{"report_id":"efd18fdd-24fd-4ed6-88dc-b305fc47c971","version":6,"status":"done","tags":[],"date":"2026-03-18T15:44:26Z","url":{"schema":"https","addr":"machii-rewards.xyz/","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"machii-rewards.xyz/","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"title":"$MACHI DISTRIBUTION","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"machii-rewards.xyz/","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-22T15:44:26Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"machii-rewards.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"machii-rewards.xyz","ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-03-15","domain_rank":0,"first_seen":"2026-03-18T15:44:27.114944Z","last_seen":"2026-03-18T15:44:27.114944Z","alert_count":9,"request_count":9,"received_data":840273,"sent_data":4242,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"machii-rewards.xyz/snowflakes.js","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"4a492afe47e2af6e5f5cc87512db9b62","sha1":"47e1342d2e705c3fd5c917ac47d6c4ca6677ede2","sha256":"d63054d0d07b0e61e0f1e5a3ea8670fbe0f2eae377913603a043f03d1cb3252c","sha512":"4c14d1e90c11f74d16c28834f2ce68ee4acaee657f5d4bb7e7dc13def8018a5e540913481f757adb6d45187a306db0e7a4fd1a26f7dfa01253aa9f19053c56f9","ssdeep":"","tlshash":"08510d4860a23828157f631d7ad2988ce5302027be014d7ebeae42635f71c4cdc98dfd","size":2457,"data":"","first_seen":"2025-08-31T03:13:37.754782Z","last_seen":"2026-05-01T15:06:22.864567Z","times_seen":342,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"machii-rewards.xyz/","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"9058e7bf7daa2a3e7bcb7e410c44bced","sha1":"c961c1574f5f68ee802af276b9a2a8a6a4beacf9","sha256":"57ab794b0fbf4f58a10f2e6628341f62d01944ff667215f4fe962a9049aac008","sha512":"60a18259800b7da0845994c4334bddc01a6600848ace6fb180cc53d45d13200dd5053160fa6f63fbf062c6d8364deba682f6a7b390826e28726e1635a1b3baa0","ssdeep":"","tlshash":"a3c02260c260cde0012809af11b4a28830a0b92e008291dae7bcc9ca1bcdec10a84900","size":194,"data":"","first_seen":"2026-03-13T03:39:38.698951Z","last_seen":"2026-03-26T01:06:27.643072Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"machii-rewards.xyz/particles.min.js","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"00debcf6cf0789a19cee2278011afcd4","sha1":"8017f8b1869077db728573f1ca4684a00af69462","sha256":"faee7815a5fd27e938d1e01c8392b66332024908eb118048f608eee671371df6","sha512":"29e7f9b1cee07d369c47b4d929e95cad1b35e62a5fefeb7e9fb661ea628d25b996fbf4517425bd9f07cb9f8617d2cda73ba2afe58d8286a8086a4682e8f5b4f4","ssdeep":"384:NkfJtGvWjT6uYvqhCz8wSEHESxtVAFPQcYpeib+9rOEKXWd/:NC7T6uYvn8wRxwyryVOEKXW5","tlshash":"61a2934d23f73e77378ab2e09be9d122c774a4d1399b04b0f93c667da52549201ee7a0","size":23364,"data":"","first_seen":"2023-03-07T01:16:44Z","last_seen":"2026-06-09T00:53:38.739502Z","times_seen":5022,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"machii-rewards.xyz/","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"adb5accbf3eea1a9809fe2f31a17dc51","sha1":"b5dd2e8dd5de9825a940e9b3cac200a1a3b022ac","sha256":"74f41e9217fdfb6538bad20759a5185689b15ad82280de27abe2dfc2b3c034b0","sha512":"01774b850246e42054968343c0726b2f1d81c0542a03f7cf26952862207dc1517e01bd321ce411cbbb8342b1a41c6191076139e4d6ec8a058ae1753a4c36cbeb","ssdeep":"","tlshash":"dc71282ce9b41cb3104ab07908be5247b570955b0d2a3d35bd4c829c5f0ee6e61be7e9","size":3587,"data":"","first_seen":"2024-08-19T21:41:20.669609Z","last_seen":"2026-05-06T23:47:35.269243Z","times_seen":366,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"machii-rewards.xyz/secureproxy?s=%2Fipfs%2FTKGLyEMry0BR7C2FA57ivg291bd2211f14075a811140c6ee7f02fc%3Ft%3D1773848644997","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"155566f846adddaa4f151d12f5ec3e90","sha1":"46449dfc22b3ab0a54964bf67050eedf0be09f9d","sha256":"c8140c702be156f708f578352f85c9e313506453390517d3629e2979959cce02","sha512":"6272e66151c1ec22d7b7c17bcd53868f52467ebd0ccd9eea74a2a6802f7e2982ccdbb7667c0458e50a1cffef380602ec265ab1ebd108f859b79c8679b5b66e3b","ssdeep":"6144:qh5gD66Euno4xvlISDhTl0WHvfUp+v+9J87XGQOwOyyGpMy:qs6ZunzvlzSWP8p0Q+Bz","tlshash":"2bd499c08b4c357364802aea15fb446fdfdc0de82e4be8536bd09ca5e379b8351e5998","size":634329,"data":"","first_seen":"2026-03-18T15:44:30.699622Z","last_seen":"2026-03-18T15:44:30.699622Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"machii-rewards.xyz/","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-18T15:44:04.558Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"machii-rewards.xyz","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 13:38:02 GMT","end":"Sat, 13 Jun 2026 13:38:01 GMT"},"fingerprint":{"sha1":"4F:40:46:C2:FE:E8:9B:83:B4:46:E1:88:37:6A:17:FE:9B:B3:E9:61","sha256":"E9:69:EE:92:6B:01:86:28:B3:9C:71:66:84:3D:B3:1C:83:0E:9C:F1:B7:D7:F2:2C:89:79:13:68:34:E2:DD:BE"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: machii-rewards.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 18 Mar 2026 15:44:04 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sun, 15 Mar 2026 13:59:13 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yPBR6SOFfiWV6%2FNTsD5Bt50I1xZmMXPbtllrpFxXbl32RGYgYfc8rUKfo2kUJrGrNaIRzOjRGdRhbTU%2FhxSaBn9J%2BTUBZPnC%2FcRi15DsKa%2Fx2A%3D%3D\"}]}\r\nage: 261889\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9de55b4d4d063017-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":101608,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (61943)","md5":"eee938882b70bc52451eb787a4f09534","sha1":"e6ae02cd6f139adf7c8652051a056a26558f8c6b","sha256":"5b35c9c8fe27ac7ee694b47b8644037647b054994c793e46fcf76d11061c46f2","sha512":"9e84a579c433d564acfb9a90810af657ac5d651263b3d2ad66343e33a20e88ee59e174cf02dbc183b99d25cfa0ff7cecf24960e3e028bb047084fe7535275ad5","ssdeep":"1536:HdzjBRvb7zj9VcAyxvxE4ZzhMcR239kPJdM9Nt3ZrPLaZYH:93Pw/VMT39kBMt35PLf","tlshash":"a0a3806a4c5cab4e33321c2ecf13243e6e8265eeb60995df388f74ecc7664549665ce0","first_seen":"2026-03-13T03:39:38.694048Z","last_seen":"2026-03-18T15:44:30.696884Z","times_seen":3,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":118,"dns":93,"connect":8,"send":0,"wait":25,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"machii-rewards.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"machii-rewards.xyz/snowflakes.js","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://machii-rewards.xyz/","date":"2026-03-18T15:44:04.825Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"machii-rewards.xyz","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 13:38:02 GMT","end":"Sat, 13 Jun 2026 13:38:01 GMT"},"fingerprint":{"sha1":"4F:40:46:C2:FE:E8:9B:83:B4:46:E1:88:37:6A:17:FE:9B:B3:E9:61","sha256":"E9:69:EE:92:6B:01:86:28:B3:9C:71:66:84:3D:B3:1C:83:0E:9C:F1:B7:D7:F2:2C:89:79:13:68:34:E2:DD:BE"}}},"request":{"raw":"GET /snowflakes.js HTTP/1.1\r\nHost: machii-rewards.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://machii-rewards.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 18 Mar 2026 15:44:04 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Sun, 15 Mar 2026 13:59:13 GMT\r\netag: W/\"69b6bb31-999\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=v%2F7AmSycuAypijZdxv3bCWGEf%2Fq3u2fC1Jiu2C%2FzwKyZt5zo%2BZuFkeNv2MMuGeyI0ZMpTwkdYu3iZMfEKuMrJBTudNHSP8%2BVZW62IGeVOwxdhw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9de55b4e2e110d2b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2457,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"4a492afe47e2af6e5f5cc87512db9b62","sha1":"47e1342d2e705c3fd5c917ac47d6c4ca6677ede2","sha256":"d63054d0d07b0e61e0f1e5a3ea8670fbe0f2eae377913603a043f03d1cb3252c","sha512":"4c14d1e90c11f74d16c28834f2ce68ee4acaee657f5d4bb7e7dc13def8018a5e540913481f757adb6d45187a306db0e7a4fd1a26f7dfa01253aa9f19053c56f9","ssdeep":"","tlshash":"08510d4860a23828157f631d7ad2988ce5302027be014d7ebeae42635f71c4cdc98dfd","first_seen":"2025-08-31T03:13:37.754782Z","last_seen":"2026-05-01T15:06:22.864567Z","times_seen":342,"resource_available":true,"data":null}},"time_used":166,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":166,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"machii-rewards.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"machii-rewards.xyz/css2.css","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://machii-rewards.xyz/","date":"2026-03-18T15:44:04.826Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"machii-rewards.xyz","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 13:38:02 GMT","end":"Sat, 13 Jun 2026 13:38:01 GMT"},"fingerprint":{"sha1":"4F:40:46:C2:FE:E8:9B:83:B4:46:E1:88:37:6A:17:FE:9B:B3:E9:61","sha256":"E9:69:EE:92:6B:01:86:28:B3:9C:71:66:84:3D:B3:1C:83:0E:9C:F1:B7:D7:F2:2C:89:79:13:68:34:E2:DD:BE"}}},"request":{"raw":"GET /css2.css HTTP/1.1\r\nHost: machii-rewards.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://machii-rewards.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 18 Mar 2026 15:44:04 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Sun, 15 Mar 2026 13:59:13 GMT\r\netag: W/\"69b6bb31-756\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 171061\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=b4PVHVVa5sHqz6qZlx88hNAKiP2tnZxteLdzcZNK8UzybwXF8a29SpbLiaj0yLXypGb28xM%2BLoRWDmOnHRGxKOFfYR7%2B2cCiZLC44iJ1lnSjjQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9de55b4e2e120d2b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1878,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"9062a655afcc97c2d427b10f735a8aea","sha1":"b22103ec1665985589e0be5b9f5e9686461dc12f","sha256":"66489ff17cd8cbe69f7dc79d660975d2910614eda742803f69181a0ecf3bc4bd","sha512":"ab721d03c97484fcb5cef9844c74968d7bb643c1ebee2eea3a2e8129f9366306f24d0b42e6889213aa56bd28047ad42645cbc4457fc3dc681dd8e7df4d4265eb","ssdeep":"","tlshash":"89419b414c3a5104a3d32ce263ce7d31cd4ef244b045ca34bffe1859ac4ad6563a4b5c","first_seen":"2025-08-07T19:45:13.885497Z","last_seen":"2026-05-01T15:06:22.858559Z","times_seen":359,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"machii-rewards.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"machii-rewards.xyz/logo.jpg","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://machii-rewards.xyz/","date":"2026-03-18T15:44:04.827Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"machii-rewards.xyz","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 13:38:02 GMT","end":"Sat, 13 Jun 2026 13:38:01 GMT"},"fingerprint":{"sha1":"4F:40:46:C2:FE:E8:9B:83:B4:46:E1:88:37:6A:17:FE:9B:B3:E9:61","sha256":"E9:69:EE:92:6B:01:86:28:B3:9C:71:66:84:3D:B3:1C:83:0E:9C:F1:B7:D7:F2:2C:89:79:13:68:34:E2:DD:BE"}}},"request":{"raw":"GET /logo.jpg HTTP/1.1\r\nHost: machii-rewards.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://machii-rewards.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 18 Mar 2026 15:44:04 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 33637\r\ncast-mode: default\r\nlast-modified: Sun, 15 Mar 2026 13:59:13 GMT\r\netag: \"69b6bb31-8365\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=2592000\r\nage: 260328\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=c7OTR8KRQqzH8V0jB6XYBuj23UgP3oL8i9SlZNzrcuwP3NbCVdq7cjRjTrGVubnVeHKvxFABJxMkD6v%2FuzvmS05RckUa9jP%2Fz5pg%2Bkaly6sXGA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9de55b4e2e130d2b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":33637,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 5.0.3], baseline, precision 8, 400x400, components 3","md5":"c62faab687a82e6065adfed0b6bcc55f","sha1":"df2731098587d0664f03b1662a4e1dfb813c6b4e","sha256":"a57a7116c1672b1623dc1c330b1ea8e635a3375245c12026b89282910e6a231e","sha512":"148ed9c9080730cfdfde0a67c507eb65e262eb66a316396565da25906864b75a462eb89bdf6d526df523cabaef0a92c0b6ed888a02f537cfd2aa9ed2dcc2a6c4","ssdeep":"768:fxyIDhZnM72Ms4OGLJwJTrbSm+TggAjAR6fE2DIg:fU4Zn4djO6+JTrbS7rAafXg","tlshash":"98e28ddf4bce0167cd998736fc560889cfee4e48cde9678a2132213f698850da52dc6c","first_seen":"2026-03-13T03:23:40.315129Z","last_seen":"2026-03-18T15:44:30.698572Z","times_seen":5,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"machii-rewards.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"machii-rewards.xyz/particles.min.js","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://machii-rewards.xyz/","date":"2026-03-18T15:44:04.829Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"machii-rewards.xyz","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 13:38:02 GMT","end":"Sat, 13 Jun 2026 13:38:01 GMT"},"fingerprint":{"sha1":"4F:40:46:C2:FE:E8:9B:83:B4:46:E1:88:37:6A:17:FE:9B:B3:E9:61","sha256":"E9:69:EE:92:6B:01:86:28:B3:9C:71:66:84:3D:B3:1C:83:0E:9C:F1:B7:D7:F2:2C:89:79:13:68:34:E2:DD:BE"}}},"request":{"raw":"GET /particles.min.js HTTP/1.1\r\nHost: machii-rewards.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://machii-rewards.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 18 Mar 2026 15:44:04 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Sun, 15 Mar 2026 13:59:13 GMT\r\netag: W/\"69b6bb31-5b44\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=f6o%2FqlArInS1FwQlQvDPCQ7a4Vzqe19XAqWgG7Byv6mH2T3yREqLd1VLN56OgAJqu7jHIMQLhm8QZQ6sC3YV1rwwZhvXoxuu9bhobdsG3rKAmQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9de55b4e3e140d2b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":23364,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (23002)","md5":"00debcf6cf0789a19cee2278011afcd4","sha1":"8017f8b1869077db728573f1ca4684a00af69462","sha256":"faee7815a5fd27e938d1e01c8392b66332024908eb118048f608eee671371df6","sha512":"29e7f9b1cee07d369c47b4d929e95cad1b35e62a5fefeb7e9fb661ea628d25b996fbf4517425bd9f07cb9f8617d2cda73ba2afe58d8286a8086a4682e8f5b4f4","ssdeep":"384:NkfJtGvWjT6uYvqhCz8wSEHESxtVAFPQcYpeib+9rOEKXWd/:NC7T6uYvn8wRxwyryVOEKXW5","tlshash":"61a2934d23f73e77378ab2e09be9d122c774a4d1399b04b0f93c667da52549201ee7a0","first_seen":"2023-03-07T01:16:44Z","last_seen":"2026-06-09T00:53:38.739502Z","times_seen":5022,"resource_available":true,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":176,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"machii-rewards.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"machii-rewards.xyz/secureproxy?s=%2Fipfs%2FTKGLyEMry0BR7C2FA57ivg291bd2211f14075a811140c6ee7f02fc%3Ft%3D1773848644997","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://machii-rewards.xyz/","date":"2026-03-18T15:44:04.999Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"machii-rewards.xyz","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 13:38:02 GMT","end":"Sat, 13 Jun 2026 13:38:01 GMT"},"fingerprint":{"sha1":"4F:40:46:C2:FE:E8:9B:83:B4:46:E1:88:37:6A:17:FE:9B:B3:E9:61","sha256":"E9:69:EE:92:6B:01:86:28:B3:9C:71:66:84:3D:B3:1C:83:0E:9C:F1:B7:D7:F2:2C:89:79:13:68:34:E2:DD:BE"}}},"request":{"raw":"GET /secureproxy?s=%2Fipfs%2FTKGLyEMry0BR7C2FA57ivg291bd2211f14075a811140c6ee7f02fc%3Ft%3D1773848644997 HTTP/1.1\r\nHost: machii-rewards.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://machii-rewards.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 18 Mar 2026 15:44:05 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nvary: Accept-Encoding\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\ncache-control: max-age=2592000\r\netag: W/\"9add9-RkSd/CKzqwpUlkv2cFDu3wvgn50\"\r\nexpires: 0\r\npragma: no-cache\r\ncontent-disposition: attachment; filename=T5k5SDFr2MNhBbaYZYtRDg.js\r\ncdn-proxyver: 1.47\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 03/18/2026 15:44:05\r\ncdn-edgestorageid: 883\r\ncdn-requestid: efc64f77c3c251fabd68501b58a703ef\r\ncdn-cache: MISS\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2pkF3DDzNrKqcDUUVsNJSXCcuvJHSxa%2BNeqg2InIIYThwqrEZ55sSl69U%2BHDARTgA7vVvTFB8bzBCYkXHPre331jeMKn17j15IGbi9tawBvgDA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9de55b4f4e740d2b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":634329,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"155566f846adddaa4f151d12f5ec3e90","sha1":"46449dfc22b3ab0a54964bf67050eedf0be09f9d","sha256":"c8140c702be156f708f578352f85c9e313506453390517d3629e2979959cce02","sha512":"6272e66151c1ec22d7b7c17bcd53868f52467ebd0ccd9eea74a2a6802f7e2982ccdbb7667c0458e50a1cffef380602ec265ab1ebd108f859b79c8679b5b66e3b","ssdeep":"6144:qh5gD66Euno4xvlISDhTl0WHvfUp+v+9J87XGQOwOyyGpMy:qs6ZunzvlzSWP8p0Q+Bz","tlshash":"2bd499c08b4c357364802aea15fb446fdfdc0de82e4be8536bd09ca5e379b8351e5998","first_seen":"2026-03-18T15:44:30.699622Z","last_seen":"2026-03-18T15:44:30.699622Z","times_seen":1,"resource_available":true,"data":null}},"time_used":747,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":662,"receive":85,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"machii-rewards.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"machii-rewards.xyz/119246100adcd76322fde730b9f8859e.txt","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://machii-rewards.xyz/","date":"2026-03-18T15:44:05.246Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"machii-rewards.xyz","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 13:38:02 GMT","end":"Sat, 13 Jun 2026 13:38:01 GMT"},"fingerprint":{"sha1":"4F:40:46:C2:FE:E8:9B:83:B4:46:E1:88:37:6A:17:FE:9B:B3:E9:61","sha256":"E9:69:EE:92:6B:01:86:28:B3:9C:71:66:84:3D:B3:1C:83:0E:9C:F1:B7:D7:F2:2C:89:79:13:68:34:E2:DD:BE"}}},"request":{"raw":"GET /119246100adcd76322fde730b9f8859e.txt HTTP/1.1\r\nHost: machii-rewards.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://machii-rewards.xyz/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 18 Mar 2026 15:44:05 GMT\r\ncontent-type: text/plain\r\ncontent-length: 0\r\ncast-mode: default\r\nlast-modified: Sun, 15 Mar 2026 13:59:13 GMT\r\netag: \"69b6bb31-0\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WurVr%2BPdG3KM8U%2BiAu%2FJSo5110rUBLNE%2F%2BfTQAHUDPxv8jsvp2qi83swmgsfieJXZrf4%2BGGMVxxDwwJS7D1KWacJCriZYWH42WgVk%2BqfWZT2jA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9de55b50ceeb0d2b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-09T03:17:28.028748Z","times_seen":16257673,"resource_available":true,"data":null}},"time_used":173,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":173,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"machii-rewards.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"machii-rewards.xyz/logo.jpg","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://machii-rewards.xyz/","date":"2026-03-18T15:44:05.347Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"machii-rewards.xyz","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 13:38:02 GMT","end":"Sat, 13 Jun 2026 13:38:01 GMT"},"fingerprint":{"sha1":"4F:40:46:C2:FE:E8:9B:83:B4:46:E1:88:37:6A:17:FE:9B:B3:E9:61","sha256":"E9:69:EE:92:6B:01:86:28:B3:9C:71:66:84:3D:B3:1C:83:0E:9C:F1:B7:D7:F2:2C:89:79:13:68:34:E2:DD:BE"}}},"request":{"raw":"GET /logo.jpg HTTP/1.1\r\nHost: machii-rewards.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://machii-rewards.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 18 Mar 2026 15:44:05 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 33637\r\ncast-mode: default\r\nlast-modified: Sun, 15 Mar 2026 13:59:13 GMT\r\netag: \"69b6bb31-8365\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\npriority: u=6,i=?0\r\ncache-control: max-age=2592000\r\nage: 260329\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZsYA7vPmy0oU%2Bkr9hVlyJEhNrWqka%2BnXUdl%2BtNzG%2Bx7elQizpcDZy6Pm3PnTLh6Xu0QyulwqzpWyJe%2BpxOOazN9Oulldvmb%2BQPCqWSd5F72gdQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9de55b517eff0d2b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":33637,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 5.0.3], baseline, precision 8, 400x400, components 3","md5":"c62faab687a82e6065adfed0b6bcc55f","sha1":"df2731098587d0664f03b1662a4e1dfb813c6b4e","sha256":"a57a7116c1672b1623dc1c330b1ea8e635a3375245c12026b89282910e6a231e","sha512":"148ed9c9080730cfdfde0a67c507eb65e262eb66a316396565da25906864b75a462eb89bdf6d526df523cabaef0a92c0b6ed888a02f537cfd2aa9ed2dcc2a6c4","ssdeep":"768:fxyIDhZnM72Ms4OGLJwJTrbSm+TggAjAR6fE2DIg:fU4Zn4djO6+JTrbS7rAafXg","tlshash":"98e28ddf4bce0167cd998736fc560889cfee4e48cde9678a2132213f698850da52dc6c","first_seen":"2026-03-13T03:23:40.315129Z","last_seen":"2026-03-18T15:44:30.698572Z","times_seen":5,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":12,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"machii-rewards.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"machii-rewards.xyz/secureproxy?s=%2Fjmpd%2F","fqdn":"machii-rewards.xyz","domain":"machii-rewards.xyz","tld":"xyz"},"ip":{"addr":"104.21.40.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://machii-rewards.xyz/","date":"2026-03-18T15:44:08.178Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"machii-rewards.xyz","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 13:38:02 GMT","end":"Sat, 13 Jun 2026 13:38:01 GMT"},"fingerprint":{"sha1":"4F:40:46:C2:FE:E8:9B:83:B4:46:E1:88:37:6A:17:FE:9B:B3:E9:61","sha256":"E9:69:EE:92:6B:01:86:28:B3:9C:71:66:84:3D:B3:1C:83:0E:9C:F1:B7:D7:F2:2C:89:79:13:68:34:E2:DD:BE"}}},"request":{"raw":"POST /secureproxy?s=%2Fjmpd%2F HTTP/1.1\r\nHost: machii-rewards.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://machii-rewards.xyz/\r\ncontent-type: application/json\r\nContent-Length: 1435\r\nOrigin: https://machii-rewards.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1435,"data":"{\"route\":\"n9POyFeFG1tUtiSU-z9JOx3n\",\"payload\":\"0hqM-6_N52QBsgL-AicACADZAgYDJwAVAyUAAgABPAMAAO8nhn2XtsKCAc1j5v7Sj_Vrh3nYmmkCAAATdJA6hVcUvrYysRgoaBfPDZR_Zold7_An0LNStDoKUXUiIkeiyZzqFfUi-5U38gnSsB-BgSr-BMyHsiBahV2nGDxWHiHHFAINoOP3oW-BREIeVj38zttV56wWYWbKHZBpO5FHAK3GRKhKHsbSw2hL4MmJcaFe9dubgKGvLA1PyyzLjv1se4RAV0g_BaZehNp7ouJxtaLW_-tAuKOGa1JLyUADvaW6ao5Zfkp56psRgAaAvZlWFUxQ2y1L2CPYYTbdA_TllwtfiAnNUwnhJpqU9dv-ZP2nABb5nh8PEcpsz1QIXHL16nKUhdHUrtGjN4ZarrWATPEiUBCY3_0wHn54JTc8F5X9EedNfB8Jxr9J6zqr89jZQ0yDHcizarfWkh6pBo87FITzJzd0bhi8qlxKw8iHYzpZSSEootFf2Bz65jqJnFqtNkIr0zmn9189K93CEIjTqhSo4o9GUk2D42rvIRa5WiybsNsR0iBQ7rEMmhBMIpiA-nR3Wf8PGD-NfKuP8aMS6RpZHtZiXNUGIM74YKzXf38zxYWTsxQKsVpg1zsdfKkQXVR7OnWiQiIqWeRa9Bi8CHHuMKxmUGyA7wZ2tNcl0IT4Szz-sdA1rEWMehLdkvpG14qFYNMRFHhjIhTopkAIi9Hi30isnnM_0i0bXuk7KFfHi4RjRjl6fEihZ2vMLor9wJh8daJ-BUrFf7czHC_RIt5Tibl7iBkWLg8IrNCAz3WZ51QyFDc9uIfMqTioNT8_hK-ubMWnEh5pVIOyrkUEcZc5XaTyEBEGcS1y49aSfkoCo9ljliaedKRMjw5y1GJx-E5cmw48vi67NwZaJvrl0M0KZ5nyl7EGbZH4IP2ubjGhbxmV8rynqxmwDpjxwYt_4tOBQ5u7f_cPxv7uLXYu1lfQiHWqRnQ1B658eV-XFWwsLmA91IocebwFXstohGReNXNdThkFNqM9eC5_D5-PVTKharDOhzX0rsP6R95Ci53wF6zJLdp7nHEWqavoXc_g-EJL-kBuzBpLT77DT8GVV5uGjdValKxKrG6IAa40fQnx98BrmrG1xlUuhuEsg6yOgeW-7dfFcilB-GTfJ8Wh5R9PuuPyZfAqFCrf2H6xsnfbhBfGeHkF-uGhjiI-7BA\",\"challenge\":\"eyJpZCI6ImV5RXRHZTFSbGR3Mk9ieURfMjRtQnciLCJub25jZSI6MzI5LCJoYXNoIjoiMDA5MjFkZTg4YWJiMzgxNmU4MjViOGQxNDhmZTI4NWM5ODE2ZTZhNzRkNzUyYjE3OTk1NTE4MTIxODhjODA3YiJ9\"}"}},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Wed, 18 Mar 2026 15:44:08 GMT\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\ncache-control: no-cache\r\netag: W/\"a-bAsFyilMr4Ra1hIU5PyoyFRunpI\"\r\nx-ratelimit-limit: 10000\r\nx-ratelimit-remaining: 9998\r\nx-ratelimit-reset: 1773848708342\r\ncdn-proxyver: 1.47\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 204\r\ncdn-cachedat: 03/18/2026 15:44:08\r\ncdn-edgestorageid: 1056\r\ncdn-requestid: 0916363e0ce6f3e1ef7cfe3173a77c15\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=e8F720q%2FeXd3AhU10FCHdWpiTJppSHuuSVqLXTKf4yFrs6SFW9hC17QKYs3uhVJ%2BxJ%2BPbJt5y4A3lgQxPMj3h5UhSvmkTpRbuEY4oaUgUIW6FQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9de55b6329e50d2b-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-09T03:17:28.028748Z","times_seen":16257673,"resource_available":true,"data":null}},"time_used":783,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":782,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"machii-rewards.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}