{"report_id":"fba58f78-8bc0-4d95-b433-d2a84f610c5b","version":6,"status":"done","tags":[],"date":"2026-04-18T18:04:33Z","url":{"schema":"https","addr":"bctcom.top/","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"172.67.163.211","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"bctcom.top/login.html","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"title":"Login | USDT","dom":{"size":18286,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2440)","md5":"97f80cb1aff752127693c249e7818503","sha1":"cf018a44acbf5f97362eb9027eb8e9ab6c36d152","sha256":"3bbe4cfd62a5f12d1a9dcfa5618779f82a2e87ed98bbff4c4608887b2863423d","sha512":"400fa5573a910b3d6f8f4e08e90b44ae203ece01bbc989882120a96bb57463b60ff340190deea574ee92be8c05ba55dca604bd7692c5d5b1565ec7719a6c4a10","ssdeep":"192:a5n+7meuuUtSxrTTEcsHm627PePz7xxZiP39/QkdvFg+zvzsnYvAr:aAbuuDrHsG626Pz7xxoPe8vq3r","tlshash":"4f82646268f4106b525f50caefb5bf09add29103d70da900b6fd17895fc3ea6c8132ca","dom_hash":"domhash5f7bd99861fcbdbfe599538a66151180","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"bctcom.top/","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"172.67.163.211","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-23T18:04:33Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.winusdt.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.winusdt.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"api.winusdt.top","ip":{"addr":"172.67.217.29","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-06-02","domain_rank":0,"first_seen":"2025-09-26T01:27:28.322218Z","last_seen":"2026-01-24T18:56:39.17382Z","alert_count":8,"request_count":4,"received_data":7076,"sent_data":2028,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"bctcom.top","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-06-11","domain_rank":0,"first_seen":"2026-04-18T18:04:35.356102Z","last_seen":"2026-04-18T18:04:35.356102Z","alert_count":17,"request_count":17,"received_data":627507,"sent_data":8496,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"jQuery:3.2.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"cdn.gpteng.co","ip":{"addr":"104.18.28.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-06-26","domain_rank":776423,"first_seen":"2024-12-08T00:48:33.877309Z","last_seen":"2026-04-15T00:50:53.989981Z","alert_count":0,"request_count":2,"received_data":1518,"sent_data":872,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-04-12T22:24:43.06808Z","alert_count":0,"request_count":1,"received_data":473873,"sent_data":431,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"bctcom.top/js/main.js","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6f5474a13b4487bf671de00914db0219","sha1":"9aeb2fa6dd78882c1d51261f27ff1db27d789623","sha256":"8488aff5f74a96aa5a474c858c59577dcced528b081fb0245bc70934940dd598","sha512":"99b625a224d4eea7de46e923d1d7479c6cfdb59e9643cf266671a2cb3cedcf056d328af239ede1e5cc1375873fd1123314e7a456dc7f61583546eaed08211f39","ssdeep":"","tlshash":"2f71962a72791b3ae92760faa357723c3425514ba44cc904f44d43684f92f96acb36ec","size":3517,"data":"","first_seen":"2025-09-26T01:27:32.16632Z","last_seen":"2026-04-18T18:14:02.720232Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/chat/js/min/jquery.min.js","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","size":89501,"data":"","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-23T10:08:51.972954Z","times_seen":453794,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/translations.js?v=1.0","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"52261f051efde646dcc6737928ea1737","sha1":"8e0d3c7a6426e68820b8befdc1b7ba7594e1e161","sha256":"3e5dbf476860e6824cad7801da3a14cf2244eb7ec3c62db6b3c261d58155ce76","sha512":"5d5746ae3a4ca49a7d175a605d54be424ba3631c98d9eae2d1dbf91bf14382a2218e27105d931ce9cb4d2f9f1ca19310a1ee2c82eaf2fb822870fbf0fb01c68a","ssdeep":"768:KoZFgbodAlzZiISJK9tcCxYfXecerEK5AysxKB:KGgbodAlkILHUOca5Aysx4","tlshash":"a903836ade790ed711c136887aa13686393402876c40b4d53798d65c0fefe9f90ba4bf","size":40568,"data":"","first_seen":"2025-09-26T01:27:32.160079Z","last_seen":"2026-04-18T18:14:02.72348Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-NRVZDP4GYP","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"96d53f4642157572b0a0690c1f4830c1","sha1":"c1e1191cb4eb519857e779c1c5182b79a86e27e4","sha256":"aa0390eb5bba9a61c78569e6338272f756ca4a5ccfa8f5e56b5d140f902a8798","sha512":"a983ef4c3969c9e2043f56e98bb3baf1eaf34c205041dac64fa752c7afb66fbc0755888d62ffbd8896b625aef29113533845c3fbfba098b0c35c0d5b7e741e0d","ssdeep":"6144:Am4OjKg7CA4MRBRfrJPj8B3v0yIjwcHCpLUgW6w01V91XG:D7t4MtfrJL8p5WOW","tlshash":"5da409ceb3d674625396f478903f018ba57b28a2b44cc89af189cce42d7465a4277f7c","size":473269,"data":"","first_seen":"2026-04-18T18:04:41.174104Z","last_seen":"2026-04-18T18:04:41.174104Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/jquery-3.2.1.min.js","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0fca26b5a37a66d68d0f4406976be4b5","sha1":"ee000eb654b3bd37185665d3901e93b34ce1aa52","sha256":"8c2812ded6436715279f8fd8db58de307aa39ab0296fe3cf0e879067c51e9b18","sha512":"cf010995991a8f8b50cfb4b466d3b457b0a6addc4f2fd96c48c33d40ac251de400894828ccd99662b13fc9ca25c676ef0aee05faa4910530ff9996d03c411645","ssdeep":"1536:GYE1JVoiB9JqZdXXe2pD3PgoIiulrUdTJSFk/zkZ4HjL5o8srOaS9TwD6b7/Jp94:t4J+R3jL5TCOauTwD6FdnCVQNea98HrF","tlshash":"7a93d7d9b6d6706287b734a851bf410bb17aa8eab40c4c60f058c8e47e74e9d507bf2d","size":97162,"data":"","first_seen":"2023-03-07T01:06:51Z","last_seen":"2026-04-23T10:07:30.764518Z","times_seen":6516,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/login.html","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"d79d08e321c70eba03ce8f954cc4ba2b","sha1":"deab2f32e0df4e35c41e4c8cbcf3bba4436f30d0","sha256":"b1f3c02c1357aabd79023c1b44358a0083610ae623bb67eeec076dc5c5ccf4f4","sha512":"f49031681a6a8fd470a1263103bc37fd702f678baaa814e16a16f92c80fd6ead453c9a3f28de219742ef246337c7022830780231c92aa7b2abe2a591414dad90","ssdeep":"96:ziSPTrf9/QkXNmozv5mp60+WAvWASaGnYvAMr/:bP39/QkdvFg+zvzsnYvAo","tlshash":"8cd153a679e0506bb59f04d65b6f74091ea1a143d72cda00bf7fa3c50fc7cb480562e6","size":6179,"data":"","first_seen":"2025-09-26T01:27:32.174419Z","last_seen":"2026-04-18T18:14:02.73024Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/jquery-3.2.1.min.js","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0fca26b5a37a66d68d0f4406976be4b5","sha1":"ee000eb654b3bd37185665d3901e93b34ce1aa52","sha256":"8c2812ded6436715279f8fd8db58de307aa39ab0296fe3cf0e879067c51e9b18","sha512":"cf010995991a8f8b50cfb4b466d3b457b0a6addc4f2fd96c48c33d40ac251de400894828ccd99662b13fc9ca25c676ef0aee05faa4910530ff9996d03c411645","ssdeep":"1536:GYE1JVoiB9JqZdXXe2pD3PgoIiulrUdTJSFk/zkZ4HjL5o8srOaS9TwD6b7/Jp94:t4J+R3jL5TCOauTwD6FdnCVQNea98HrF","tlshash":"7a93d7d9b6d6706287b734a851bf410bb17aa8eab40c4c60f058c8e47e74e9d507bf2d","size":97162,"data":"","first_seen":"2023-03-07T01:06:51Z","last_seen":"2026-04-23T10:07:30.764518Z","times_seen":6516,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/swiper.min.js","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"fb13ef3e875ca3497ede35d3774be9d3","sha1":"ab0743a89d522438c17ae7eaf5943fd4590ee3d0","sha256":"4a10219bee747aadeeda78f166d787adf32583f361f88d44b472f6f3da798083","sha512":"7b9fba1a93c724bc53e1dd4e27e59534430076346ddc73b24fcb71c9b7cb831321a70ffa38797185f7108ee64a18f1fa08cf2b7ccf2dbfc03e767b23187814c5","ssdeep":"1536:eyOkN3TklR3ZIFDJ+Y7n2L5ydUTq0tSQfCBTR:LTX73uTq/","tlshash":"0d93d66eb314f3e295d3214a675ac64122f21706b809dae870b54c4a68bcc5d03bffbd","size":96419,"data":"","first_seen":"2023-03-07T01:17:19Z","last_seen":"2026-04-23T05:23:29.905955Z","times_seen":3145,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"5c270f8e05751ebd1b95fa9a5b490445","sha1":"0118664c28dff1b5e558ca7f24cd80befa83a841","sha256":"ebc10d9ff294503ede602496b9cbbea4ce758ec3a047bc033706a498cee4c21e","sha512":"1aeaab17a20d381be5ad952c94e500720edd8d7b7ac6bef135da0fb056262b66296295a776a9c326544ca63e56d08b853c92d12dadcd40f8f0790f1a929fb0c3","ssdeep":"","tlshash":"3cc08c8c269b0cb040b73a458fbfa100f00a611760d10d313e0ea348cf20d2bd704954","size":178,"data":"","first_seen":"2025-09-26T01:27:32.171614Z","last_seen":"2026-04-18T18:14:02.729556Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/main.js","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6f5474a13b4487bf671de00914db0219","sha1":"9aeb2fa6dd78882c1d51261f27ff1db27d789623","sha256":"8488aff5f74a96aa5a474c858c59577dcced528b081fb0245bc70934940dd598","sha512":"99b625a224d4eea7de46e923d1d7479c6cfdb59e9643cf266671a2cb3cedcf056d328af239ede1e5cc1375873fd1123314e7a456dc7f61583546eaed08211f39","ssdeep":"","tlshash":"2f71962a72791b3ae92760faa357723c3425514ba44cc904f44d43684f92f96acb36ec","size":3517,"data":"","first_seen":"2025-09-26T01:27:32.16632Z","last_seen":"2026-04-18T18:14:02.720232Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/translations.js?v=1.0","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"52261f051efde646dcc6737928ea1737","sha1":"8e0d3c7a6426e68820b8befdc1b7ba7594e1e161","sha256":"3e5dbf476860e6824cad7801da3a14cf2244eb7ec3c62db6b3c261d58155ce76","sha512":"5d5746ae3a4ca49a7d175a605d54be424ba3631c98d9eae2d1dbf91bf14382a2218e27105d931ce9cb4d2f9f1ca19310a1ee2c82eaf2fb822870fbf0fb01c68a","ssdeep":"768:KoZFgbodAlzZiISJK9tcCxYfXecerEK5AysxKB:KGgbodAlkILHUOca5Aysx4","tlshash":"a903836ade790ed711c136887aa13686393402876c40b4d53798d65c0fefe9f90ba4bf","size":40568,"data":"","first_seen":"2025-09-26T01:27:32.160079Z","last_seen":"2026-04-18T18:14:02.72348Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/app.js?v=1.5","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3d12ebd782e58bd93829ca7e9e3e6b3b","sha1":"a8de6367e24ba27db1c299cd6b08adfe5399b88f","sha256":"6ddb195277b3bc501c54b61d7a55021e25f312229bd59e8166076444b5509015","sha512":"2fd2bcc8a22d5929bf738d9f217d54752b71cbf21aef9c1130f6d4263afa6ab6b3caeec1146e166b896e93d5994ee47b4d4756fbce429cd0decf2a2a28d07ae3","ssdeep":"768:yAPI6POWpQdMsJIp/Xx5KcJh4G6ykOdYbpICxqhip:yz6StItXxQAhxdopICxqhC","tlshash":"77b3fd09f6f715665133b0bb8eef412c7261900b5018ee157e4c57e0af8893cf9e6ba8","size":113677,"data":"","first_seen":"2025-09-26T01:27:32.155766Z","last_seen":"2026-04-18T18:14:02.724626Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/lang2.js?v=1.4","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"13cb43a4c55256779dbcc9cfc84d91a0","sha1":"58e866da2c9463c18e292d36a5232ff8f1a45f3a","sha256":"9a63dbb55f6b6e87bc3589adeaf249a796ca2aff48a52fa9e6d2e88889cbd5c1","sha512":"08c10a26bc45fd1b0addbb6e85d2f755fd82ff2a946da80fcb7918a65968976b454329a0d645971a9c010fecd61d4a4a6d602debc903aa69881556291d462cb9","ssdeep":"3072:R+hpjAnr8tTb+cH01Hey4POYyUaQOuZJ68MvN239lcFKb6P0YJqgjpWsQNeAsY97:c3dycH0ky4POtnQOuk8AN23PYJq2pWsa","tlshash":"bd1491370e8b1094114fe20da1c2760e99866a37ff2174d07bed70291fee45f85b9aad","size":193198,"data":"","first_seen":"2025-09-26T01:27:32.143706Z","last_seen":"2026-04-18T18:14:02.722234Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/app.js?v=1.5","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3d12ebd782e58bd93829ca7e9e3e6b3b","sha1":"a8de6367e24ba27db1c299cd6b08adfe5399b88f","sha256":"6ddb195277b3bc501c54b61d7a55021e25f312229bd59e8166076444b5509015","sha512":"2fd2bcc8a22d5929bf738d9f217d54752b71cbf21aef9c1130f6d4263afa6ab6b3caeec1146e166b896e93d5994ee47b4d4756fbce429cd0decf2a2a28d07ae3","ssdeep":"768:yAPI6POWpQdMsJIp/Xx5KcJh4G6ykOdYbpICxqhip:yz6StItXxQAhxdopICxqhC","tlshash":"77b3fd09f6f715665133b0bb8eef412c7261900b5018ee157e4c57e0af8893cf9e6ba8","size":113677,"data":"","first_seen":"2025-09-26T01:27:32.155766Z","last_seen":"2026-04-18T18:14:02.724626Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"d79d08e321c70eba03ce8f954cc4ba2b","sha1":"deab2f32e0df4e35c41e4c8cbcf3bba4436f30d0","sha256":"b1f3c02c1357aabd79023c1b44358a0083610ae623bb67eeec076dc5c5ccf4f4","sha512":"f49031681a6a8fd470a1263103bc37fd702f678baaa814e16a16f92c80fd6ead453c9a3f28de219742ef246337c7022830780231c92aa7b2abe2a591414dad90","ssdeep":"96:ziSPTrf9/QkXNmozv5mp60+WAvWASaGnYvAMr/:bP39/QkdvFg+zvzsnYvAo","tlshash":"8cd153a679e0506bb59f04d65b6f74091ea1a143d72cda00bf7fa3c50fc7cb480562e6","size":6179,"data":"","first_seen":"2025-09-26T01:27:32.174419Z","last_seen":"2026-04-18T18:14:02.73024Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b5f089d7f389fac4cd6b99be2a2411cf","sha1":"a0d3dec9ccb88677a54acccecdd5e07dc05cff2e","sha256":"d12cfa1301bde700d57499b1382913758f987eabbd0b9f1d2cd9a643da88dcbc","sha512":"d295a89110fbcf2800cba2e923345b6316f1bf6c0ecfab2d5e1d0db9848cbe6c10274844e3df9053c5f650cd92b142eb71512ecc6d4f146c682c0c4223c9624f","ssdeep":"","tlshash":"ecb092bf2248e10a2f8069b1400f59657322226c5c494e3296097292e4046da445ba90","size":120,"data":"","first_seen":"2026-04-18T18:04:41.208192Z","last_seen":"2026-04-18T18:06:51.547074Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/login.html","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"27fdb55ce7b1da8f630a704e7dd7fc2a","sha1":"1b7d7f550a83d72210b2e73e78e3eaad9c741266","sha256":"4cbd1a849471337ea2b68ca895b89f6a5a56f61b800973f29ea9c19e305d6a50","sha512":"0aa5df6af0cf82b946f6b9b75c25cce87fd15773117d20edf166a242500898ebc0d8295a15985705aeb2f26eaa9ff7a3636730f944dbca6dd18023c9fee5f768","ssdeep":"","tlshash":"a2600000030f03030030c0cc03030003000c00033000cf3f333003003f0300cc030000","size":15,"data":"","first_seen":"2025-09-26T01:27:32.180829Z","last_seen":"2026-04-18T18:14:02.732957Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"01575260c8f77c67633e0f79660a989e","sha1":"8347163d39d6d471d62651238d5b721288feb91d","sha256":"814be5e52b0043f953a3561eb2da8420759f1d1fb858a9946c3a94727e56ca98","sha512":"decb974f18dd4c44a9f0f412d8a5f9521e1ee719de66eae0a4eb2093758f62f5249ba2b5f85fa9cadb86d3bc477b0ff8b02998bc01061db63a4017ebc8da28c6","ssdeep":"","tlshash":"be60000330000300003000cc0f000c00000300333000000c3c0c00c00ff00003f0c300","size":15,"data":"","first_seen":"2025-09-26T01:27:32.184668Z","last_seen":"2026-04-18T18:14:02.731439Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/chat/js/main.js","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"4dacc575822913400b1b2aa6a4993a52","sha1":"b42bcede5379de0f29c90745478ae2c5f627c341","sha256":"d1f1ac42e3e274ad65591e6d5ffddf7163986d53760f0aaa4737b58ae900821e","sha512":"58952e99d532a9e7b51d05515ca77a9f42144a3419d30bf9fca9535b17cc6a880d51d4fd9c6241f3eefe82ea818e80e834f75671ba35eb7b0a5e51135007f78b","ssdeep":"1536:NYoollUARG7lT5sgi3M2FblSEGmBFyl1HsgCdOgkPfVZcUG5HeDH3/nWwe:Nql2Xic2FblS1m7gCdOvPoUX/Wwe","tlshash":"3f6482092ef7245a8163f0bbaf8f7401f23450075685ee15be6d4290af9067853fafe9","size":310679,"data":"","first_seen":"2025-08-04T04:58:26.858519Z","last_seen":"2026-04-18T18:14:02.731913Z","times_seen":38,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/lang2.js?v=1.4","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"13cb43a4c55256779dbcc9cfc84d91a0","sha1":"58e866da2c9463c18e292d36a5232ff8f1a45f3a","sha256":"9a63dbb55f6b6e87bc3589adeaf249a796ca2aff48a52fa9e6d2e88889cbd5c1","sha512":"08c10a26bc45fd1b0addbb6e85d2f755fd82ff2a946da80fcb7918a65968976b454329a0d645971a9c010fecd61d4a4a6d602debc903aa69881556291d462cb9","ssdeep":"3072:R+hpjAnr8tTb+cH01Hey4POYyUaQOuZJ68MvN239lcFKb6P0YJqgjpWsQNeAsY97:c3dycH0ky4POtnQOuk8AN23PYJq2pWsa","tlshash":"bd1491370e8b1094114fe20da1c2760e99866a37ff2174d07bed70291fee45f85b9aad","size":193198,"data":"","first_seen":"2025-09-26T01:27:32.143706Z","last_seen":"2026-04-18T18:14:02.722234Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"bctcom.top/img/hone2.png","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bctcom.top/","date":"2026-04-18T18:04:11.171Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /img/hone2.png HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:11 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Tue, 20 May 2025 15:24:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682c9ebc-f43\"\r\nexpires: Mon, 18 May 2026 18:04:11 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9ap22y%2FEJltkHaaBTiTyxBsTDlJDvWdP%2BybMOlP0LIZxH7LsqdJ3knxeAv0wXLM9GvaTYYaQ2gOmyFocBYurNnTUvbqc5jvHqzKBxAIPJmGYlNpvk1LFSnKv6xjm\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee5972988de712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3907,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"da7c207e1e828d28425aa96e69f03b4e","sha1":"5f6e88da468e4c60336e19823e0555507dfd66a9","sha256":"227518facdddf23698ef60a48730a285d398f2fbf2efe45269dcbc1b0cf414ae","sha512":"b47e3ce42c3170817f256a56f80a05e8f1de48c91e99e4a5b4911684b9925f5db0d29a7df9539ccc1fa2c89564c3c18a63672ef5866063f21cd40f9310a6d71e","ssdeep":"","tlshash":"82817d8565798bf9b0ef5563c7b9b77b38c2a8828223cfb55a0725b631901c083d72d2","first_seen":"2025-09-26T01:27:32.163842Z","last_seen":"2026-04-18T18:13:35.280908Z","times_seen":15,"resource_available":false,"data":null}},"time_used":484,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":484,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.gpteng.co/gptengineer.js","fqdn":"cdn.gpteng.co","domain":"gpteng.co","tld":"co"},"ip":{"addr":"104.18.28.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bctcom.top/","date":"2026-04-18T18:04:11.180Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.gpteng.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 13 Apr 2026 20:25:47 GMT","end":"Sun, 12 Jul 2026 21:25:38 GMT"},"fingerprint":{"sha1":"B5:C2:5D:87:D7:51:E0:73:8D:83:C4:92:3B:A5:57:F0:18:C3:10:15","sha256":"B7:2A:6D:36:CB:2E:C6:82:0E:25:CC:93:EE:AC:6C:04:54:D4:F1:4C:15:85:D1:44:FB:0F:51:54:CB:A0:39:00"}}},"request":{"raw":"GET /gptengineer.js HTTP/1.1\r\nHost: cdn.gpteng.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bctcom.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:11 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 0\r\nexpires: Sat, 18 Apr 2026 22:04:11 GMT\r\ncf-cache-status: MISS\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=14400\r\netag: \"d41d8cd98f00b204e9800998ecf8427e\"\r\nlast-modified: Wed, 15 Apr 2026 11:15:31 GMT\r\nvary: Origin, Accept-Encoding\r\nset-cookie: __cf_bm=L6maNV6cezgi5o.pDqzCVJJoGkuZYqTf3ifFXs6xGcA-1776535451.2017415-1.0.1.1-eIXSHKY1jic9yytCl9Rmt8VSbtpg.CdpO_p1BLGUrEvvk_1DzvLQPOACQQROq.SngIBN2ZQ3dGIbvPp2ySUVC3vByIPsghHW1Ty_n_gmMhsqRsXvsH5WZpd7UQ1wTHen; HttpOnly; Secure; Path=/; Domain=gpteng.co; Expires=Sat, 18 Apr 2026 18:34:11 GMT\r\nserver: cloudflare\r\ncf-ray: 9ee5972a0b6d0883-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-23T10:09:26.916857Z","times_seen":14098215,"resource_available":true,"data":null}},"time_used":169,"timings":{"blocked":21,"dns":37,"connect":1,"send":0,"wait":90,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/img/usdt.png","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bctcom.top/login.html","date":"2026-04-18T18:04:13.035Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /img/usdt.png HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/login.html\r\nCookie: _ga_NRVZDP4GYP=GS2.1.s1776535452$o1$g0$t1776535452$j60$l0$h0; _ga=GA1.1.1938099968.1776535452; sb-updates=3.7.4\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:13 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 15 May 2025 18:58:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68263968-b8e1\"\r\nexpires: Mon, 18 May 2026 18:04:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1b9Raxn%2FfINhFl27rSH3YWgV2f%2FZrpXHVXNqtxnicLqVN0PBZoM9Wgj15yHVbNoHN5BwQ4Qv6L6OWdtJ%2BaZEbO%2FsOjRyt8DFK4lS6bPZZdgBrXdkIKaMH99E%2Bv%2Fd\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee597357b1e712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":47329,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 304 x 301, 8-bit/color RGBA, non-interlaced","md5":"8e61b705ea52802378b95f58bcf28689","sha1":"cb8d396fa81f38736dbe37bd40014eda233f6ac4","sha256":"595ec6c57372a739a391629914e81e14179f45bacded0c7ff7b070b4e0ec4c17","sha512":"fc0dc9a7ebd02563659714e0037969851cf236f34ab69c06efd1987336cbf963a4c3663f725dc774671de27fd72cb55b8b61bf9b934567409979964b3b849fea","ssdeep":"768:5BkuBYyeiKss38IokfPE42zDjx84FzMg7eBIFZ0XXJ95y/+UGf:52vms38IoqMNt/zMg7eBIFZKX0/8","tlshash":"4623028e602c537225b5670e40b08229f16f69e316f699839f67fe578173cf94ec881e","first_seen":"2023-05-01T18:08:36Z","last_seen":"2026-04-18T18:14:02.725718Z","times_seen":28,"resource_available":false,"data":null}},"time_used":797,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":641,"receive":156,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/css/style2.css?v=1.4","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bctcom.top/","date":"2026-04-18T18:04:11.163Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /css/style2.css?v=1.4 HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:11 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Fri, 30 May 2025 15:00:34 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6839c812-266e\"\r\nexpires: Sun, 19 Apr 2026 06:04:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VdWvEQOxZP2405ydYIvYtLOEIctcWb%2BfT5dJvM41nB%2FhSQz8309l5teUVnTaVclQq42Ey%2BKEzwhYa64TyPvfKd6cPmPClpMUOTeZa2vL8b1Hle6Ds36jk56HWd2x\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee5972988d9712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9838,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"27b22fa0b739a09db02f63e09896fb6a","sha1":"07915e0af2ffd6bf646476fefba313407e55280d","sha256":"21e348ed22fba7dd76b53c4c079d0e2b6a65a169a88dab8d387f39f16e5a50f6","sha512":"2b92c0e6d73d530d739534f9a569389a7ec2d25bebe2ab9fe3d77f5dadc873c00c8f6c6dedecf46138ff5b1ef414b4eba8f738c89fee5b2ab70c85e893c98320","ssdeep":"192:nhiBtjwdqsio60fJEzoW53J2VqYa40VwUGN8yFK:nh+GBFfyZ2VLaAK","tlshash":"6c121e9c6ab54801b58bd458b0a3cbd4732d8488cc0dcb7cbbe27458ee4d3a47976e5e","first_seen":"2025-09-26T01:27:32.158053Z","last_seen":"2026-04-18T18:13:35.283094Z","times_seen":15,"resource_available":false,"data":null}},"time_used":480,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":480,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/img/product.png","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bctcom.top/","date":"2026-04-18T18:04:11.173Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /img/product.png HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:11 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 22 May 2025 14:25:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682f33c4-101e\"\r\nexpires: Mon, 18 May 2026 18:04:11 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yMy6I6GEvHlVPg5l6yvg1JrBx1ZMtK9dhydhr6%2Bu3xpk13hSO539PnWGEo7h0d6FGT9zJWkg%2Blzt4Jwkvhpj2tLXkQKffWbAPg9WvxHzEmshvD%2FxbGu9H3zJ70dK\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee5972998e2712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4126,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"a2634f4412be51acfcf582d3f5066287","sha1":"e1adce830f2c76a2cde49cc673e7873f21683d60","sha256":"0a3041c5fc63a26265bcd39dbb860e5b20a6b5e8b90801948d69b1c70cf66714","sha512":"10a3018cd00a8428ff033592d57cb0060f7db33765421a9df9b83de308debb0e69e714256d287c95c267c2ad990866ce93601c96cadc1e294a7add8df6670f89","ssdeep":"96:L8jNf7JrtEjb41BrzAMUSij1j3IITu554IHFGi/s9qkc:QjRKQZkz5j3IITu5blGiUUN","tlshash":"97815b1fa0a52a5100e7669f2cb0c7d05b6a620d2f3f526bd69c28a5b333add04b5673","first_seen":"2025-09-26T01:27:32.124166Z","last_seen":"2026-04-18T18:14:02.720922Z","times_seen":16,"resource_available":false,"data":null}},"time_used":481,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":481,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-NRVZDP4GYP","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bctcom.top/","date":"2026-04-18T18:04:11.191Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:35:14 GMT","end":"Mon, 22 Jun 2026 08:35:13 GMT"},"fingerprint":{"sha1":"BA:9E:A9:01:73:30:25:9B:9B:28:25:39:24:13:22:55:3E:F0:57:C3","sha256":"9D:AB:4E:BD:B4:98:3A:1E:70:9C:42:A2:E1:DA:0E:18:3C:BB:D8:2A:58:08:F5:85:3D:36:0E:1A:7A:27:AC:5E"}}},"request":{"raw":"GET /gtag/js?id=G-NRVZDP4GYP HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 18 Apr 2026 18:04:11 GMT\r\nexpires: Sat, 18 Apr 2026 18:04:11 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 156990\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":473269,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"96d53f4642157572b0a0690c1f4830c1","sha1":"c1e1191cb4eb519857e779c1c5182b79a86e27e4","sha256":"aa0390eb5bba9a61c78569e6338272f756ca4a5ccfa8f5e56b5d140f902a8798","sha512":"a983ef4c3969c9e2043f56e98bb3baf1eaf34c205041dac64fa752c7afb66fbc0755888d62ffbd8896b625aef29113533845c3fbfba098b0c35c0d5b7e741e0d","ssdeep":"6144:Am4OjKg7CA4MRBRfrJPj8B3v0yIjwcHCpLUgW6w01V91XG:D7t4MtfrJL8p5WOW","tlshash":"5da409ceb3d674625396f478903f018ba57b28a2b44cc89af189cce42d7465a4277f7c","first_seen":"2026-04-18T18:04:41.174104Z","last_seen":"2026-04-18T18:04:41.174104Z","times_seen":1,"resource_available":true,"data":null}},"time_used":454,"timings":{"blocked":134,"dns":0,"connect":29,"send":0,"wait":61,"receive":95,"ssl":131},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/css/styles.css?v=1.6","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bctcom.top/login.html","date":"2026-04-18T18:04:13.034Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /css/styles.css?v=1.6 HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/login.html\r\nCookie: _ga_NRVZDP4GYP=GS2.1.s1776535452$o1$g0$t1776535452$j60$l0$h0; _ga=GA1.1.1938099968.1776535452; sb-updates=3.7.4\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:13 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Fri, 30 May 2025 10:04:39 GMT\r\nvary: Accept-Encoding\r\netag: W/\"683982b7-507d\"\r\nexpires: Sun, 19 Apr 2026 06:04:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1\r\ncf-cache-status: HIT\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SaN%2F5qhD03xIbv6weSYuJJzsl1%2FTifwX3OvTNWEHXWSD6F3WzEG0ah3MrmefDKDWWIYwj%2FU5CKYmo7ZMO5J%2B4nsMjvftukIss8WyvRXamsn16D8WHnkYxfWaUoag\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee597357b1d712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":20605,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"7b428e0aa40de363cbb0962db2c70fbd","sha1":"29a860f680c4c92dc11e33f64e7162443ec80327","sha256":"ee9718f1a017c515eaa7e8af7226b0c901074dfa4cc6345df159cd8e9a4762d7","sha512":"6c972ee8de86995d89b3e8e37789496649c994b2f44a28ee38354efd3ad3761f7560bc6b18158b5d014d0e3a3ff84d6f3cd29a665c13e3d08117a1f9da8d05ec","ssdeep":"384:+Da+hF3uvV2+oQctX8fPenjTkWwFsNFY1:+HhhuvV2+oQctX8Co7aNF4","tlshash":"a89252506a716514392fd15ca5d3ab88636cd0418d0ecfbd6be6206caf893f9a472f8c","first_seen":"2025-09-26T01:27:32.139601Z","last_seen":"2026-04-18T18:14:02.722909Z","times_seen":20,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.winusdt.top/usdt-boot/myapi/index/service","fqdn":"api.winusdt.top","domain":"winusdt.top","tld":"top"},"ip":{"addr":"172.67.217.29","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bctcom.top/login.html","date":"2026-04-18T18:04:13.110Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winusdt.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Apr 2026 01:15:35 GMT","end":"Tue, 07 Jul 2026 02:15:33 GMT"},"fingerprint":{"sha1":"94:9E:EB:34:03:40:81:75:3D:5A:6C:29:F2:32:2F:92:B1:F0:66:D3","sha256":"C2:71:7E:D7:D6:8C:39:24:A1:EE:6F:BF:6E:CB:12:B9:50:3D:D7:A0:A2:62:22:F6:4A:6B:45:AA:56:1B:F8:61"}}},"request":{"raw":"OPTIONS /usdt-boot/myapi/index/service HTTP/1.1\r\nHost: api.winusdt.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nReferer: https://bctcom.top/\r\nOrigin: https://bctcom.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 18 Apr 2026 18:04:13 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://bctcom.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\ncache-control: no-cache\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=b0bYqNoPm72e6ZQsl0cgPHz36LjvGYim3S5MOxOYpdJ0wbbd3ouNVeUQuhLyRw%2B5tGA%2B1iG6FuoaXSJTtet0Hls1ofWiFRtzqXbbKfhXlODYh71nvewvgTJyZqeM74Wssvo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9ee59735ebee723c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-23T10:09:26.916857Z","times_seen":14098215,"resource_available":true,"data":null}},"time_used":166,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":165,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.winusdt.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.winusdt.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/img/userinfo.png","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bctcom.top/","date":"2026-04-18T18:04:11.178Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /img/userinfo.png HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:11 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 22 May 2025 14:26:28 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682f3414-100f\"\r\nexpires: Mon, 18 May 2026 18:04:11 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cCj3tpCff7bH2xUnmkojHunmjSLq1Z2tRsGhMw7k9ryadzEsZllfFetw0q%2FmgZVPSkMrfoy2bbubtydbjcDWObvqtJPwz5Zh4fcZiu%2B4eeaNwadkHHp6LU%2FOZmoX\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee59729a8f2712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-23T10:09:26.916857Z","times_seen":14098215,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.gpteng.co/gptengineer.js","fqdn":"cdn.gpteng.co","domain":"gpteng.co","tld":"co"},"ip":{"addr":"104.18.28.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bctcom.top/login.html","date":"2026-04-18T18:04:13.036Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.gpteng.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 13 Apr 2026 20:25:47 GMT","end":"Sun, 12 Jul 2026 21:25:38 GMT"},"fingerprint":{"sha1":"B5:C2:5D:87:D7:51:E0:73:8D:83:C4:92:3B:A5:57:F0:18:C3:10:15","sha256":"B7:2A:6D:36:CB:2E:C6:82:0E:25:CC:93:EE:AC:6C:04:54:D4:F1:4C:15:85:D1:44:FB:0F:51:54:CB:A0:39:00"}}},"request":{"raw":"GET /gptengineer.js HTTP/1.1\r\nHost: cdn.gpteng.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bctcom.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:13 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 0\r\nexpires: Sat, 18 Apr 2026 22:04:13 GMT\r\ncf-cache-status: MISS\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=14400\r\netag: \"d41d8cd98f00b204e9800998ecf8427e\"\r\nlast-modified: Wed, 15 Apr 2026 11:15:31 GMT\r\nvary: Origin, Accept-Encoding\r\nset-cookie: __cf_bm=TiwMNxtv.ifdAUJAVD628.z2LtnnFhXxKf1GiDQsHW8-1776535453.0315976-1.0.1.1-JCy6sbQLCxjysEoBGTa5qc.m78yRCI3m1QPSKoCtt7IfHVnXdV.TnOH4cI.xz1iHs15RduYhYth30RjsWDgtrDLqViirKqktoG5RYQ6iwGH.QIzVkKxLL.fwRgIqdBcL; HttpOnly; Secure; Path=/; Domain=gpteng.co; Expires=Sat, 18 Apr 2026 18:34:13 GMT\r\nserver: cloudflare\r\ncf-ray: 9ee5973578e50883-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-23T10:09:26.916857Z","times_seen":14098215,"resource_available":true,"data":null}},"time_used":90,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/main.js","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bctcom.top/login.html","date":"2026-04-18T18:04:13.037Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /js/main.js HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/login.html\r\nCookie: _ga_NRVZDP4GYP=GS2.1.s1776535452$o1$g0$t1776535452$j60$l0$h0; _ga=GA1.1.1938099968.1776535452; sb-updates=3.7.4\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 22 May 2025 13:44:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682f2a52-dbd\"\r\nexpires: Sun, 19 Apr 2026 06:04:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=n5nvy3WMuXBt9snlZRz78ycK3H6vTs45ivoSv68kPhf7p9l9uvnPBD%2Bp3KiEnLorVM%2BLtaRxTq7K0zx5nbcRA%2BIS5qgxD2%2BekE5dxgAOExHlv5iTyOBEkhh20gao\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee597357b1f712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3517,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (337)","md5":"6f5474a13b4487bf671de00914db0219","sha1":"9aeb2fa6dd78882c1d51261f27ff1db27d789623","sha256":"8488aff5f74a96aa5a474c858c59577dcced528b081fb0245bc70934940dd598","sha512":"99b625a224d4eea7de46e923d1d7479c6cfdb59e9643cf266671a2cb3cedcf056d328af239ede1e5cc1375873fd1123314e7a456dc7f61583546eaed08211f39","ssdeep":"","tlshash":"2f71962a72791b3ae92760faa357723c3425514ba44cc904f44d43684f92f96acb36ec","first_seen":"2025-09-26T01:27:32.16632Z","last_seen":"2026-04-18T18:14:02.720232Z","times_seen":20,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/jquery-3.2.1.min.js","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bctcom.top/login.html","date":"2026-04-18T18:04:13.040Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /js/jquery-3.2.1.min.js HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/login.html\r\nCookie: _ga_NRVZDP4GYP=GS2.1.s1776535452$o1$g0$t1776535452$j60$l0$h0; _ga=GA1.1.1938099968.1776535452; sb-updates=3.7.4\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Aug 2022 14:14:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"63038f36-17b8a\"\r\nexpires: Sun, 19 Apr 2026 06:04:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KYOPr2unsM%2BlGjnb5IYNOb1d4DBxEFSnDH6lzMuB3PhdOrH8%2BocL8OacBLFt5hJ9rwdP4zwriCyB64vTglVsOEtbBLzCoVwtWBRWnGwZJQ%2B9ACJq3raOg4B2W5fV\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee597357b20712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":97162,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32077)","md5":"0fca26b5a37a66d68d0f4406976be4b5","sha1":"ee000eb654b3bd37185665d3901e93b34ce1aa52","sha256":"8c2812ded6436715279f8fd8db58de307aa39ab0296fe3cf0e879067c51e9b18","sha512":"cf010995991a8f8b50cfb4b466d3b457b0a6addc4f2fd96c48c33d40ac251de400894828ccd99662b13fc9ca25c676ef0aee05faa4910530ff9996d03c411645","ssdeep":"1536:GYE1JVoiB9JqZdXXe2pD3PgoIiulrUdTJSFk/zkZ4HjL5o8srOaS9TwD6b7/Jp94:t4J+R3jL5TCOauTwD6FdnCVQNea98HrF","tlshash":"7a93d7d9b6d6706287b734a851bf410bb17aa8eab40c4c60f058c8e47e74e9d507bf2d","first_seen":"2023-03-07T01:06:51Z","last_seen":"2026-04-23T10:07:30.764518Z","times_seen":6516,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.winusdt.top/usdt-boot/myapi/index/linklist","fqdn":"api.winusdt.top","domain":"winusdt.top","tld":"top"},"ip":{"addr":"172.67.217.29","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bctcom.top/login.html","date":"2026-04-18T18:04:13.108Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winusdt.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Apr 2026 01:15:35 GMT","end":"Tue, 07 Jul 2026 02:15:33 GMT"},"fingerprint":{"sha1":"94:9E:EB:34:03:40:81:75:3D:5A:6C:29:F2:32:2F:92:B1:F0:66:D3","sha256":"C2:71:7E:D7:D6:8C:39:24:A1:EE:6F:BF:6E:CB:12:B9:50:3D:D7:A0:A2:62:22:F6:4A:6B:45:AA:56:1B:F8:61"}}},"request":{"raw":"OPTIONS /usdt-boot/myapi/index/linklist HTTP/1.1\r\nHost: api.winusdt.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nReferer: https://bctcom.top/\r\nOrigin: https://bctcom.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 18 Apr 2026 18:04:13 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://bctcom.top\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\ncache-control: no-cache\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2jY4HYKXLh6FG0PuUjPpPx5jPyfzukSnHUpBxrsWbjBIOfOv1NcVP2hKWcJrLYSMfZ8Xwb0cTyt4XdEHSP18arZBPhVfbDpm50RuGIHRr8xAQ7ilwmg0yMInWEPIuuKiug4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9ee59735ebed723c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-23T10:09:26.916857Z","times_seen":14098215,"resource_available":true,"data":null}},"time_used":480,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":480,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.winusdt.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.winusdt.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.winusdt.top/usdt-boot/myapi/index/linklist","fqdn":"api.winusdt.top","domain":"winusdt.top","tld":"top"},"ip":{"addr":"172.67.217.29","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bctcom.top/login.html","date":"2026-04-18T18:04:13.591Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winusdt.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Apr 2026 01:15:35 GMT","end":"Tue, 07 Jul 2026 02:15:33 GMT"},"fingerprint":{"sha1":"94:9E:EB:34:03:40:81:75:3D:5A:6C:29:F2:32:2F:92:B1:F0:66:D3","sha256":"C2:71:7E:D7:D6:8C:39:24:A1:EE:6F:BF:6E:CB:12:B9:50:3D:D7:A0:A2:62:22:F6:4A:6B:45:AA:56:1B:F8:61"}}},"request":{"raw":"POST /usdt-boot/myapi/index/linklist HTTP/1.1\r\nHost: api.winusdt.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en\r\nOrigin: https://bctcom.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 18 Apr 2026 18:04:13 GMT\r\ncontent-type: application/json;charset=UTF-8\r\nvary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://bctcom.top\r\ncontent-encoding: gzip\r\ncache-control: no-cache\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7UAWAk2yGYdRBFUq%2BeuNnVCmMa4umPUv2kRz252dYJ0UZovVV4Y1GRhxZO0JabUfntG0DUoWR95qOj39S2B6lXVPBZkyWMC%2FoAXj8itDbqlFzV56BIk%2BlVJuKY4reLQ1pBU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee59738ec61723c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3545,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"08fe46e75d74c8a1ca94ca6ad616a167","sha1":"ed32ec98e658b30d39bb62bd8568564cbd3ac7ae","sha256":"f1445c69db9d04c1e6449ed7d26f65f644cb027ff391ec27db05561cd6dadc09","sha512":"204f50b9773c365bb891ddbf6e70f4d203a5dacfb0b53e16256d5014030bf252f0c96393d8757fc3d9fc8d947b1ed78c24466c403547a69320a9f653635cb872","ssdeep":"","tlshash":"ac719d7f45bc5cbe8a4d24415e8e7e88c5cd151b28ca4ed2488adf1588f04b2bfd638d","first_seen":"2026-04-18T18:04:41.178537Z","last_seen":"2026-04-18T18:04:41.178537Z","times_seen":1,"resource_available":false,"data":null}},"time_used":160,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":160,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.winusdt.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.winusdt.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/swiper.min.css","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bctcom.top/","date":"2026-04-18T18:04:11.168Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /js/swiper.min.css HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:11 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 11 Mar 2017 02:08:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"58c35c06-455f\"\r\nexpires: Sun, 19 Apr 2026 06:04:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xB3sYOMpZnkEAekkEfN4gwAta59riLt5JRSZ1oDsVpk30ycvkgEGjiu4vhpD0rpI4NntrQH0jfkSz8wQ%2B6MSsjCMqTJhMYFXpGm%2BYD5SwV%2BitQR5FnREDAUdxLtT\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee5972988db712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":17759,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (17459)","md5":"6af34d0737ad0ca608111771cf74cc79","sha1":"15d0417baa08a741c6aee19fdfbf4813635f98f8","sha256":"47b0e7129add982c0e394f0dfa8d9621e6c9e4126859b26e1ad25c18def0d812","sha512":"74b738d66a9da306308153c683bfe1fc784bdf34166492eb4e76ea015c32bdf1f01c5f97a6c7eee5459c13b04e8dc63f7ffd20579e6808fed467e0896abe4baa","ssdeep":"192:bgG0GpaNCO8jrfg5WHmXgyXyzSHF68DJB0SwD:bgG52CXfgWHfyXyzSl68Pe","tlshash":"2982832c17002067f6324f1947c9e77c9715c893ae0368ef6650de48cbbb5a9227f796","first_seen":"2023-04-05T14:33:33Z","last_seen":"2026-04-23T09:03:54.805197Z","times_seen":4662,"resource_available":false,"data":null}},"time_used":485,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":485,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/lang2.js?v=1.4","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bctcom.top/login.html","date":"2026-04-18T18:04:13.041Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /js/lang2.js?v=1.4 HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/login.html\r\nCookie: _ga_NRVZDP4GYP=GS2.1.s1776535452$o1$g0$t1776535452$j60$l0$h0; _ga=GA1.1.1938099968.1776535452; sb-updates=3.7.4\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Fri, 27 Jun 2025 05:58:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"685e32f0-2f2ae\"\r\nexpires: Sun, 19 Apr 2026 06:04:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7sCaEOMI7AAVYODWz1%2BnCwgSc9xJ3XDcRzgSrFxHOj8%2FMY8hdCJ7nHRJIcKe8UIc0axYF5x0Z36ttwAbwUqNLR5H08x7h%2FsFFGAEqVRun9duCSabl%2BMQ469HIiCf\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee597357b21712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":193198,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (408)","md5":"13cb43a4c55256779dbcc9cfc84d91a0","sha1":"58e866da2c9463c18e292d36a5232ff8f1a45f3a","sha256":"9a63dbb55f6b6e87bc3589adeaf249a796ca2aff48a52fa9e6d2e88889cbd5c1","sha512":"08c10a26bc45fd1b0addbb6e85d2f755fd82ff2a946da80fcb7918a65968976b454329a0d645971a9c010fecd61d4a4a6d602debc903aa69881556291d462cb9","ssdeep":"3072:R+hpjAnr8tTb+cH01Hey4POYyUaQOuZJ68MvN239lcFKb6P0YJqgjpWsQNeAsY97:c3dycH0ky4POtnQOuk8AN23PYJq2pWsa","tlshash":"bd1491370e8b1094114fe20da1c2760e99866a37ff2174d07bed70291fee45f85b9aad","first_seen":"2025-09-26T01:27:32.143706Z","last_seen":"2026-04-18T18:14:02.722234Z","times_seen":20,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/favicon.ico","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bctcom.top/login.html","date":"2026-04-18T18:04:13.425Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/login.html\r\nCookie: _ga_NRVZDP4GYP=GS2.1.s1776535452$o1$g0$t1776535452$j60$l0$h0; _ga=GA1.1.1938099968.1776535452; sb-updates=3.7.4\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Sat, 18 Apr 2026 18:04:13 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tPTcu2q1Leu27rJXcmxLFO3I5k8BknFKTFtRqFMk92c2JsxK9ZpARvo%2F1vh5X6CptXGA94E8kmGraRqOW0C%2BfP8FPOKn1qsEk%2BKLzlLg9DZw51ITyNXprnNM%2BUVd\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9ee59737edb8712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-23T10:11:26.305705Z","times_seen":493634,"resource_available":true,"data":null}},"time_used":163,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":163,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/login.html","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-18T18:04:12.853Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /login.html HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/\r\nCookie: _ga_NRVZDP4GYP=GS2.1.s1776535452$o1$g0$t1776535452$j60$l0$h0; _ga=GA1.1.1938099968.1776535452; sb-updates=3.7.4\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:12 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Fri, 27 Jun 2025 05:57:28 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: DYNAMIC\r\npriority: u=1,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZFhZGhuQ37m3gpKOconZSFdPCvzVxiXEJobeqfVnqVklp7tbKpHCGvz6ONsHa5MrFECnsutk8F9fCYCMF514twgHeAVrJy%2BpZazn3AzJTyz0ZkJPCnLnLEPJCi9b\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9ee597343a15712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"jQuery:3.2.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15357,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"dadf2978df4dd4304002ef7f2d62ead9","sha1":"bbb5b99559489c72485caa5f3bbff5a211198bb0","sha256":"322a6a29fd9e6e43e5c7a910fe2aa983c54c069bb338f303116ef4aae3b79297","sha512":"5d3b7c994c8de5f7994f2e2406187a9734c1db5fad4c2ec958a672168037707a73107ef2f4b0a90aaf9bdd6d5028ac9d93a94af9c5e1ad322b033c234d7439b1","ssdeep":"192:ycc+7meuuUF1eInD83EPePz7xxZiP39/QkdvFg+zvzsnYvAv:LbuumH4TPz7xxoPe8vq3v","tlshash":"8962406278f4002b215f44caafba7a197dd2d103d30dea0076fd57891fc7ea688136da","first_seen":"2025-09-26T01:27:32.128203Z","last_seen":"2026-04-18T18:14:02.721469Z","times_seen":20,"resource_available":true,"data":null}},"time_used":165,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":165,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/main.js","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bctcom.top/","date":"2026-04-18T18:04:11.182Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /js/main.js HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:11 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 22 May 2025 13:44:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"682f2a52-dbd\"\r\nexpires: Sun, 19 Apr 2026 06:04:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RlrSKNYknKavw46FMJwMcmKd8EySHC0%2F8yxs3u0ucrpRSwI0PEk692MkpE4Er34JbXlSlnYJ4GsKk8nEWsYDQlN%2B9ye6ZPetzfmJpzd%2BqlmRHDJ1sT2ZvSpTfUVM\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee59729a8f3712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3517,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (337)","md5":"6f5474a13b4487bf671de00914db0219","sha1":"9aeb2fa6dd78882c1d51261f27ff1db27d789623","sha256":"8488aff5f74a96aa5a474c858c59577dcced528b081fb0245bc70934940dd598","sha512":"99b625a224d4eea7de46e923d1d7479c6cfdb59e9643cf266671a2cb3cedcf056d328af239ede1e5cc1375873fd1123314e7a456dc7f61583546eaed08211f39","ssdeep":"","tlshash":"2f71962a72791b3ae92760faa357723c3425514ba44cc904f44d43684f92f96acb36ec","first_seen":"2025-09-26T01:27:32.16632Z","last_seen":"2026-04-18T18:14:02.720232Z","times_seen":20,"resource_available":true,"data":null}},"time_used":467,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":467,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/translations.js?v=1.0","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bctcom.top/login.html","date":"2026-04-18T18:04:13.044Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /js/translations.js?v=1.0 HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/login.html\r\nCookie: _ga_NRVZDP4GYP=GS2.1.s1776535452$o1$g0$t1776535452$j60$l0$h0; _ga=GA1.1.1938099968.1776535452; sb-updates=3.7.4\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 29 May 2025 18:49:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6838ac46-9e78\"\r\nexpires: Sun, 19 Apr 2026 06:04:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2B6aCuUSiKODJ1OkMlmu6RIu4edfmLvYZx69Hj1FX4jQzi48Hu1IM%2FMms8LEiG1rGGIgPf7zNV3k40N30zXQZdnsKbYjA6AfARO3g4ZqU98fiZ7U8A3xt6l%2Fe97va\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee597357b23712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":40568,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text","md5":"52261f051efde646dcc6737928ea1737","sha1":"8e0d3c7a6426e68820b8befdc1b7ba7594e1e161","sha256":"3e5dbf476860e6824cad7801da3a14cf2244eb7ec3c62db6b3c261d58155ce76","sha512":"5d5746ae3a4ca49a7d175a605d54be424ba3631c98d9eae2d1dbf91bf14382a2218e27105d931ce9cb4d2f9f1ca19310a1ee2c82eaf2fb822870fbf0fb01c68a","ssdeep":"768:KoZFgbodAlzZiISJK9tcCxYfXecerEK5AysxKB:KGgbodAlkILHUOca5Aysx4","tlshash":"a903836ade790ed711c136887aa13686393402876c40b4d53798d65c0fefe9f90ba4bf","first_seen":"2025-09-26T01:27:32.160079Z","last_seen":"2026-04-18T18:14:02.72348Z","times_seen":20,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.winusdt.top/usdt-boot/myapi/index/service","fqdn":"api.winusdt.top","domain":"winusdt.top","tld":"top"},"ip":{"addr":"172.67.217.29","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bctcom.top/login.html","date":"2026-04-18T18:04:13.276Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winusdt.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Apr 2026 01:15:35 GMT","end":"Tue, 07 Jul 2026 02:15:33 GMT"},"fingerprint":{"sha1":"94:9E:EB:34:03:40:81:75:3D:5A:6C:29:F2:32:2F:92:B1:F0:66:D3","sha256":"C2:71:7E:D7:D6:8C:39:24:A1:EE:6F:BF:6E:CB:12:B9:50:3D:D7:A0:A2:62:22:F6:4A:6B:45:AA:56:1B:F8:61"}}},"request":{"raw":"POST /usdt-boot/myapi/index/service HTTP/1.1\r\nHost: api.winusdt.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en\r\nOrigin: https://bctcom.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 18 Apr 2026 18:04:13 GMT\r\ncontent-type: application/json;charset=UTF-8\r\nvary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://bctcom.top\r\ncontent-encoding: gzip\r\ncache-control: no-cache\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=n2%2BlhLnQF%2BjlFPFk%2B6349iBOwj%2BPzghqzuZcUVXM6kJ7BABFBwup31dSiGNMyZnphVRB%2BhR0ZzkCuT2GkRpBYmYBTEc%2FxsWXm1dSYeCqIlmlac6KjTKtBZ6WdNKzkr7MU%2F8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee59736fc12723c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":273,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"bafaa33ba298eb8fb9060046af81bab4","sha1":"c3a4c0360a1d0b631a648271a38eae24f96443c8","sha256":"6b241ebd95a6c3232b9cc8ed38a992c0dcbcebc78126c0f18ba029e010d79515","sha512":"ff7bf7782f4c628cc422e5e1f8f4a733512ae43008f7cc331157e6e21f3cc04437bead8ab22a83804806d044140db9fcf4f2e230234bea7b03ee618f6c612f58","ssdeep":"","tlshash":"88d0eb038b98d760720ec000a05e2dc0c4ac406fbe98e422ce2808080b35847318fba9","first_seen":"2026-04-18T18:04:41.185501Z","last_seen":"2026-04-18T18:04:41.185501Z","times_seen":1,"resource_available":false,"data":null}},"time_used":469,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":469,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.winusdt.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"api.winusdt.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/js/app.js?v=1.5","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bctcom.top/login.html","date":"2026-04-18T18:04:13.042Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /js/app.js?v=1.5 HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/login.html\r\nCookie: _ga_NRVZDP4GYP=GS2.1.s1776535452$o1$g0$t1776535452$j60$l0$h0; _ga=GA1.1.1938099968.1776535452; sb-updates=3.7.4\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 10 Jul 2025 07:18:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"686f6963-1bc17\"\r\nexpires: Sun, 19 Apr 2026 06:04:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Zx9eQ8L1L9lezihVaN9FYMvCOCZ5U9wrVbSVI30p0LemX%2BHhg2N%2ByEuLGq2al7PVgVO4UUEFykAOYeFf5MaAIH2VwaiARcjUoH71FoQU67bcWEcvb0rwcoHIdnb9\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee597357b22712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":113687,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"3d12ebd782e58bd93829ca7e9e3e6b3b","sha1":"a8de6367e24ba27db1c299cd6b08adfe5399b88f","sha256":"6ddb195277b3bc501c54b61d7a55021e25f312229bd59e8166076444b5509015","sha512":"2fd2bcc8a22d5929bf738d9f217d54752b71cbf21aef9c1130f6d4263afa6ab6b3caeec1146e166b896e93d5994ee47b4d4756fbce429cd0decf2a2a28d07ae3","ssdeep":"768:yAPI6POWpQdMsJIp/Xx5KcJh4G6ykOdYbpICxqhip:yz6StItXxQAhxdopICxqhC","tlshash":"77b3fd09f6f715665133b0bb8eef412c7261900b5018ee157e4c57e0af8893cf9e6ba8","first_seen":"2025-09-26T01:27:32.155766Z","last_seen":"2026-04-18T18:14:02.724626Z","times_seen":20,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-18T18:04:10.362Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:10 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Sun, 20 Jul 2025 09:03:05 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UKiAFQEdJPLtpUFRW8pMxtnk8B4lNszUiN5Du1mYNHamSpjfMsmHRB30nDazIv1PmebjLVGdLYDQyhiDOMRBDIJRQNsJivHtgCvIXmb%2FwKEPvUMsm3Appsv6TR3Q\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9ee597254b9256ca-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"jQuery:3.2.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}],"data":{"size":23302,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"11d6b2390a1e5e5bab834c13d4f56e5e","sha1":"28fd4f5f227c2a07752b9cc69faa6813a09dab56","sha256":"4aaadf58c0512f19e0d60906dd9d64fa4c3fb074830d8cbc7f78cb106d33668a","sha512":"c7360126c690b2f9cca0aecb661f6038a966bf3cebb3ade287fcab0c79687294589bb41ce8d8426406ad1173de194944bcc9ae4d8c3245f6635588715f090f42","ssdeep":"192:M8S+7mmuuUZsZNWhx6eD9SwErOy8k2Z2DN3E05L3Pz74x9jZdP39/QkdvFg+zvzi:1huupYhx6ezPGTPz74x9jrPe8vq3vtD","tlshash":"c0a2605179f0102b116b40d6afba7b1aaee2e603c34e950076bc0bd95fc7ea58c136dd","first_seen":"2025-09-26T01:27:32.118806Z","last_seen":"2026-04-18T18:14:02.725159Z","times_seen":19,"resource_available":true,"data":null}},"time_used":650,"timings":{"blocked":82,"dns":65,"connect":1,"send":0,"wait":482,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bctcom.top/css/styles.css?v=1.6","fqdn":"bctcom.top","domain":"bctcom.top","tld":"top"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bctcom.top/","date":"2026-04-18T18:04:11.157Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bctcom.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Apr 2026 00:40:43 GMT","end":"Wed, 08 Jul 2026 01:40:41 GMT"},"fingerprint":{"sha1":"D0:D7:57:B3:31:F3:E8:6F:60:B2:2B:72:8F:C0:66:76:B5:D4:E0:F0","sha256":"ED:29:31:BF:F0:72:D1:5B:A6:AA:BB:29:09:24:B9:26:8E:5F:61:40:F9:8C:CF:31:57:33:9F:91:6B:FD:56:E1"}}},"request":{"raw":"GET /css/styles.css?v=1.6 HTTP/1.1\r\nHost: bctcom.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bctcom.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 18:04:11 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Fri, 30 May 2025 10:04:39 GMT\r\nvary: Accept-Encoding\r\netag: W/\"683982b7-507d\"\r\nexpires: Sun, 19 Apr 2026 06:04:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KMSCiko%2BTyBpOVW3GupALu5n1vs3gVrNMndfQuv%2F9oqiNKmda9epglKCg%2BxtrAa1OINKI6W3OZFZPr7x7wL3izruJqSmvs2JQOQu6iIEUZoq49ouSemVRpO%2Fp%2Brh\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee5972988d7712b-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":20605,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"7b428e0aa40de363cbb0962db2c70fbd","sha1":"29a860f680c4c92dc11e33f64e7162443ec80327","sha256":"ee9718f1a017c515eaa7e8af7226b0c901074dfa4cc6345df159cd8e9a4762d7","sha512":"6c972ee8de86995d89b3e8e37789496649c994b2f44a28ee38354efd3ad3761f7560bc6b18158b5d014d0e3a3ff84d6f3cd29a665c13e3d08117a1f9da8d05ec","ssdeep":"384:+Da+hF3uvV2+oQctX8fPenjTkWwFsNFY1:+HhhuvV2+oQctX8Co7aNF4","tlshash":"a89252506a716514392fd15ca5d3ab88636cd0418d0ecfbd6be6206caf893f9a472f8c","first_seen":"2025-09-26T01:27:32.139601Z","last_seen":"2026-04-18T18:14:02.722909Z","times_seen":20,"resource_available":false,"data":null}},"time_used":481,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":481,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"bctcom.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}