6fa71bde932d6efb8e8b0cc05b680bd68dc75dee7dcce9a8030d7465d34cee3c50553544e7c6d12f7be0106befd1943d9805d594211da812581ed1859732d725","ssdeep":"","tlshash":"79f09e69e95ddef604cf4c8436028e58e45e4eadab3a6b908aad003529d9009621c31c","first_seen":"2026-04-06T12:59:21.090274Z","last_seen":"2026-04-06T13:42:54.570788Z","times_seen":2,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.batonexz.com/api/common/getAllSetting","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.205Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: \r\nSatoken: \r\nlanguage: en\r\nlang: en\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:00 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=urM2eMD59u6NlHz4PvLMbU6%2F%2FKmKRTbpYWvkKO7x9sWKP%2FZHywQ7YsWSUCLovCxq6reofJSukJLSNKqiT0pmgwBIxRB1NdP0gW0A%2BMaW%2BKjB3PsfventmVWfPa34ChHoFggu\"}]}\r\npriority: u=3,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://batonexz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f79e49ebb4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14601,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"88c0b966e237a9fe0e57d472106885a0","sha1":"b70d9584e349ea2e482345f220e247c7bb74779a","sha256":"0f8db45b3851fa3f7a4a9d8e5624f59e15bc427c5ae23fece530cec82bb5d2f8","sha512":"0d1a497ed940f00909f47b83462bab445cbc7b53cfc692d1ce049ffb7ebd752d9275f9206eb2e22c1e147e8c2de28036fe7e5f3af2483132bfeb3b8b4a286e43","ssdeep":"192:0NnwCXMd5vmSINVehP+alRBrG+cEmn2hty5ztZFXTTJ/BqPIZfgzWg42sEsMqL4L:VxSMQLP2O2VJQM2xoS0qoDp","tlshash":"f062751930ecccbddacb25c650e739967b9c36b7e5a4ec1ad0a7af1c89d6570480f10a","first_seen":"2026-04-06T12:59:21.100722Z","last_seen":"2026-04-06T13:42:54.550441Z","times_seen":2,"resource_available":false,"data":null}},"time_used":446,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":238,"receive":208,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/resource/images/common/home/Selection-c.png","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.939Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /resource/images/common/home/Selection-c.png HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 5088\r\nlast-modified: Mon, 30 Mar 2026 04:32:31 GMT\r\npriority: u=4,i=?0\r\netag: \"69c9fcdf-13e0\"\r\naccept-ranges: bytes\r\nage: 2\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JJxBDYkl6KpaEwMGVtOWsAqygLcA6LB4i0vG9B3PeAha9kBH3YXf%2FfyLpcU2zuWZPugx0edy0Ar5W1YYY8J%2FfG2Ln0ZZXAS1Jknbu%2BvyuEuXmN16BxBAgXjb4MYuMwg%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f7a2aa27b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5088,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 336 x 217, 8-bit colormap, non-interlaced","md5":"c1e0cfa54461cfe2003359fe589984dd","sha1":"fd82904639342a643be65d67f8a24c5d16e445b8","sha256":"69e6f084038fd9c2196d3349b6be282bb366b9b47c5dfdb07b917a4956eb79fb","sha512":"dc0feff751431464fb48d538ac9dca32103da30c468e078100a2625ea616500cb026aa75a54c1450ce37539a93dad647a82a91e7bacf2f7dad9b9f4e639e73fa","ssdeep":"96:Y3l7a2ASmDfKAw8m2QCvNLPHQt2sotAi4EbsxVcgqiT56IaZ/IvEKdRh7zUt2:YFyPmO1Q2Leilb6F56Z3KRI2","tlshash":"15a18f7b6ce42c16cf86e6d90f86130c2b94c06f01586e13541eaad90f708f8329e709","first_seen":"2024-08-19T17:34:46.646268Z","last_seen":"2026-04-06T13:42:54.518124Z","times_seen":76,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.batonexz.com/api/common/getAllSetting","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:55.911Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: \r\nSatoken: \r\nlang: en\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 06 Apr 2026 12:58:56 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://batonexz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=43%2FvYspRCix8ixNfXo%2BaoG19Q58rTd3%2BWVfyWyB49paCF5x9kHFf31Gs6S7jDW6FgTgDW1qbeloMtduR4PJ3SpZ4X%2BR6lu8GbcT3CyodU6kqoIE%2B0TkqlY8nox1lgFfy9cDw\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9e80f7836cfe35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14601,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"88c0b966e237a9fe0e57d472106885a0","sha1":"b70d9584e349ea2e482345f220e247c7bb74779a","sha256":"0f8db45b3851fa3f7a4a9d8e5624f59e15bc427c5ae23fece530cec82bb5d2f8","sha512":"0d1a497ed940f00909f47b83462bab445cbc7b53cfc692d1ce049ffb7ebd752d9275f9206eb2e22c1e147e8c2de28036fe7e5f3af2483132bfeb3b8b4a286e43","ssdeep":"192:0NnwCXMd5vmSINVehP+alRBrG+cEmn2hty5ztZFXTTJ/BqPIZfgzWg42sEsMqL4L:VxSMQLP2O2VJQM2xoS0qoDp","tlshash":"f062751930ecccbddacb25c650e739967b9c36b7e5a4ec1ad0a7af1c89d6570480f10a","first_seen":"2026-04-06T12:59:21.100722Z","last_seen":"2026-04-06T13:42:54.550441Z","times_seen":2,"resource_available":false,"data":null}},"time_used":240,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":240,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/core.esm.b4c18107.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:56.216Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/core.esm.b4c18107.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:56 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hxQMmGxCa5VNUVm0JbO%2BfXgNS3aUijdv%2F%2BgJTYunKRkx%2FOonHcAghoXuXH%2FJY7MWPbazIHpq47lVboWi4pnxr7F5C3frQ9OKw3Wa%2FFNRnmkb9gz9EKK8gRI5yNK7J44%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-9e43\"\r\ncf-ray: 9e80f78558bfb4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":40515,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (39692)","md5":"fcf762aec063d693c66f21eca26e3091","sha1":"d83510b38c0c7a4e4627ceda1107b68cfd28cef2","sha256":"11e6ff1f95930e8379e15090080d15075acbd04b1ec637ffde99a2a886bf7b09","sha512":"3943ad0be62413edb66655e619ce6a93b35ad9c48bea4ace929536f9d9eb9a35c8d97e46ae1a610c0d745d3bc390755cee2dc93e746552e2c708b667177e6141","ssdeep":"768:/7kqnFvzaZ10VDhaQt30RSDCE4bHDjPTOJWmmB:/7kGq0VdJetB","tlshash":"5203fa8ab620786403cfa2b9e35f27091137505d710544acb859fffe5dbe92c12a7bb8","first_seen":"2025-06-07T20:38:42.079529Z","last_seen":"2026-04-06T13:42:54.579428Z","times_seen":59,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/en.4ee8d43d.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:56.402Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/en.4ee8d43d.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:56 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lxCamXD9rdmsgA5IeekCTzr2vpDGUc2EOpAZMUydRxRYsU2SJiZb40Zi1EHQVgXFd17DdmjX1wnpyjE3dmqeiWotuuuWFnqJmWoH4jWpMsDIpgd3xdUP3k5IQHE2KEo%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69c9fce1-dcb4\"\r\ncf-ray: 9e80f78688c7b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":56500,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (56499)","md5":"c5c4f9a9fdb7564ee2f091c02e608a39","sha1":"a5c99e5e970b01695d0c9a197d888f7686e37b5f","sha256":"fdb4dfee5278aed3b8b82764919db2d2fbe13becf8f682a8e0badb9618f5e9d8","sha512":"17f60db31e9f7c852f45c42ecf1867a846a10f2c3a2aa7bd54a03e28911dc0ec9bd9bb390fa9f1f8a41dde1022bb79ba68eb555ea792b9c9e53075846026ddd0","ssdeep":"768:U9tZcEw/od6rOOEAFsihMAMy2rAaAMF5oP6+6sPnKLDLqAIo7TTnpmwO6fpk7aOy:hposOOEelF2rdF5jsPKfTnujyWXjC8g","tlshash":"ca43298e7e1a94aa09f3937279ce1f5420fa05c18265841f4bfcc5fc53e2b5a6367728","first_seen":"2026-02-24T15:46:15.789674Z","last_seen":"2026-04-06T13:42:54.585219Z","times_seen":6,"resource_available":true,"data":null}},"time_used":893,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":454,"receive":439,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/LTC.png?1775480340766","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.788Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/LTC.png?1775480340766 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 957\r\nage: 9007\r\ndate: Mon, 06 Apr 2026 10:28:54 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:30:31 GMT\r\netag: \"db1f13e46508474023e51dac9b924272\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: g_cdj3TjMVGw_vf5Heig0wXuWzyx3JC9\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: 95AvbrimomiqkWTr6TL6YRRJZ9Y5TZoSJBTutk9qWB3RxiRkZJfIHA==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":957,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 97 x 96, 8-bit colormap, non-interlaced","md5":"db1f13e46508474023e51dac9b924272","sha1":"976aea7b350c3d301a1bcc9350fa9b54bff9c8af","sha256":"50b7635088e72a9f004283284a8d63488fa127afa53e157393ca38bb55db1ff2","sha512":"08f80512e3edb58c31435f259a6d27f0ce55186594e94b3d5883245788edf4b503cae6f5361876896658070c159de7d4ea5457b0bdda11df6673f02e7c598181","ssdeep":"","tlshash":"c511b7abf5cceccad1b1414f118a4490e550cdb0147da74eea127e1bb839ab02d04f1a","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-04-06T13:46:06.450166Z","times_seen":434,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.batonexz.com/api/common/getAllSetting","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:55.456Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,satoken\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Mon, 06 Apr 2026 12:58:55 GMT\r\nserver: cloudflare\r\naccess-control-allow-origin: https://batonexz.com\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-credentials: true\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=k7y46aqwga94%2FsXq3WXm5VoLTbE%2FVS%2FOPtHN5Xu4wBcuDwLNNzw03KPidny0Ftwsr9SsAQ%2FHdBUqdxUPDAyjnjcz2N2I%2B0HR7f34mqmqPbouoozxhPHeFICpVApl1lm07y0n\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f780d85735a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T18:11:47.329902Z","times_seen":13432264,"resource_available":true,"data":null}},"time_used":495,"timings":{"blocked":39,"dns":7,"connect":1,"send":0,"wait":411,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/resource/images/common/home/Selection-b.png","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.936Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /resource/images/common/home/Selection-b.png HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 6865\r\nlast-modified: Mon, 30 Mar 2026 04:32:31 GMT\r\npriority: u=4,i=?0\r\netag: \"69c9fcdf-1ad1\"\r\naccept-ranges: bytes\r\nage: 2\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0jckBhdeqAFiRgZkDQTle%2FpZ9FGKhSWSp3uMEJC03HwvcEupouQBBUEyVNZEQIVpmbZAsA%2F8ITtZWOLLlFM80U3KwyJWFda4lRqZk1mhOPVjeb4lCIk1xZqbPqTGjng%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f7a2aa26b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6865,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 336 x 217, 8-bit colormap, non-interlaced","md5":"780fc0bba0436d2e007810a0ab31b50e","sha1":"a8aeac9b0b51d65393aaea9dbeacd6c281cfcc64","sha256":"4bd0177dc9f6cfbfab5d3df02ec5bb397b1410cdaaaea2dab787e54e30a3ff3c","sha512":"98a4061779796f16b22fb27dbab9fbd2e1c13ea3aac362e9db0f1062f2f5292f568ff1eaab9ac49528922ec842c35fa16e0a80a8bd4edef1f41b5c613290f926","ssdeep":"192:IjMvFrdgXf5H6fSoOOgZPAsps7URrsphkuD5HFlJiCCF0Soa:IIvxdgXfwoBaU1sbbD5HFlJaFCa","tlshash":"1be18dc00a1d9e9aa83f7cb5089606a24790752b62d66aa65dda86ea30f9c34244c397","first_seen":"2024-08-19T17:34:46.61216Z","last_seen":"2026-04-06T13:42:54.569754Z","times_seen":75,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.468dfad9.css","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:55.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.468dfad9.css HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:55 GMT\r\ncontent-type: text/css\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zycg%2FWTqKhqUrOLWwbK%2BcdHM9BTMgb3r9KhRKLTDEh1Wuj4uw6vRTbH1DllMVoQJSpDiUthe8g9U1kZNPmNV4rgtGbtJMv0GYxq0aZmQjtOMSl12G%2BsQk%2F3hjZ9t3Mc%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69c9fce1-3a67\"\r\ncf-ray: 9e80f780b841b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14951,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (14950)","md5":"2f0a4c337e6e19ead978ca97cb6de8e6","sha1":"5d28863eeb338cfe15a8f86a7c6cb2e3cfdb655c","sha256":"468dfad9073af2ff84be019f57aa838f21a130ec44006aab3f75d9af2474b94f","sha512":"b199843e09cfcd0a95cf0c72aa88acbde4e8a507fd3e96b3d7d8dbd78d28d7f33803265f07326d25583d011e06fdc2f08fc0bcabd9e62f82285046abe82e358f","ssdeep":"96:GEE2Z4ATSDrDVqXMPGFrpwrYDg5O3PouNTZQ3zW8voSQStltd1kkDQ/U6DgKtA5w:hE2OrIXMukY1ouXQ3SWoSQStllbaUoQw","tlshash":"fa626158b55c2136b837e4096d98878e7002fb9b881b63dddc89a56ecdc39f32738341","first_seen":"2026-02-24T15:46:15.757394Z","last_seen":"2026-04-06T13:42:54.578355Z","times_seen":6,"resource_available":false,"data":null}},"time_used":720,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":486,"receive":233,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.20a9dff7.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.20a9dff7.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:59 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SjE3CyC75tiADmHhKHVb1FILbHzT%2F4MrCKMsXF768UTBg1JoW2xHmUhhr8iT4IMNWwMAVAdRXbZQXSjx4H4AeD%2BaJphdng1EvmGOq844yL%2BXozL4iM%2B3ecxCA3xdwQE%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 4\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-6bff\"\r\ncf-ray: 9e80f79be9d0b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":27647,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (27646)","md5":"88dac2a93492710bd85e91f63bacd206","sha1":"8e66f1a5d8d686a1a93dd850c016024349f1102e","sha256":"1f84fa92179069a20d93ef2364883cbb5414a04284514d8b190094eaafb824e9","sha512":"43e4cbf0b64bd6794bcfefbe4cd7eb6bf18df75cbe742e68cad33c71ce88a7a8fb762ff61dc2005ad4caff6d897c4bc2f65217c0e6748d0e980b60c0f3532f63","ssdeep":"384:4W6mxnhS+ueTrixFfzl0tOXUegZ3ccnRzvqQGy6RVpdVQ/IdqRa5:7xxnkATefLliUlgZ3jRWQkRVpvQ/IYa5","tlshash":"abc230b9f92a8978f5f78861115c3409220cffd3c1108653b5fc2a199b93dbc278e72a","first_seen":"2026-04-06T12:59:21.088475Z","last_seen":"2026-04-06T13:42:54.515784Z","times_seen":2,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.batonexz.com/api/notice/list?key=ROLL_NOTICE","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:01.243Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"POST /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded\r\nAuthorization: \r\nSatoken: \r\nlanguage: en\r\nlang: en\r\nContent-Length: 11\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":11,"data":"ROLL_NOTICE"}},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:01 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=j7%2FnGu%2Bd5n59Xh7MrFAp9dzqdFfmcg7QatgGO5OZjALM%2FNGOjmVvgfCbYjtwKMOGT1LdWbUdNW2q%2Fo9%2BEd3mSp%2F08VGJ4lgHEBombsnqpmJEEGLMVszl8UD2Yq7LTwvMpaHa\"}]}\r\npriority: u=3,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://batonexz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f7a4ca66b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":589,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"9de308bd5c8d93e218e30c54136d2ad7","sha1":"dadd9bc944516f487ba78d22d49acd890018ac10","sha256":"ca920de2a15e6a2fe05bfb3b0856edbf5cfce8521d3f8efd6fcc4693accf7725","sha512":"1f3cfee25804ebe7146d0e4d1808d8419d611bb907040bb83c1722d1b35a2fd6e0dbea0cacdee3001735cd50c6a907f7fbd106fdfd8d0581edee3a8d4ca1f844","ssdeep":"","tlshash":"5df04c0e41389eb50d0651c325c9bdc9626f1247d6a4cc34565acf1c42e1abd1b1b508","first_seen":"2025-06-23T17:22:26.281404Z","last_seen":"2026-04-06T13:42:54.589887Z","times_seen":16,"resource_available":false,"data":null}},"time_used":224,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":224,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-06T12:58:51.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 06 Apr 2026 12:58:51 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=04ydIkALpwguup%2B6JzHuEQJ5wM6IbZgvZfUA0dfbDHZ8UzYJO6qEb3VUk0sdk%2F7fhI20QUVRwHthJeqIPtG9u5EuhfZ4g%2BgwgGQm2K81IxN%2BV1K3R8Z6xRnFE4C4Jn8%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9e80f766c8871a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3993,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2112), with CRLF, LF line terminators","md5":"6b850578402a9d406a963f16dca409bd","sha1":"1e21ea57aef235a93b76bda350c92b89e3c48198","sha256":"7f25acc13bbadb07bd9e19af099c0f3b4f0afca94068ca667e43587a75bce4a2","sha512":"7fa7c567de6c727a5a0fcb979f27365a6ebcb6e6bc88a7777109d7f7d499d6ef3acc7f43808cb0a26338abcf3044c5d0acba4dd5a8d363e0177c52737e4e4fbe","ssdeep":"","tlshash":"298173a70da4cc1d23b1452feee3b058da15104b5a559c72b5ec00eacff6fa884c7ba5","first_seen":"2026-04-06T12:59:21.099172Z","last_seen":"2026-04-06T13:42:54.572749Z","times_seen":2,"resource_available":true,"data":null}},"time_used":559,"timings":{"blocked":27,"dns":0,"connect":1,"send":0,"wait":505,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.batonexz.com/api/common/getCoinList","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:55.923Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"POST /api/common/getCoinList HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: \r\nSatoken: \r\nlang: en\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 06 Apr 2026 12:58:56 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://batonexz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MOyVxXjLFM1Erz58FDZlfVVumzL44tbud1%2F8C%2FagX1eh%2Fggxg9cR1QoDisyrY5QmGy2DeTOSvFU15uJ8Sf013yYhNpjhh4kaigEKl2anYySBqMEvPOUDoB406%2BwIuQ64fu6h\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9e80f7838d1e35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":41449,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"f9ef2194717d931794179ab08a863f2a","sha1":"a85cc308cae54ba9ef50c28a728537b7651f1e12","sha256":"df06143b563269c136de179bfd9b144723836149162f17f6ef50fb4a0a330c6c","sha512":"9fedbd5a52c536f3a8fbd70f3912687207e7edb436d302f7360f0a110a09184229de1ead565f4517ee44aaa628596ee70b83f65ab8c7ee627a8b1d6740be6363","ssdeep":"192:7XHoXTbuXVtXUHXchX7ZLXqKXL58XjvXb3GXm1XenfXqSXQhXk4Xw7XI2DXyHX2T:jPok6D1bT2FbcQPLzivzCn","tlshash":"ed1311955638a5bdc979d0c11fbf7d26509c32af9cc68d2bd2cd8d888ed0af1160af06","first_seen":"2026-04-06T12:59:21.104002Z","last_seen":"2026-04-06T12:59:21.104002Z","times_seen":1,"resource_available":false,"data":null}},"time_used":247,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":247,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/MANA.png?1775480340774","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.836Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/MANA.png?1775480340774 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2058\r\nage: 8972\r\ndate: Mon, 06 Apr 2026 10:29:29 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:27:40 GMT\r\netag: \"0bd79c57c9eb98241fd0da257c6a2e8c\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: mrrGKHPeh2x.hWKjgL4bTUy6KY_aIY_A\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: 0Cx7Cskd4qOg8YQ8L0KTVuK6RRWvgAwvYZNEcGJzBnl59iKnJlgdcA==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2058,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"0bd79c57c9eb98241fd0da257c6a2e8c","sha1":"5c1760c19050fddc094f80fe805bbf5f349fd7bd","sha256":"533b9c95ff81fabc8816ce7c2841e780f0bfd5f8cb7dda9b30618fd8f7f5612e","sha512":"6f84e1ea8bb96a53a3f600043e9452b2bc4626fe8f73e8756812db5ea658b8912d3c997909b73c11adbd1f309495d41012936b1c6ed504ff3c731579acf500dc","ssdeep":"","tlshash":"d4410ae26d21e41ce83c0119848bb704a5617ed790f05ceaee9534793533cd2ec19795","first_seen":"2024-10-18T13:48:19.672899Z","last_seen":"2026-04-06T13:42:54.516723Z","times_seen":16,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.20a9dff7.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.781Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.20a9dff7.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:59 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=s3dTLTEc0LFZLs%2F4Zy5TFMxjQY1uhrS%2F2YZYBFUfXESdgACuXvB%2BZUs91DVEwdeLrbsIaeYhXCSr5jFkhM3Rog%2FatVsnwaGHwVvYKsaGvGl3BWXSz0xXpbIXSdQ4Qgo%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 4\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-6bff\"\r\ncf-ray: 9e80f79ba9cbb4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":27647,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (27646)","md5":"88dac2a93492710bd85e91f63bacd206","sha1":"8e66f1a5d8d686a1a93dd850c016024349f1102e","sha256":"1f84fa92179069a20d93ef2364883cbb5414a04284514d8b190094eaafb824e9","sha512":"43e4cbf0b64bd6794bcfefbe4cd7eb6bf18df75cbe742e68cad33c71ce88a7a8fb762ff61dc2005ad4caff6d897c4bc2f65217c0e6748d0e980b60c0f3532f63","ssdeep":"384:4W6mxnhS+ueTrixFfzl0tOXUegZ3ccnRzvqQGy6RVpdVQ/IdqRa5:7xxnkATefLliUlgZ3jRWQkRVpvQ/IYa5","tlshash":"abc230b9f92a8978f5f78861115c3409220cffd3c1108653b5fc2a199b93dbc278e72a","first_seen":"2026-04-06T12:59:21.088475Z","last_seen":"2026-04-06T13:42:54.515784Z","times_seen":2,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/DOGE.png?1775480340807","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.906Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/DOGE.png?1775480340807 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2808\r\nage: 9028\r\ndate: Mon, 06 Apr 2026 10:28:33 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:23:16 GMT\r\netag: \"d55dd75446d505958e5210985b246bed\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: 4UYcBvJMh_uo_yVng7x5Db27Q1WSKk7g\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: rjFADy4p-rniTJKZIgUj3lcYJDKtrBSdwKjevyEY1eFBYABbp83wMA==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2808,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"d55dd75446d505958e5210985b246bed","sha1":"df83b77aa8f8647f67f478e02c23f864a592f6d6","sha256":"8abf24f47bc3b4def59a6e6441a9f2dbb8d20c953c2c5373f219ab614a8f208d","sha512":"b65c5b9eca2ac0bef1dfdf742eb6ce365c3368650b37cd847ce12b955e683d3843cdeab9ec25beed31976e9b3ab571e59d4c66431e44345e7c57347a72bb758f","ssdeep":"","tlshash":"a6515c150736fcaac55846a3889f0970c8ee362be160571a7664cc17ff949494a17743","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-04-06T17:19:52.854973Z","times_seen":805,"resource_available":false,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.batonexz.com/api/notice/list?key=ROLL_NOTICE","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:01.021Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"OPTIONS /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,language,satoken\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:01 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: https://batonexz.com\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-credentials: true\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ys7Mifx4lt%2BTnBMtJF2Lr4F2bItph9vGP7bP9IKdDwtPc2hw%2Bib24vxV1FTzQ1b%2BvQnN2c%2Fx2G2X7IsXy30T6l5IDQzCwtHZwIEvTqpfthyxMYq%2FKWZYZpamcv4SK9nlIy8a\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f7a36a36b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T18:11:47.329902Z","times_seen":13432264,"resource_available":true,"data":null}},"time_used":220,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":220,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.1235ac84.css","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.769Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.1235ac84.css HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:59 GMT\r\ncontent-type: text/css\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=I56GtyXouUVUsxHV64uVW1CQuZST3%2FtTCZgUw4v86aIP%2F5PGU3GPvib7UZgRBLJ4aG1mIBkac5YujdI2KLcoc7k%2FPLzKxVe50ms88HraVvYU%2B4Abmday6JX%2FLWJfl6A%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 3\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-d5\"\r\ncf-ray: 9e80f79b99c9b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":213,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"19c6ce17850bcb6c7d73184525abb7ae","sha1":"12fcd94f7c9286f6901b5227bef0f0d5b06ba30e","sha256":"1235ac84f788337a372ed349a9c02ee66d69f6089e3e6b2f8d1e0ffae3bb18f7","sha512":"50b7a3903b7c2a61e20c60106894349c98050a7dc1717acd56ddae1cfd041b467d5dceeb7f93e3e467fabc4436816eea5d2967c60df9f0384021be072eeb2dde","ssdeep":"","tlshash":"73d0220073de321b1c8698fcc32b5a1bee6b5d868c00dfb8692db02a05c628c331087b","first_seen":"2025-08-07T21:15:59.972231Z","last_seen":"2026-04-06T13:42:54.552312Z","times_seen":12,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.vue_vue_type_style_index_0_lang.33eaf49b.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.844Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.vue_vue_type_style_index_0_lang.33eaf49b.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:59 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eCAb3Q6KWlnoFUTouzZIIGOmSPc%2BU%2FGnLlw%2BbmOzWPFJrw0pqfftON35fWlDigb9Tp5V7kF62fA3MRyL3APBfvyxlEigtI3z3TANy7QUvXwqaTEYsI%2FGHpkDPfbyZVg%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 3\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-1fd\"\r\ncf-ray: 9e80f79c09d3b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":509,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (508)","md5":"1002b0620e3d2cb9f56062a9680c5420","sha1":"05258a99e56fa457552adf36256038569ac29c66","sha256":"34a8c0a3c304b74c644bcccc467edd9dbc385e43443a29d0b94626c425ca8f7a","sha512":"6fa71bde932d6efb8e8b0cc05b680bd68dc75dee7dcce9a8030d7465d34cee3c50553544e7c6d12f7be0106befd1943d9805d594211da812581ed1859732d725","ssdeep":"","tlshash":"79f09e69e95ddef604cf4c8436028e58e45e4eadab3a6b908aad003529d9009621c31c","first_seen":"2026-04-06T12:59:21.090274Z","last_seen":"2026-04-06T13:42:54.570788Z","times_seen":2,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.batonexz.com/api/common/getCoinList","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.197Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"POST /api/common/getCoinList HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: \r\nSatoken: \r\nlanguage: en\r\nlang: en\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:00 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TOTNQSFlPcYx4utt2hmRGaWMNpp6IyOfIYy3TgAXsRgD%2F9RhSZZlwX9tlHkx6KNYBtnLLoKoSZlIUHS2th19YvUphCk6mJwaxKvUcKh0jHauEb0K1lBfcOc0MBRfQ94kaGA7\"}]}\r\npriority: u=3,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://batonexz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f79e39eab4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":41449,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"effaf343ed57e0c126f58e226691ab6d","sha1":"7665af213b4695e68893bc7a204a82db5d313833","sha256":"1b8ebac1b88bdae39c21b7ada812d3c52917ba079a28e00c69e73b80d0fb81ce","sha512":"8c20b35c47ce8b86c1ea3c2f704a6646d2c11e5b5d772e2502e2692688972507965d91d48ccfdd4175a6f70c3ba94cd016ba5ffcbb082e4a507ea082f4a2d6d1","ssdeep":"192:7XH3XTOruXVbXUHXchX7ZLXqKXL58XjvXb3GXm1XenfXqSXQhXkHXw7XI2DXyVXQ:+yPoknzhufUotW62rLIEJMdnn","tlshash":"ac1311555638a5bdc979d0c11fbf7d26509c32af9cc68d2bd2cd8d888ed0af1160af06","first_seen":"2026-04-06T12:59:21.106876Z","last_seen":"2026-04-06T12:59:21.106876Z","times_seen":1,"resource_available":false,"data":null}},"time_used":449,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":244,"receive":205,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/BNB.png?1775480340768","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.796Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/BNB.png?1775480340768 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2560\r\nage: 9035\r\ndate: Mon, 06 Apr 2026 10:28:26 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:30:22 GMT\r\netag: \"cb84d3ca48a52e3df1025731a8bef4ec\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: VPOEiAD2nY8z9QSV1.wLDACbBRxBtI9s\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: _0A1CvQMTaDg9mKBH3vkLiHOL5_jvtuHo94GxSqZXBOaVouA90eWtg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2560,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit colormap, non-interlaced","md5":"cb84d3ca48a52e3df1025731a8bef4ec","sha1":"b059f2eb3aaf93145fd62647cb908c5532e06795","sha256":"0f4502d8c5254df1eb0eb8d124c7684b4f02e2a5004525d5bd7acd18a6ebb9fc","sha512":"d7cd5d9aface1bb4718d418d1f7108bbbde7e8e24e926ce4bd4a88f51c715759e55741de3d6b17e7e54dea502761817e093e768a337fc0030a259fe9b4338151","ssdeep":"","tlshash":"7e513a6a47020c971334d44f89fc3eea1d6edc1ad421e0aeee0197fa18101c18dbe343","first_seen":"2023-05-25T23:01:30Z","last_seen":"2026-04-06T17:19:52.861711Z","times_seen":1331,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"wss","addr":"api.batonexz.com/ws/291c5585-538b-43de-8492-a6ae3587637f","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:55.461Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /ws/291c5585-538b-43de-8492-a6ae3587637f HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://batonexz.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: pkN6hzeJgjkKA2ip5NyUvg==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 \r\nDate: Mon, 06 Apr 2026 12:58:55 GMT\r\nConnection: upgrade\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://batonexz.com\r\nAccess-Control-Allow-Credentials: true\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: AKppZVVnz71SPCUoMDeXdRWuTgE=\r\nSec-WebSocket-Extensions: permessage-deflate\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=VG5Hw%2Fkvn20zVIXCUJHYGcuBYwNKzK3GPi5W3wUueiAnzQWMYXQacISJVu05s1CE3JzYxHx8P6HEn3aAuHpxYCoeJsoY6mFiIHVCdONVbLwCywoPj2%2FJRTkMurZB5LyQ9INO\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 9e80f780fd804c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=515\u0026min_rtt=429\u0026rtt_var=221\u0026sent=5\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=3114\u0026recv_bytes=1193\u0026delivery_rate=6259365\u0026cwnd=53\u0026unsent_bytes=0\u0026cid=764841a6036178fd\u0026ts=450\u0026x=0\"\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T18:11:47.329902Z","times_seen":13432264,"resource_available":true,"data":null}},"time_used":530,"timings":{"blocked":2,"dns":42,"connect":33,"send":0,"wait":439,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/core.esm.b4c18107.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.788Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/core.esm.b4c18107.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:59 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KdipofytlWAM3%2FWRrKcgGaN7vXb6iy9%2FGs3HxHSmlri1tHz%2BgPrfZ4TJyeqxw0iCdcWJmOjuCeFY8UznQqA5Bg8hz%2F6Ba5%2BEnAwDaUBFSDqoSLs%2FEH%2B7fPgrhXRls2s%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 3\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-9e43\"\r\ncf-ray: 9e80f79ba9ceb4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":40515,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (39692)","md5":"fcf762aec063d693c66f21eca26e3091","sha1":"d83510b38c0c7a4e4627ceda1107b68cfd28cef2","sha256":"11e6ff1f95930e8379e15090080d15075acbd04b1ec637ffde99a2a886bf7b09","sha512":"3943ad0be62413edb66655e619ce6a93b35ad9c48bea4ace929536f9d9eb9a35c8d97e46ae1a610c0d745d3bc390755cee2dc93e746552e2c708b667177e6141","ssdeep":"768:/7kqnFvzaZ10VDhaQt30RSDCE4bHDjPTOJWmmB:/7kGq0VdJetB","tlshash":"5203fa8ab620786403cfa2b9e35f27091137505d710544acb859fffe5dbe92c12a7bb8","first_seen":"2025-06-07T20:38:42.079529Z","last_seen":"2026-04-06T13:42:54.579428Z","times_seen":59,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.batonexz.com/api/option/rules/list?key=EXCHANGE_INTRODUCTION","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:01.020Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"OPTIONS /api/option/rules/list?key=EXCHANGE_INTRODUCTION HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,content-type,lang,language,satoken\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:01 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: https://batonexz.com\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-credentials: true\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XNKCOmt%2Bsb6wI0z3PrDcTbQ8EfcUBs7SwAg2x3QKkE%2FZwU%2FDwq%2FNOiCqjfg1MVmAYiK5PMx%2BheRc9hWvgJurMGOZ896Kx7CPRwCPoDKfvR6KHJb4cZL%2BpssbBx1Wd0K1hzqE\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f7a36a35b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T18:11:47.329902Z","times_seen":13432264,"resource_available":true,"data":null}},"time_used":217,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":217,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.a98dad29.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:51.968Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.a98dad29.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:52 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=n%2FPWuqQuj1%2FS9pQfUW4QbN6Updni6TuevbOg605pxUv%2FcdTVcMiMIJtNxYmE2TUa2K9dbdJ6032lTQ%2B3QTU2NZptRG5k%2FGfd%2F0%2FeiciIEwetpJLgJq6xilFHvkQUa9E%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69c9fce1-594dd7\"\r\ncf-ray: 9e80f76acf47b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5852631,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (17611)","md5":"8a82accd3622d34c56cfdab1ed9b5593","sha1":"d506e563a69bcadfa4d9c1703dc4a29dfddd5631","sha256":"1ca8bf1ce4269a1e3168adea81dd003e5ed6097f2c3d2e231783f91a77e5d5da","sha512":"34101c81eac21fad41bc445884bdfd25e73bbf1eba8ea88086a231cc478786b77b8fbfd6953b149c08b13612cdf8744777515851e038ab0697f908e5316a560c","ssdeep":"24576:jBUItzaUuGYEpo6uiG9WO6n5DzVRUrEFFwLzJKV49zD0zrRPRATXpKZ:jBUItzaUuGYEpo6uX9WO65XVRUrcFwLe","tlshash":"2f255b943495b46293fb48d9907b0402b32d1b59b409d4f0f1be8e6d3a6bc50a2bbf7d","first_seen":"2026-02-24T15:46:15.766162Z","last_seen":"2026-04-06T13:42:54.580478Z","times_seen":6,"resource_available":false,"data":null}},"time_used":2329,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":480,"receive":1849,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.batonexz.com/api/common/getAllSetting","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.764Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,language,satoken\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:00 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: https://batonexz.com\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-credentials: true\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GsErzGYbT2Zb691GlXHBfQUQOjuWvioru4SheLbpFzl2q9oRxG0UpRb77%2BkMEDcm862n6%2B7VJUMJRK9ErIwsHyYT29ZX2tfsg66DZnAj%2FkgxBPQzUgdk0HJJSb4SQqsWuBWp\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f79b89c7b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T18:11:47.329902Z","times_seen":13432264,"resource_available":true,"data":null}},"time_used":438,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":438,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/LEVER.png?1775480340815","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.928Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/LEVER.png?1775480340815 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 690\r\nage: 8972\r\ndate: Mon, 06 Apr 2026 10:29:29 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:05:38 GMT\r\netag: \"4dcae47b7d96f2fbb2d801dfd47b5c1e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: oACzLePdzh2djr7fhCtdz_tZCjL_rtOA\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: AHNyVUuSZyft0VNemPFesdCn3R_dnkaUUGs2rDVc9iwY8aUCXFDDsQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":690,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"4dcae47b7d96f2fbb2d801dfd47b5c1e","sha1":"29a20b523a063b8043f3b6e760496c8328c26e93","sha256":"695bf855827cc465acc27a004c5066ef17468d51d3afac72e8b6fd0a80b594cb","sha512":"79aa8c8acbaf7aa42b5cfb8e7ce99b7d21903e9c90fadcdd847ec80e16f9531a5c44446f5febc937053d13ba4a0dc6ada737ec0b229d8ece9346f6009c28c5cf","ssdeep":"","tlshash":"960144adc154a8b4f10e55216c9045c15931fee82888451e4564e5183396a10f6cf2df","first_seen":"2024-11-06T16:41:01.114719Z","last_seen":"2026-04-06T13:42:54.5175Z","times_seen":61,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/CommonMethod.a85f8cc7.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.846Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/CommonMethod.a85f8cc7.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:59 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8fvs%2BmbzlTYRiuHiiJa7YFjpUaUPp5c8Y7CT%2BiaUazbJM9UBYggQWAqHV25YWg5C6w8qZZZF8jgL%2FjfY7xXsH4Z%2Bz6oX3ms%2FbOYRvPVG4la%2BdlQIQfuY9gZWhQFM418%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 3\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-367\"\r\ncf-ray: 9e80f79c09d4b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":871,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (870)","md5":"8c69f04ad7abf088ea5712f20ccf8f05","sha1":"a652b08cbf4499e778161f2970351b0b30e98ef6","sha256":"1b133808c2d78a3ab10be6fd7fde1e659f3c19ca15d4e5649bbc1a7b47dbc38e","sha512":"96483a6d8315031dd3a9e0111b83368a5396480126146c3b273878e538391ae910b32902e7198e406a825e427b54617786aa977fd45666384011f8c7ceb373ee","ssdeep":"","tlshash":"8b11c0d0e48dfb290368df65a2248033f25d59b51e288368c0f95d657b29449b79ea20","first_seen":"2026-04-06T12:59:21.068919Z","last_seen":"2026-04-06T13:42:54.561721Z","times_seen":2,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/MANA.png?1775480340809","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.917Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/MANA.png?1775480340809 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2058\r\nage: 8972\r\ndate: Mon, 06 Apr 2026 10:29:29 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:27:40 GMT\r\netag: \"0bd79c57c9eb98241fd0da257c6a2e8c\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: mrrGKHPeh2x.hWKjgL4bTUy6KY_aIY_A\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: gADO2aExXd-HfkQDxCpZntisBNy3PUAGv1b8L4_gG-Stae05AZy8Gw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2058,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"0bd79c57c9eb98241fd0da257c6a2e8c","sha1":"5c1760c19050fddc094f80fe805bbf5f349fd7bd","sha256":"533b9c95ff81fabc8816ce7c2841e780f0bfd5f8cb7dda9b30618fd8f7f5612e","sha512":"6f84e1ea8bb96a53a3f600043e9452b2bc4626fe8f73e8756812db5ea658b8912d3c997909b73c11adbd1f309495d41012936b1c6ed504ff3c731579acf500dc","ssdeep":"","tlshash":"d4410ae26d21e41ce83c0119848bb704a5617ed790f05ceaee9534793533cd2ec19795","first_seen":"2024-10-18T13:48:19.672899Z","last_seen":"2026-04-06T13:42:54.516723Z","times_seen":16,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/resource/images/common/home/downloadimg.png?1775480340832","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.944Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /resource/images/common/home/downloadimg.png?1775480340832 HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:01 GMT\r\ncontent-type: image/png\r\ncontent-length: 143002\r\nlast-modified: Mon, 30 Mar 2026 04:32:31 GMT\r\npriority: u=4,i=?0\r\netag: \"69c9fcdf-22e9a\"\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xtUuBaqjcDYnxLvECS8VFZmAZLxgDCkhXSYu5AIagmryO1lZfdhqlM3zCIQJqWLRBnpp%2B0OlNwWpFCCIfeO4KUuUEBYSET3ooSdBc7ckxU6YAzN%2FX7uAp66n2gqiWAQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f7a2ba29b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":143002,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1368 x 972, 8-bit colormap, non-interlaced","md5":"4e59e1224e1c27738197d0b1c328c15c","sha1":"84f186b75c956ae9b5ff26b8d0e2b32ff0492e98","sha256":"1811704cad965db80f02ccca4a90b177600997e3c26128f4fd5a15e0dace500c","sha512":"7873a8c641cef1cc30fd926b9f99f558de23adca684a4c61c6d439b791a3e35a539d5c4da8970957d0fc1d1aea6a11939685779a41990f121c72a9426d085774","ssdeep":"3072:ruhlDWNa+r4srR2T+P9OkmGgv8uN2u7LM7xJNVewRLUhJJg8:hBrjAXEw5uJNVshJJT","tlshash":"6ed31283113a1650cdfefefb4a158f47861629b4c81ca35e5ebb29caa155f03f3a1603","first_seen":"2024-08-19T17:34:46.648366Z","last_seen":"2026-04-06T13:42:54.522176Z","times_seen":75,"resource_available":false,"data":null}},"time_used":1230,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":498,"receive":732,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.batonexz.com/api/option/rules/list?key=EXCHANGE_INTRODUCTION","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:01.239Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"POST /api/option/rules/list?key=EXCHANGE_INTRODUCTION HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nAuthorization: \r\nSatoken: \r\nlanguage: en\r\nlang: en\r\nContent-Length: 31\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":31,"data":"{\"key\":\"EXCHANGE_INTRODUCTION\"}"}},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:01 GMT\r\ncontent-type: application/json;charset=UTF-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9IE84VLmtRpP%2BHKPnDQOj0CchuoVJSmvil6f%2BcOpzMdja8pZmrU%2F%2Bx4I%2Fop%2B2dA7lMBKeCJvVOEAZYAf%2BX82nMsk%2Fqb6kepQE%2FeaTDv9dERjBxb7lPzEtM8YbTP39xE0yz1m\"}]}\r\npriority: u=3,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://batonexz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f7a4ba64b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":64,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"a3dd566ad4f4e2e766c8baf3fe846fd5","sha1":"cca3fba00b3c7b5f9dce1abbd1f810a569361cfd","sha256":"a545c8d3c2609a9aca98465a4cb08c0a0e93026f9555a621adbb31f682b30a59","sha512":"6706e7483722ad0cc8bc9c93a822979917b1174239490a76c92607799d5c6cb36bba68817baf92e336b9ab7e4cdc98bf92f6d3dd381eda48c6d3a4e45a924f09","ssdeep":"","tlshash":"94a02200ac0888822003008a8203020000f0208c22200a08fe8ee230c20023a3883808","first_seen":"2025-06-23T17:22:26.282591Z","last_seen":"2026-04-06T13:54:01.058772Z","times_seen":50,"resource_available":false,"data":null}},"time_used":217,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":217,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.batonexz.com/api/common/getCoinList","fqdn":"api.batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.760Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"OPTIONS /api/common/getCoinList HTTP/1.1\r\nHost: api.batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,language,satoken\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:00 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: https://batonexz.com\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-credentials: true\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IoSU0Sa5zoR9X6naaxp4BkKaeBnhYNQFEhSrHgu97ANc298kW5Z3WmewaDbjtAZWul0NBCcuoj2sKv99Sqk36ROMWj0T2VeFepgue2wNHuKRV9BYiMsBHvNxa7JIP2O9Yswi\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f79b89c5b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T18:11:47.329902Z","times_seen":13432264,"resource_available":true,"data":null}},"time_used":436,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":435,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"api.batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/BTC.png?1775480340801","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.884Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/BTC.png?1775480340801 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1125\r\nage: 9036\r\ndate: Mon, 06 Apr 2026 10:28:25 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:30:33 GMT\r\netag: \"75f196b437f9d87fdc198bc904c66c4c\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: KEU_GNz.cEPy87FxxsLaGlv3ekYfu6Aa\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: uUiXYpTgzZ9n4efY7ZTZD6Quydx9tVpqg1AieGIHXscmMnSFIG5LAQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1125,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"75f196b437f9d87fdc198bc904c66c4c","sha1":"79b6e300761520f7ad41856878999dbc1fafc137","sha256":"f72b9a231c13012613217eec2bec27b923204e8c6cebc2b2ae51485d2b5d679d","sha512":"de4633885db64868d13a4a4699631acf0b00af0b2cda542c5be26b4dce3a1f8b4e071949280ddd9f3c59eb7a236d5d8d7003ffcb9633e0749fb62d46c780ac60","ssdeep":"","tlshash":"2421f9d3df09102ec4029c9cd4730c6bcc287a963410445b5f7c823fcc0b6496864b67","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-04-06T17:19:52.840504Z","times_seen":1463,"resource_available":false,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:51.965Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:41 GMT","end":"Mon, 08 Jun 2026 08:38:40 GMT"},"fingerprint":{"sha1":"03:81:A0:0E:E1:9B:80:A3:BC:CD:F9:25:A5:7B:8A:43:07:22:C6:00","sha256":"73:8D:9A:B1:F0:C3:6E:8F:EE:C0:2F:99:C8:89:24:16:9A:DB:D1:9C:27:5D:8A:7A:A8:2B:0E:10:42:28:53:7F"}}},"request":{"raw":"GET /css2?family=Noto+Sans:wght@400;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://batonexz.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 06 Apr 2026 12:58:52 GMT\r\ndate: Mon, 06 Apr 2026 12:58:52 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6340,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"b75d27687a21c4b72f4989a39e5c7264","sha1":"f6ed9fbcaec50bd8aa5e887db9a9a84163f04110","sha256":"cf3312886f57bb7a94363d780e242890d34ea132e33a55c005bc35b4343c2e56","sha512":"53fbf921dc3be172163a0bb72d7507111d8dc1d6e9af731b6f0a84d28445af5c0785e2ccd9997f5a221b6d24172c1b80eecbb09a47558134e80ff371f577a29e","ssdeep":"96:bOEbaqLOEbaCFZyOEba/OEba+OEbax3iOEbaIgOEbafJc+umOEbaTN2OpbaqLOpB:Mq8qg9x3xI/7WSqRbVox3cIO7HC","tlshash":"e1d1caa8805bc484ba434cd637df7d36ad1f61212454d27c9bfd59989cabc39433178e","first_seen":"2025-09-11T17:29:37.380652Z","last_seen":"2026-04-06T18:01:02.00378Z","times_seen":9176,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":79,"dns":1,"connect":7,"send":0,"wait":20,"receive":0,"ssl":75},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.1235ac84.css","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:55.468Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.1235ac84.css HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:55 GMT\r\ncontent-type: text/css\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2nYtHkexvpiUKYypjRSi%2Bl4dv7NamjLsOB2kTHUr5R7%2FYNLGLXHWJHB80b6eqC8eR4VrtrW%2FEW%2BHtsFRb3nkwDCn00ljnmQvU0b9EsFsZXSWG3k9lkVRrABiV9FYboE%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69c9fce1-d5\"\r\ncf-ray: 9e80f780b843b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":213,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"19c6ce17850bcb6c7d73184525abb7ae","sha1":"12fcd94f7c9286f6901b5227bef0f0d5b06ba30e","sha256":"1235ac84f788337a372ed349a9c02ee66d69f6089e3e6b2f8d1e0ffae3bb18f7","sha512":"50b7a3903b7c2a61e20c60106894349c98050a7dc1717acd56ddae1cfd041b467d5dceeb7f93e3e467fabc4436816eea5d2967c60df9f0384021be072eeb2dde","ssdeep":"","tlshash":"73d0220073de321b1c8698fcc32b5a1bee6b5d868c00dfb8692db02a05c628c331087b","first_seen":"2025-08-07T21:15:59.972231Z","last_seen":"2026-04-06T13:42:54.552312Z","times_seen":12,"resource_available":false,"data":null}},"time_used":480,"timings":{"blocked":4,"dns":0,"connect":0,"send":0,"wait":476,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/XRP.png?1775480340803","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.889Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/XRP.png?1775480340803 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 953\r\nage: 9034\r\ndate: Mon, 06 Apr 2026 10:28:27 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:28:04 GMT\r\netag: \"92f9d15be55070c0f267e7b9609211da\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: QRK6OD8vVyictvg2hsHVXOfI_qefjrI8\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: Oj4jgFHH9mVyzBs-GCFExpZamcKuEJDDKvdCAHxAYE9JCpYsnmGGig==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":953,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"92f9d15be55070c0f267e7b9609211da","sha1":"d25e8395244487e169b16cb9508e434ea1ea61dd","sha256":"0e7d0965ce52308846834de79ad8305ea31542444a1ba54888843fc0214418f4","sha512":"d39d1087b689cf8f8d543a282dfc802e0e996ddbdb0553b7376958b0be63dd8f6230451cc3cd3df7d63748ab2165e8e82433c35d4131a7a2c137445ecfeee95b","ssdeep":"","tlshash":"e91188a14b659e01632bcd7fcb2a0142b20b22efb465d716a88f533d0795d871059f85","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-04-06T17:19:52.905445Z","times_seen":1368,"resource_available":false,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/platform/batonex/logo.png?2.0.1774845153396","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.728Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /platform/batonex/logo.png?2.0.1774845153396 HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 48567\r\nlast-modified: Mon, 30 Mar 2026 04:32:31 GMT\r\npriority: u=4,i=?0\r\netag: \"69c9fcdf-bdb7\"\r\naccept-ranges: bytes\r\nage: 2\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2B5rWrUg9u69tfLeqmY3aLzW%2FfVgd9UN8YU1%2BKd%2FyTP%2FBemNyNylchRt%2FS4%2B8yeDsygZ6s8hUIJZSoNePPmlYBmAhflNm6cGLwTSat7dQHskwjRLmWYggVyfZP94aBwo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f7a18a13b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48567,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced","md5":"c4f8d6dbcf3510a1dfc03ed141c1497d","sha1":"1109cae449362e84d20c45c1fe83f90f62ca7bd5","sha256":"493fe49a6d7e41fa85b454c505ed432e6480537a0d89b67a5f8cb99ffcc7f426","sha512":"4cf85e8c268f8e8184f8958494c93c5022475c997b9fb3e2aeddced95ab17ada3768b1dee2428442cd31357742a6aa2ac4ae885dc0eb04c258d55afb7f4191df","ssdeep":"768:H6bXRUwZ91kh+7NjwIyMzO3AFCfgMACBTSTTINLFQ1hLq89:HmNBjwIy5qCnbBTST+Eq89","tlshash":"a923e04cacf136a4701c61777d912e4a4dbb5203e0da2d1236edac720f22fb74d9b682","first_seen":"2026-02-24T15:46:15.773543Z","last_seen":"2026-04-06T13:42:54.588062Z","times_seen":5,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":7,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/SOL.png?1775480340769","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.804Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/SOL.png?1775480340769 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 404\r\nage: 9035\r\ndate: Mon, 06 Apr 2026 10:28:26 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:19:36 GMT\r\netag: \"5e22a9302a4383454bfe530f0ddffb53\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: .y99HULHsmBO8l5_Ll.XajXf2q2ZdJQz\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: 5jICk2dyIsVOxEuxJYhSfOtdHte14HDV-kwDvCUMgoyUDiOBOerAVQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":404,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"5e22a9302a4383454bfe530f0ddffb53","sha1":"be5b706cd340c21bd9be3a3ce56647ec384d6624","sha256":"b4f74a2541dbe53158395e8b054ec169ffe18124b55a0b5e027ebd9c22b5ba11","sha512":"0d94a417d4f0c678faea64e59463ab5c6cd582168ae7e744d44c1d6878deffec49dec89d5b5ca176bb15767eae10cdf9aa1691d4b033367becb08caf8ec56889","ssdeep":"","tlshash":"c9e0f1f27d245ca97f5642050fe80ff2d03c66f515119c861db2ca2d554105545d5453","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-04-06T17:19:52.850807Z","times_seen":832,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/ETH.png?1775480340802","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.887Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/ETH.png?1775480340802 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1100\r\nage: 9035\r\ndate: Mon, 06 Apr 2026 10:28:26 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:30:28 GMT\r\netag: \"8658d5935ab59ee39d15c39226279d46\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: fcMwz_FrxevnVgNtIlzpA9y6vfUJIaPK\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: JkMnRAnGOlymC9DZ8TfLd8WCtKtTGYHx4i-h9tyvydbGuUfGSssq5g==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1100,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"8658d5935ab59ee39d15c39226279d46","sha1":"27463866eb9fa6fe4b6d2bd2cd3d6fd88392cb43","sha256":"595a7c97f329934d40fa297958ccbb31d3cd101c2965b02a32a7c96fd49c9e11","sha512":"0179fd67c6baa7d46fba32986a8f6fe1586f2d9d3c57161bc33ecae609d6e608e8d9bfcdad0459bf41ba087843955a45ce5daca8ea223cb33138de6b4c8b13db","ssdeep":"","tlshash":"f211b6b64261eec7905c8a22da820b38ed2d9718f01c3f06ef73efb39225b045105d0a","first_seen":"2023-05-25T23:01:30Z","last_seen":"2026-04-06T17:19:52.872022Z","times_seen":1477,"resource_available":false,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/resource/images/common/home/Selection-a.png","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.935Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /resource/images/common/home/Selection-a.png HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:59:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 4030\r\nlast-modified: Mon, 30 Mar 2026 04:32:31 GMT\r\npriority: u=4,i=?0\r\netag: \"69c9fcdf-fbe\"\r\naccept-ranges: bytes\r\nage: 2\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PqTuAK6MVZaH4p9mSv3uJW5mgUfb20tOx4%2FCI21DWVHB5rNAcceveS9fUqP3vFxhcGfEI97nsSj%2B98JtY8pnf4sRG%2BRx%2B7JXGmpswNHH%2BnFeVklwgiJdIPUhlfriF10%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f7a29a24b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4030,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 336 x 217, 8-bit colormap, non-interlaced","md5":"d41eddbe11398decb778d09c35fe7c34","sha1":"5f81f58df40d09a3b8cfe3707ad3fd451c7e6859","sha256":"381aa09f34edb9c8ff2d3fb0ff09af42260fefc41c48a8e03ab14a9f2cd849a1","sha512":"e8da5839ebe24ef89aa2c7c15968a4a589303a2303329f20f44f360b62de3182cd0a431811297da1279d76cd2ec0c05da4ed13e1b587e35ba75a7f6cb3de30b2","ssdeep":"","tlshash":"b081807b352c750dcd2510742761408dc27229301ddb1079aeca6d42bd7297577603bf","first_seen":"2024-08-19T17:34:46.654099Z","last_seen":"2026-04-06T13:42:54.530886Z","times_seen":76,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/TRX.png?1775480340808","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/TRX.png?1775480340808 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1315\r\nage: 9034\r\ndate: Mon, 06 Apr 2026 10:28:27 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:29:49 GMT\r\netag: \"79cbcbdfcc32e9ed14054fb9f306d76b\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: n6Q72N4CRo3VkIHj4mksUjkTB7ZCHWEN\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: bYTMVo7ANkpZFDjYlffk7AVEi_lrP8s7P3hYXT1c3wzRRh3IqB9UTQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1315,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"79cbcbdfcc32e9ed14054fb9f306d76b","sha1":"d0fe46ecc0664340d7027500d23cb6ee7b8de4f6","sha256":"ac3824adc2a37e25d5e63fe30c4de623c0985730450f3e12b58bcc58677d107d","sha512":"98eb00b634f4214e5d546aff3c51c6e889a337ed9e9a59d96b2dc189bb822352d01d2d53e02db22255c2c3f44836ce30c52c8e22199eca10c8e431d17560cedd","ssdeep":"","tlshash":"1f21f8b87b5d652cc209c890e8364aa77098f9ae0512041e3830ec3dfee098be2567c3","first_seen":"2023-05-04T03:36:11Z","last_seen":"2026-04-06T17:19:52.860009Z","times_seen":930,"resource_available":false,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/platform/batonex/logo_144.png?2.0.1774845153396","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:54.902Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /platform/batonex/logo_144.png?2.0.1774845153396 HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:55 GMT\r\ncontent-type: image/png\r\ncontent-length: 29421\r\nlast-modified: Mon, 30 Mar 2026 04:32:31 GMT\r\npriority: u=6,i=?0\r\netag: \"69c9fcdf-72ed\"\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LGKFdoRPVgZ3L7TXFedIBo41jAiObU4bNzDSmbfP5otVT48iJnX9QkfZsSqPYYqtS2Vz93SrgYy%2BWXcgAPo25sdqNUcd4LSGVBRLSFdfv4c0jkY1hz78E%2FHKldfE5Vo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e80f77d280fb4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":29421,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 240 x 240, 8-bit/color RGB, non-interlaced","md5":"50bfb85d068992a942fb5c0043fddf2f","sha1":"9947b51e9e58ac86a3b83f75925736ecac96a63a","sha256":"3981b26c5e7f2a9b1cb7b49bc08cd5f7d58e166961b55e74e30d4a90a735397f","sha512":"ad86e476abdcd7331d0bbbae776888cf147a2fa7b8597595953999b8cfbae5175dbff51d52428f702b04899e5c22d0a0da1952d50f847db9dce6602b74b0fba7","ssdeep":"384:e6GkUwZBlb0t7SonMrSPZmngttUP/NHuFR:e6bUwlb0NnFw3NOP","tlshash":"c0d29f78ecb2b18048dd62354eda1c044da3968bf9901d4ef6dd4a0d2f667ed1cebb06","first_seen":"2026-02-24T15:46:15.784634Z","last_seen":"2026-04-06T13:42:54.584287Z","times_seen":6,"resource_available":false,"data":null}},"time_used":786,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":532,"receive":254,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/BTC.png?1775480340762","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.765Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/BTC.png?1775480340762 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1125\r\nage: 9036\r\ndate: Mon, 06 Apr 2026 10:28:25 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:30:33 GMT\r\netag: \"75f196b437f9d87fdc198bc904c66c4c\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: KEU_GNz.cEPy87FxxsLaGlv3ekYfu6Aa\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: dtuCGtbv4fUFV2ehI9EGYd7ZI7GWcnUuuAzB73HYrZrqLeoWToOW6w==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1125,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"75f196b437f9d87fdc198bc904c66c4c","sha1":"79b6e300761520f7ad41856878999dbc1fafc137","sha256":"f72b9a231c13012613217eec2bec27b923204e8c6cebc2b2ae51485d2b5d679d","sha512":"de4633885db64868d13a4a4699631acf0b00af0b2cda542c5be26b4dce3a1f8b4e071949280ddd9f3c59eb7a236d5d8d7003ffcb9633e0749fb62d46c780ac60","ssdeep":"","tlshash":"2421f9d3df09102ec4029c9cd4730c6bcc287a963410445b5f7c823fcc0b6496864b67","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-04-06T17:19:52.840504Z","times_seen":1463,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/SOL.png?1775480340806","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.903Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/SOL.png?1775480340806 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 404\r\nage: 9035\r\ndate: Mon, 06 Apr 2026 10:28:26 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:19:36 GMT\r\netag: \"5e22a9302a4383454bfe530f0ddffb53\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: .y99HULHsmBO8l5_Ll.XajXf2q2ZdJQz\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: rhlmbtldhWQCLEP9m-qTsM7sTCPyN7hcjVitgK_oi5Yz3ZQXLmEAqw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":404,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"5e22a9302a4383454bfe530f0ddffb53","sha1":"be5b706cd340c21bd9be3a3ce56647ec384d6624","sha256":"b4f74a2541dbe53158395e8b054ec169ffe18124b55a0b5e027ebd9c22b5ba11","sha512":"0d94a417d4f0c678faea64e59463ab5c6cd582168ae7e744d44c1d6878deffec49dec89d5b5ca176bb15767eae10cdf9aa1691d4b033367becb08caf8ec56889","ssdeep":"","tlshash":"c9e0f1f27d245ca97f5642050fe80ff2d03c66f515119c861db2ca2d554105545d5453","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-04-06T17:19:52.850807Z","times_seen":832,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.vue_vue_type_style_index_0_lang.33eaf49b.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:55.475Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.vue_vue_type_style_index_0_lang.33eaf49b.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:55 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0IJ%2ByqbUt4p4fiSv2HSpVhxFCbtKbZ1XBGZE%2Fhl7bDJqIUFY%2B0FdXKy95GdDyIIJ0aaJQNoBE2AHSNzq%2FbP4HAZOJ8wSsoKJISkkjzihFZ1ShB3wpIYFqOg04UyWRGw%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69c9fce1-1fd\"\r\ncf-ray: 9e80f780b847b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":509,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (508)","md5":"1002b0620e3d2cb9f56062a9680c5420","sha1":"05258a99e56fa457552adf36256038569ac29c66","sha256":"34a8c0a3c304b74c644bcccc467edd9dbc385e43443a29d0b94626c425ca8f7a","sha512":"6fa71bde932d6efb8e8b0cc05b680bd68dc75dee7dcce9a8030d7465d34cee3c50553544e7c6d12f7be0106befd1943d9805d594211da812581ed1859732d725","ssdeep":"","tlshash":"79f09e69e95ddef604cf4c8436028e58e45e4eadab3a6b908aad003529d9009621c31c","first_seen":"2026-04-06T12:59:21.090274Z","last_seen":"2026-04-06T13:42:54.570788Z","times_seen":2,"resource_available":true,"data":null}},"time_used":471,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":469,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:58.546Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:41 GMT","end":"Mon, 08 Jun 2026 08:38:40 GMT"},"fingerprint":{"sha1":"03:81:A0:0E:E1:9B:80:A3:BC:CD:F9:25:A5:7B:8A:43:07:22:C6:00","sha256":"73:8D:9A:B1:F0:C3:6E:8F:EE:C0:2F:99:C8:89:24:16:9A:DB:D1:9C:27:5D:8A:7A:A8:2B:0E:10:42:28:53:7F"}}},"request":{"raw":"GET /css2?family=Noto+Sans:wght@400;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://batonexz.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 06 Apr 2026 12:58:58 GMT\r\ndate: Mon, 06 Apr 2026 12:58:58 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6340,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"b75d27687a21c4b72f4989a39e5c7264","sha1":"f6ed9fbcaec50bd8aa5e887db9a9a84163f04110","sha256":"cf3312886f57bb7a94363d780e242890d34ea132e33a55c005bc35b4343c2e56","sha512":"53fbf921dc3be172163a0bb72d7507111d8dc1d6e9af731b6f0a84d28445af5c0785e2ccd9997f5a221b6d24172c1b80eecbb09a47558134e80ff371f577a29e","ssdeep":"96:bOEbaqLOEbaCFZyOEba/OEba+OEbax3iOEbaIgOEbafJc+umOEbaTN2OpbaqLOpB:Mq8qg9x3xI/7WSqRbVox3cIO7HC","tlshash":"e1d1caa8805bc484ba434cd637df7d36ad1f61212454d27c9bfd59989cabc39433178e","first_seen":"2025-09-11T17:29:37.380652Z","last_seen":"2026-04-06T18:01:02.00378Z","times_seen":9176,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/platform/batonex/favicon.ico?2.0.1774845153396","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.291Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /platform/batonex/favicon.ico?2.0.1774845153396 HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:59 GMT\r\ncontent-type: image/x-icon\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=c7NH1S3RlzOtnrqw84H0djBfIGKwQ8urQFnUrwmifPW4qm0CZEQ3a0Y650DLKW%2F%2BbV8aRfQm8tTpQmXdRTJvfU3BIX5tnD%2BJLy2K0RHi7EI%2F71DWSi2FSpNxORHQp0g%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:31 GMT\r\npriority: u=6,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 3\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fcdf-243e\"\r\ncf-ray: 9e80f79899a3b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9278,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel","md5":"a701099be83c94d0d33822b301359d56","sha1":"103662981a7bcf8c526f4dc612bd274f82b28e88","sha256":"642eeded378dcdd8f1c4a7dec5bc7578b0a6d7bc8d6694f14832e3fbfc7cfa04","sha512":"01b8e1d0b1048239ae23e4f573951cfbbde203ef1e1312eda3ea2c951017ae1496c92ae457ff5a5fd503c5772cd79d6a948b26d9e7edaae9306bc07900bf0129","ssdeep":"192:ySGLtj7611s3s04c00006mQmYmR4oILgaui:yS+976Q33x00006TXeqLgaR","tlshash":"391299027680b8dec47d13bed022eb7d055bafd4721592a785f88de33654f4abda3281","first_seen":"2026-02-24T15:46:15.790707Z","last_seen":"2026-04-06T13:42:54.575209Z","times_seen":6,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/WLD.png?1775480340773","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.827Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/WLD.png?1775480340773 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 8646\r\nage: 8970\r\ndate: Mon, 06 Apr 2026 10:29:31 GMT\r\nlast-modified: Mon, 12 Aug 2024 13:17:03 GMT\r\netag: \"6d5b4d5fa1076fd069c299e6269e337a\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 87yf2Evy6eVCTo644Ue9NYi417iWOXd7\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: h0URTaKJkhI8JRNkJF4uuLdzABjgJEXNqliWHZgvOhm_ihO4QRwvvQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":8646,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"6d5b4d5fa1076fd069c299e6269e337a","sha1":"9bd71d1472ff39ec523711f4ba39e15dae78105e","sha256":"d934caba25d66b415f679f6b08a8ece3e10d1ce9c4a324216594493cfd42692f","sha512":"dc8f9c4e0c3cddd31befe0fdcadfaca7f4e17bcf42c5b7c9dc0e4cb990ad96e015d33a3e17b7aaa5a08af23219ec155d89bb3fcd081836426360a4c996429dfa","ssdeep":"192:eH4TtYPopn/FNZPyTxOwUVRjIt9HzSJqQ9rKtm0cB81vtw9/p:eH4Ttii92xUSKX9051vtw9R","tlshash":"d102af82b77257b19523927cc716f2cbaa6e43c1e5d250ff0341a0b997ced24c0426f9","first_seen":"2025-07-06T22:01:43.154442Z","last_seen":"2026-04-06T13:42:54.509811Z","times_seen":35,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/ALGO.png?1775480340810","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.920Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/ALGO.png?1775480340810 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 14387\r\nage: 9020\r\ndate: Mon, 06 Apr 2026 10:28:41 GMT\r\nlast-modified: Wed, 05 Feb 2025 09:12:33 GMT\r\netag: \"d28c209d8c737843e40caa035d5ed881\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: nG0hgtUzf8nhIR5nGv5WYWmJNtUAXF7U\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: tlvZczMfEccTbNLaXbB0stS0tOMF-3_i3rqVo-RlIhFjanBfTuT5zw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":14387,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"d28c209d8c737843e40caa035d5ed881","sha1":"3cbb497e0ab2689e1471187f43bd25451456c63b","sha256":"f2e9b1b10cb1644dd597d3572042bd358c73f0a24677510c7688e1d803460ba6","sha512":"0a7aeb42efa1578588a204a28575f1f48650cc9ba2cebb4f7f9440dd7ee527efd7242731e38bd88ed1947cacb31a4b2db6ee17defb8e163491f98cf9cb5a98cd","ssdeep":"384:VcuxZ17bGVKC9ZFYXq1SVm3V3sOwcxvP1XC3EqSsY9GTR0:uuxZ1bToC6UVm3VPz1Xl9f","tlshash":"2c52cf6cc6a22f93d36d9d0943fd7895734e0a06b2f16493898d9460d98603d3e9fae3","first_seen":"2025-09-07T17:41:22.057365Z","last_seen":"2026-04-06T13:42:54.582338Z","times_seen":23,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/LTC.png?1775480340804","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.897Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/LTC.png?1775480340804 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 957\r\nage: 9007\r\ndate: Mon, 06 Apr 2026 10:28:54 GMT\r\nlast-modified: Thu, 06 Jun 2024 17:30:31 GMT\r\netag: \"db1f13e46508474023e51dac9b924272\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-autocompressed: true\r\ncache-control: public, max-age=31536000\r\nx-amz-version-id: g_cdj3TjMVGw_vf5Heig0wXuWzyx3JC9\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: Pkxf9nriE2DRydge8tc2ALtTKhx9ip9mWDrz1tadXY1d7V-qHe7Orw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":957,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 97 x 96, 8-bit colormap, non-interlaced","md5":"db1f13e46508474023e51dac9b924272","sha1":"976aea7b350c3d301a1bcc9350fa9b54bff9c8af","sha256":"50b7635088e72a9f004283284a8d63488fa127afa53e157393ca38bb55db1ff2","sha512":"08f80512e3edb58c31435f259a6d27f0ce55186594e94b3d5883245788edf4b503cae6f5361876896658070c159de7d4ea5457b0bdda11df6673f02e7c598181","ssdeep":"","tlshash":"c511b7abf5cceccad1b1414f118a4490e550cdb0147da74eea127e1bb839ab02d04f1a","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-04-06T13:46:06.450166Z","times_seen":434,"resource_available":false,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bin.bnbstatic.com/static/assets/logos/WLD.png?1775480340808","fqdn":"bin.bnbstatic.com","domain":"bnbstatic.com","tld":"com"},"ip":{"addr":"52.84.50.107","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.912Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bnbstatic.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BF:AF:F8:16:BA:38:D3:92:CC:06:D0:21:3C:49:7F:84:25:DA:57:2F","sha256":"E5:53:5A:4D:15:73:C1:86:18:5C:67:94:60:62:42:8A:A9:EA:B6:AA:81:2B:BF:13:0E:E8:60:83:1F:BD:5A:92"}}},"request":{"raw":"GET /static/assets/logos/WLD.png?1775480340808 HTTP/1.1\r\nHost: bin.bnbstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 8646\r\nage: 8970\r\ndate: Mon, 06 Apr 2026 10:29:31 GMT\r\nlast-modified: Mon, 12 Aug 2024 13:17:03 GMT\r\netag: \"6d5b4d5fa1076fd069c299e6269e337a\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 87yf2Evy6eVCTo644Ue9NYi417iWOXd7\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: hIGj50SLM6k4HZ7dXNgDqy1NpZveDsWNNFNKwbHAtDgbvsDxbCeX7A==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":8646,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"6d5b4d5fa1076fd069c299e6269e337a","sha1":"9bd71d1472ff39ec523711f4ba39e15dae78105e","sha256":"d934caba25d66b415f679f6b08a8ece3e10d1ce9c4a324216594493cfd42692f","sha512":"dc8f9c4e0c3cddd31befe0fdcadfaca7f4e17bcf42c5b7c9dc0e4cb990ad96e015d33a3e17b7aaa5a08af23219ec155d89bb3fcd081836426360a4c996429dfa","ssdeep":"192:eH4TtYPopn/FNZPyTxOwUVRjIt9HzSJqQ9rKtm0cB81vtw9/p:eH4Ttii92xUSKX9051vtw9R","tlshash":"d102af82b77257b19523927cc716f2cbaa6e43c1e5d250ff0341a0b997ced24c0426f9","first_seen":"2025-07-06T22:01:43.154442Z","last_seen":"2026-04-06T13:42:54.509811Z","times_seen":35,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/notosans/v42/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7du3mnPyxVig.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:59:00.977Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/notosans/v42/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7du3mnPyxVig.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://batonexz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 35928\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 02 Apr 2026 08:25:54 GMT\r\nexpires: Fri, 02 Apr 2027 08:25:54 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 10 Sep 2025 16:23:36 GMT\r\ncontent-type: font/woff2\r\nage: 361987\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35928,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 35928, version 1.0","md5":"a317875aac104234bd7c39df8c501fbb","sha1":"870661970316f61acaab613e3209b9c09e2961f3","sha256":"065e2ab41209dcd60b1c88517c71a741803e3b0647059cb8ee7efff522ed1d40","sha512":"619f405a133ec8227767f08c598399a737d30cea6f76d3c065d2d97ce162bae040ced7fca13ed874d66a1f98472a3a07cf12bb146f432c8d4df24745488e13d0","ssdeep":"768:ybZHErhpxKts8YgN3IJe53ZnJREjqvYSVgXsdp+v0Gd:ybxErktsfgN3fXlicOzd","tlshash":"bef2f11c1a34eb974328047b840084b533ea6da7d63192b121a5fb44cca46fafecfdd6","first_seen":"2025-09-11T17:08:53.61315Z","last_seen":"2026-04-06T18:35:41.780066Z","times_seen":17872,"resource_available":false,"data":null}},"time_used":154,"timings":{"blocked":68,"dns":1,"connect":7,"send":0,"wait":10,"receive":8,"ssl":57},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.20a9dff7.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/","date":"2026-04-06T12:58:56.195Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.20a9dff7.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:56 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FEEIJrz5vfOtIhkOZmUfqB%2BpbYOnHsb%2FdAhw51xGnoRNzLJXkrJedzdniED21UHzblE%2B%2BS1PQZ9aJRG%2FQ7ui17W%2BatUYWrbwwPCHBD02EclF5OT3GLVV8co0ouPmBec%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-6bff\"\r\ncf-ray: 9e80f78538bab4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":27647,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (27646)","md5":"88dac2a93492710bd85e91f63bacd206","sha1":"8e66f1a5d8d686a1a93dd850c016024349f1102e","sha256":"1f84fa92179069a20d93ef2364883cbb5414a04284514d8b190094eaafb824e9","sha512":"43e4cbf0b64bd6794bcfefbe4cd7eb6bf18df75cbe742e68cad33c71ce88a7a8fb762ff61dc2005ad4caff6d897c4bc2f65217c0e6748d0e980b60c0f3532f63","ssdeep":"384:4W6mxnhS+ueTrixFfzl0tOXUegZ3ccnRzvqQGy6RVpdVQ/IdqRa5:7xxnkATefLliUlgZ3jRWQkRVpvQ/IYa5","tlshash":"abc230b9f92a8978f5f78861115c3409220cffd3c1108653b5fc2a199b93dbc278e72a","first_seen":"2026-04-06T12:59:21.088475Z","last_seen":"2026-04-06T13:42:54.515784Z","times_seen":2,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/index.a98dad29.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:58.552Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/index.a98dad29.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:58 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Tc12cqXDC9tI9Oa12U%2BgdmtRQvYIQH6C2tVtE2L4xqs1D%2FbOOJDoZXqOs%2FL0KJIA9B%2BJ%2FL2CdlIiNXTmlnGESGKfS6cxIjYRq%2BIr1Pw5a41GTrikrNLyjVkhIqG2W3s%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 6\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-594dd7\"\r\ncf-ray: 9e80f793e971b4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5852631,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (17611)","md5":"8a82accd3622d34c56cfdab1ed9b5593","sha1":"d506e563a69bcadfa4d9c1703dc4a29dfddd5631","sha256":"1ca8bf1ce4269a1e3168adea81dd003e5ed6097f2c3d2e231783f91a77e5d5da","sha512":"34101c81eac21fad41bc445884bdfd25e73bbf1eba8ea88086a231cc478786b77b8fbfd6953b149c08b13612cdf8744777515851e038ab0697f908e5316a560c","ssdeep":"24576:jBUItzaUuGYEpo6uiG9WO6n5DzVRUrEFFwLzJKV49zD0zrRPRATXpKZ:jBUItzaUuGYEpo6uX9WO65XVRUrcFwLe","tlshash":"2f255b943495b46293fb48d9907b0402b32d1b59b409d4f0f1be8e6d3a6bc50a2bbf7d","first_seen":"2026-02-24T15:46:15.766162Z","last_seen":"2026-04-06T13:42:54.580478Z","times_seen":6,"resource_available":false,"data":null}},"time_used":139,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":86,"receive":53,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"batonexz.com/assets/CommonMethod.a85f8cc7.js","fqdn":"batonexz.com","domain":"batonexz.com","tld":"com"},"ip":{"addr":"172.67.223.88","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://batonexz.com/#/home","date":"2026-04-06T12:58:59.786Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"batonexz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Mar 2026 13:43:11 GMT","end":"Mon, 22 Jun 2026 13:25:40 GMT"},"fingerprint":{"sha1":"72:CC:60:0B:3F:E1:D0:29:7B:1C:36:38:EE:A1:3E:D7:65:E7:3F:BE","sha256":"3F:2D:24:E2:89:BA:AC:A7:FB:5C:4B:D6:62:2B:57:F8:FD:44:D6:D2:7E:AC:95:73:D9:0D:B0:16:F4:F2:A2:A4"}}},"request":{"raw":"GET /assets/CommonMethod.a85f8cc7.js HTTP/1.1\r\nHost: batonexz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 06 Apr 2026 12:58:59 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2PtO32rnfCpsCui807B54KHRNSMa32%2BY9Lcvqr%2B4l9Qdtm1BmfRR%2Bnu0z4o0ClJB8dBJI%2Fes4M%2FD2q14X9rjtgPHNd7uypasgvVPoblYTz%2BgEQe0gmCnjSWAplJxnRQ%3D\"}]}\r\nlast-modified: Mon, 30 Mar 2026 04:32:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 3\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69c9fce1-367\"\r\ncf-ray: 9e80f79ba9cdb4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":871,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (870)","md5":"8c69f04ad7abf088ea5712f20ccf8f05","sha1":"a652b08cbf4499e778161f2970351b0b30e98ef6","sha256":"1b133808c2d78a3ab10be6fd7fde1e659f3c19ca15d4e5649bbc1a7b47dbc38e","sha512":"96483a6d8315031dd3a9e0111b83368a5396480126146c3b273878e538391ae910b32902e7198e406a825e427b54617786aa977fd45666384011f8c7ceb373ee","ssdeep":"","tlshash":"8b11c0d0e48dfb290368df65a2248033f25d59b51e288368c0f95d657b29449b79ea20","first_seen":"2026-04-06T12:59:21.068919Z","last_seen":"2026-04-06T13:42:54.561721Z","times_seen":2,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-06","alert":"Sinkholed","trigger":"batonexz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}