{"report_id":"fdeac266-ce24-4357-8683-6573bad6c22e","version":6,"status":"done","tags":[],"date":"2026-01-07T06:15:21Z","url":{"schema":"https","addr":"coin.solgalaxy.cc","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"172.67.151.39","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"coin.solgalaxy.cc/","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"title":"Black Background","dom":{"size":108235,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (416)","md5":"691eec9d5246ac05f96e070d7fc06de8","sha1":"fffb2f2eeb6cc05d26c8112f916a39e23113af5f","sha256":"f724413bfa826cf0002e694cc88dc6ee4f5d9edbdb36ee2563692cdcae995ae3","sha512":"147ec1f7d42ddc5a045c953023d542a53003089ed842b5a31ea897a27eb892bfff85f987d134ee6843408b3bd269ce9739c78a693d5025e94f2530cb8a3b41be","ssdeep":"768:TEay6QDjypDgFF2zQH2L0r82It4uSRhKut5NFgl+FU+xHyvfSDIJPJWf3b8fzwZY:TEaxQDjypDgFF2zqyrYyl1","tlshash":"e2b35587b5e314267a07a0fd1ba65f597250a003810bdc693aac62d8cf867f74df279c","dom_hash":"domhashdd2d6791d65221fcfa1d3c831e50851c","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"coin.solgalaxy.cc","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"172.67.151.39","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-11T06:15:21Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"coin.solgalaxy.cc","ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-11-28","domain_rank":0,"first_seen":"2025-12-09T10:28:00.442388Z","last_seen":"2025-12-09T10:28:00.442388Z","alert_count":80,"request_count":20,"received_data":3428583,"sent_data":14017,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-01-04T22:17:15.216142Z","alert_count":0,"request_count":1,"received_data":10794,"sent_data":476,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"api.coingecko.com","ip":{"addr":"172.66.172.219","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2014-03-26","domain_rank":442226,"first_seen":"2018-05-18T12:16:11Z","last_seen":"2026-01-06T22:04:15.526Z","alert_count":0,"request_count":1,"received_data":1276,"sent_data":487,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"coin.solgalaxy.cc/","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"48fd2ae38ddd61d37ef686437e9f44d7","sha1":"98f8513a9baae7e9ec34fdee90f020514cd9d8e8","sha256":"0de89cb9e1ab3e2dc28e879c6463743cdb5dda55df5b4ada5fe6e341bc320562","sha512":"6bb5da653726f6efaadde201dbef53fa1381eaea3853af355d3604df3bbd7deee050dec66de18209591ef0791d4be1a02ab2217bc75fa09d4bd6c388053acfe4","ssdeep":"192:5Ix86MEXNkiwBExTDdEbH4m6w/Lh1oTYfOobw8dks0U3z:5I2s3D66w/g2vws","tlshash":"7152516966b32130533ba1767b8b7246341911073204da863fdd83795fd07648dfaeea","size":14083,"data":"","first_seen":"2025-09-12T03:47:13.325583Z","last_seen":"2026-04-30T11:03:55.31239Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/_nuxt/assets/index.js","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8ac5cd7e91ee93d45b0c4ebcbc2d1bb4","sha1":"3263d0d086e96d582f9032403212f0ed0c642264","sha256":"3700476893660c1be38c8b84b9b72df1c9a4c6bbfc364b28663e0c1673311785","sha512":"d6a3392417fb9e8ec7ad779a7f614577767b9e151901772bbbfd7a5cb5cf8cab11d82875a7fbaf92533a5564f352cf66b07b030127642c3d187a6ddf460a00f1","ssdeep":"12288:oAfA8rJA7kNMpXGrIOPHjy0Fy1bxTHiSUCKcXlVXAwto:o6A8rJA7lpXGrIOPHjyd1bx+WKc1Vwwu","tlshash":"a6d4d8e7a1d1a16a3c297a872fe13c3838d3e760803c64beb656dfc0d7605e14355a6b","size":656357,"data":"","first_seen":"2026-01-05T17:18:38.574387Z","last_seen":"2026-01-07T13:38:09.707878Z","times_seen":140,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"d49f3314d79f9d845e60419317f4dac7","sha1":"e85a286b8e56c68aae0d93dadda67dbda79d1451","sha256":"15781f07ce90127ca879ea0fbe282ac5172c876223e783ef5455eca0a313fd80","sha512":"a9264f8cdf4909f812d833d622aa57b665a140e71326a74fd6eaa85550011fa6a54a19884053c17c80169dcec1e547c6d4f0c7ddd9d9317e4dc6781cfb2a8e3f","ssdeep":"12288:zs4FgAg39MLCgdXG77sOPHPyk0BlpP5XU28GOghjDVN:zs4FgAg39MLbdXG7YOPHPy5lpPCGOgh3","tlshash":"02d408e8a1d2a13b6c2d62cb3fd13c883913e73180bc68adf6a4d7c1db505d25159a6f","size":629711,"data":"","first_seen":"2026-01-05T17:18:38.576463Z","last_seen":"2026-01-07T13:38:09.713907Z","times_seen":140,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/images/diamond.svg","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.105Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/images/diamond.svg HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"68a5bf12-120b\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5Dd%2BzLYLbz6XjSfv80vAKNaKz0N9%2Fho0LP5V53wMsEbfq6x%2F1YWxFzc%2FR8URcr8M0DRIGHZpi1bjquVWJ4XzEpqZeYdwcqtl7QUvp5gGdA%3D%3D\"}]}\r\ncf-ray: 9ba151717b8a56a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4619,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a05ae84d7c43cb844f57ba0f27ba4f4b","sha1":"b165c8bad43801e765acebc74fa63bddbbd878d4","sha256":"73366e939fb4b91cbbe892e6d92ed89dc369b96aad4340082cf5c07172b7417b","sha512":"73403498ba9e8c90f61d0961f7a8817bb11ea9becf4caef0a051a6d9fc8f33db34ba50f9cc0df5a1470bd867a250144e83b66163efbe0a893e93c97a9debf2b4","ssdeep":"48:D/nZwecEzWju+U9N+uh5hB5rI/igs7pFpV1YI8WDpHiq952aUb:Dm46jlU9DVB5roRs7pjVfDpHiq9O","tlshash":"a39153d606cca3801b68136d661d3432ed3598e7deb9f1427a05a21f7dab0ad8c63ac0","first_seen":"2025-08-04T04:51:12.750535Z","last_seen":"2026-04-30T11:03:55.308971Z","times_seen":24,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/images/sol.png","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.110Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/images/sol.png HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 2678\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\netag: \"68a5bf12-a76\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=15lu9qI%2BlZN1gHMThw2lbm12VgEJmOXI%2F0bYSXbtl87mvVCl4xDvv0bQurQUUtho0VmB62fHLJmrBr8kaLnhullMiNFT9%2Fz2XmUgibENDw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9ba151717b8c56a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2678,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced","md5":"857e1b2217cedc1e6c8ede4aecaa4cba","sha1":"f6f43c9da3ef98fbac01a30a885ea02a55206f83","sha256":"4cdce997fec9ec778786141649029458c15c662e7b89d7851854a72d4110adb8","sha512":"503ca4584fcd3b1edfea70ef1172183bddc2d8ef0ad4b6fe7685d7a3b3dd19bda464f6fb1381373bd793d3a21212ff2a44f5e24910b3e7c96cf090eae92a34bd","ssdeep":"","tlshash":"c751494c8a95d7a50c8d67d6820740d4fba1300a094f70a99ae5f06748cb2d9a987aee","first_seen":"2025-09-12T03:47:13.310667Z","last_seen":"2026-04-30T11:03:55.311208Z","times_seen":19,"resource_available":false,"data":null}},"time_used":282,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":282,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/DinkieBitmap-9px.ttf","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/DinkieBitmap-9px.ttf HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 2208308\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\netag: \"68a5bf12-21b234\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8Qe92t7Y%2F4BgXEDKV7DHNVtBxHqn8uQ8x6Ak%2BMO%2BOdSYtvENEslIIAFG%2BeYToiZwmgLn%2BYQ5cgzG%2BCJVH8U9MdtnfELaQaZBqjXNEffguQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9ba151718b9456a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2208308,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, digitally signed, 16 tables, 1st \"DSIG\", name offset 0x1f3404","md5":"5ca8452c61d4c024af7c76763bc4ed79","sha1":"95107684e7b57ac9cf04ab11b25d7836c67d8bab","sha256":"cdb988336b4c9cca9d019ccf02b90013c16580ed0c16e0f6bd1b21c3341f9958","sha512":"1fa43f6a1c93725879efcad06adf0b0686613b33b101fe16429ec7c691f1d4681138dad4950349b9ff4475d8eefae6147ea61d10f6bab60ce4e226eba257a67a","ssdeep":"6144:s4VFDk1T40vlwYeMBvNAQKi5DRgMUsQbRF6Kx5nd68cK:C7lwkBNAytgUQ1x5nBP","tlshash":"11259b0457eb6bdcf632da742d022708d19a5d5b03a686ebc26f3c271c7b4c90e46da7","first_seen":"2025-08-04T04:51:12.776841Z","last_seen":"2026-04-30T11:03:55.301885Z","times_seen":23,"resource_available":false,"data":null}},"time_used":909,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":264,"receive":645,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/api/visit","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:01.273Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"POST /api/visit HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://coin.solgalaxy.cc/\r\nOrigin: https://coin.solgalaxy.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:01 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Wu7zfPSSE6ONy4gPzV0UfrV8KVbnlHGAWtIIdgxBG1tu6Swed13wldldsZWFNtC7vaiNY%2BtmXuz3ebOTfC1VV1wVpowwKhfmxxkyuBjP6A%3D%3D\"}]}\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ba15178eba956a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2,"size_decoded":0,"mime_type":"application/json","magic":"ASCII text, with no line terminators","md5":"444bcb3a3fcf8389296c49467f27e1d6","sha1":"7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb","sha256":"2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df","sha512":"9fbbbb5a0f329f9782e2356fa41d89cf9b3694327c1a934d6af2a9df2d7f936ce83717fb513196a4ce5548471708cd7134c2ae99b3c357bcabb2eafc7b9b7570","ssdeep":"","tlshash":"c710000000000000300000000000000000000000000000000000000000000c0000c000","first_seen":"2023-03-08T02:32:37Z","last_seen":"2026-05-01T23:28:09.976107Z","times_seen":403943,"resource_available":true,"data":null}},"time_used":216,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":216,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-07T06:14:59.423Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 07 Jan 2026 06:14:59 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: no-cache, no-store, must-revalidate\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RismcaWQwh2cPr3aSC7Eqmu%2BI1L2WYW6PWwYvRS2BhCQpTwZlT%2Buda9Zm4h4%2B%2FA7ruxpIBkaEkWvfqdD%2FaXwOq4XQPjcsFHwhurgvP2mF%2FAM\"}]}\r\nexpires: Wed, 07 Jan 2026 06:14:59 GMT\r\nset-cookie: _subid=1sjos4f2fnals; expires=Sat, 07 Feb 2026 06:14:59 GMT; path=/\nfab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0; expires=Thu, 08 Jan 2026 06:14:59 GMT; path=/\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9ba1516dd9a175ab-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}],"data":{"size":92255,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (416)","md5":"78b43a729def577174de6ed3f2b9a8a6","sha1":"3967538bbf593e8de85067b810f79dfc262060cd","sha256":"171f4fdd1fca0b46e8834330e4a5978b532497eb8fdaf680a60be37056f7fb20","sha512":"1043b26a41f0a14090059d4142a91defd3e2249c14a20ea898745b29eb9b3b3df0bc8a03cfa6945dd3ee5ee7cf04ed8383b5202c4294cc06b4f54e495d696a4a","ssdeep":"384:lfLutzEAsy6qZeaJnZm6jypDBKryoFJ5lQYiGdGW1LI2s3D66w/g2vwaA:VEay6QDjypDgFFj+AAQG2vjA","tlshash":"b1930e8b26e320157a07e4b42f6727567664d003d20acca93e9c63accf867d95ce379d","first_seen":"2025-09-12T03:47:13.318382Z","last_seen":"2026-01-07T06:15:26.281678Z","times_seen":10,"resource_available":false,"data":null}},"time_used":442,"timings":{"blocked":70,"dns":56,"connect":1,"send":0,"wait":296,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/images/atm.svg","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.107Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/images/atm.svg HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"68a5bf12-5f48f\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jur0%2BERl3HiT1EWnpRsH6OPf1Seldmp5xYtd54k9AyCJNED4MvsnmSAwYqjNh42TWGlD3HEoUwPayGTVOWvP4VIAi28qJ%2B5Cvxj5AAIESw%3D%3D\"}]}\r\ncf-ray: 9ba151717b8b56a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":390287,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9f85e2c12056ebe4116cfc01da60e8b3","sha1":"4b053effd68a7fc895e98c8c5d61449e8ff50b7d","sha256":"717ab86dbada8f4ad62c2689aff6388a0de5c987d1b374a72119ea1c2b626702","sha512":"04005336aaf6cd84f2b3606ab25e91f74f88db135f75a0a136804ef0ca7612e46924639e429c9e69ff878d474c6301454e1b244c29073acfc46501bc270fbd74","ssdeep":"6144:KUjfhCIuel3LQuOAnhpvSiqG7PyNKMF3gNQleFXcks3RV2QD+arRUgdhHSysQjkP:cQGOoKqenl4RrBfT/sxV","tlshash":"778423908f49cda019adc675f0f70f5c5b3a86a1db8cc4f5699944a2c7ad8067c23cee","first_seen":"2025-08-25T04:22:05.39185Z","last_seen":"2026-04-30T11:03:55.299571Z","times_seen":23,"resource_available":false,"data":null}},"time_used":612,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":349,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/images/broom.png","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.112Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/images/broom.png HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 15655\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\netag: \"68a5bf12-3d27\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2GUE3C%2FKaU8NbEbFTULJTGyUydwPMsF7x3Qi4CYr2dDjMlXcPZ0z7f2ITN2IGyER%2BduALAA2QwwgWJbIWxs%2B9%2FDP2Zi%2FBUVE7xJ2Dz%2FHVA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9ba151717b8d56a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15655,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit/color RGBA, non-interlaced","md5":"276fa3838095a135cdee0bee5412ba1c","sha1":"d4cdcadca14d1c1a4ecd5ca89b14b233b5da7d25","sha256":"10e3f4579209d78bc3132feb3d4061b33ee6ce33c78b59d322b0558c7312f804","sha512":"8fce4cb2f1102e341fdec3f9937298c7ea26d181309611e70c637e1ac7a41082e2c023d660754da8317ae91d5faba93254727735ee5b22c6cee783da035d6d44","ssdeep":"192:XFzd0BpzHQZqF+CKBd8Ax3PviD7mCDXEjDe5M0nw50vpWEOUKlNsxBwe7OhABjAj:VIzgSS84niX/d59nw50vLTBQzAY","tlshash":"de62d0d4c91f5938707a5abc24f27ac78c9486364c032959c5bd2b564b168cfe1cf36a","first_seen":"2025-08-04T04:51:12.75306Z","last_seen":"2026-04-30T11:03:55.304246Z","times_seen":24,"resource_available":false,"data":null}},"time_used":334,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":71,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/images/x.svg","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.121Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/images/x.svg HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"68a5bf12-466\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hKh33ydccVw8UAB5MIOcx3ydnJ1OjE1YbhF%2B%2BXjS81A08mzOuUzuKqpf84Lgd5zpRTPoLTaSxcDbo1yxNB4KxI5p01Zwh6cDb01SBAcizQ%3D%3D\"}]}\r\ncf-ray: 9ba151718b9056a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1126,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"76b0da62e3078a59b18c174803f72941","sha1":"8e034bf3a3549223a303a4ab4bab99d0723ac1de","sha256":"c56e2e4e92d80c4d99d36c06fcb18853e2e5f4667e1a73942d97a1950d4b7f7c","sha512":"69f7b745b48e0e465faf8e292d06376538053fefca346d826b780e86a283fdade85fb6fae8cb7d7d43ad7743fb795e9557b9804311f5dd9762160367e698a3a0","ssdeep":"","tlshash":"0421a0c6b294d1c6cb4d9740f634b4fa20f175dc796465c1b1cf275aac4e4b5052cdb2","first_seen":"2025-08-25T04:22:05.387602Z","last_seen":"2026-04-30T11:03:55.310135Z","times_seen":21,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":264,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/images/docs.svg","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.124Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/images/docs.svg HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"68a5bf12-cc6\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=p03dHvEyn66BJ0mvBjm0kji54zhSNXSlrhkxstMnbAyZrej3u1AT2qx%2FrrKYC2UxYZUjMvvAQTIVM2ulU1fkneKex0Au%2B39XL5TJ2RlcqA%3D%3D\"}]}\r\ncf-ray: 9ba151718b9356a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3270,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f16b2084cfba60d5ae7e0b6b1d8594da","sha1":"ef177eb1243885efc9fb3f7dddaf3d94b047182d","sha256":"61680dd08676f7c6dabecaa3abab876c331d94833cf3ac8b0e9104987ba741c1","sha512":"294bbca2cbc349cf23c7c9f1dcbb54b9d8e2ea7ebac5480df698ab696465706d67b02c7f318ea1774ed5089b70ad3b30621fe95aa02845b5025febc138df595e","ssdeep":"","tlshash":"f061b1952110226df71847ef0fa9303920be36e8a7d91010240ae50bd2ef7ab5d76d9e","first_seen":"2025-08-04T04:51:12.714055Z","last_seen":"2026-04-30T11:03:55.305024Z","times_seen":24,"resource_available":false,"data":null}},"time_used":249,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":249,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.856Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 07 Jan 2026 06:15:01 GMT\r\ndate: Wed, 07 Jan 2026 06:15:01 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10108,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"e85517dadd43448782d60d7f207fddce","sha1":"6cd31f870727ba8090fac9602b42524b4139a619","sha256":"88fbd0b95222be288587a149c324189ecbd8de0d6f0c94f528ec53857e52b66c","sha512":"5edc78df5bb062a9a2e1ea6724c14dd7eb80d77ea0fa9572de4bb0d52bbd0d163815b08a1ae77084f99fbefbb07715da1c61f0bb36fb498710c91387792955f8","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExlONEhYO3RrxGx:vXuM0p2+4","tlshash":"04227792002ba400ab971dc233cf7f3aaece50896085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-10T18:13:11.065101Z","last_seen":"2026-05-01T23:28:18.677027Z","times_seen":23798,"resource_available":false,"data":null}},"time_used":557,"timings":{"blocked":262,"dns":1,"connect":34,"send":0,"wait":33,"receive":0,"ssl":115},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/images/logo.png","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/images/logo.png HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 5469\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\netag: \"68a5bf12-155d\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qI38TaU%2FCuYBL2kEP6BMxx8YVNnmFNLfkOEFo1arTKJCoaZiAjxZPHoPc%2B64%2BJjsiBEr7Jb%2FayjzajPNLgP3%2FqORGJSy93HvDNczALZL5g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9ba151716b8756a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5469,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced","md5":"9e0950bcdf47c2c0679cdbb8ce29af8b","sha1":"fa971d6c59a324edfc59e0a515fd159ee0f03333","sha256":"e1f237a3d43b85278806e46fd76570264f248f4b7f48531d935ef8874881193e","sha512":"c49e1290033cf69811457a2c771dfc3577abfc6c650b0899fac502799c0161bc5a449f772db79f3c340d87202f7f01ad51889ce5cceba5a2abecacd62a619748","ssdeep":"96:AScTekjwDpoyIBce3UUcS+7Tj5bQS2wkmxwdsvCuzify28p2r82Q:ASIfrS3XMFwkvsvDOZ8p2VQ","tlshash":"d1b17df21cd816699e4bb3b0705fed44b3556fa9029052489d05ed221b2f2e5ffbe122","first_seen":"2025-09-12T03:47:13.296534Z","last_seen":"2026-04-30T11:03:55.303665Z","times_seen":19,"resource_available":false,"data":null}},"time_used":271,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/images/flipn.svg","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/images/flipn.svg HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"68a5bf12-745\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vLK2O%2BGODBsL7OaGU58ddSk5qDNfPtYvAy2x%2FuAjRCoyC4OzIR5gvXTT3%2FZGyTB237pQToaD9CH1sO6T%2BK8oghj12gq7sQQZbjTZzDACcg%3D%3D\"}]}\r\ncf-ray: 9ba151717b8856a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1861,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"10c83f16dc6e6c2b81f4fd0af19520ef","sha1":"552d4dcade18c770a54173da654202349273b571","sha256":"46442dc6f963b0dd4808bd4f4d1271d2e1b9d02e4a29ae710ddea23c704c9749","sha512":"763860eea870797e9f5e624354c15323cbef36cf1c1fb5457c14abd68ce8fc0aecf407062b9fa06ad7cf0a9d2c67381c360698933e624398be45dab4705246c3","ssdeep":"","tlshash":"7831c9f367c4e638a481d3fed73a9578e02c24d33919d36c52967686c9ec0585c8d8c7","first_seen":"2025-09-12T03:47:13.304142Z","last_seen":"2026-04-30T11:03:55.298991Z","times_seen":21,"resource_available":false,"data":null}},"time_used":268,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":268,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/images/money.png","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.117Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/images/money.png HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 12900\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\netag: \"68a5bf12-3264\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9ZJsbfVnzKPPNoGDZ5y1GkIMKTmAgwrnrchywwDgnU9nGi5iXDx0zphwJf7kN7X6lq1FKH47%2B7ItRCszMP7EUS%2Fl%2Bcoq2CQ26sihP%2BZM6Q%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9ba151718b8e56a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12900,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 160 x 160, 8-bit colormap, non-interlaced","md5":"06db91017083a3fddf2a60076a3be361","sha1":"faef2a713b32575d66911208b7c0b1ac04bfed48","sha256":"091eab589401d2552371a4f5ccc974c1313bc1a78c9a22f4134ba098151ab027","sha512":"49040a82c373d9058b51c2630c5cfd710f09bb785c62a49c7ea451e72fa5620b5740e4883bcabc8214c0df17f8eb3e2315d5ec401d7d5d8d3109056b1b42fdf5","ssdeep":"384:ctz70pD6B6B4OoAl6upGjJ83akcWzWNcI11u:cU6B5Ml60GN3kceTyu","tlshash":"9a42c04f82e6c07ffd39cbe06179b2ab5061064054fabe40c7566e12d2c54662b3e9ca","first_seen":"2025-08-04T04:51:12.740807Z","last_seen":"2026-04-30T11:03:55.300355Z","times_seen":24,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":265,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/images/usdc.png","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.120Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/images/usdc.png HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 9276\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\netag: \"68a5bf12-243c\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PuXAV24en3LGj9mVU3DLXRluCibwSFXDVAAxid9si6JKZvDhdESi26NI9xiO4igyr5tREicbBOLV0JiO0yAi%2Bg8160OXvNb%2F7cS1MCltgg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9ba151718b8f56a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9276,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 181 x 181, 8-bit/color RGBA, non-interlaced","md5":"bb400a72232101f48b1a16e52ab18fda","sha1":"25ee99942134fca6167e3beefcd377443ce1273e","sha256":"6d14601d0b1109046e366592b8c0f256ffb075f69180b65dddd97ae665d49f9e","sha512":"86479d8136144517d960978e01640b6f935b1056297846f5e2e136e5f37b671054aa067e9fce793db0f7eebb8b7fd420f3ec5be89dca41baa6e695ead9e8e500","ssdeep":"192:Yj9GF6d6C44reHkPWsuT3skx6kY+ur1GtuoPVS3OgmgHCNEZsK:Yjwsd6n4qwWsxw6C2AMoMOgmgiNI","tlshash":"de12af851657c48d77302a070e062be6337c02264b5bd368badb85a7bd43a25e63df47","first_seen":"2023-05-01T22:39:41Z","last_seen":"2026-05-01T08:24:07.060022Z","times_seen":1121,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":262,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/images/discord.svg","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/images/discord.svg HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"68a5bf12-655\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=M0giOzntAHK2unNJAZZZpzdDdI0sg5VLsxo8tY0o7GLdxAjLG5eFGOcYfhC0GqOOqK%2Fewxx6ibK2xB80ZmsMXCEb4qXHARwkCOJr20qNlA%3D%3D\"}]}\r\ncf-ray: 9ba151718b9256a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1621,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d83f45e13f13ec94915307ad6f5c9abb","sha1":"99a94f55f2a382d2c8404782089b4b6df6f2f9ab","sha256":"e0a2659d3e6bdf321e86668b552d210ce000f74006af08eb25368719cac351b2","sha512":"a78a9761637320815c75483869bcf1cdfbe817914f223da56101afad2435497eebc5debefcd89e5962367209da9453e452543a9e3dab3a08114bf9e31d365e8e","ssdeep":"","tlshash":"8a31d66a8104127ef718c2ff09a5302932e537b61bc81422d007c40fa6efb6a5f36a5b","first_seen":"2025-08-04T04:51:12.71155Z","last_seen":"2026-04-30T11:03:55.300891Z","times_seen":24,"resource_available":false,"data":null}},"time_used":278,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":278,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.coingecko.com/api/v3/simple/price?ids=solana\u0026vs_currencies=usd","fqdn":"api.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.66.172.219","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.978Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coingecko.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 05 Jan 2026 01:57:23 GMT","end":"Sun, 05 Apr 2026 02:57:20 GMT"},"fingerprint":{"sha1":"71:9F:34:E4:47:C5:35:C2:BC:E1:69:9C:B1:9A:C5:BF:3F:2A:D3:F4","sha256":"0F:E5:65:6F:E0:A2:E3:3A:75:10:AB:DF:13:A8:5D:12:A5:7F:FA:A1:02:A0:8D:54:56:BB:41:19:EC:A9:E8:87"}}},"request":{"raw":"GET /api/v3/simple/price?ids=solana\u0026vs_currencies=usd HTTP/1.1\r\nHost: api.coingecko.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://coin.solgalaxy.cc/\r\nOrigin: https://coin.solgalaxy.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 07 Jan 2026 06:15:01 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS\r\naccess-control-expose-headers: link, per-page, total\r\naccess-control-max-age: 7200\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nx-download-options: noopen\r\nx-permitted-cross-domain-policies: none\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncache-control: max-age=30, public, must-revalidate, s-maxage=60\r\naccess-control-request-method: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization\r\nvary: Accept-Encoding, Origin\r\ncontent-encoding: gzip\r\netag: W/\"e9bcfa2a29192a5dfcdc6e12df0c5134\"\r\nx-request-id: 646d2903-4fa6-4447-95b6-7ffd09db4f63\r\nx-runtime: 0.003333\r\nalternate-protocol: 443:npn-spdy/2\r\ncontent-security-policy-report-only: script-src https://accounts.google.com/gsi/client; frame-src https://accounts.google.com/gsi/; connect-src https://accounts.google.com/gsi/;\r\nstrict-transport-security: max-age=15724800; includeSubdomains\r\ncf-cache-status: EXPIRED\r\ncf-ray: 9ba151776ca4b500-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":25,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"e2738208fba1d72ca730c50bf49a1a2e","sha1":"02eaabcf822f65e56ffff8118f7b92984f6ec34d","sha256":"79c1c8d40a01724722a53f0762a5df84b2daefb4d5eaaf7b4afac71b25f45612","sha512":"5c11e1a69a9b042f7f59b8f325d0afa216f45bc283bc7c8941992d3c742f0c275de8aed506aae19403164629b39dbd3c4471d68c9c35d9aa1a870b403bea6ebd","ssdeep":"","tlshash":"5370000280e008230c002a2208200300e28208322828a20c0808a000082c28820808ec","first_seen":"2026-01-07T06:15:24.138019Z","last_seen":"2026-01-07T06:15:43.846663Z","times_seen":4,"resource_available":false,"data":null}},"time_used":232,"timings":{"blocked":53,"dns":10,"connect":1,"send":0,"wait":144,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/api/is-banned","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.980Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /api/is-banned HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://coin.solgalaxy.cc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:01 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FTdN5QoG2zb4TR3ubeMf%2FAFEOhGtCvUaObJ%2Fvf7NSzjsei8wWP5VsXnfkEM2LLmMleFv3DMgpk3E0TXW%2BfhxYJnXlRj7G4XRHtoQwrbKOA%3D%3D\"}]}\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\ncache-control: private, max-age=300\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ba151774ba156a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1,"size_decoded":0,"mime_type":"application/json","magic":"very short file (no magic)","md5":"cfcd208495d565ef66e7dff9f98764da","sha1":"b6589fc6ab0dc82cf12099d1c2d40ab994e8410c","sha256":"5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9","sha512":"31bca02094eb78126a517b206a88c73cfa9ec6f704c7030d18212cace820f025f00bf0ea68dbf3f3a5436ca63b53bf7bf80ad8d5de7d8359d0b7fed9dbc3ab99","ssdeep":"","tlshash":"c700000000000000c00000300000000000000000000000000000000000000000000000","first_seen":"2023-03-07T01:37:31Z","last_seen":"2026-05-01T23:27:36.43585Z","times_seen":107671,"resource_available":true,"data":null}},"time_used":289,"timings":{"blocked":25,"dns":0,"connect":0,"send":0,"wait":264,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/favicon.ico","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:01.381Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:01 GMT\r\ncontent-type: text/html; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OQoeRZN7OLumOHPn%2BvN4u%2FBS2Z2pfjdwQvdZttZ7aXKVyiAmkLqwZ7FR7ZPydbSR7%2BwRDOAXvspFRA5HNej885J8VEr7y7PEwgEAIStyzQ%3D%3D\"}]}\r\npriority: u=6,i=?0\r\ncf-cache-status: MISS\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9ba15179abaa56a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-05-01T23:28:30.737446Z","times_seen":500417,"resource_available":true,"data":null}},"time_used":282,"timings":{"blocked":3,"dns":0,"connect":0,"send":0,"wait":279,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/_nuxt/assets/index.js","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.089Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /_nuxt/assets/index.js HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nvary: accept-encoding\r\npriority: u=3,i=?0\r\nlast-modified: Mon, 05 Jan 2026 13:02:07 GMT\r\netag: W/\"695bb64f-a0917\"\r\ncache-control: public, max-age=300, must-revalidate\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eN7bg%2FIYDYH37YNlkac5XJTlpNHBQFFDy0NAh9myfJdfpPdmfnwBwp42OpW3Zn6Ox7n184wp%2F0LACbmqJFTieWTfepZn82WKUfrA5AMQTg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ba151715b8556a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":657687,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (55455), with no line terminators","md5":"4de8c797290eeccd5ab25a164e8e0cc2","sha1":"1a5a5df29563d9ca2d766382f1b16a2e7c3ef2e1","sha256":"dfb09ba45956706e275b128f432df594a46c883c675eb13c68ab95f9741b61c1","sha512":"d084cbd51562722aaf1715538b0e2b67668294561ad9f5443470c25b3d9073e97ddcae120afcbc6c50ec9555f376af591d24e3d4770962c9433ce0bdec739147","ssdeep":"12288:oAfA8rJA7kNMpXGrIOPHjy0Fy1bxTHiSUCKcXlVeAwto:o6A8rJA7lpXGrIOPHjyd1bx+WKc1V1wu","tlshash":"42e4e7e7a1d1a16a3c297a872fe13c3838d3e761803c64beb656dfc0d7505e18345a6b","first_seen":"2026-01-07T06:15:24.141678Z","last_seen":"2026-01-07T06:15:24.141678Z","times_seen":1,"resource_available":false,"data":null}},"time_used":562,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":283,"receive":279,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/images/referral.svg","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.091Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/images/referral.svg HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"68a5bf12-8b6\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pHkrumcluFrGQuHkIg3zkfYb%2Bgjw1HvBUtl2PhS%2FASAtygcYHSmbMGaUCvD7ipPhJtYcUt%2FQPTTc%2FaP5u%2FgTNRseslHcDW4yf%2BA294ib9g%3D%3D\"}]}\r\ncf-ray: 9ba151716b8656a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2230,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"cdb7dd3e1fdaab6e2aff1c47663d03ea","sha1":"69609b6c5276c456396605807ecd7f8ce8985fde","sha256":"7eb3c10197939ecf317780eef2c6cd054e1606dd92327ea871ede85831911f80","sha512":"069cb33304f8561be3a87edba1c5e85a61b1985cc1c7843a46295ee127e26c28ee37b574f446be6002c96fb3a04e82e5db7794b7cc60cf49cac2193abda889c5","ssdeep":"","tlshash":"51416ac052cda21ace431b59677d38afd17a68eea70b19c4c05964773c4a94f2c0e687","first_seen":"2025-08-04T04:51:12.780583Z","last_seen":"2026-04-30T11:03:55.30303Z","times_seen":24,"resource_available":false,"data":null}},"time_used":274,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":274,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/l/freesol/images/tag_price.svg","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.103Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /l/freesol/images/tag_price.svg HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://coin.solgalaxy.cc/\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 20 Aug 2025 12:26:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"68a5bf12-10af\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lrbUCVvtlSq40g5Wdf2v3GZjDZv8fSQQvcTbrqpjpx%2B3j5pVOISU2PQy5uFGwdFHSo6DbHAUW38JlI8RHxDPoVUrLsB%2BetuQ8N3jABfO0w%3D%3D\"}]}\r\ncf-ray: 9ba151717b8956a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4271,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7e8d51327ce3ff9f6dd5f83e9e69b873","sha1":"9f7bc05aa265dcaf840812f53b4cc985c7ce487d","sha256":"6a4be4716662f381089041abf0848e1b72ebd1579f514041377fbc69fdf897ce","sha512":"8406aecff81094dad93668249c4b53f64dfdbc224d65cf316a75706f62f8002aeebf43197465266a78b6ed773fabbafb0f8d4ae76f0deda711a54c29ca6ddc40","ssdeep":"96:DJWDSR+bl7DTuBVJM1Aax/vZfZvFq6lna:DJX+bl7YKAax/vZfZvFTlna","tlshash":"c39150e245cca3c01b5d176e2a2d3936ed35d8d2de9561427b88620f3ed74a98cb3bc0","first_seen":"2025-08-04T04:51:12.708371Z","last_seen":"2026-04-30T11:03:55.308415Z","times_seen":24,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":265,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"coin.solgalaxy.cc/api/config","fqdn":"coin.solgalaxy.cc","domain":"solgalaxy.cc","tld":"cc"},"ip":{"addr":"104.21.72.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://coin.solgalaxy.cc/","date":"2026-01-07T06:15:00.984Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"solgalaxy.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 28 Nov 2025 19:47:15 GMT","end":"Thu, 26 Feb 2026 20:45:54 GMT"},"fingerprint":{"sha1":"1A:19:02:DE:B6:A8:24:5A:64:37:EF:4A:66:B9:40:5F:6B:DB:33:EB","sha256":"A0:A7:3F:AD:05:53:DE:AE:E0:0E:A4:47:6C:0E:F6:91:69:49:E1:0F:B7:D2:BC:99:E7:40:94:6D:38:D0:17:53"}}},"request":{"raw":"GET /api/config HTTP/1.1\r\nHost: coin.solgalaxy.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://coin.solgalaxy.cc/\r\ncontent-language: en-US,q=0.8;en\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _subid=1sjos4f2fnals; fab60=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQwMTM3XCI6MTc2Nzc2NjQ5OX0sXCJjYW1wYWlnbnNcIjp7XCI0MDEzMVwiOjE3Njc3NjY0OTl9LFwidGltZVwiOjE3Njc3NjY0OTl9In0.9ztQyJWqJhYPorazMt51cb9RliHp8eDJMgx988EndI0\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 07 Jan 2026 06:15:01 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Dp4LQ1h5r2qzBI5XIHEuaoyFqtjrK4W9fqls%2Fz15l8OFjtwa%2Ba%2FhBdqL8Il7QZfPRsDhLeTuZtO%2Fy%2F6XOAm9b6hu7AAKZ4efVGlZrN%2B3wQ%3D%3D\"}]}\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ba151774ba256a3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":183,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"data","md5":"51f44f0860e7680ebaf5a371538f75bf","sha1":"86dbe3f6c08709dc084d85d7e6ce009ac54e02bb","sha256":"b3a0da8a9d9a8dd1875c54b919b2b3127463733e6080c38bdb95652d3a6ce05c","sha512":"ad0dac9b1f78d321878b70d2c590abbe07010c2f045f8127f1ada898d65cf622f486875e6fe040dbc255ba7b1effd66d99f9ff2751be152e4338227c043e28f8","ssdeep":"","tlshash":"72d095f528d2f4931510dcf18c9bc5c661b994d491945e6cc7e61e33cecac70d118595","first_seen":"2026-01-07T06:15:24.147699Z","last_seen":"2026-01-07T06:15:26.290214Z","times_seen":2,"resource_available":false,"data":null}},"time_used":285,"timings":{"blocked":21,"dns":0,"connect":0,"send":0,"wait":264,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-07","alert":"Sinkholed","trigger":"coin.solgalaxy.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}