{"report_id":"e899a15b-94f1-49fc-be0f-8a680d15e6a4","version":6,"status":"done","tags":[],"date":"2026-01-07T06:14:46Z","url":{"schema":"https","addr":"calvindrop.top","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"172.67.147.223","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"calvindrop.top/","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"title":"Calvin | Airdrop","dom":{"size":45505,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (31917)","md5":"214b113a45cfe9468323131c28fb3178","sha1":"41e6e6c77a4af9d8fd498275207acc34fbdb9dd8","sha256":"419f432683804570e8b168fb19227ff7ac8bff293f00848b63c7a5e3174ad7bd","sha512":"29b51e888d6cd44a9c8ea4a1c271cbccb4c5d4ce492f2c1833e4ab7de141855d5d90536e2bac3ee501a510e2e30c6acb92ad0aa7f99e19526e96e379611019d7","ssdeep":"768:mhzQH2L0r82It4uSRhKut5NFgl+FU+xHyvfSDIJPJWf3b8fzwZPROHXL0hDgmwcD:szqyrYFaFJbXnYwO","tlshash":"d91372a0f150043b7607a1ef5ad5af2d72b270a688276648f3fc85c1ebc6db79cb2454","dom_hash":"domhashd618707f540570417597929de30face6","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"calvindrop.top","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"172.67.147.223","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-11T06:14:46Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"calvindrop.top","ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-12-11","domain_rank":0,"first_seen":"2026-01-07T06:14:46.842995Z","last_seen":"2026-01-07T06:14:46.842995Z","alert_count":34,"request_count":17,"received_data":814541,"sent_data":12042,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-01-04T22:17:15.216142Z","alert_count":0,"request_count":2,"received_data":26468,"sent_data":960,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-01-04T22:14:09.841371Z","alert_count":0,"request_count":8,"received_data":164024,"sent_data":4280,"comment":"","tags":null,"fingerprints":null},{"fqdn":"lite-api.jup.ag","ip":{"addr":"3.164.240.106","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2021-09-15","domain_rank":1536175,"first_seen":"2025-06-01T22:48:15.859785Z","last_seen":"2026-01-02T17:11:36.845567Z","alert_count":0,"request_count":1,"received_data":3019,"sent_data":498,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"calvindrop.top/l/-g--calvin-airdrop2-a30be/50vro.js?2242z9q","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"dc5b02da1a77cde1bfb356c990a421ff","sha1":"44b74f1031d23bcebce438603d4bec3119382a55","sha256":"a4e8fc799aa5101c468d2af00464ba33cdbede6857a591efb47b31633b425085","sha512":"034e6a0b72e4f0c0da1dcc27a8617c8c00474e5c8967c59db15fd1b5e5d328a20f0eaa70a9a4e7902d77256edfdfbe2e8bbdbb97a2a152ea0ff2072b63a7fd42","ssdeep":"192:QAyqc0+TrYh24D8jGW4dDKya0wSV8FzIFPmn6DhkSX:zvqTrOSwwIFk6DhdX","tlshash":"76d1946835807032806b55c723e247a6783de589eb6380b172bc09e75f65ccd72dbb76","size":6429,"data":"","first_seen":"2026-01-04T23:52:14.515007Z","last_seen":"2026-01-07T06:14:56.887844Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ba53ea7776e7505339c6d2b9cd315d4f","sha1":"03a8702deb1c5610b8e90c22758873aff59b7268","sha256":"d240d45352a8e3095b42f546c69a306bc7656f18b36007a8607bdfdc2c85dad4","sha512":"12221cf3ded6679fe0dc3e5cacdc41a2cd169a9d6d4d602993c16fc263c3b6dd103becbeab521249ef46dd1a845b5d562dee48aed9d2f5bf06e9243cc4c1faaf","ssdeep":"","tlshash":"b0d05e651026420eb2301d815b9a7bc5376242724b24c5943f2f8702bf3aa0bc7a8fcc","size":277,"data":"","first_seen":"2026-01-04T23:52:14.538825Z","last_seen":"2026-01-07T06:14:56.90184Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/_nuxt/assets/index.js?5ezc7fs","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8ac5cd7e91ee93d45b0c4ebcbc2d1bb4","sha1":"3263d0d086e96d582f9032403212f0ed0c642264","sha256":"3700476893660c1be38c8b84b9b72df1c9a4c6bbfc364b28663e0c1673311785","sha512":"d6a3392417fb9e8ec7ad779a7f614577767b9e151901772bbbfd7a5cb5cf8cab11d82875a7fbaf92533a5564f352cf66b07b030127642c3d187a6ddf460a00f1","ssdeep":"12288:oAfA8rJA7kNMpXGrIOPHjy0Fy1bxTHiSUCKcXlVXAwto:o6A8rJA7lpXGrIOPHjyd1bx+WKc1Vwwu","tlshash":"a6d4d8e7a1d1a16a3c297a872fe13c3838d3e760803c64beb656dfc0d7605e14355a6b","size":656357,"data":"","first_seen":"2026-01-05T17:18:38.574387Z","last_seen":"2026-01-07T13:38:09.707878Z","times_seen":140,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"d49f3314d79f9d845e60419317f4dac7","sha1":"e85a286b8e56c68aae0d93dadda67dbda79d1451","sha256":"15781f07ce90127ca879ea0fbe282ac5172c876223e783ef5455eca0a313fd80","sha512":"a9264f8cdf4909f812d833d622aa57b665a140e71326a74fd6eaa85550011fa6a54a19884053c17c80169dcec1e547c6d4f0c7ddd9d9317e4dc6781cfb2a8e3f","ssdeep":"12288:zs4FgAg39MLCgdXG77sOPHPyk0BlpP5XU28GOghjDVN:zs4FgAg39MLbdXG7YOPHPy5lpPCGOgh3","tlshash":"02d408e8a1d2a13b6c2d62cb3fd13c883913e73180bc68adf6a4d7c1db505d25159a6f","size":629711,"data":"","first_seen":"2026-01-05T17:18:38.576463Z","last_seen":"2026-01-07T13:38:09.713907Z","times_seen":140,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"calvindrop.top/_nuxt/assets/index.js?5ezc7fs","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:22.864Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /_nuxt/assets/index.js?5ezc7fs HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:23 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nvary: accept-encoding\r\npriority: u=3,i=?0\r\nlast-modified: Mon, 05 Jan 2026 13:02:07 GMT\r\netag: W/\"695bb64f-a0917\"\r\ncache-control: public, max-age=300, must-revalidate\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=171%2FN9Huav4Yzokf1%2FmhpAkRpzhrdiD8ms0%2F6%2BomBGs2AZBPCI8qkZfLYH7%2BwS5u2yJdph9%2F%2BsIj6orm4lXi4T6iyo%2BO7uxIP%2B88WJEI\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ba15088dfd632fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":657687,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (32972), with NEL line terminators","md5":"173a8dc9bb251bc670fdc899a2d3a565","sha1":"be3834ae26ffb4449ef121a74af84a6f727d3624","sha256":"2b2b2599b3964c2a3282c6162ce02718a2f042fdcbf1e39fc355f977f71e3453","sha512":"2526d5ccd1dc0f708bbcd5d3c12474bc6f37bcf7b1a4c83a38f9a2ac3b102a92417b2d3574ed7340b743b36483ae00deecc0bd64de86d78c9c0357e890eb2cbd","ssdeep":"12288:r0fA8uNMpXGrIOPHjy0Fy1bxTHiSUCKcXtOVHs:rWA8vpXGrIOPHjyd1bx+WKcsM","tlshash":"e1f494c360928365baac79a31be13c613cefd6e2903c7c7d6b82e9c68750561d34497b","first_seen":"2026-01-07T06:14:51.876986Z","last_seen":"2026-01-07T06:14:51.876986Z","times_seen":1,"resource_available":false,"data":null}},"time_used":566,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":307,"receive":259,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/l/-g--calvin-airdrop2-a30be/images/orca.svg","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:22.882Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /l/-g--calvin-airdrop2-a30be/images/orca.svg HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:22 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Thu, 11 Dec 2025 05:07:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\nage: 195758\r\ncf-cache-status: HIT\r\netag: W/\"693a518a-eab\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=grhsVAWMEE317UTkADxb6FVBk3aThVfgvPWCa%2BFiO2bRSYy%2FcwYQMuqRxc7gT7XuL51UgAchT804V%2BGISC5InwpMjv4K5yW5VKcJZY1l\"}]}\r\ncf-ray: 9ba15088dfdd32fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3755,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"399f1f0b7b8310ee13f5f344cf8d1194","sha1":"a2f3f47fce8eb5ad2b1865446591c3087c693ca6","sha256":"1b03e12e25d6722e35e48e8f63e6b740f004b74d828e8ad6d79c07615bcfe12a","sha512":"3b7b4b431ba516221ad79743433630dadb9ce869f4e6401651982bea4d87ebe2a18248a2722fe1d8fac295a89f235371f30314e29c9de56eb32e5f6bf143b676","ssdeep":"","tlshash":"157173ebb3c8a2c0d60ae3f49b2a54f9360316f94623c228c6e50f65f99209dc94c8c5","first_seen":"2025-09-02T07:43:09.392798Z","last_seen":"2026-06-11T15:48:07.213579Z","times_seen":449,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:23.869Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 07 Jan 2026 06:14:23 GMT\r\ndate: Wed, 07 Jan 2026 06:14:23 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10108,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"e85517dadd43448782d60d7f207fddce","sha1":"6cd31f870727ba8090fac9602b42524b4139a619","sha256":"88fbd0b95222be288587a149c324189ecbd8de0d6f0c94f528ec53857e52b66c","sha512":"5edc78df5bb062a9a2e1ea6724c14dd7eb80d77ea0fa9572de4bb0d52bbd0d163815b08a1ae77084f99fbefbb07715da1c61f0bb36fb498710c91387792955f8","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExlONEhYO3RrxGx:vXuM0p2+4","tlshash":"04227792002ba400ab971dc233cf7f3aaece50896085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-10T18:13:11.065101Z","last_seen":"2026-06-13T22:37:02.406398Z","times_seen":30207,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-07T06:14:22.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 07 Jan 2026 06:14:22 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: no-cache, no-store, must-revalidate\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FRGyRv0q%2FvwNJ68BMZBg146bjjU64tzGi%2FF9oIkuhZX2hJW1gVdMtE8b1YAKLK%2BRWqax7Lv%2BXk4CHBdIVe78qQelRg5FUdZyFTYPPw%3D%3D\"}]}\r\nexpires: Wed, 07 Jan 2026 06:14:22 GMT\r\nset-cookie: _subid=1sjos4f2fnaia; expires=Sat, 07 Feb 2026 06:14:22 GMT; path=/\nfab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188; expires=Thu, 08 Jan 2026 06:14:22 GMT; path=/\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9ba150852c47b521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}],"data":{"size":26195,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (24328), with CRLF line terminators","md5":"95402830e979a0eb92eb02829a0354a2","sha1":"ee6e2cacbdae21da8e1b23dd4c34ddb1b670a713","sha256":"c7b271105d8083eea04d712a9c3e7b593d6d7916ed2ec0a501ad670a6062146b","sha512":"9aa31b93744e183f6036e8848848a94279e078984ee674c154a1bf0a0630cedf3e9161a2c25a714b7bbb5f2b4c35d9f9cc7af56d1017c1580547937f037e260e","ssdeep":"384:51YWtqY+SAaKodlU74fyZQwq/TA2oDRYX83alqr3kW4VVYVGux+z8gdOHYc1RcWG:JAaKDyyCwwA2cRYXnCUWQ8YwE","tlshash":"a2c2a4b11254003ae51789e7af35732976f372faa97b0544e7fc4a94a7e5c8ae8330c4","first_seen":"2026-01-04T23:52:14.534976Z","last_seen":"2026-01-07T06:14:56.884701Z","times_seen":3,"resource_available":false,"data":null}},"time_used":449,"timings":{"blocked":74,"dns":59,"connect":1,"send":0,"wait":294,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/manrope/v20/xn7gYHE41ni1AdIRggexSg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:23.362Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:54:11 GMT","end":"Wed, 25 Feb 2026 15:54:10 GMT"},"fingerprint":{"sha1":"21:10:1E:48:79:6B:E7:49:AB:BB:0E:38:86:C8:4D:74:7B:42:EE:BB","sha256":"0A:58:99:06:D8:BC:1C:BD:3E:CE:EF:7D:D6:D2:50:2D:1E:DE:8F:87:97:56:72:B9:3F:21:88:AC:79:3A:75:03"}}},"request":{"raw":"GET /s/manrope/v20/xn7gYHE41ni1AdIRggexSg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://calvindrop.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 24836\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 02 Jan 2026 00:54:48 GMT\r\nexpires: Sat, 02 Jan 2027 00:54:48 GMT\r\ncache-control: public, max-age=31536000\r\nage: 451175\r\nlast-modified: Thu, 04 Sep 2025 17:08:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":24836,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 24836, version 1.0","md5":"938c6e8019b69313372c47dbb7a7c930","sha1":"b42951014c5eca12749d87a4706caf22dc4fe081","sha256":"a30ddcd349703aff7464c34bef3fffdff405ee50c113440d7c8693c02d210972","sha512":"5537c005cd8f321f26fe67f6292b3ec14e88ff4b2365311628dbbe4753e01e568f6881b9f2e7d71e8e6b2c261ed25f372829dd28f89f865ce574b4e1fec29614","ssdeep":"768:3KQaj5c95F1QmIwa55Go1COpZLpkkM46CU+YIC:ahj5cXow65xCM5pkkM468YB","tlshash":"a2b2f105ee49b3d4b276f1fcfa802884179282f27dabda8f3f2015981dd8e5b8d45320","first_seen":"2025-06-02T20:09:41.98255Z","last_seen":"2026-06-13T21:18:54.14031Z","times_seen":27446,"resource_available":false,"data":null}},"time_used":269,"timings":{"blocked":121,"dns":1,"connect":14,"send":0,"wait":18,"receive":8,"ssl":101},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/manrope/v20/xn7gYHE41ni1AdIRggOxSuXd.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:23.389Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:54:11 GMT","end":"Wed, 25 Feb 2026 15:54:10 GMT"},"fingerprint":{"sha1":"21:10:1E:48:79:6B:E7:49:AB:BB:0E:38:86:C8:4D:74:7B:42:EE:BB","sha256":"0A:58:99:06:D8:BC:1C:BD:3E:CE:EF:7D:D6:D2:50:2D:1E:DE:8F:87:97:56:72:B9:3F:21:88:AC:79:3A:75:03"}}},"request":{"raw":"GET /s/manrope/v20/xn7gYHE41ni1AdIRggOxSuXd.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://calvindrop.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 14500\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 02 Jan 2026 02:34:32 GMT\r\nexpires: Sat, 02 Jan 2027 02:34:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 445191\r\nlast-modified: Thu, 04 Sep 2025 17:09:13 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14500,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14500, version 1.0","md5":"e58febde317b69ceb51690ea201850c9","sha1":"d8fc94bf7a39043a7759bd564a7e16b3ea080736","sha256":"c268b459a9329e59fecf39a17618efd44c71735532048d60b12aab76a8c14914","sha512":"af17f0a6913d974bd7d38a060549dacd158c667abb08f830d44d302c1a1cb4f8106eeeb772d2b4066be2c5a1e763d26042c707343770f5e84b0f5165cab9d96b","ssdeep":"384:4VvSHMmDtGjtHrBRvGjLWPSNRXZpyJ+kC18bZ:4VvSsmDt6LBROj1RXZ4J+318bZ","tlshash":"8a52b05ef04e86f0b51f2a7ece5c6a1153725e56134f2e50e967b0c8c75e82a1e27142","first_seen":"2025-06-05T11:45:07.756161Z","last_seen":"2026-06-13T10:23:16.682266Z","times_seen":2811,"resource_available":false,"data":null}},"time_used":244,"timings":{"blocked":103,"dns":1,"connect":18,"send":0,"wait":31,"receive":2,"ssl":76},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/l/-g--calvin-airdrop2-a30be/bafybeifn4npwupbvhicqnhxo2m35llakwkat5skqppnzbbqrujlcdfodgm.png","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:22.866Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /l/-g--calvin-airdrop2-a30be/bafybeifn4npwupbvhicqnhxo2m35llakwkat5skqppnzbbqrujlcdfodgm.png HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:22 GMT\r\ncontent-type: image/png\r\ncontent-length: 7730\r\npriority: u=4,i=?0\r\nlast-modified: Thu, 11 Dec 2025 05:07:22 GMT\r\netag: \"693a518a-1e32\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\naccept-ranges: bytes\r\nage: 195758\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QmV7BWQ5PzVpQq%2F5As6RryPrzeq9HHjgNmRs26xTg%2BALr26NamVWavydpgiANNL0GjMsOYvZClYZNiGBqLckJpDPtpUX6xI4rgEq7J6Z\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9ba15088dfd732fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7730,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"5fee035b19879b364310a80c262096ad","sha1":"5db370e322bb52aa99607ffca7275be130835ef2","sha256":"eddaf97dd39b997c5f8ddcc68f051c5f08d6dc7288459c55f9cc6a593de6d6a0","sha512":"7880a48c6ad1d690fb28822847f7e89b315bf20399b809be616962baaac5852a80dbbd0d8a7034880462316fb373ee9da9289079e1a0420c85f9486ac0726e81","ssdeep":"96:TbM56LCopzcZDr8wNwD5gn61+Fw2/ErnQOgKSFnmj8J8O5r6UgQWzftdJ9MC:64Co10YGnjFN/0nQOgBFXt16cWzxSC","tlshash":"19f1ae60df28178bb609036d26f10428b46fdc8b5c7263ec609a7e70344afc437a7886","first_seen":"2026-01-04T23:52:14.51088Z","last_seen":"2026-01-07T06:14:56.895803Z","times_seen":3,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/l/-g--calvin-airdrop2-a30be/images/metaplex.svg","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:22.880Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /l/-g--calvin-airdrop2-a30be/images/metaplex.svg HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:22 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Thu, 11 Dec 2025 05:07:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\nage: 195758\r\ncf-cache-status: HIT\r\netag: W/\"693a518a-ad6\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8%2FFTAEUOcN09wQfgjf57k6Dv9Cwv5Y9IuJLDH60WQxQVB%2FVDtyzMQgsbF9vVgPYwZ33XdwZ0M4aN2%2FdXCRypqQ4UGN0oop1g5qQNHN1X\"}]}\r\ncf-ray: 9ba15088dfdc32fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2774,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"14568298cbae655fd79fb65e4d75bebf","sha1":"37e12fe64bcc11848b8c979aed1164a33d726670","sha256":"d70763867ccbbd3ca57c1a327323a395798ed5c821d26c02e71667d46ea34086","sha512":"c76d53ca8cc2298b9fe604433f1ca76a6464939ed19640fc6262e54287e356a43aef2883212a2b1358d089843f8da724db7128bb5dce5e3f27da890fbe59e227","ssdeep":"","tlshash":"985153c1615827e1d8048be0df2e65b6227b1af4be82ea43f1569df23cc44de0d58bc6","first_seen":"2025-09-02T07:43:09.380851Z","last_seen":"2026-06-11T15:48:07.252049Z","times_seen":450,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/manrope/v20/xn7gYHE41ni1AdIRggexSg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:23.377Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:54:11 GMT","end":"Wed, 25 Feb 2026 15:54:10 GMT"},"fingerprint":{"sha1":"21:10:1E:48:79:6B:E7:49:AB:BB:0E:38:86:C8:4D:74:7B:42:EE:BB","sha256":"0A:58:99:06:D8:BC:1C:BD:3E:CE:EF:7D:D6:D2:50:2D:1E:DE:8F:87:97:56:72:B9:3F:21:88:AC:79:3A:75:03"}}},"request":{"raw":"GET /s/manrope/v20/xn7gYHE41ni1AdIRggexSg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://calvindrop.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 24836\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 02 Jan 2026 00:54:48 GMT\r\nexpires: Sat, 02 Jan 2027 00:54:48 GMT\r\ncache-control: public, max-age=31536000\r\nage: 451175\r\nlast-modified: Thu, 04 Sep 2025 17:08:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":24836,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 24836, version 1.0","md5":"938c6e8019b69313372c47dbb7a7c930","sha1":"b42951014c5eca12749d87a4706caf22dc4fe081","sha256":"a30ddcd349703aff7464c34bef3fffdff405ee50c113440d7c8693c02d210972","sha512":"5537c005cd8f321f26fe67f6292b3ec14e88ff4b2365311628dbbe4753e01e568f6881b9f2e7d71e8e6b2c261ed25f372829dd28f89f865ce574b4e1fec29614","ssdeep":"768:3KQaj5c95F1QmIwa55Go1COpZLpkkM46CU+YIC:ahj5cXow65xCM5pkkM468YB","tlshash":"a2b2f105ee49b3d4b276f1fcfa802884179282f27dabda8f3f2015981dd8e5b8d45320","first_seen":"2025-06-02T20:09:41.98255Z","last_seen":"2026-06-13T21:18:54.14031Z","times_seen":27446,"resource_available":false,"data":null}},"time_used":303,"timings":{"blocked":137,"dns":0,"connect":29,"send":0,"wait":24,"receive":2,"ssl":98},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/manrope/v20/xn7gYHE41ni1AdIRggOxSuXd.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:23.396Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:54:11 GMT","end":"Wed, 25 Feb 2026 15:54:10 GMT"},"fingerprint":{"sha1":"21:10:1E:48:79:6B:E7:49:AB:BB:0E:38:86:C8:4D:74:7B:42:EE:BB","sha256":"0A:58:99:06:D8:BC:1C:BD:3E:CE:EF:7D:D6:D2:50:2D:1E:DE:8F:87:97:56:72:B9:3F:21:88:AC:79:3A:75:03"}}},"request":{"raw":"GET /s/manrope/v20/xn7gYHE41ni1AdIRggOxSuXd.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://calvindrop.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 14500\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 02 Jan 2026 02:34:32 GMT\r\nexpires: Sat, 02 Jan 2027 02:34:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 445191\r\nlast-modified: Thu, 04 Sep 2025 17:09:13 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14500,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14500, version 1.0","md5":"e58febde317b69ceb51690ea201850c9","sha1":"d8fc94bf7a39043a7759bd564a7e16b3ea080736","sha256":"c268b459a9329e59fecf39a17618efd44c71735532048d60b12aab76a8c14914","sha512":"af17f0a6913d974bd7d38a060549dacd158c667abb08f830d44d302c1a1cb4f8106eeeb772d2b4066be2c5a1e763d26042c707343770f5e84b0f5165cab9d96b","ssdeep":"384:4VvSHMmDtGjtHrBRvGjLWPSNRXZpyJ+kC18bZ:4VvSsmDt6LBROj1RXZ4J+318bZ","tlshash":"8a52b05ef04e86f0b51f2a7ece5c6a1153725e56134f2e50e967b0c8c75e82a1e27142","first_seen":"2025-06-05T11:45:07.756161Z","last_seen":"2026-06-13T10:23:16.682266Z","times_seen":2811,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":91,"dns":0,"connect":0,"send":0,"wait":32,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/l/-g--calvin-airdrop2-a30be/50vro.js?2242z9q","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:22.889Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /l/-g--calvin-airdrop2-a30be/50vro.js?2242z9q HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:22 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nvary: accept-encoding\r\npriority: u=3,i=?0\r\nlast-modified: Thu, 11 Dec 2025 05:07:22 GMT\r\netag: W/\"693a518a-191d\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: gzip\r\nage: 195758\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=t1ExDi9KErcZ%2BHe0SUVcBmjuZlw56dsGjDFcteKki6aeKx0tF%2B0aW9ppw0EM8ZMznAMDQeKHwZ5eK%2BpnIZECLa1uW8mgP1xBtsTm1l6H\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ba15088dfe032fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6429,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (6429), with no line terminators","md5":"dc5b02da1a77cde1bfb356c990a421ff","sha1":"44b74f1031d23bcebce438603d4bec3119382a55","sha256":"a4e8fc799aa5101c468d2af00464ba33cdbede6857a591efb47b31633b425085","sha512":"034e6a0b72e4f0c0da1dcc27a8617c8c00474e5c8967c59db15fd1b5e5d328a20f0eaa70a9a4e7902d77256edfdfbe2e8bbdbb97a2a152ea0ff2072b63a7fd42","ssdeep":"192:QAyqc0+TrYh24D8jGW4dDKya0wSV8FzIFPmn6DhkSX:zvqTrOSwwIFk6DhdX","tlshash":"76d1946835807032806b55c723e247a6783de589eb6380b172bc09e75f65ccd72dbb76","first_seen":"2026-01-04T23:52:14.515007Z","last_seen":"2026-01-07T06:14:56.887844Z","times_seen":3,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Manrope:wght@200;300;400;500;600;700;800\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:22.980Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /css2?family=Manrope:wght@200;300;400;500;600;700;800\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 07 Jan 2026 06:14:23 GMT\r\ndate: Wed, 07 Jan 2026 06:14:23 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15008,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"0ad4e9cc8948899d25eb47a31cace209","sha1":"c8a2ded69bfa8d2f4293fd3324009b36b4050256","sha256":"73ef72e9f525460bf321f3797f3c6d37aa65ea44ff78062c406fca0d98a55fc8","sha512":"1467da169a56c9e04d571063cfb541534f96920a0645641209b6e0dfcb36ce1313811515479a11731e59d2344622478ed1602dadf4531184524e611cddc867d7","ssdeep":"192:BJRKV3II8XDJi5V3PP8wiJDEV3WW89RJ8rV3118+4JlOV3MM8b/JGNV3TT80uJH0:bMEmkwU+ME02EQJ","tlshash":"7962a9900027e804eb470cd677ce7e39ad4e61567491c5ba5bfe1cd8adebd222320b5e","first_seen":"2025-09-05T04:53:42.941084Z","last_seen":"2026-06-13T17:49:08.561996Z","times_seen":3197,"resource_available":false,"data":null}},"time_used":485,"timings":{"blocked":223,"dns":1,"connect":20,"send":0,"wait":32,"receive":0,"ssl":205},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/manrope/v20/xn7gYHE41ni1AdIRggexSg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:23.392Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:54:11 GMT","end":"Wed, 25 Feb 2026 15:54:10 GMT"},"fingerprint":{"sha1":"21:10:1E:48:79:6B:E7:49:AB:BB:0E:38:86:C8:4D:74:7B:42:EE:BB","sha256":"0A:58:99:06:D8:BC:1C:BD:3E:CE:EF:7D:D6:D2:50:2D:1E:DE:8F:87:97:56:72:B9:3F:21:88:AC:79:3A:75:03"}}},"request":{"raw":"GET /s/manrope/v20/xn7gYHE41ni1AdIRggexSg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://calvindrop.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 24836\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 02 Jan 2026 00:54:48 GMT\r\nexpires: Sat, 02 Jan 2027 00:54:48 GMT\r\ncache-control: public, max-age=31536000\r\nage: 451175\r\nlast-modified: Thu, 04 Sep 2025 17:08:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":24836,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 24836, version 1.0","md5":"938c6e8019b69313372c47dbb7a7c930","sha1":"b42951014c5eca12749d87a4706caf22dc4fe081","sha256":"a30ddcd349703aff7464c34bef3fffdff405ee50c113440d7c8693c02d210972","sha512":"5537c005cd8f321f26fe67f6292b3ec14e88ff4b2365311628dbbe4753e01e568f6881b9f2e7d71e8e6b2c261ed25f372829dd28f89f865ce574b4e1fec29614","ssdeep":"768:3KQaj5c95F1QmIwa55Go1COpZLpkkM46CU+YIC:ahj5cXow65xCM5pkkM468YB","tlshash":"a2b2f105ee49b3d4b276f1fcfa802884179282f27dabda8f3f2015981dd8e5b8d45320","first_seen":"2025-06-02T20:09:41.98255Z","last_seen":"2026-06-13T21:18:54.14031Z","times_seen":27446,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":119,"dns":1,"connect":25,"send":0,"wait":17,"receive":8,"ssl":85},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/l/-g--calvin-airdrop2-a30be/images/bonk.svg","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:22.872Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /l/-g--calvin-airdrop2-a30be/images/bonk.svg HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:22 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Thu, 11 Dec 2025 05:07:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\nage: 195758\r\ncf-cache-status: HIT\r\netag: W/\"693a518a-314a\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=At1gjluHX2gRRkghZAK%2BHDdcEDMAEVGQMKifQX9cl2ZEmrUKkOgrYG8G4VYZV4DtQEG34xx%2FOTgn%2FBvdFZnbyb814%2F%2BHnmC2ka0ihESo\"}]}\r\ncf-ray: 9ba15088dfd932fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12618,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"32264f4b5ef61d12d6c8c7585e844dcc","sha1":"28f5308df3de8e7435ed9f29c07271102455bffb","sha256":"22c0b5638dc650cc5fabd4b50dd2c24b0dccdc305ea37a8dc15aaf856b58a1c8","sha512":"33d0b30212a2408e4f0b435257efd055b0a0f8a3aa404e8c666de12528a446b7cc056270e6b3f79241626436351e520f046fb37d28bc04e28178d45a1a2f4b52","ssdeep":"192:FDLeI6N6VFklwNwKIxv6Cqc9I4jnMnX6TVlAaPyvGONdRvmiVTzvjxqVASFkM0/e:9Lm9wwtiCqVMMqTVlhPIzHeiVHvj6mrK","tlshash":"cb4297eab3a9e3d4f805e7f4872768743b6b2cfd2e20c59947d5aca0e95109d4858cc2","first_seen":"2025-09-02T07:43:09.420529Z","last_seen":"2026-06-11T15:48:07.248239Z","times_seen":448,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/l/-g--calvin-airdrop2-a30be/hr5ye.css?iz161th","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:22.862Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /l/-g--calvin-airdrop2-a30be/hr5ye.css?iz161th HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:22 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\nlast-modified: Thu, 11 Dec 2025 05:07:22 GMT\r\netag: W/\"693a518a-b129\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: gzip\r\nage: 195758\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Obx4kHBwhlV9CbX%2FH4O8xxGEn3%2Bz1HhElwBWWFbhvnpfFIqxg8KrZsUQm8%2BcId9%2B5r8Dl0cePOEpvRBI8Ucxwd%2Bm82RxCWnTUOodgKu3\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ba15088dfd532fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":45353,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"f5325520c1f90c75de478a5deec0c14a","sha1":"982bce3c2e253973f526d523503166b82d5fb562","sha256":"7d93c1b1f277ca432f9e51035c0eb52a7755ea1578b4f8c796414a72bc7d694a","sha512":"db76b6cfe700b07778a49f37b5b4ba8ea7aa5ce29000f72aba1b3a199c9c64ce54ba7299e199233eb219b48bfd00eb86afe309997d492f9beb07477c07609be3","ssdeep":"768:YtJmzqholLi/LSQ5WCQPt9HFJ+kkahJuJjYCaN5BbLk:lCQPt9HWjok","tlshash":"83130019e60611066537eba46ff2071cfb9980138b0291b97fcd72994ff61a896b1fcc","first_seen":"2026-01-04T23:52:14.50875Z","last_seen":"2026-01-07T06:14:56.885788Z","times_seen":3,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/l/-g--calvin-airdrop2-a30be/images/pyth.svg","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:22.884Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /l/-g--calvin-airdrop2-a30be/images/pyth.svg HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:22 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Thu, 11 Dec 2025 05:07:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\nage: 195758\r\ncf-cache-status: HIT\r\netag: W/\"693a518a-912\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=V9onrT3YfSbPJwhIGsGLLJvdc9%2B72PWZAtwdZB%2FIw7d5G5aHcC5HfOY8CHLMrHCb7HAHRKQzJoLJxCKVjjfqiBl8Sw2CvTsu3gMOQu0T\"}]}\r\ncf-ray: 9ba15088dfde32fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2322,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"37d619de40a237df97301e340b9b2447","sha1":"4503d4caddb600c467c92cb18cd5b2c13a056236","sha256":"e5e5d3c3bccd9d67b02f2ae4335e1b9f7add851b0df03eea4376ca8f39267a62","sha512":"d82646626adbee5cc7c9a709bd37b8eb8026eca69112bccd16e0b5791182ec16d8d967eee4aa99399cee3594d97bf5855bbd9fd7255a7093e090258990879db9","ssdeep":"","tlshash":"f541555122ac93e49906a7c4e715f0b2755328fd6883ca10ea32bb70b4505df8dd98c4","first_seen":"2025-09-02T07:43:09.414801Z","last_seen":"2026-06-11T15:48:07.215488Z","times_seen":448,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/manrope/v20/xn7gYHE41ni1AdIRggOxSuXd.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:23.393Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:54:11 GMT","end":"Wed, 25 Feb 2026 15:54:10 GMT"},"fingerprint":{"sha1":"21:10:1E:48:79:6B:E7:49:AB:BB:0E:38:86:C8:4D:74:7B:42:EE:BB","sha256":"0A:58:99:06:D8:BC:1C:BD:3E:CE:EF:7D:D6:D2:50:2D:1E:DE:8F:87:97:56:72:B9:3F:21:88:AC:79:3A:75:03"}}},"request":{"raw":"GET /s/manrope/v20/xn7gYHE41ni1AdIRggOxSuXd.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://calvindrop.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 14500\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 02 Jan 2026 02:34:32 GMT\r\nexpires: Sat, 02 Jan 2027 02:34:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 445191\r\nlast-modified: Thu, 04 Sep 2025 17:09:13 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14500,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14500, version 1.0","md5":"e58febde317b69ceb51690ea201850c9","sha1":"d8fc94bf7a39043a7759bd564a7e16b3ea080736","sha256":"c268b459a9329e59fecf39a17618efd44c71735532048d60b12aab76a8c14914","sha512":"af17f0a6913d974bd7d38a060549dacd158c667abb08f830d44d302c1a1cb4f8106eeeb772d2b4066be2c5a1e763d26042c707343770f5e84b0f5165cab9d96b","ssdeep":"384:4VvSHMmDtGjtHrBRvGjLWPSNRXZpyJ+kC18bZ:4VvSsmDt6LBROj1RXZ4J+318bZ","tlshash":"8a52b05ef04e86f0b51f2a7ece5c6a1153725e56134f2e50e967b0c8c75e82a1e27142","first_seen":"2025-06-05T11:45:07.756161Z","last_seen":"2026-06-13T10:23:16.682266Z","times_seen":2811,"resource_available":false,"data":null}},"time_used":280,"timings":{"blocked":124,"dns":1,"connect":30,"send":0,"wait":23,"receive":1,"ssl":93},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/api/config","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:23.876Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /api/config HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://calvindrop.top/\r\ncontent-language: en-US,q=0.8;en\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:24 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FN9ECmVEMUxA6k7dghHcpq%2B6ZmmtCzgCgrLeUMBGTbOxJ17dSoTDs%2BMHJHirCTr0AeTSFvSCkU2912lp3AIJC77%2BK89b0zIzFN7aEWJZ\"}]}\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ba1508f283432fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":285,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"data","md5":"c48629e9e49d55379652d0d7169e3207","sha1":"bd84658f9a946f51368af182fb350427f1ce99b9","sha256":"922f5384fe7675ffcc4d95fcdb7f0e3df096867b4086d3e2317a278cd302dadf","sha512":"14d17394f6dbe789701107c61ac17df7cb760e597b0369f10d082ceac507e2258a57cee09f56c65aa34d869c014e7c8282fd9a869a72aa4ad5b2359dcc2ed6e2","ssdeep":"","tlshash":"74e0232e2944a3766877d3f24151530d31d55230b8de8a11c0300b477838f19377fa00","first_seen":"2026-01-07T06:14:51.900167Z","last_seen":"2026-01-07T06:14:56.881743Z","times_seen":2,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/l/-g--calvin-airdrop2-a30be/bafybeifn4npwupbvhicqnhxo2m35llakwkat5skqppnzbbqrujlcdfodgm.png","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:24.239Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /l/-g--calvin-airdrop2-a30be/bafybeifn4npwupbvhicqnhxo2m35llakwkat5skqppnzbbqrujlcdfodgm.png HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:24 GMT\r\ncontent-type: image/png\r\ncontent-length: 7730\r\npriority: u=6,i=?0\r\nlast-modified: Thu, 11 Dec 2025 05:07:22 GMT\r\netag: \"693a518a-1e32\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\naccept-ranges: bytes\r\nage: 195759\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EXQRLbwwhuMC3FAeugJiD0TjJbVtOH7U0vQxVAcfF2ADHSeMLrf3Oh2BUtQv8D%2B2I68%2BJb6c2k88Dx3tKL6vKLCY9PSaYvopZnrcnB0O\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9ba15091787b32fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7730,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"5fee035b19879b364310a80c262096ad","sha1":"5db370e322bb52aa99607ffca7275be130835ef2","sha256":"eddaf97dd39b997c5f8ddcc68f051c5f08d6dc7288459c55f9cc6a593de6d6a0","sha512":"7880a48c6ad1d690fb28822847f7e89b315bf20399b809be616962baaac5852a80dbbd0d8a7034880462316fb373ee9da9289079e1a0420c85f9486ac0726e81","ssdeep":"96:TbM56LCopzcZDr8wNwD5gn61+Fw2/ErnQOgKSFnmj8J8O5r6UgQWzftdJ9MC:64Co10YGnjFN/0nQOgBFXt16cWzxSC","tlshash":"19f1ae60df28178bb609036d26f10428b46fdc8b5c7263ec609a7e70344afc437a7886","first_seen":"2026-01-04T23:52:14.51088Z","last_seen":"2026-01-07T06:14:56.895803Z","times_seen":3,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/l/-g--calvin-airdrop2-a30be/images/jito.svg","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:22.875Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /l/-g--calvin-airdrop2-a30be/images/jito.svg HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:22 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Thu, 11 Dec 2025 05:07:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\nage: 195758\r\ncf-cache-status: HIT\r\netag: W/\"693a518a-779\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2sLjJ2%2FL9vwX2Km1ytCprXnUVCMVdyWNr6hNMtk6z8oOm68LEOg2q7wQDwGdczEKdGWyUqzPErzusQq9aSAcisCDT3AiwpRq9l%2BF2vzN\"}]}\r\ncf-ray: 9ba15088dfda32fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1913,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b555eeb2c89878019ca271ce239f5144","sha1":"4689fc8b3d997acabf01e06139cdb5d44fd3b7bb","sha256":"5daa8b44652cf3cca0e22528f3e8b09a4a83c071ceb68e11af6138b240220615","sha512":"b3758eff6e3f56a6b9a2189b1fa55ad8af57fe46c233ad62db30dcde00f4333128ad0b96e0730cd36609b70ffe1e875509cd6891cd423dc3f0b9f435d3b0bf83","ssdeep":"","tlshash":"59410360a26d57a4a104ebe04b1a64762e9322f7352286284b9fd97864831df5cecdc9","first_seen":"2025-09-02T07:43:09.3868Z","last_seen":"2026-06-11T15:48:07.240197Z","times_seen":448,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/manrope/v20/xn7gYHE41ni1AdIRggexSg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:23.395Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:54:11 GMT","end":"Wed, 25 Feb 2026 15:54:10 GMT"},"fingerprint":{"sha1":"21:10:1E:48:79:6B:E7:49:AB:BB:0E:38:86:C8:4D:74:7B:42:EE:BB","sha256":"0A:58:99:06:D8:BC:1C:BD:3E:CE:EF:7D:D6:D2:50:2D:1E:DE:8F:87:97:56:72:B9:3F:21:88:AC:79:3A:75:03"}}},"request":{"raw":"GET /s/manrope/v20/xn7gYHE41ni1AdIRggexSg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://calvindrop.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 24836\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 02 Jan 2026 00:54:48 GMT\r\nexpires: Sat, 02 Jan 2027 00:54:48 GMT\r\ncache-control: public, max-age=31536000\r\nage: 451175\r\nlast-modified: Thu, 04 Sep 2025 17:08:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":24836,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 24836, version 1.0","md5":"938c6e8019b69313372c47dbb7a7c930","sha1":"b42951014c5eca12749d87a4706caf22dc4fe081","sha256":"a30ddcd349703aff7464c34bef3fffdff405ee50c113440d7c8693c02d210972","sha512":"5537c005cd8f321f26fe67f6292b3ec14e88ff4b2365311628dbbe4753e01e568f6881b9f2e7d71e8e6b2c261ed25f372829dd28f89f865ce574b4e1fec29614","ssdeep":"768:3KQaj5c95F1QmIwa55Go1COpZLpkkM46CU+YIC:ahj5cXow65xCM5pkkM468YB","tlshash":"a2b2f105ee49b3d4b276f1fcfa802884179282f27dabda8f3f2015981dd8e5b8d45320","first_seen":"2025-06-02T20:09:41.98255Z","last_seen":"2026-06-13T21:18:54.14031Z","times_seen":27446,"resource_available":false,"data":null}},"time_used":124,"timings":{"blocked":92,"dns":0,"connect":0,"send":0,"wait":25,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/api/is-banned","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:23.874Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /api/is-banned HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://calvindrop.top/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:24 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oUFQ3gs6tq84qeFPvxLqBzWCnnfOYR4NEg5eqVcvh3fm0LbbqDTyX0m1bd771Ckjwb%2Fnm8VuwIhlBCHWLk5BmSj%2BiVYMhMopxsZlLyny\"}]}\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\ncache-control: private, max-age=300\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ba1508f283332fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1,"size_decoded":0,"mime_type":"application/json","magic":"very short file (no magic)","md5":"cfcd208495d565ef66e7dff9f98764da","sha1":"b6589fc6ab0dc82cf12099d1c2d40ab994e8410c","sha256":"5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9","sha512":"31bca02094eb78126a517b206a88c73cfa9ec6f704c7030d18212cace820f025f00bf0ea68dbf3f3a5436ca63b53bf7bf80ad8d5de7d8359d0b7fed9dbc3ab99","ssdeep":"","tlshash":"c700000000000000c00000300000000000000000000000000000000000000000000000","first_seen":"2023-03-07T01:37:31Z","last_seen":"2026-06-13T22:31:42.702347Z","times_seen":114894,"resource_available":true,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/api/visit","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:23.989Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"POST /api/visit HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://calvindrop.top/\r\nOrigin: https://calvindrop.top\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:24 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wbE84Ee8UwkEbNr8gZiVohSYrnrq7WfePFX%2BgP1T9v4DzLyViDCjsUv55g7tT9ByN2QQcOFapreA%2BPy1Z46BdXnZwK7Yy3haRN9o%2FzT0\"}]}\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ba1508fd84032fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2,"size_decoded":0,"mime_type":"application/json","magic":"ASCII text, with no line terminators","md5":"444bcb3a3fcf8389296c49467f27e1d6","sha1":"7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb","sha256":"2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df","sha512":"9fbbbb5a0f329f9782e2356fa41d89cf9b3694327c1a934d6af2a9df2d7f936ce83717fb513196a4ce5548471708cd7134c2ae99b3c357bcabb2eafc7b9b7570","ssdeep":"","tlshash":"c710000000000000300000000000000000000000000000000000000000000c0000c000","first_seen":"2023-03-08T02:32:37Z","last_seen":"2026-06-13T22:35:14.081813Z","times_seen":425381,"resource_available":true,"data":null}},"time_used":302,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":302,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/l/-g--calvin-airdrop2-a30be/images/marinade.svg","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:22.879Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /l/-g--calvin-airdrop2-a30be/images/marinade.svg HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:22 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Thu, 11 Dec 2025 05:07:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\nage: 195758\r\ncf-cache-status: HIT\r\netag: W/\"693a518a-2677\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=aHCX9PHE42%2FeQSG%2Fpd4VkqAKjhEco4d%2FdhyiqQiwlqwaxTLTT0U0PY4XbR7tQvj2GH31o5ZSCGK7im6cY7B1FGMGfidkTuly0OtaKqz2\"}]}\r\ncf-ray: 9ba15088dfdb32fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9847,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5cb11fd2b4b91716c41205eb17e9d960","sha1":"d5e2cb59069a886204c8284813a02ecee6082250","sha256":"bf19d99498915d1aec2f355703d23bb5655de09d5b2bbcb88828aa00d9d6a3a6","sha512":"6e8df520180ffde25b12c20447d7b3ae364a11f1104c1cd5e5ee7d96978b69c43aa749db6e293e1e2acc9d6c3568a0a2841cb26ff2e105f5929b9225ab46b26b","ssdeep":"192:OXI9CbNZ73IhN47x5QO6tQuPOmU/m6FJIReX1gZss6+:+ThZ73eKVT6W05U/m6oeXdK","tlshash":"5012d8ec6be271f0f849e7e4e51698b63b1b35fb7611cb18c3856d21e64100eca79c86","first_seen":"2025-09-02T07:43:09.38934Z","last_seen":"2026-06-11T15:48:07.251214Z","times_seen":449,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/l/-g--calvin-airdrop2-a30be/images/solblaze.svg","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:22.887Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /l/-g--calvin-airdrop2-a30be/images/solblaze.svg HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:22 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Thu, 11 Dec 2025 05:07:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\nage: 195758\r\ncf-cache-status: HIT\r\netag: W/\"693a518a-2fb6\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gEeoWFev42MjJig1gSFN3hZNh60vG7BM3SnHa729zyQ%2FX0IzReH8Zya0Pe4bZor3c1c%2BVhRey0yPUcbkpJZXd%2FZFutS76PH5SmYMje%2FD\"}]}\r\ncf-ray: 9ba15088dfdf32fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12214,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e6c2726ae5e7cc1c0aa199ad3b7195b9","sha1":"e9dbc07a64cebfbd0389bcec396877b2f338e6bd","sha256":"b5ba7b16778896912b7712690a16b5eab96e9dc8643be4af77ec5a1e8b3e6b5b","sha512":"7d3f6b9f2259a8136531a9c09ade0c885e01239c4c49e6d9f4618d076361e325b7a73c5209440f733b9ca07eda312240fb4306a42a060b6733e8b474e37968d8","ssdeep":"192:Cebn8EmAexeRzs8VWOAluUFbpATzs9IQF/n9AY41RRodskit3dEamw2gq:Ceb8aexOAMnIb7XhGY41/ungq","tlshash":"9742b6debbe5a3f4a905f3c8875688793a532cf67b03cb38c3986e95b54104d8895c87","first_seen":"2025-09-02T07:43:09.409787Z","last_seen":"2026-06-11T15:48:07.22624Z","times_seen":449,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/manrope/v20/xn7gYHE41ni1AdIRggOxSuXd.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:23.380Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:54:11 GMT","end":"Wed, 25 Feb 2026 15:54:10 GMT"},"fingerprint":{"sha1":"21:10:1E:48:79:6B:E7:49:AB:BB:0E:38:86:C8:4D:74:7B:42:EE:BB","sha256":"0A:58:99:06:D8:BC:1C:BD:3E:CE:EF:7D:D6:D2:50:2D:1E:DE:8F:87:97:56:72:B9:3F:21:88:AC:79:3A:75:03"}}},"request":{"raw":"GET /s/manrope/v20/xn7gYHE41ni1AdIRggOxSuXd.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://calvindrop.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 14500\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 02 Jan 2026 02:34:32 GMT\r\nexpires: Sat, 02 Jan 2027 02:34:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 445191\r\nlast-modified: Thu, 04 Sep 2025 17:09:13 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14500,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14500, version 1.0","md5":"e58febde317b69ceb51690ea201850c9","sha1":"d8fc94bf7a39043a7759bd564a7e16b3ea080736","sha256":"c268b459a9329e59fecf39a17618efd44c71735532048d60b12aab76a8c14914","sha512":"af17f0a6913d974bd7d38a060549dacd158c667abb08f830d44d302c1a1cb4f8106eeeb772d2b4066be2c5a1e763d26042c707343770f5e84b0f5165cab9d96b","ssdeep":"384:4VvSHMmDtGjtHrBRvGjLWPSNRXZpyJ+kC18bZ:4VvSsmDt6LBROj1RXZ4J+318bZ","tlshash":"8a52b05ef04e86f0b51f2a7ece5c6a1153725e56134f2e50e967b0c8c75e82a1e27142","first_seen":"2025-06-05T11:45:07.756161Z","last_seen":"2026-06-13T10:23:16.682266Z","times_seen":2811,"resource_available":false,"data":null}},"time_used":384,"timings":{"blocked":181,"dns":8,"connect":15,"send":0,"wait":15,"receive":2,"ssl":157},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lite-api.jup.ag/tokens/v2/search?query=FgySDg8mpKPJfVs1TyWNKSmdwehPHKbvrA6JQ8Pspump","fqdn":"lite-api.jup.ag","domain":"jup.ag","tld":"ag"},"ip":{"addr":"3.164.240.106","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:23.873Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lite-api.jup.ag","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 01 Apr 2025 00:00:00 GMT","end":"Thu, 30 Apr 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6A:C1:1A:55:81:46:51:60:92:8E:23:71:EC:0D:F5:22:E2:77:CC:B6","sha256":"9B:2C:9B:3C:A9:B9:32:F1:2E:E7:12:53:C3:E5:39:A9:B1:D1:92:0F:BD:83:0D:8B:73:33:20:78:3D:B0:C8:E7"}}},"request":{"raw":"GET /tokens/v2/search?query=FgySDg8mpKPJfVs1TyWNKSmdwehPHKbvrA6JQ8Pspump HTTP/1.1\r\nHost: lite-api.jup.ag\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://calvindrop.top/\r\nOrigin: https://calvindrop.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\ndate: Wed, 07 Jan 2026 06:14:23 GMT\r\ncf-ray: 9ba1508faeaf75c3-ARN\r\ncontent-encoding: br\r\naccess-control-allow-origin: https://calvindrop.top\r\ncache-control: public, max-age=10\r\nvary: Origin, Accept-Encoding\r\naccess-control-allow-credentials: true\r\nserver: cloudflare\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 2d1005a64868f4455f2999ba31bde290.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: CzYBMcmmM07WiBV7s64Kf93IqAzMaFTyF0dtAKGEhC6dZRVGCKhlIw==\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2324,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"1435b613ff3ef184e79efecb468416df","sha1":"2d51d0e27882ba34ce1ef14ed5c9c78345133ac4","sha256":"8f3c8ac0d4f10f4d8536f7fa640dbe3bdd54fe751722c00a039a4cb2ea20e3aa","sha512":"9e610773a45c8cb66c3690721b2ee69f78bcf884eda96e88b4b411203e1a9b59de31cd67ba39240ddef9cf8a8f158058349aa7bc9fbf88b66b973a2cd457846b","ssdeep":"","tlshash":"9641a5f6575c00e2a7de0742448c7f9555a319d381240c545af9c99c01ad9bfaa0cf0f","first_seen":"2026-01-07T06:14:51.906673Z","last_seen":"2026-01-07T06:14:56.897323Z","times_seen":2,"resource_available":false,"data":null}},"time_used":202,"timings":{"blocked":64,"dns":2,"connect":11,"send":0,"wait":59,"receive":0,"ssl":59},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"calvindrop.top/l/-g--calvin-airdrop2-a30be/images/coin.svg","fqdn":"calvindrop.top","domain":"calvindrop.top","tld":"top"},"ip":{"addr":"104.21.57.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://calvindrop.top/","date":"2026-01-07T06:14:22.869Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"calvindrop.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Dec 2025 04:15:23 GMT","end":"Wed, 11 Mar 2026 05:12:36 GMT"},"fingerprint":{"sha1":"EA:40:AA:0C:54:FF:4A:82:29:20:08:85:3A:1E:6D:C6:BE:A7:88:9A","sha256":"3B:E0:0A:E3:92:11:61:D2:F2:7C:11:CF:69:A8:68:E7:B0:7F:DB:E2:C4:08:67:0E:11:3C:00:28:1F:46:10:53"}}},"request":{"raw":"GET /l/-g--calvin-airdrop2-a30be/images/coin.svg HTTP/1.1\r\nHost: calvindrop.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://calvindrop.top/\r\nCookie: _subid=1sjos4f2fnaia; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxMDEwXCI6MTc2Nzc2NjQ2Mn0sXCJjYW1wYWlnbnNcIjp7XCI0MTAwNFwiOjE3Njc3NjY0NjJ9LFwidGltZVwiOjE3Njc3NjY0NjJ9In0.VeTlLJNWlDu-OYCKTXjDrkCoZ8MGuFMTSGf6BThH188\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:14:22 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Thu, 11 Dec 2025 05:07:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\nage: 195758\r\ncf-cache-status: HIT\r\netag: W/\"693a518a-13a2\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pWVQevWWrJ6yi%2BiDjIX7w00WJUuW2Ok%2FB7yOOIBnwT8tpZ%2BZnBJISJ61u%2BK%2BwuqFnEQEk1dcKnCKnN1UnYL91npXwnEAQYBtksU6aipD\"}]}\r\ncf-ray: 9ba15088dfd832fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5026,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"202a4d36b32a98cd8f8f7620195d119a","sha1":"11dd63896159c3406a367c4574d9e4393d368db2","sha256":"cbdba3b120057379b2c82d0cb23f101ad2fef607f35e7c6f5451676b2f7cf706","sha512":"5d23817c68a7b0285c1846950b0d5820bec1e9ca0782f0fe2507040e9312d96ef77fa046925a088e215d3899b2afcef16242f6c7f3faa6fd79d257406211a6d8","ssdeep":"96:NZrgo+DmmnE9ht506zProP25+mCRRlC+mC1HxiRSwRft+MQdJUlo5LDL:DSnEN50wPimgRpm2H0RSwRft+3aq","tlshash":"79a1c8fc73f465a55a88c7e9ef06806a7cab94f3be448240f04c5f9d4b96812cca76c5","first_seen":"2026-01-04T23:52:14.531492Z","last_seen":"2026-01-07T06:14:56.890424Z","times_seen":3,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"calvindrop.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}