{"report_id":"21e0c72a-7205-44e1-83b6-496ed0c8decd","version":6,"status":"done","tags":["opendir"],"date":"2025-12-28T21:41:17Z","url":{"schema":"http","addr":"promocsbola.com","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"162.0.209.177","port":0,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"promocsbola.com/","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"title":"Index of /","dom":{"size":4208,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (526)","md5":"0240cdf470f19baa1e1f1fbae90bbc1c","sha1":"9dce2507968ecf3e7a11afb4dc3e637ca0d29840","sha256":"7c85bb2a72d0f0cf903f8964038c620383203b030df212e48cd36294745b6a57","sha512":"30811c21e4517c8ff6153c9bf246fbf48bb369afcee738daa3c00abf58858a888452e52f1656e7ffbc11b4a9a1e83cff1c30dfa19ac9d9ab99a79289856a15f8","ssdeep":"48:ifpIPz+CIXIj7iuQ2u36RWME3dkywanLADrtVDbj1at42DX/1mERY4TvnM49KGyV:EAGhLSN4jWniiM1I","tlshash":"c991ef42f0d5802b2617a5d46308bb9af0c1a16587a89daebdfc15d6c7e0ff0580fed6","dom_hash":"domhashce76e8dbf7ac7176ac9d4d45086dfb38","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"promocsbola.com","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"162.0.209.177","port":0,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-01T21:41:17Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"promocsbola.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Audit - Open directory","verdict":"none","severity":"audit","comment":"","tags":["opendir"],"meta":null},{"sensor_name":"urlquery","alert":"Audit - Open directory","verdict":"none","severity":"audit","comment":"","tags":["opendir"],"meta":null}]},"summary":[{"fqdn":"promocsbola.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2023-12-02","domain_rank":0,"first_seen":"2025-12-28T21:41:17.655145Z","last_seen":"2025-12-28T21:41:17.655145Z","alert_count":11,"request_count":10,"received_data":21112,"sent_data":4554,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Audit - Open directory","verdict":"none","severity":"audit","comment":"","tags":["opendir"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"promocsbola.com/","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ea91db3b41d075ad129fc130971b10bd","sha1":"00161c61a79ce0fd8207f836bd70c01b8485fb3c","sha256":"f1b38170bdb72cfc2891768c18884a39a4ad162366149130a79cb8e3c7dc4976","sha512":"680226adfe3999feeb580ba565a6c4d27f1f8d573f5ccdde28787482be2812c8e205d0206a605c7493272ab6aacd7388b36cb7f62b44462495bb5023079f5e7e","ssdeep":"","tlshash":"f7f0ac62f7ce36349bb7d5bae234d5c93039b48a3845e83a3c1c409586a0c11432fca8","size":590,"data":"","first_seen":"2023-03-07T01:07:32Z","last_seen":"2026-04-04T18:03:04.944169Z","times_seen":1776,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"promocsbola.com/_autoindex/assets/js/tablesort.number.js","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"162.0.209.177","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"377b82a88aeda884475d40fa1051c70a","sha1":"e7619035db4c628248b82237f3a99683e29ed7a4","sha256":"5ff78b7ea9124ad40c205b606048c819dbbdc9c708105961d89859f79092cd07","sha512":"52e763c2f178f312382198012c5822788264093b797d2b8edb01777e234ce693b78dc6aad86cdcaa92b72e1158834c20fa82351c1c738dd63bee2e20c93b79fc","ssdeep":"","tlshash":"2b017b8cb1b5309d807270214f9f051d2b0a060bd8a98d8cb3cc85512fa311cd3f2aea","size":682,"data":"","first_seen":"2023-03-07T01:07:32Z","last_seen":"2026-04-05T00:28:29.784618Z","times_seen":30474,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"promocsbola.com/_autoindex/assets/js/tablesort.js","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"162.0.209.177","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0fa71bf6cb125ddac365683ea3352cb0","sha1":"b94eeac8764b23ab614d148007c360fd2ab46f58","sha256":"6a6b3fd328d213b1c6211581fc0dd5b56dd9db878e4fee73d33f5dd699aced3e","sha512":"1264a894fd5f92c26087b5b67bcdea3068e763c2f2e6e0036370355ec75517838d31a85d4cdd9924dec0382e01c07d4cb3ff054e7c9404de74dcab7b8c9a5261","ssdeep":"192:ZYm7/XhkJFQYhxzXqCs8PycPCrpjj0vORHjPh4dwy0GpgfdlsgjjO8:MJlX+rpjj0vORHrWdhpgDO8","tlshash":"73f1fe0cb6ea32719407b4388fcf2559b224853b1408ed257d4da2816f85c395afffe9","size":7706,"data":"","first_seen":"2023-03-07T01:07:32Z","last_seen":"2026-04-05T00:28:29.784054Z","times_seen":30470,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"promocsbola.com/","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-28T21:40:55.129Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: promocsbola.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T01:47:03.978699Z","times_seen":13354468,"resource_available":true,"data":null}},"time_used":352,"timings":{"blocked":352,"dns":0,"connect":159,"send":0,"wait":0,"receive":0,"ssl":169},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"promocsbola.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"promocsbola.com/_autoindex/assets/css/autoindex.css","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"162.0.209.177","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://promocsbola.com/","date":"2025-12-28T21:40:58.208Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"promocsbola.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Sat, 30 Nov 2024 00:00:00 GMT","end":"Tue, 02 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B5:2D:8B:3F:AA:CD:F6:01:E1:93:74:13:01:AE:80:54:46:D5:39:1C","sha256":"48:5D:FC:6B:31:3D:59:73:FA:C1:69:CD:9B:6C:0D:D0:3C:73:0C:53:D0:C8:20:4E:14:06:E3:E3:1E:6D:CB:E0"}}},"request":{"raw":"GET /_autoindex/assets/css/autoindex.css HTTP/1.1\r\nHost: promocsbola.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://promocsbola.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 04 Jan 2026 21:40:58 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 26 Nov 2025 11:27:06 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 1170\r\ndate: Sun, 28 Dec 2025 21:40:58 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":3562,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"590db3a115b1e82a26b09f98964030a5","sha1":"e792179b620700c09bd763ebf3b5f163fd18f213","sha256":"37e1e1cbb4256d8006ccfcc7c7c8e891276191714768291589b40483d3f0fe46","sha512":"7d79d3b49a4f691d56a8c27b123eb2b5e70eff7fc2e370b8d507c07e0bb37881f815f34a3590f6bbec81da5994ca163b02ca95d8c42dfe784fddebd36c5afaf6","ssdeep":"","tlshash":"de71842edf4028cae12ed4a8ffcce6419b1f61619e4f1eaef862251dc7891e000237c5","first_seen":"2023-04-05T03:56:22Z","last_seen":"2026-04-05T00:28:29.783464Z","times_seen":29598,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"promocsbola.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"promocsbola.com/_autoindex/assets/js/tablesort.js","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"162.0.209.177","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://promocsbola.com/","date":"2025-12-28T21:40:58.210Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"promocsbola.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Sat, 30 Nov 2024 00:00:00 GMT","end":"Tue, 02 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B5:2D:8B:3F:AA:CD:F6:01:E1:93:74:13:01:AE:80:54:46:D5:39:1C","sha256":"48:5D:FC:6B:31:3D:59:73:FA:C1:69:CD:9B:6C:0D:D0:3C:73:0C:53:D0:C8:20:4E:14:06:E3:E3:1E:6D:CB:E0"}}},"request":{"raw":"GET /_autoindex/assets/js/tablesort.js HTTP/1.1\r\nHost: promocsbola.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://promocsbola.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Wed, 26 Nov 2025 11:27:06 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 2137\r\ndate: Sun, 28 Dec 2025 21:40:58 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":7706,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text","md5":"0fa71bf6cb125ddac365683ea3352cb0","sha1":"b94eeac8764b23ab614d148007c360fd2ab46f58","sha256":"6a6b3fd328d213b1c6211581fc0dd5b56dd9db878e4fee73d33f5dd699aced3e","sha512":"1264a894fd5f92c26087b5b67bcdea3068e763c2f2e6e0036370355ec75517838d31a85d4cdd9924dec0382e01c07d4cb3ff054e7c9404de74dcab7b8c9a5261","ssdeep":"192:ZYm7/XhkJFQYhxzXqCs8PycPCrpjj0vORHjPh4dwy0GpgfdlsgjjO8:MJlX+rpjj0vORHrWdhpgDO8","tlshash":"73f1fe0cb6ea32719407b4388fcf2559b224853b1408ed257d4da2816f85c395afffe9","first_seen":"2023-03-07T01:07:32Z","last_seen":"2026-04-05T00:28:29.784054Z","times_seen":30470,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"promocsbola.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"promocsbola.com/_autoindex/assets/js/tablesort.number.js","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"162.0.209.177","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://promocsbola.com/","date":"2025-12-28T21:40:58.215Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"promocsbola.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Sat, 30 Nov 2024 00:00:00 GMT","end":"Tue, 02 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B5:2D:8B:3F:AA:CD:F6:01:E1:93:74:13:01:AE:80:54:46:D5:39:1C","sha256":"48:5D:FC:6B:31:3D:59:73:FA:C1:69:CD:9B:6C:0D:D0:3C:73:0C:53:D0:C8:20:4E:14:06:E3:E3:1E:6D:CB:E0"}}},"request":{"raw":"GET /_autoindex/assets/js/tablesort.number.js HTTP/1.1\r\nHost: promocsbola.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://promocsbola.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Wed, 26 Nov 2025 11:27:06 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 322\r\ndate: Sun, 28 Dec 2025 21:40:58 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":682,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"377b82a88aeda884475d40fa1051c70a","sha1":"e7619035db4c628248b82237f3a99683e29ed7a4","sha256":"5ff78b7ea9124ad40c205b606048c819dbbdc9c708105961d89859f79092cd07","sha512":"52e763c2f178f312382198012c5822788264093b797d2b8edb01777e234ce693b78dc6aad86cdcaa92b72e1158834c20fa82351c1c738dd63bee2e20c93b79fc","ssdeep":"","tlshash":"2b017b8cb1b5309d807270214f9f051d2b0a060bd8a98d8cb3cc85512fa311cd3f2aea","first_seen":"2023-03-07T01:07:32Z","last_seen":"2026-04-05T00:28:29.784618Z","times_seen":30474,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"promocsbola.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"promocsbola.com/","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"162.0.209.177","port":80,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-28T21:40:55.824Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: promocsbola.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nkeep-alive: timeout=5, max=100\r\ncontent-type: text/html\r\ncontent-length: 795\r\ndate: Sun, 28 Dec 2025 21:40:56 GMT\r\nserver: LiteSpeed\r\nlocation: https://promocsbola.com/\r\nx-turbo-charged-by: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T01:47:03.978699Z","times_seen":13354468,"resource_available":true,"data":null}},"time_used":480,"timings":{"blocked":158,"dns":0,"connect":158,"send":0,"wait":162,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"promocsbola.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"promocsbola.com/","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-28T21:40:56.158Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: promocsbola.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T01:47:03.978699Z","times_seen":13354468,"resource_available":true,"data":null}},"time_used":324,"timings":{"blocked":0,"dns":1,"connect":158,"send":0,"wait":0,"receive":0,"ssl":163},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"promocsbola.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"promocsbola.com/","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"162.0.209.177","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-28T21:40:57.592Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"promocsbola.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Sat, 30 Nov 2024 00:00:00 GMT","end":"Tue, 02 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B5:2D:8B:3F:AA:CD:F6:01:E1:93:74:13:01:AE:80:54:46:D5:39:1C","sha256":"48:5D:FC:6B:31:3D:59:73:FA:C1:69:CD:9B:6C:0D:D0:3C:73:0C:53:D0:C8:20:4E:14:06:E3:E3:1E:6D:CB:E0"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: promocsbola.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 1154\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 28 Dec 2025 21:40:58 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":4145,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (547)","md5":"a9c6b7a70ac367823c086af18c75e14b","sha1":"685c4dfa08d6d0a8b6dfb6611f681584dbc77687","sha256":"772a395bfca03e018c1fb360b71c56e0e35849b60327ce1200c13b2b4f4d8ad2","sha512":"2e4398b96ec18f79a865d1db7634d93baf1a7bdceae807edcd2f04376ca330056b92ba05346ead0c81d984d49ac2fb4ffa2fb7c1a642692032d373be66a06f77","ssdeep":"48:WdHz+CIXyb8iq3wIWME3dkywanLADrtVDbj1at42DX/1mERY4TvnMR9KGy4WniwZ:U1zhLSNRjWniiM1i","tlshash":"b4811101f0d5402a2607a5e46308bb96f0c1a26587a89d6ebdfc15d6c7e0ff0580fed7","first_seen":"2025-12-28T21:41:20.220587Z","last_seen":"2025-12-28T21:41:20.220587Z","times_seen":1,"resource_available":false,"data":null}},"time_used":834,"timings":{"blocked":326,"dns":1,"connect":159,"send":0,"wait":181,"receive":0,"ssl":164},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"promocsbola.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Audit - Open directory","verdict":"none","severity":"audit","comment":"","tags":["opendir"],"meta":null}]}},{"url":{"schema":"https","addr":"promocsbola.com/_autoindex/assets/icons/file-text.svg","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"162.0.209.177","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://promocsbola.com/","date":"2025-12-28T21:40:58.218Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"promocsbola.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Sat, 30 Nov 2024 00:00:00 GMT","end":"Tue, 02 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B5:2D:8B:3F:AA:CD:F6:01:E1:93:74:13:01:AE:80:54:46:D5:39:1C","sha256":"48:5D:FC:6B:31:3D:59:73:FA:C1:69:CD:9B:6C:0D:D0:3C:73:0C:53:D0:C8:20:4E:14:06:E3:E3:1E:6D:CB:E0"}}},"request":{"raw":"GET /_autoindex/assets/icons/file-text.svg HTTP/1.1\r\nHost: promocsbola.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://promocsbola.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 04 Jan 2026 21:40:58 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Wed, 26 Nov 2025 11:27:06 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 394\r\ndate: Sun, 28 Dec 2025 21:40:58 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":768,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"dc8be3b963ef02cba95a45a84ef75b3d","sha1":"31cd35b5352800c714e1e281d3dca032adaa14d9","sha256":"e1b0f3a55d7ae5d372e960583b58844003f89706b8ad444a2de03e5483d35741","sha512":"f34793c3a86d96861ae6d4af22ddefe1e237a19416350d540b786c23e6c218d7b26017f1a1effeada6dc66f69d31faa9797801e5ae2cc4e235b55bab057ac0ee","ssdeep":"","tlshash":"e001b16a570ef43fa426c254a3f8a3d713a63197c594185890f12e79d21d8d21e291d8","first_seen":"2023-05-08T16:06:03Z","last_seen":"2026-04-04T23:47:21.793876Z","times_seen":2929,"resource_available":false,"data":null}},"time_used":183,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":183,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"promocsbola.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"promocsbola.com/_autoindex/assets/icons/folder-fill.svg","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"162.0.209.177","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://promocsbola.com/","date":"2025-12-28T21:40:58.217Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"promocsbola.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Sat, 30 Nov 2024 00:00:00 GMT","end":"Tue, 02 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B5:2D:8B:3F:AA:CD:F6:01:E1:93:74:13:01:AE:80:54:46:D5:39:1C","sha256":"48:5D:FC:6B:31:3D:59:73:FA:C1:69:CD:9B:6C:0D:D0:3C:73:0C:53:D0:C8:20:4E:14:06:E3:E3:1E:6D:CB:E0"}}},"request":{"raw":"GET /_autoindex/assets/icons/folder-fill.svg HTTP/1.1\r\nHost: promocsbola.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://promocsbola.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 04 Jan 2026 21:40:58 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Wed, 26 Nov 2025 11:27:06 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 333\r\ndate: Sun, 28 Dec 2025 21:40:58 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":591,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5d0e817dca10aab2cb58087551767a9c","sha1":"9286a744de09b180f4d29750e5b16613280a2a09","sha256":"e52ea75a526a963a5d7371795d5dacb4ceaabfe6c77bdd9649f0b457b0d6009e","sha512":"9358d6857631857030fc8d09f0ec2a4ea9ff3c2bb8ef87b79889043d9d9afc420a2a444fba6c12d978b115ddb679124a5b05e59b5076f5c9f63e600a4b41bb7a","ssdeep":"","tlshash":"2ff0e11ac70aec3f6435cb04d3edb7c2a371b08b81501dcc89b21e7ba25d0822b565dc","first_seen":"2023-05-08T16:39:18Z","last_seen":"2026-04-04T23:56:09.603558Z","times_seen":24884,"resource_available":false,"data":null}},"time_used":184,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"promocsbola.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"promocsbola.com/favicon.ico","fqdn":"promocsbola.com","domain":"promocsbola.com","tld":"com"},"ip":{"addr":"162.0.209.177","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://promocsbola.com/","date":"2025-12-28T21:40:58.447Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"promocsbola.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Sat, 30 Nov 2024 00:00:00 GMT","end":"Tue, 02 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B5:2D:8B:3F:AA:CD:F6:01:E1:93:74:13:01:AE:80:54:46:D5:39:1C","sha256":"48:5D:FC:6B:31:3D:59:73:FA:C1:69:CD:9B:6C:0D:D0:3C:73:0C:53:D0:C8:20:4E:14:06:E3:E3:1E:6D:CB:E0"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: promocsbola.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://promocsbola.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\npragma: no-cache\r\ncontent-type: text/html\r\ncontent-length: 1251\r\ndate: Sun, 28 Dec 2025 21:40:58 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":1251,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"8150f458ed6fb9b1db4e5cfa57a1a281","sha1":"6e5726854d28687b560d7fdcb5c782c425c7dfb9","sha256":"4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896","sha512":"4cc6a112673aef8bb8bb8a385c26791b805d43bb707b509880e894f1c83bab4e16f13de187036c5f660c3bec1d286258396b7bde65c5d7945c5019665196818c","ssdeep":"","tlshash":"c021353ec1c1560ae0271164fbc1f7a86669825291970f703b9eb176f6cd0bb56a36c8","first_seen":"2024-02-08T16:48:55Z","last_seen":"2026-04-05T01:41:59.903203Z","times_seen":115824,"resource_available":true,"data":null}},"time_used":161,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":160,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-28","alert":"Sinkholed","trigger":"promocsbola.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}