{"report_id":"db3ae6e2-becc-4003-8141-dbab1b2db558","version":6,"status":"done","tags":[],"date":"2026-02-01T20:48:24Z","url":{"schema":"https","addr":"xcoin-trade.io/","fqdn":"xcoin-trade.io","domain":"xcoin-trade.io","tld":"io"},"ip":{"addr":"172.67.192.55","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"xcoin-trade.io/","fqdn":"xcoin-trade.io","domain":"xcoin-trade.io","tld":"io"},"title":"X Wallet","dom":{"size":62836,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (47355)","md5":"e6de2f6c86951e8d7ab190fe36af77f3","sha1":"67406d4ef4c5b743b0218969570fd2065813d705","sha256":"93aaf78a29057d4f52c59dbffc13f5c89db3b430cc95ed4b818b1987bdfd57b8","sha512":"e4d77d9b0bf7826250c2754d38876a6108c7b661181f6a813a9ccd0e9594e669e7a88552da165a9ced2315fffc5b1f11a00d70f50d0aa3411d94498ab8435197","ssdeep":"1536:uXx/c64Jysq7vUgYVrltvlCy6PHjQ9Cys1F6Kwl8RcXqlff6aSVAkHbC1WWUb6/A:u/RcXqRQ","tlshash":"e353a4383244163e942b8be5f6d0a73cc07ddac4ea738d6af36c00a357c6da4596b6d4","dom_hash":"domhashc74f4aaf024880ddc0323c7e8e938cb6","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"xcoin-trade.io/","fqdn":"xcoin-trade.io","domain":"xcoin-trade.io","tld":"io"},"ip":{"addr":"172.67.192.55","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-08T20:48:24Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":2,"urlquery":0,"analyzer":2}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-01T20:48:09Z","timestamp":1769978889,"ip_dst":{"addr":"172.64.149.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":55466,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Online Application Hosting Domain (supabase .co in TLS SNI)","source":"{\"timestamp\":\"2026-02-01T20:48:09.739066+0000\",\"flow_id\":1776985743895597,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.31\",\"src_port\":55466,\"dest_ip\":\"172.64.149.246\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2050130,\"rev\":1,\"signature\":\"ET INFO Observed Online Application Hosting Domain (supabase .co in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_01_17\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_01_17\"]}},\"tls\":{\"sni\":\"tpzxygnpdjctomganeqr.supabase.co\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3443,\"start\":\"2026-02-01T20:48:09.732205+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-01T20:48:09Z","timestamp":1769978889,"ip_dst":{"addr":"172.64.149.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":55462,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Online Application Hosting Domain (supabase .co in TLS SNI)","source":"{\"timestamp\":\"2026-02-01T20:48:09.740044+0000\",\"flow_id\":182002393885536,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.31\",\"src_port\":55462,\"dest_ip\":\"172.64.149.246\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2050130,\"rev\":1,\"signature\":\"ET INFO Observed Online Application Hosting Domain (supabase .co in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_01_17\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_01_17\"]}},\"tls\":{\"sni\":\"tpzxygnpdjctomganeqr.supabase.co\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3443,\"start\":\"2026-02-01T20:48:09.732000+0000\"}}"}],"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"xcoin-trade.io","ip":{"addr":"172.67.192.55","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-01-23","domain_rank":0,"first_seen":"2026-02-01T02:19:11.279387Z","last_seen":"2026-02-01T02:19:11.279387Z","alert_count":12,"request_count":6,"received_data":1224804,"sent_data":2655,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"tpzxygnpdjctomganeqr.supabase.co","ip":{"addr":"172.64.149.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2020-01-11","domain_rank":0,"first_seen":"2026-01-16T14:26:02.230359Z","last_seen":"2026-02-01T02:19:11.747629Z","alert_count":0,"request_count":2,"received_data":2223,"sent_data":1928,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"xcoin-trade.io/assets/index-2vJL41mK.js","fqdn":"xcoin-trade.io","domain":"xcoin-trade.io","tld":"io"},"ip":{"addr":"172.67.192.55","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6e0e300b91ce87047b0d8b291f1cebbe","sha1":"27aab349eb0b78c56120eb9b768b890d5bd74939","sha256":"e3b535c7de7f1d2cc9b5462e01d7602759b0fde1793cb78b44bebf577c9bc5b8","sha512":"2a0123509c340af0ecd23aeb030bf08947cf2dacce98a6848dce9bb10f6572c8ef0127e802d48c3a5d588b6a6bba3f292daba10dfd85f0737f6dea844d2ccdeb","ssdeep":"24576:DG1TxqZ1S6iKUkSdllVA1LxTdDGs7MhCmjl:DG1TxqZ1S6iKbUllVOLxTdDG8sl","tlshash":"63357d84b151babd9aa704e5a47f4015b13e1f54f81f84e0f17c58ba2a6410aba37ffc","size":1060703,"data":"","first_seen":"2026-02-01T02:19:15.466348Z","last_seen":"2026-02-01T20:48:27.304215Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"xcoin-trade.io/","fqdn":"xcoin-trade.io","domain":"xcoin-trade.io","tld":"io"},"ip":{"addr":"172.67.192.55","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-01T20:48:03.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xcoin-trade.io","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 16:29:26 GMT","end":"Thu, 23 Apr 2026 17:26:54 GMT"},"fingerprint":{"sha1":"64:9C:B7:9E:8D:9B:1C:72:2E:B0:7A:6C:93:C2:6B:DD:AB:38:F4:0B","sha256":"6A:00:16:A4:73:95:7B:1C:72:7F:F8:CC:8F:FC:B6:FC:6A:9E:6B:90:12:71:6D:0B:49:AF:FC:BA:5E:A9:B7:01"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: xcoin-trade.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 01 Feb 2026 20:48:03 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 29 Jan 2026 13:51:59 GMT\r\nvary: Accept-Encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jcg4iODaD3WuBRPjnPqdLe43YEHDkH1Vs9FTvuejlHkVJ2weAI7Of5Wyyoi3WOnOTIPDH0XdtQQ4m0KXjSmyuChyAf9NQaRuE2RJKg%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9c744eb42ea05688-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":864,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"bf98b2231344d2dce0979542aaede23e","sha1":"19b07890018df7cebc369ff4684be54d819e162c","sha256":"d93d7700f69a65737edb81cf3c7da92698041c7e8554835c51cf79f685992b51","sha512":"aa5363af869ad3f8b8607f65a64d86c50656bd345c768ae245294588322c6dd66bad247558b3cbc09426b2e2a47566f2d7fe1acd07811f21b3f48adccd07667c","ssdeep":"","tlshash":"2311481746086f5a137897281981b0ac82779e06c710bce1a69a10bf1cc5fd5cabb6b6","first_seen":"2026-02-01T02:19:15.457741Z","last_seen":"2026-02-01T20:48:27.296999Z","times_seen":2,"resource_available":false,"data":null}},"time_used":217,"timings":{"blocked":36,"dns":23,"connect":1,"send":0,"wait":139,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xcoin-trade.io/assets/index-BepMSRlR.css","fqdn":"xcoin-trade.io","domain":"xcoin-trade.io","tld":"io"},"ip":{"addr":"172.67.192.55","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://xcoin-trade.io/","date":"2026-02-01T20:48:03.500Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xcoin-trade.io","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 16:29:26 GMT","end":"Thu, 23 Apr 2026 17:26:54 GMT"},"fingerprint":{"sha1":"64:9C:B7:9E:8D:9B:1C:72:2E:B0:7A:6C:93:C2:6B:DD:AB:38:F4:0B","sha256":"6A:00:16:A4:73:95:7B:1C:72:7F:F8:CC:8F:FC:B6:FC:6A:9E:6B:90:12:71:6D:0B:49:AF:FC:BA:5E:A9:B7:01"}}},"request":{"raw":"GET /assets/index-BepMSRlR.css HTTP/1.1\r\nHost: xcoin-trade.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xcoin-trade.io/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 01 Feb 2026 20:48:07 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 29 Jan 2026 13:51:59 GMT\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\netag: \"697b65ff-1bb6c\"\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=T%2BSMl99o7prCUrnkZduSyW8KohESNYaYCG13nq0KU%2BemUfLQ%2BTavW7RbvhudJhxxkHkC96OxSOPLpc61cZ5XbSb7HFFoqMQVBklkJA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c744eb5d96e5691-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":113516,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"00fdc1e5322cc6357cbaab4dabb32b29","sha1":"58a39b0a38e1609b612e56ddb6347da7d54b10e4","sha256":"9b433656f36456feb2f006a27edf376a0d9078ac213f9c4b746e51fe0e466932","sha512":"11a54027f6a132c8952720138500a391007dc35098a0458ba5072a08d175d6f34ffbb521c71c8de4144f71f2b45c2e29c9cc1f1801145f15926883f2a0c76964","ssdeep":"3072:KshIesz/JIuIOkIgBUItGiCU378VQZkt5Ff+noD:3hIesz/JIuIOkIgFCU378VQZkt5Ff+nC","tlshash":"d6b38569a969607f7c27b1e4c3cc79acb51ef1c0de3a06b9bd86411427e23f60c6b914","first_seen":"2026-01-31T22:52:06.0458Z","last_seen":"2026-02-01T20:48:27.298576Z","times_seen":5,"resource_available":false,"data":null}},"time_used":3749,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3743,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xcoin-trade.io/assets/index-2vJL41mK.js","fqdn":"xcoin-trade.io","domain":"xcoin-trade.io","tld":"io"},"ip":{"addr":"172.67.192.55","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://xcoin-trade.io/","date":"2026-02-01T20:48:03.498Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xcoin-trade.io","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 16:29:26 GMT","end":"Thu, 23 Apr 2026 17:26:54 GMT"},"fingerprint":{"sha1":"64:9C:B7:9E:8D:9B:1C:72:2E:B0:7A:6C:93:C2:6B:DD:AB:38:F4:0B","sha256":"6A:00:16:A4:73:95:7B:1C:72:7F:F8:CC:8F:FC:B6:FC:6A:9E:6B:90:12:71:6D:0B:49:AF:FC:BA:5E:A9:B7:01"}}},"request":{"raw":"GET /assets/index-2vJL41mK.js HTTP/1.1\r\nHost: xcoin-trade.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xcoin-trade.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 01 Feb 2026 20:48:09 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Sat, 31 Jan 2026 12:41:14 GMT\r\nvary: accept-encoding\r\npriority: u=3,i=?0\r\netag: \"697df86a-102f5f\"\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=caL%2B5tExaMNy%2BUJXT3usu3KFsaEM1dZ650gaxy%2Fvb8O4Cjr0XZAjtD3xJ1rDfr2M5JtmLegRcS450K9n2v2upPhTX0%2B5vObuug6UVA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c744eb5d96d5691-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1060703,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (37534)","md5":"21b461948612e33f9dd1d9c8ce3c8878","sha1":"7cff68714a2c734b6dc2aed7779f661db134525e","sha256":"88fde4337c316a156ea926aad75395accb1b9bd67365cc9dd8ef988c1181f999","sha512":"84911dd540215368a7ce881f33373e4dc00e9e357f9bc1df15f031cd5e5230ef29afb19c69077201634df0e479190c6c50bf2c61c335eab8d294887671192da1","ssdeep":"24576:DG1TxqZ1S6iKUkSdllVA1LxTdDGs7MhCmj5:DG1TxqZ1S6iKbUllVOLxTdDG8s5","tlshash":"17257d84b191babd9aa704e5a47f4015b13e1f54f81f84e0f17c58ba2a6410ab637ffc","first_seen":"2026-02-01T02:19:15.462753Z","last_seen":"2026-02-01T20:48:27.299539Z","times_seen":2,"resource_available":false,"data":null}},"time_used":6019,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6008,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tpzxygnpdjctomganeqr.supabase.co/rest/v1/chat_conversations?select=id,status\u0026user_id=eq.anon_cdb24dee-2038-4ad6-97a7-e16b2b18f497\u0026status=in.(active,waiting_manager,with_manager)\u0026order=created_at.desc\u0026limit=1","fqdn":"tpzxygnpdjctomganeqr.supabase.co","domain":"tpzxygnpdjctomganeqr.supabase.co","tld":"supabase.co"},"ip":{"addr":"172.64.149.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://xcoin-trade.io/","date":"2026-02-01T20:48:09.727Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"supabase.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 02 Jan 2026 06:20:04 GMT","end":"Thu, 02 Apr 2026 07:19:59 GMT"},"fingerprint":{"sha1":"53:7B:EA:AA:0A:13:9A:C5:94:1F:F6:35:89:F3:54:70:C4:08:C0:1D","sha256":"2F:FE:D0:12:7B:AB:9D:42:41:69:23:1F:06:96:BF:8E:3C:AB:2F:00:05:7D:6D:EE:4A:C0:18:C3:82:92:61:B4"}}},"request":{"raw":"OPTIONS /rest/v1/chat_conversations?select=id,status\u0026user_id=eq.anon_cdb24dee-2038-4ad6-97a7-e16b2b18f497\u0026status=in.(active,waiting_manager,with_manager)\u0026order=created_at.desc\u0026limit=1 HTTP/1.1\r\nHost: tpzxygnpdjctomganeqr.supabase.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: apikey,authorization,content-type,prefer,x-user-id\r\nReferer: https://xcoin-trade.io/\r\nOrigin: https://xcoin-trade.io\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 01 Feb 2026 20:48:09 GMT\r\ncontent-length: 0\r\ncf-ray: 9c744edd08407129-OSL\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\naccess-control-allow-headers: apikey,authorization,content-type,prefer,x-user-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE,OPTIONS,TRACE,CONNECT\r\naccess-control-max-age: 3600\r\nsb-gateway-version: 1\r\nsb-project-ref: tpzxygnpdjctomganeqr\r\nsb-request-id: 019c1af6-862c-7712-b164-66681c2e634b\r\nset-cookie: __cf_bm=2rUnGI8MdQvOQaCZPduZSose4PyUFy68V3mHJbFgKdc-1769978889-1.0.1.1-3WhmQaHUgMuYE58R1RRL5GMiMNhArTazpNEhR3R6LGIOMOLQ3cir_V6G_YOFNrMk4p0cnDNCxgS_HyVF60.YDUrwI5RUJfN8IhEs_xf2bpQ; path=/; expires=Sun, 01-Feb-26 21:18:09 GMT; domain=.supabase.co; HttpOnly; Secure; SameSite=None\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T19:34:27.179619Z","times_seen":16247994,"resource_available":true,"data":null}},"time_used":129,"timings":{"blocked":34,"dns":6,"connect":1,"send":0,"wait":61,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xcoin-trade.io/favicon.ico","fqdn":"xcoin-trade.io","domain":"xcoin-trade.io","tld":"io"},"ip":{"addr":"172.67.192.55","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xcoin-trade.io/","date":"2026-02-01T20:48:05.295Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xcoin-trade.io","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 16:29:26 GMT","end":"Thu, 23 Apr 2026 17:26:54 GMT"},"fingerprint":{"sha1":"64:9C:B7:9E:8D:9B:1C:72:2E:B0:7A:6C:93:C2:6B:DD:AB:38:F4:0B","sha256":"6A:00:16:A4:73:95:7B:1C:72:7F:F8:CC:8F:FC:B6:FC:6A:9E:6B:90:12:71:6D:0B:49:AF:FC:BA:5E:A9:B7:01"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: xcoin-trade.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xcoin-trade.io/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 01 Feb 2026 20:48:05 GMT\r\ncontent-type: image/x-icon\r\nvary: accept-encoding\r\nlast-modified: Thu, 29 Jan 2026 13:51:59 GMT\r\npriority: u=6,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"697b65ff-3c2e\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ppHsmt4BK7EUvPvFKnfKvEEONYPznKi3FTQBFUPr3S2ccfubzTK9eMSrdJWYOOGTzkUqUA3qWUI3XpxtL5WKnLX3NTLaFqqt7f1eyA%3D%3D\"}]}\r\ncf-ray: 9c744ec11a615691-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15406,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"532f82ed03b58777ada242c83b9aa35e","sha1":"e64f6fc4d9f812146f0ba8fd94e338494472fc7a","sha256":"a11cc18bbbdbce3a95f332edd9b39820321915ede69abd0cc5695789b4562bbd","sha512":"33980d7d0537699b23e5fbcbfa93d95294bad8de66c7bb6898277531c2419de8d7683b67e0cdde8b9fca7f34257019042bbb1f81ca6f6c61cc418fb0dfafb959","ssdeep":"96:/lmWXeLotQHKq/VedE60U3oD1dYCPj7Si:YW69HRK0oqHJ","tlshash":"3362530a67f31d25c540923d9f62c3311322dc8d41268b0b57e49da37fcfb9b2c165a8","first_seen":"2026-01-16T14:26:06.978518Z","last_seen":"2026-03-19T00:03:44.267265Z","times_seen":29,"resource_available":false,"data":null}},"time_used":152,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xcoin-trade.io/grok-logo.png","fqdn":"xcoin-trade.io","domain":"xcoin-trade.io","tld":"io"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xcoin-trade.io/","date":"2026-02-01T20:48:09.679Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xcoin-trade.io","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 16:29:26 GMT","end":"Thu, 23 Apr 2026 17:26:54 GMT"},"fingerprint":{"sha1":"64:9C:B7:9E:8D:9B:1C:72:2E:B0:7A:6C:93:C2:6B:DD:AB:38:F4:0B","sha256":"6A:00:16:A4:73:95:7B:1C:72:7F:F8:CC:8F:FC:B6:FC:6A:9E:6B:90:12:71:6D:0B:49:AF:FC:BA:5E:A9:B7:01"}}},"request":{"raw":"GET /grok-logo.png HTTP/1.1\r\nHost: xcoin-trade.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xcoin-trade.io/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T19:34:27.179619Z","times_seen":16247994,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xcoin-trade.io/grok-logo.png","fqdn":"xcoin-trade.io","domain":"xcoin-trade.io","tld":"io"},"ip":{"addr":"172.67.192.55","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xcoin-trade.io/","date":"2026-02-01T20:48:09.716Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xcoin-trade.io","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 23 Jan 2026 16:29:26 GMT","end":"Thu, 23 Apr 2026 17:26:54 GMT"},"fingerprint":{"sha1":"64:9C:B7:9E:8D:9B:1C:72:2E:B0:7A:6C:93:C2:6B:DD:AB:38:F4:0B","sha256":"6A:00:16:A4:73:95:7B:1C:72:7F:F8:CC:8F:FC:B6:FC:6A:9E:6B:90:12:71:6D:0B:49:AF:FC:BA:5E:A9:B7:01"}}},"request":{"raw":"GET /grok-logo.png HTTP/1.1\r\nHost: xcoin-trade.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xcoin-trade.io/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 01 Feb 2026 20:48:09 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 29 Jan 2026 13:51:59 GMT\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\netag: \"697b65ff-78f8\"\r\ncontent-encoding: gzip\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=74Dut539wLI7St%2Feg7bacjWNVGmCW1hDwKsZ%2B0b4%2BU4ZVwIFZS4Zc75%2B%2FwK%2FUzqNfbMAxbUpZGDtltWSpfpr4%2FJHmj0y3TZZpGgWFw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c744edcbd8c5691-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":30968,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"18b63ae0449e9a94083435cfd1ee64de","sha1":"208c3ccd26aaa62496fe7d097289df13846899b9","sha256":"36eb518517fbff7718f7a72d765142b7e1e5403b3c6c6a3a8dace520e79d63ed","sha512":"00b11a4229c986b25b659be830ad477bef7e517a76297ba5cf7862100e4ab94426f1e54cba732897278a0f96d102df36d4b2b6f0d7b09abf5fef276c7c847ba4","ssdeep":"768:Ndf+RMCPskk8POI8BFN4UCguGO56bJ+eynGBwUA:NK3PskeI8zN47NB8TTA","tlshash":"ecd2d02a922ad434c6b2d9bcda7de1bf4e53fa5be66848cb758c51c701214b90f601e8","first_seen":"2025-11-29T10:23:48.816719Z","last_seen":"2026-03-19T00:03:44.268298Z","times_seen":27,"resource_available":false,"data":null}},"time_used":120,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":120,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"xcoin-trade.io","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tpzxygnpdjctomganeqr.supabase.co/rest/v1/chat_conversations?select=id,status\u0026user_id=eq.anon_cdb24dee-2038-4ad6-97a7-e16b2b18f497\u0026status=in.(active,waiting_manager,with_manager)\u0026order=created_at.desc\u0026limit=1","fqdn":"tpzxygnpdjctomganeqr.supabase.co","domain":"tpzxygnpdjctomganeqr.supabase.co","tld":"supabase.co"},"ip":{"addr":"172.64.149.246","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://xcoin-trade.io/","date":"2026-02-01T20:48:09.877Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"supabase.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 02 Jan 2026 06:20:04 GMT","end":"Thu, 02 Apr 2026 07:19:59 GMT"},"fingerprint":{"sha1":"53:7B:EA:AA:0A:13:9A:C5:94:1F:F6:35:89:F3:54:70:C4:08:C0:1D","sha256":"2F:FE:D0:12:7B:AB:9D:42:41:69:23:1F:06:96:BF:8E:3C:AB:2F:00:05:7D:6D:EE:4A:C0:18:C3:82:92:61:B4"}}},"request":{"raw":"GET /rest/v1/chat_conversations?select=id,status\u0026user_id=eq.anon_cdb24dee-2038-4ad6-97a7-e16b2b18f497\u0026status=in.(active,waiting_manager,with_manager)\u0026order=created_at.desc\u0026limit=1 HTTP/1.1\r\nHost: tpzxygnpdjctomganeqr.supabase.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://xcoin-trade.io/\r\nContent-Type: application/json\r\napikey: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJzdXBhYmFzZSIsInJlZiI6InRwenh5Z25wZGpjdG9tZ2FuZXFyIiwicm9sZSI6ImFub24iLCJpYXQiOjE3NjgxMzA1MjEsImV4cCI6MjA4MzcwNjUyMX0.tdpvbXQ1rQzIpjKkQvkTbaK6ITUGMJyKo9N4TTxQEZE\r\nAuthorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJzdXBhYmFzZSIsInJlZiI6InRwenh5Z25wZGpjdG9tZ2FuZXFyIiwicm9sZSI6ImFub24iLCJpYXQiOjE3NjgxMzA1MjEsImV4cCI6MjA4MzcwNjUyMX0.tdpvbXQ1rQzIpjKkQvkTbaK6ITUGMJyKo9N4TTxQEZE\r\nx-user-id: anon_cdb24dee-2038-4ad6-97a7-e16b2b18f497\r\nPrefer: return=minimal\r\nOrigin: https://xcoin-trade.io\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 01 Feb 2026 20:48:09 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 2\r\nserver: cloudflare\r\ncontent-range: */*\r\ncf-ray: 9c744edd78b07129-OSL\r\ncf-cache-status: DYNAMIC\r\naccess-control-allow-origin: https://xcoin-trade.io\r\ncontent-location: /chat_conversations?limit=1\u0026order=created_at.desc\u0026select=id%2Cstatus\u0026status=in.%28active%2Cwaiting_manager%2Cwith_manager%29\u0026user_id=eq.anon_cdb24dee-2038-4ad6-97a7-e16b2b18f497\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\naccess-control-expose-headers: Content-Encoding, Content-Location, Content-Range, Content-Type, Date, Location, Server, Transfer-Encoding, Range-Unit\r\ncontent-profile: public\r\nsb-gateway-version: 1\r\nsb-project-ref: tpzxygnpdjctomganeqr\r\nsb-request-id: 019c1af6-8671-705c-a583-0bc7155ba0ec\r\nx-envoy-attempt-count: 1\r\nx-envoy-upstream-service-time: 4\r\nset-cookie: __cf_bm=DupAjeXnkCEffpJw5JbsY3VO_vMq8rMCFNN7qYyNKP4-1769978889-1.0.1.1-3_uDpwHoqpPHsCbPvQHlZyhatWEzOre5esfcAxy3qeh5_uYMMRu.dGuMXMgrvfsBNNwAXBJ0ZSLlVXmI8FPzj1v9TEJyvgYHCdZFl7ihT6E; path=/; expires=Sun, 01-Feb-26 21:18:09 GMT; domain=.supabase.co; HttpOnly; Secure; SameSite=None\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]}],"data":{"size":2,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d751713988987e9331980363e24189ce","sha1":"97d170e1550eee4afc0af065b78cda302a97674c","sha256":"4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945","sha512":"b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af","ssdeep":"","tlshash":"c7100000000000000000000000000000000003000000c0000000000000000000000000","first_seen":"2023-03-08T00:02:47Z","last_seen":"2026-06-08T19:38:09.415326Z","times_seen":291086,"resource_available":true,"data":null}},"time_used":157,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":157,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}