{"report_id":"249b243a-1e8e-4b48-92d5-1200f4b0bf5e","version":6,"status":"done","tags":[],"date":"2026-05-30T12:21:16Z","url":{"schema":"http","addr":"upshub.app","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":0,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"final":{"url":{"schema":"https","addr":"upshub.app/","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"title":"Manage Customer Orders With UPS Marketplace Shipping","dom":{"size":56756,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (44314)","md5":"bc00613e41763c9ef9cbd0481a7d0e39","sha1":"3747f867c438f47d75f08f3974df50d201e5ce91","sha256":"332b8c7dda6d90cdd509dea47f013a344ed222cca9b21056fee878d1758c96ab","sha512":"b74ae1d87a5067ce4002945a406edfb39cba8b6e6bf9cba1f3a37800bf9a3bb5dfe858ef23a83e0197d05cf32ab8246f8e99b633a3f90332ffe86537c8ebb6e4","ssdeep":"768:brdTvG5QT5j5nbkS+zgLrYoOMMKGzcsLPBGNVcaCman+Rbp6oNUzaQ7pFuMz/6or:brVGKT1CcLrNCcGyVB3b5VQl1kgmY","tlshash":"99432b3063503a3f3753caaeb194f76886a9f19ad513c668f5fc023217c2ed4d963a94","dom_hash":"domhash7ebbe44c0689dded0adbd9331955daa3","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"upshub.app","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":0,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-04T12:21:16Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"upshub.app","ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":96,"request_count":32,"received_data":1423093,"sent_data":24214,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"173.194.220.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-05-24T22:18:17.447529Z","alert_count":0,"request_count":2,"received_data":98732,"sent_data":1100,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-05-24T22:21:07.624228Z","alert_count":0,"request_count":1,"received_data":5740,"sent_data":461,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdn.gpteng.co","ip":{"addr":"104.18.28.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-06-26","domain_rank":776423,"first_seen":"2024-12-08T00:48:33.877309Z","last_seen":"2026-05-27T15:35:48.278105Z","alert_count":0,"request_count":1,"received_data":134509,"sent_data":520,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"upshub.app/assets/send-Cf9PlHXF.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"b1f7a1d9a5da467466e4434fb0b5cf73","sha1":"6b3c22c89d391bffd88b7bb1f6e300ef86c0facb","sha256":"de637f815a9cb61bebbd4586f90a1a50bee518d9f74b3c490c14a99a2a36dcbc","sha512":"7f845d203523c7cbd2ab4029c9811af97602f5374d49978965ca3f4944d912f54b79f2d8df162e8cd222c0bcbdbb0ce1cfe9ac49aee3d74b7a1888d3d76dfb15","ssdeep":"","tlshash":"82e07d9c2fc4c67e07057659036a740042dc10fcb3808cc1654a47a7d125453e48be40","size":302,"data":"","first_seen":"2026-05-30T12:21:24.916338Z","last_seen":"2026-05-30T18:33:21.785528Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/card-DsP1enfj.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"2d455bcce36c8a925d5468e0d554f3ca","sha1":"00cd1d6a7d8f9553591777daf01c716469780ea9","sha256":"615722458f70e174780db298bb1b29014cea00f176d98f54e7a12037f59a037c","sha512":"21d3f4415342415172e265046297714e4d3a521de4cd60c4da7f4f1fb32d7aa31e65e32660d381d7303a367f4af4631610d0f63880a752970d7c3aa223e11b25","ssdeep":"","tlshash":"3c113a8eb0551c7c023e5d8d974e5597257a4f64ee3b89a0f5f83226061b1d34f1a498","size":1061,"data":"","first_seen":"2026-05-30T12:21:24.917637Z","last_seen":"2026-05-30T18:33:21.818424Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/zap-LV6l-nOa.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"be21ab91efb324fdc6b9a25d4b1c6af0","sha1":"4a84d3f3d079d547d6e63f24d394ed6c221d36dd","sha256":"d8657c5b32c0eb3096d046fe5d60b0b9aa4c137eb5b8d7aa1f649a3e3574b79a","sha512":"cd4733dfd6183ca6da7b6ff63efdd5df006218d03b28e69697e3bf487dc5b48a7f435469e8dc2ac02fa0383ad2e24d12c139b9e250ae2e8100e0d836f8dbfbb1","ssdeep":"","tlshash":"c8d0c23a1a0c42fd2602e7c41b3792a44b4d85a873f58da0140e42b2812b083c0eb904","size":274,"data":"","first_seen":"2026-05-30T12:21:24.943721Z","last_seen":"2026-05-30T18:33:21.805007Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/createLucideIcon-BcVtH5rq.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"46a5583e135c446bb484453ffa081d09","sha1":"a75eef18fb7a50a342da901f5636cbb1e2681005","sha256":"c5d9721164bc9aa22df83e1e6865eaba038d9ba6dce697824bd26204afbdcebc","sha512":"bf85fdaf70b598b4090a7c14a7dd2d6d516bfa1cfda610409357dbac5d67b72d3fbe25677ddf5efc7a4d1021cbb53fd2adc55df1ac7ed42f1e785bf255f276fd","ssdeep":"","tlshash":"83214408b3d4283cb23584cd97583069fc779a18f9635a58d2fc5d1a3627042a337acc","size":1202,"data":"","first_seen":"2026-05-30T12:21:24.959552Z","last_seen":"2026-05-30T18:33:21.784374Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/marketplace-meta-CK2e71fu.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"70711f4a78141387356befa6d49f3dfa","sha1":"eae5fd6032d7a838b777970797f0b88443190852","sha256":"a41d90e9395a9e2e4b1c7462d2e58724ec3aa4e3316f26b0cdafa70f8d5812a1","sha512":"a1bb314ad13bbd03bb2d694250f06990d7f5b663c5ae3b4a7c9e19a68c621e4953e7a9ad82ad6eae7ac11640d357c1b740e242ac5eb9f5a292000284c523c531","ssdeep":"","tlshash":"9c31feaeda9f07be8761c388304700c48fdc1dbe71d19242ae864aaf103f06b99d1f06","size":1474,"data":"","first_seen":"2026-05-30T12:21:24.939531Z","last_seen":"2026-05-30T18:33:21.787652Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/arrow-right-DKUB06Yv.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"214606ecfa6449b1c49ed28a55bbbf3a","sha1":"2710bdf7fc09e4b0d1bee813d1562b2a3670b95e","sha256":"a65ad1018f91257db66dd76f2f832ba649ca7e778fb867ccf1d92d431ab28592","sha512":"94553d09df7a57840e72333a4e9aadec939577bad10dc80bb38ed0ea4f3406a1a1a9d6d61f1486295d85db35defd78b24862e9b86578ccbe7d05d932e54dfc47","ssdeep":"","tlshash":"f5c08c5f7ec0e2f24b40a6cf4797391149a805ec93e38d80780e92a7c3128c348ede21","size":177,"data":"","first_seen":"2026-05-30T12:21:24.948121Z","last_seen":"2026-05-30T18:33:21.774832Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/shield-j4Z8OsY0.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"5f8b59ffd96b20d22351d232275038f1","sha1":"ef710ed257a84ee7087d7b58c5891ae1b8b113f5","sha256":"fb141f149a97090a6d5e0dcbd53f2a97ef2153d68e021a1e030ca1865c89f32b","sha512":"ab5426235315b70090d6092d52090486c46d0c01e45b592c19633000aa8977e722c27ce66ecf8c114166d711b0b24f3e8ccb700232f3e5b41151f47e688a7acb","ssdeep":"","tlshash":"5dd0c27aaf4c49fd26c3dac6825724548f58d59973b189a0a00c893b80138c7c08f951","size":279,"data":"","first_seen":"2026-05-30T12:21:24.941777Z","last_seen":"2026-05-30T18:33:21.777936Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/index-NGtLQoYa.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"c4e711196f3c332dd65e64a92c4c2798","sha1":"7e0cba34ac0629c3d260f29bd7c22166762d77e1","sha256":"5466f4d5423a6a05365f31a763ce06aa8d1f60fe86a7f093eb27f116a4a7a477","sha512":"71453fe1ee8be436d970a88103d6f73d70775cf2212b4d4a72b139887141dc42f0ec5a333ba6475f0cbe798ad31cbaf6291282cdfefda264d38cef56540af63c","ssdeep":"","tlshash":"015196c5b091f2b05a5909d5c07f895eb98d7619200e4190e57ebcb13a751c9b273f78","size":2511,"data":"","first_seen":"2026-05-30T12:21:24.930189Z","last_seen":"2026-05-30T18:33:21.820073Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/index-CCagQcWz.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":false,"md5":"5514e8c70a2ed22299c96ec25762f625","sha1":"d7d7549f1c6eafee8b88f8128ea23d232f07b0ef","sha256":"d84c8b985186cb77923d522d85af6410743d1e0687f35bdcf238c0a863fd9370","sha512":"d042cef30925f728d18d2dd24895451c53d5df4f8999d9f7e264fe897f549057b4551a0d6059990a91b493671629352ee56bc1e4d1da05a9be8ec785df096d7c","ssdeep":"768:L+9FQBjsrjZTRUOii1xKpSCq5T13t386riU3ZJ62Sn2sBC+zqYziPvLLYWPzcsLV:LVmjzCqd19MrLV2HLLYWrcGwVB3bJAz","tlshash":"1f939910e151ffbdbe370ae8ba5eb148700e9f5ccb5b49a1e0be6022195859739637cc","size":91685,"data":"","first_seen":"2026-05-30T12:21:24.903538Z","last_seen":"2026-05-30T18:33:21.793262Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":true,"md5":"4a92ca8fcea8931b2ee8eb4b3618d7bc","sha1":"b7c1b1bda59bc7a6cee41a0a93daa3e47a256d93","sha256":"b9f6193669bdbbc39b101bb42e42bc93165a0bf23fb40a7fc9821f43b06d0829","sha512":"45c7951b5d0687b479af046b74b98ab6fe5c62c081bbea3908b18da3002100d3c3b01af37e020f49f2f062396b050a5d2e01ac0f31f2b688da5e5cfd7420e068","ssdeep":"","tlshash":"9c21ebb604050e6956787d8a7c302ac156e437016f76dafdb5bee88d7098d8620aee30","size":1424,"data":"","first_seen":"2026-05-30T12:21:24.963221Z","last_seen":"2026-05-30T12:21:24.963221Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":true,"md5":"2acd3d73bbc8d3ba3f35629bb52bdc87","sha1":"1ceb5cdb1aaef828d045f93c024d676b2a173ff5","sha256":"b6ca917f8a08af4a6ad8cc558c1aa032e1e0648b79ce297747c7f6d3a6693807","sha512":"087546aae007202ed3509d48e832308255bf2c81f32242f4fcfc51a4bd81b653856059e7c9abfa88b9fadaa45ed3857d59acc885222f8d6f2234942b235402f7","ssdeep":"","tlshash":"9801afcbe7ec623243a5b4b9185aa5dd3e3800f0eb005bb61c744db43394d5d002ee81","size":829,"data":"","first_seen":"2026-01-07T03:19:54.535133Z","last_seen":"2026-06-06T13:57:48.846544Z","times_seen":940,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/sparkles-DdfJjXyf.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"e8cdedda7776edcc342b0dcb9b9ec004","sha1":"2e9ba7137b76b858efbc3dddb4300614d5089ad3","sha256":"68da3089b60f9aed07234e5cb4620f0c895f157caabe0fae5c9df1c6ff9a6b23","sha512":"dd23de1d483b9183ad4ad0d12695a6e65194ec4609c91e9a32dcf703b3130ea0a29818b7815b39475b2a7507911bcbc05c9521533e06c43dc78ec36056e6ea22","ssdeep":"","tlshash":"8b0126bf1e8a45ae4683d8498e7bf044cabd42f83a648841a94ed42ac213053d9daf40","size":662,"data":"","first_seen":"2026-05-30T12:21:24.921634Z","last_seen":"2026-05-30T18:33:21.786842Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/clipboard-list-C07wAVDN.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"8066bc9b7c20aec11244cc1caca53e3f","sha1":"69ae8fbab81592aae9e239a159f72ba7ae322223","sha256":"6df738b21700f5ce88fcfa87c0ea1debd3919c505b54d1334a2c5f4f8aee3024","sha512":"ac705e954bc0ae35867c20d491b99302c71855f2933fc9983596b8d0fba423039261bf3f061306cefd36985771eeb5ea40f3153811900180fcf402addb0950bb","ssdeep":"","tlshash":"6921cc8f4f8463ae4800e74c2e5bb4159fed23bd368a8d82b45f8222c725417cda3f64","size":1429,"data":"","first_seen":"2026-05-30T12:21:24.935232Z","last_seen":"2026-05-30T18:33:21.795027Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/wallet-BK65R527.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"3b7ab06c28a9e90cea8fe126256565b8","sha1":"a9cbe9b09ae0909483efcfad7c99eae026519f73","sha256":"191759b25ee03ee61ab80d08b0cd346b3dc353214c0958a87944e44e9ac61572","sha512":"8b7284039fb2d0d085cffe07e90024a07aa890d7fec0af9cbe1e54fd7de21781020f8469edb2905e77735dfa3da833751fa0685b7335e4074286a3a458481c38","ssdeep":"","tlshash":"d6e012391f9d06ff0607c5980a9ba0114bdcb1fcb27949d17d1f41675526063ccab750","size":298,"data":"","first_seen":"2026-05-30T12:21:24.945747Z","last_seen":"2026-05-30T18:33:21.776626Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/ups-layout-shell-CE-UwiPJ.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"2c04ea9762f16292c5754369970955e9","sha1":"49be9f7ccb6f55b834a3aa4bac7a1774c7d7a7de","sha256":"7a23889be7f817931c9045f95a5d15d870794666e4834aecce933a8a24bd818b","sha512":"66cb3e2091afc5656ce53bb6f78ddbc898bee3c44ff78bf33fe2e12dadb216a7cca966c48322ec6b6a0b02e3ebd91c1ee403fabc62feedec9e0aaaf028fba0dd","ssdeep":"","tlshash":"8971f305e042ffadad6719c9ed5ea009b00e5ea8cb6a8d92d07eb03639584533c537d9","size":3579,"data":"","first_seen":"2026-05-30T12:21:24.896873Z","last_seen":"2026-05-30T18:33:21.790427Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/ups-logo-4JuCTeUF.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"735a54fb43df958ef2f98e9cf83ab852","sha1":"26423bc743b39bba7319607be1c01f0b6c99020b","sha256":"e4a02891514c345bb7541ce28a0b63d0b5b47b8c12d785e917209e2eb64d0d0c","sha512":"144fcc3e188928360b2d7dcd22ad7949ff432ca5b718d69465e2b4373af37dddb30449d2e4240a80f5d91650685e8f395d293d8e41e2f6e8bc820f9f119131ab","ssdeep":"","tlshash":"5d817db5899abeaba043d3cc158a3d28fdb65053f4e14058bbc6882614eaf4cd1c3177","size":3941,"data":"","first_seen":"2026-05-30T12:21:24.900715Z","last_seen":"2026-05-30T18:33:21.807432Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/utils-BQHNewu7.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"a0d04babc7044729c489d0844e32bbd8","sha1":"3208b1c19e412d057cb2ab5a8fd1bcdc97200924","sha256":"c64a12ad0feacd41e681b19ed9668b7f02fa2af4c2de2fa7c71addb512e20b87","sha512":"b972d977d826361f2a7525a8a8462a6c004e462d08aba1ebe2f40453b89b6c647e44d815bb373362c2878efc0604439bea86d035653800f6d195855968cb045f","ssdeep":"768:sAi0UggGkYndvK8kYg2PU1Kinf88ikyYK5LK9:GBYgYU1KE88ikyYK5LK9","tlshash":"0bc2c835740706bf2aef93d7f46caa96d8352642e0058b4ce3974f32cb49be9514ab0d","size":26685,"data":"","first_seen":"2026-02-25T10:16:37.483757Z","last_seen":"2026-06-06T04:21:10.867562Z","times_seen":102,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/~flock.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":false,"md5":"ed557a78d5301fbb961abfe911a42b62","sha1":"d11a2a4e9fee28c4b1abc38cd8136bffec7e325b","sha256":"a86e084b4f82709814be6c15fd6305daa783fda87ad95402da9a4d3a1dd6d748","sha512":"18dd1525e2b4d89e3c46d92367fca020cf99fb07856acfd96a25dc7410611eea83b438c91691683983495945eb04a9427bc63e2a383cbe93449f4df0eb1ddb51","ssdeep":"384:FtUCBXTpeaFEo5TTThri1t/mCsOCXiTNZruJ4vKFlcEhRCDxOcX/YM2Vybyq/kmt:n7XTpeauI/Thri1CKWM4ldRzurwkTO0D","tlshash":"cea2b6d61007243d57ead1a13929f7d63177ea98a0caec8a7de91f84d414c83f3f294a","size":21296,"data":"","first_seen":"2025-07-30T15:25:28.733337Z","last_seen":"2026-06-06T14:07:53.24316Z","times_seen":10035,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/quote-C1fTFegt.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"c75af345b2cb1bf03b20771c2d0a5b9d","sha1":"9a086f0cf452578fe6552b0549e9af8926a106b5","sha256":"39fd18ea685574842b825d7d8e8b3e10568cd0383e5c50ea017cd9760dfa3b71","sha512":"9e1027f4e99b6eb0c257e32be0d25bf7c72c5891838ae305ebe0b0ebbd21d557058fda69a189b9bd791ea3e4623d1164a47832280b107bc0710e7c6a7375f766","ssdeep":"","tlshash":"50e012a6dfac07fe0a47c0880b1fe82007acd7b9317e48b06d0c91f6c616886d4b7a45","size":401,"data":"","first_seen":"2026-05-30T12:21:24.949687Z","last_seen":"2026-05-30T18:33:21.750871Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/search-BUp0Y1w6.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"ad82968ac1ec6689c61776489e2e5051","sha1":"1752b6b80d5edb2a01941df14ba5f25cbd9845e6","sha256":"ffe29159ebe14d0ca4bcedcd328d05376ccadf4f6c6c2ff1c950cefece60368a","sha512":"b42ebcb657704b3f8ddf4163d5eebd57a4963ca878c7a595631cbc9514c93dad1e28c082204e72fb0e7ad7193f08fa0caa9ac0ccbc80964b64000945c07828b6","ssdeep":"","tlshash":"6fc0803a7da24569164059cc178634258dd451e553d08ec557c2ba375790cb314cddd1","size":181,"data":"","first_seen":"2026-05-30T12:21:24.893797Z","last_seen":"2026-05-30T18:33:21.798304Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/index-CF5UE-QM.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"4417853129234f05cd3e6765a7515d64","sha1":"be6908352d0d24d56089ed23f783e075434e1b47","sha256":"bc57400575bea30d9c6e66fe194efe30bad05ff72df534a033b04116f304d52a","sha512":"4943783d2ef10801c66ed1d269a47f32f92d434c8297bc8671766ff55c40a75e1a7e112f62586914f52bc9e91242b8323e88b69356e3af93081d649cafc88615","ssdeep":"","tlshash":"49e061ca31c674bad2761967443bc61e7a38cef130cc9144944559bbadb105cd2bfe2d","size":398,"data":"","first_seen":"2026-05-30T12:21:24.932347Z","last_seen":"2026-05-30T18:33:21.819262Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/store-woocommerce-brand-BLVUNzjX.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"c2e3b76692f89727cb2584fd16b98daf","sha1":"23ec5c50ec85196f20c9c7c847a2cdec06f21869","sha256":"a41f8faf792d9e92018cf2cf1963063aaf2a8f1287015fc469c10623e3a233ad","sha512":"abcbb11817287786d14b021671755f3f5db0ffbd33ce4f17da1ba5ce9075fe2eff1588a9d05dd23c51d1e2bf47ad9f6f1570982826019a4443114d90e4d8d3a5","ssdeep":"384:c8thOkbh/LOBsp9X9FcfxkhFLp9rzcoWyZoe5iU4RCwoM:c8tw+SBsHX9FcfxkhZ3cNyZolBRC3M","tlshash":"e262305d1c624dc6e4298a774a763578c03326afef7c2c9e3ee773442daa44116a8c7c","size":14874,"data":"","first_seen":"2026-05-30T12:21:24.923128Z","last_seen":"2026-05-30T18:33:21.806054Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/loader-circle-CnuMdZp3.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"084edb2eeafee89fd9c504f6ee1eaf7d","sha1":"dcff1348e5b2a78a4d93a3455acf44621eb84d9b","sha256":"6ef97d148ab4545abf6f3d4a108c0c93aa34063b38a4955f4d25872e83229686","sha512":"80351415f33b4ac25a6cfbaba096c01d09b32336572fd52692e9a530b7cf30280bebb56c2799899ee9d2ccf70b38031fdf4aaa50fec000f64b2b7b2934853f20","ssdeep":"","tlshash":"2ac08c2a2f2848f506429e9a03257a005d41069213c14ed660458a2bc2838d3a0dfe81","size":151,"data":"","first_seen":"2026-05-30T12:21:24.927493Z","last_seen":"2026-05-30T18:33:21.796668Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/circle-check-B6bxNqdc.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"a913baff74d411e230464d7f38767805","sha1":"0a0ad280d771ad1d78d0bfa5b7d5bfe33d5d7f68","sha256":"b1d7402b8906576a6323bf10f9418808c736e5fda7ac87caec9babfb7381b926","sha512":"0a2f841a0fcd508902db54b3a2cb33aa425db0fc5cff52102540b3629d028a538acf4bcfb4f5475f1123b7505ba6cbe1ca1d77078f037132353e6c5d3e788677","ssdeep":"","tlshash":"d4c0803b9d515f670105d4c9075a6418c89502b117dc8f41f2874917c261d5720cedb2","size":185,"data":"","first_seen":"2026-05-30T12:21:24.961334Z","last_seen":"2026-05-30T18:33:21.817535Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/__l5e/events.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":false,"md5":"204e9c310da905b4c0cad81d5793e926","sha1":"12ee6bfec83fe12e15dee484e3fc8fa51ddcc15e","sha256":"9362e75924aaec7c595bc0501df4c801c0f358fd214b5a89a8869ba5eb0d0e62","sha512":"a38db362a78a4e82b724baa180b6cb92cf7c2c705d10f6f3578f72908b449df77a777daed771bc72c97b385b15efd0d36b9aff35a0b48861bacea165c5bed51f","ssdeep":"384:n+mgVEje9+qnC8D+BwlodeF1qBc1roN3vst2vKRyhFXd+7NHRS5GIdT7P:n+rVEje9+qnxDSE1rq3vst2CIuq1hP","tlshash":"07a2848978f3112205a3917e5b9b410232799587364adfa8bf9c4e051fc9a5ca2f3fcd","size":21359,"data":"","first_seen":"2026-05-29T15:22:33.743373Z","last_seen":"2026-06-01T09:31:38.603679Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/index-Ba2sYyYI.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":false,"md5":"2090a7dad9869e5aa6bcf46a1b8db41f","sha1":"2aa237f68975d6ba982ec31465707cd197bd5492","sha256":"0cc2563a068b2bcb0df49f930eeb562cba9b476a353c407462369de101f116e9","sha512":"588c2850d24363998b0219e8c7848881705af63c4b906d6a9c6c3917be665beeddea058efc5145df4d7fefaabc23d72635d14534d3a29e32817470d0d5495f5a","ssdeep":"6144:QR+XZNdCwLXkpNrJ1xbddwgHBYuH2RCc7o/eGG839JKHYazIZTQTn4NmhCbEL2vz:QmZNLLUpJxbddjYC2RCc7o/eGGofK4aC","tlshash":"98743bf831adb5224be355f5106f1107b1782c23340d88a1f164eeaa76b944a91bbffd","size":337527,"data":"","first_seen":"2026-05-30T12:21:24.907912Z","last_seen":"2026-05-30T18:33:21.801337Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/button-CSNOsb1j.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"importedModule","is_inline":false,"md5":"43d7b47b9a298872881ebc874ad7fd2b","sha1":"9777dfa2d5940c4b655adba0a9989fe0b9625783","sha256":"7680e1c6e35adb97c3519920d3cdc04c87622fea891c37a61b37b3f4a0a47e7f","sha512":"cb8a438b8065fc6302d7905af65cd3ecf02621063511ee6f3ce24254b025f5fce6514b0101e138a0651cb326af01476ee34e232008041092eec41afb520d586e","ssdeep":"","tlshash":"e631e1417150a63d32b38d6d739875f0c74de69896736e93f0fc013a05d2b6a8e3a901","size":1874,"data":"","first_seen":"2026-05-30T12:21:24.934233Z","last_seen":"2026-05-30T18:33:21.851087Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"upshub.app/assets/search-BUp0Y1w6.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.083Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/search-BUp0Y1w6.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a6e725684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":181,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text","md5":"ad82968ac1ec6689c61776489e2e5051","sha1":"1752b6b80d5edb2a01941df14ba5f25cbd9845e6","sha256":"ffe29159ebe14d0ca4bcedcd328d05376ccadf4f6c6c2ff1c950cefece60368a","sha512":"b42ebcb657704b3f8ddf4163d5eebd57a4963ca878c7a595631cbc9514c93dad1e28c082204e72fb0e7ad7193f08fa0caa9ac0ccbc80964b64000945c07828b6","ssdeep":"","tlshash":"6fc0803a7da24569164059cc178634258dd451e553d08ec557c2ba375790cb314cddd1","first_seen":"2026-05-30T12:21:24.893797Z","last_seen":"2026-05-30T18:33:21.798304Z","times_seen":3,"resource_available":true,"data":null}},"time_used":205,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":205,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/__l5e/events.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:55.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /__l5e/events.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:55 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncache-control: no-store\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db214e8985684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21359,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"204e9c310da905b4c0cad81d5793e926","sha1":"12ee6bfec83fe12e15dee484e3fc8fa51ddcc15e","sha256":"9362e75924aaec7c595bc0501df4c801c0f358fd214b5a89a8869ba5eb0d0e62","sha512":"a38db362a78a4e82b724baa180b6cb92cf7c2c705d10f6f3578f72908b449df77a777daed771bc72c97b385b15efd0d36b9aff35a0b48861bacea165c5bed51f","ssdeep":"384:n+mgVEje9+qnC8D+BwlodeF1qBc1roN3vst2vKRyhFXd+7NHRS5GIdT7P:n+rVEje9+qnxDSE1rq3vst2CIuq1hP","tlshash":"07a2848978f3112205a3917e5b9b410232799587364adfa8bf9c4e051fc9a5ca2f3fcd","first_seen":"2026-05-29T15:22:33.743373Z","last_seen":"2026-06-01T09:31:38.603679Z","times_seen":35,"resource_available":true,"data":null}},"time_used":92,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":92,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/ups-layout-shell-CE-UwiPJ.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.081Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/ups-layout-shell-CE-UwiPJ.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a6e6d5684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3579,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (3578)","md5":"2c04ea9762f16292c5754369970955e9","sha1":"49be9f7ccb6f55b834a3aa4bac7a1774c7d7a7de","sha256":"7a23889be7f817931c9045f95a5d15d870794666e4834aecce933a8a24bd818b","sha512":"66cb3e2091afc5656ce53bb6f78ddbc898bee3c44ff78bf33fe2e12dadb216a7cca966c48322ec6b6a0b02e3ebd91c1ee403fabc62feedec9e0aaaf028fba0dd","ssdeep":"","tlshash":"8971f305e042ffadad6719c9ed5ea009b00e5ea8cb6a8d92d07eb03639584533c537d9","first_seen":"2026-05-30T12:21:24.896873Z","last_seen":"2026-05-30T18:33:21.790427Z","times_seen":3,"resource_available":true,"data":null}},"time_used":179,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/ups-logo-4JuCTeUF.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/ups-logo-4JuCTeUF.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a8e9d5684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3941,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (3940)","md5":"735a54fb43df958ef2f98e9cf83ab852","sha1":"26423bc743b39bba7319607be1c01f0b6c99020b","sha256":"e4a02891514c345bb7541ce28a0b63d0b5b47b8c12d785e917209e2eb64d0d0c","sha512":"144fcc3e188928360b2d7dcd22ad7949ff432ca5b718d69465e2b4373af37dddb30449d2e4240a80f5d91650685e8f395d293d8e41e2f6e8bc820f9f119131ab","ssdeep":"","tlshash":"5d817db5899abeaba043d3cc158a3d28fdb65053f4e14058bbc6882614eaf4cd1c3177","first_seen":"2026-05-30T12:21:24.900715Z","last_seen":"2026-05-30T18:33:21.807432Z","times_seen":3,"resource_available":true,"data":null}},"time_used":162,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":162,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/index-CCagQcWz.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:55.928Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/index-CCagQcWz.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-Ba2sYyYI.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db2199d595684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":91685,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65428), with no line terminators","md5":"5514e8c70a2ed22299c96ec25762f625","sha1":"d7d7549f1c6eafee8b88f8128ea23d232f07b0ef","sha256":"d84c8b985186cb77923d522d85af6410743d1e0687f35bdcf238c0a863fd9370","sha512":"d042cef30925f728d18d2dd24895451c53d5df4f8999d9f7e264fe897f549057b4551a0d6059990a91b493671629352ee56bc1e4d1da05a9be8ec785df096d7c","ssdeep":"768:L+9FQBjsrjZTRUOii1xKpSCq5T13t386riU3ZJ62Sn2sBC+zqYziPvLLYWPzcsLV:LVmjzCqd19MrLV2HLLYWrcGwVB3bJAz","tlshash":"1f939910e151ffbdbe370ae8ba5eb148700e9f5ccb5b49a1e0be6022195859739637cc","first_seen":"2026-05-30T12:21:24.903538Z","last_seen":"2026-05-30T18:33:21.793262Z","times_seen":3,"resource_available":true,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":89,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/index-Ba2sYyYI.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:55.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/index-Ba2sYyYI.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:55 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db217fbdd5684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":337527,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (40893)","md5":"2090a7dad9869e5aa6bcf46a1b8db41f","sha1":"2aa237f68975d6ba982ec31465707cd197bd5492","sha256":"0cc2563a068b2bcb0df49f930eeb562cba9b476a353c407462369de101f116e9","sha512":"588c2850d24363998b0219e8c7848881705af63c4b906d6a9c6c3917be665beeddea058efc5145df4d7fefaabc23d72635d14534d3a29e32817470d0d5495f5a","ssdeep":"6144:QR+XZNdCwLXkpNrJ1xbddwgHBYuH2RCc7o/eGG839JKHYazIZTQTn4NmhCbEL2vz:QmZNLLUpJxbddjYC2RCc7o/eGGofK4aC","tlshash":"98743bf831adb5224be355f5106f1107b1782c23340d88a1f164eeaa76b944a91bbffd","first_seen":"2026-05-30T12:21:24.907912Z","last_seen":"2026-05-30T18:33:21.801337Z","times_seen":3,"resource_available":true,"data":null}},"time_used":117,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":117,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/favicon.ico","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:55.925Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Sat, 30 May 2026 12:20:55 GMT\r\ncontent-type: text/html; charset=utf-8\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db2198d4a5684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12289,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"data","md5":"cb441d5abca6177f9f704aa6398e29bc","sha1":"332b975f19cfdc5da09670c6433070c78149017e","sha256":"bf245fb1496a50452d6fca5684815cc0102bae1b53088b27f358baf5601e727e","sha512":"5701502eb9cb1940491f8128a6b7d5f1eb5a497e53a5eb2d03d771eb0c4f1351dcc1461e90dd9773b3315d1be0d30d4ddafaf49d903383986f08d8e79d093fd1","ssdeep":"192:Gq02q0yTUqYvfG4+JjywAcQSyUZxBH73YXQ:GqjqVTUqY3G4M2NjaNH8XQ","tlshash":"5642e7d3c328663e4391d2bcbea4b8c4177990b3e6058de6b4ae457912c7a98e117f50","first_seen":"2026-05-30T12:21:24.912429Z","last_seen":"2026-05-30T12:21:24.912429Z","times_seen":1,"resource_available":false,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":59,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/utils-BQHNewu7.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.042Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/utils-BQHNewu7.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a3df05684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":26685,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (26684)","md5":"a0d04babc7044729c489d0844e32bbd8","sha1":"3208b1c19e412d057cb2ab5a8fd1bcdc97200924","sha256":"c64a12ad0feacd41e681b19ed9668b7f02fa2af4c2de2fa7c71addb512e20b87","sha512":"b972d977d826361f2a7525a8a8462a6c004e462d08aba1ebe2f40453b89b6c647e44d815bb373362c2878efc0604439bea86d035653800f6d195855968cb045f","ssdeep":"768:sAi0UggGkYndvK8kYg2PU1Kinf88ikyYK5LK9:GBYgYU1KE88ikyYK5LK9","tlshash":"0bc2c835740706bf2aef93d7f46caa96d8352642e0058b4ce3974f32cb49be9514ab0d","first_seen":"2026-02-25T10:16:37.483757Z","last_seen":"2026-06-06T04:21:10.867562Z","times_seen":102,"resource_available":true,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":110,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/send-Cf9PlHXF.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.075Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/send-Cf9PlHXF.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a6e5f5684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":302,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (301)","md5":"b1f7a1d9a5da467466e4434fb0b5cf73","sha1":"6b3c22c89d391bffd88b7bb1f6e300ef86c0facb","sha256":"de637f815a9cb61bebbd4586f90a1a50bee518d9f74b3c490c14a99a2a36dcbc","sha512":"7f845d203523c7cbd2ab4029c9811af97602f5374d49978965ca3f4944d912f54b79f2d8df162e8cd222c0bcbdbb0ce1cfe9ac49aee3d74b7a1888d3d76dfb15","ssdeep":"","tlshash":"82e07d9c2fc4c67e07057659036a740042dc10fcb3808cc1654a47a7d125453e48be40","first_seen":"2026-05-30T12:21:24.916338Z","last_seen":"2026-05-30T18:33:21.785528Z","times_seen":3,"resource_available":true,"data":null}},"time_used":212,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":212,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/card-DsP1enfj.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.082Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/card-DsP1enfj.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a6e705684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1061,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (1060)","md5":"2d455bcce36c8a925d5468e0d554f3ca","sha1":"00cd1d6a7d8f9553591777daf01c716469780ea9","sha256":"615722458f70e174780db298bb1b29014cea00f176d98f54e7a12037f59a037c","sha512":"21d3f4415342415172e265046297714e4d3a521de4cd60c4da7f4f1fb32d7aa31e65e32660d381d7303a367f4af4631610d0f63880a752970d7c3aa223e11b25","ssdeep":"","tlshash":"3c113a8eb0551c7c023e5d8d974e5597257a4f64ee3b89a0f5f83226061b1d34f1a498","first_seen":"2026-05-30T12:21:24.917637Z","last_seen":"2026-05-30T18:33:21.818424Z","times_seen":3,"resource_available":true,"data":null}},"time_used":169,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":169,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/styles-goeQJR0H.css","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:55.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/styles-goeQJR0H.css HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:55 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db214e8915684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":135289,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"09a0be0b22a04e5a68508e241d4579bd","sha1":"40184d1df43842d1aef2f9cde3c4b48deaedaed9","sha256":"229421f604a975d7a9aa762cadd6a9035b6903c8921ba0e959bfc7a338e0f73a","sha512":"825a86d21297341cb01459e00743daf5ee64d023a9903b31ed8b699a95683e6b58fc26ca4dbb536801f7a03449667988cca4027426b73cca67fcfb0372ec29dd","ssdeep":"3072:vbHG/aRmeh+htzb6xNf1rqONcKYfHREinhg7BUQvwb+Us9snygzu6uzuaSQzpsRr:zHG/aRmeh+htzb6xNf1rqONcKYfHREi7","tlshash":"45d39590b229d53f7d33a4bd938cf84c5109b0c1dd6647edfa16a02216c7bf26da7a09","first_seen":"2026-05-30T12:21:24.919105Z","last_seen":"2026-05-30T18:33:21.779195Z","times_seen":3,"resource_available":false,"data":null}},"time_used":153,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":153,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/~flock.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:55.186Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /~flock.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:55 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: max-age=1500\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db214e8965684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21296,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (21296), with no line terminators","md5":"ed557a78d5301fbb961abfe911a42b62","sha1":"d11a2a4e9fee28c4b1abc38cd8136bffec7e325b","sha256":"a86e084b4f82709814be6c15fd6305daa783fda87ad95402da9a4d3a1dd6d748","sha512":"18dd1525e2b4d89e3c46d92367fca020cf99fb07856acfd96a25dc7410611eea83b438c91691683983495945eb04a9427bc63e2a383cbe93449f4df0eb1ddb51","ssdeep":"384:FtUCBXTpeaFEo5TTThri1t/mCsOCXiTNZruJ4vKFlcEhRCDxOcX/YM2Vybyq/kmt:n7XTpeauI/Thri1CKWM4ldRzurwkTO0D","tlshash":"cea2b6d61007243d57ead1a13929f7d63177ea98a0caec8a7de91f84d414c83f3f294a","first_seen":"2025-07-30T15:25:28.733337Z","last_seen":"2026-06-06T14:07:53.24316Z","times_seen":10035,"resource_available":true,"data":null}},"time_used":99,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":99,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/sparkles-DdfJjXyf.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.047Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/sparkles-DdfJjXyf.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a4e075684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":662,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (661)","md5":"e8cdedda7776edcc342b0dcb9b9ec004","sha1":"2e9ba7137b76b858efbc3dddb4300614d5089ad3","sha256":"68da3089b60f9aed07234e5cb4620f0c895f157caabe0fae5c9df1c6ff9a6b23","sha512":"dd23de1d483b9183ad4ad0d12695a6e65194ec4609c91e9a32dcf703b3130ea0a29818b7815b39475b2a7507911bcbc05c9521533e06c43dc78ec36056e6ea22","ssdeep":"","tlshash":"8b0126bf1e8a45ae4683d8498e7bf044cabd42f83a648841a94ed42ac213053d9daf40","first_seen":"2026-05-30T12:21:24.921634Z","last_seen":"2026-05-30T18:33:21.786842Z","times_seen":3,"resource_available":true,"data":null}},"time_used":152,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/store-woocommerce-brand-BLVUNzjX.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.093Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/store-woocommerce-brand-BLVUNzjX.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a8e975684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14874,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (14873)","md5":"c2e3b76692f89727cb2584fd16b98daf","sha1":"23ec5c50ec85196f20c9c7c847a2cdec06f21869","sha256":"a41f8faf792d9e92018cf2cf1963063aaf2a8f1287015fc469c10623e3a233ad","sha512":"abcbb11817287786d14b021671755f3f5db0ffbd33ce4f17da1ba5ce9075fe2eff1588a9d05dd23c51d1e2bf47ad9f6f1570982826019a4443114d90e4d8d3a5","ssdeep":"384:c8thOkbh/LOBsp9X9FcfxkhFLp9rzcoWyZoe5iU4RCwoM:c8tw+SBsHX9FcfxkhZ3cNyZolBRC3M","tlshash":"e262305d1c624dc6e4298a774a763578c03326afef7c2c9e3ee773442daa44116a8c7c","first_seen":"2026-05-30T12:21:24.923128Z","last_seen":"2026-05-30T18:33:21.806054Z","times_seen":3,"resource_available":true,"data":null}},"time_used":164,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":164,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"173.194.220.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:55.624Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://upshub.app\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 29 May 2026 14:00:32 GMT\r\nexpires: Sat, 29 May 2027 14:00:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 80423\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-06T15:11:31.632391Z","times_seen":204901,"resource_available":false,"data":null}},"time_used":179,"timings":{"blocked":70,"dns":0,"connect":15,"send":0,"wait":16,"receive":21,"ssl":53},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/sellercloud-DLAf_ix8.avif","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:55.666Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/sellercloud-DLAf_ix8.avif HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:55 GMT\r\ncontent-type: image/avif\r\ncontent-length: 5017\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\nserver: cloudflare\r\ncf-ray: a03db217fbd85684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5017,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"fd4cc94d3fd2f31678b80532767548a1","sha1":"fca308a0b031c15c3f9910cd4aa1150ffacfe8d7","sha256":"c96145864017e9866494c9e13f1e73ada64a118cbe31e97078693302e29e889b","sha512":"eb8adb34ea8844c62f21974b6b31898757cd38baca09b110c23ec7842ea8f396543de6c85726bd7c37fbac2782c47cb4ed5316ae9adec85610056754a79ca829","ssdeep":"96:rG0tn9Cydmwl4Sx928tz7pVaTpWUK/ns39FAsdKDC+/TxnOhh47/:rGCn9C8mwl4S32+7Q9ongA6gTgm7","tlshash":"cda17e9873862870d45462b48c250d64fab1dea5d3e18897972df238bd177d2d850f9c","first_seen":"2026-05-30T12:21:24.925726Z","last_seen":"2026-05-30T18:33:21.82307Z","times_seen":3,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":3,"dns":0,"connect":0,"send":0,"wait":95,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/loader-circle-CnuMdZp3.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.067Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/loader-circle-CnuMdZp3.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a5e3c5684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":151,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text","md5":"084edb2eeafee89fd9c504f6ee1eaf7d","sha1":"dcff1348e5b2a78a4d93a3455acf44621eb84d9b","sha256":"6ef97d148ab4545abf6f3d4a108c0c93aa34063b38a4955f4d25872e83229686","sha512":"80351415f33b4ac25a6cfbaba096c01d09b32336572fd52692e9a530b7cf30280bebb56c2799899ee9d2ccf70b38031fdf4aaa50fec000f64b2b7b2934853f20","ssdeep":"","tlshash":"2ac08c2a2f2848f506429e9a03257a005d41069213c14ed660458a2bc2838d3a0dfe81","first_seen":"2026-05-30T12:21:24.927493Z","last_seen":"2026-05-30T18:33:21.796668Z","times_seen":3,"resource_available":true,"data":null}},"time_used":166,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":166,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/index-NGtLQoYa.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/index-NGtLQoYa.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a6e755684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2511,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (2510)","md5":"c4e711196f3c332dd65e64a92c4c2798","sha1":"7e0cba34ac0629c3d260f29bd7c22166762d77e1","sha256":"5466f4d5423a6a05365f31a763ce06aa8d1f60fe86a7f093eb27f116a4a7a477","sha512":"71453fe1ee8be436d970a88103d6f73d70775cf2212b4d4a72b139887141dc42f0ec5a333ba6475f0cbe798ad31cbaf6291282cdfefda264d38cef56540af63c","ssdeep":"","tlshash":"015196c5b091f2b05a5909d5c07f895eb98d7619200e4190e57ebcb13a751c9b273f78","first_seen":"2026-05-30T12:21:24.930189Z","last_seen":"2026-05-30T18:33:21.820073Z","times_seen":3,"resource_available":true,"data":null}},"time_used":167,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":167,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/index-CF5UE-QM.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.091Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/index-CF5UE-QM.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a6e795684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":398,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (397)","md5":"4417853129234f05cd3e6765a7515d64","sha1":"be6908352d0d24d56089ed23f783e075434e1b47","sha256":"bc57400575bea30d9c6e66fe194efe30bad05ff72df534a033b04116f304d52a","sha512":"4943783d2ef10801c66ed1d269a47f32f92d434c8297bc8671766ff55c40a75e1a7e112f62586914f52bc9e91242b8323e88b69356e3af93081d649cafc88615","ssdeep":"","tlshash":"49e061ca31c674bad2761967443bc61e7a38cef130cc9144944559bbadb105cd2bfe2d","first_seen":"2026-05-30T12:21:24.932347Z","last_seen":"2026-05-30T18:33:21.819262Z","times_seen":3,"resource_available":true,"data":null}},"time_used":147,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":147,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:55.363Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:15 GMT","end":"Thu, 30 Jul 2026 15:53:14 GMT"},"fingerprint":{"sha1":"19:42:B0:56:3A:E4:79:BF:8B:69:E2:50:F4:76:BF:1E:A9:D7:7A:49","sha256":"D7:FF:C1:46:95:F3:5F:08:04:B0:E1:A8:FE:14:FC:60:19:58:D6:C7:D3:6E:82:B3:64:07:E9:E1:CB:9A:27:8C"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 30 May 2026 12:20:55 GMT\r\ndate: Sat, 30 May 2026 12:20:55 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5054,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"43e6cb63df7a11f872c857e328961e21","sha1":"a4bfa6231dc6e8c8d84296736c60b763c14a4133","sha256":"209f55c7b05c3c78d7bceaa91c937923e79159198173138460e45aaac2fa9db5","sha512":"1b90cfec5e53b8740152240fa6c3b9b367aa9d751dfb3a69387d4e2aea6b140214af96a2ec0372fb9ea992f73a380b51328b080ed44a9ebe74fe2fc7fd522bfe","ssdeep":"96:aOEaNqOEaXFZHOEamOEaO3vOEaBOEaBJc+uTOEaNcNDOpaNqOpaXFZHOpamOpaOI:9NNIxO34OxDONEhYO3RrxGx","tlshash":"afa18992002ba400ab971dc233cf7f3aaece10896085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-10T21:34:59.082547Z","last_seen":"2026-06-06T13:48:56.063916Z","times_seen":1966,"resource_available":false,"data":null}},"time_used":289,"timings":{"blocked":120,"dns":1,"connect":29,"send":0,"wait":45,"receive":0,"ssl":89},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/button-CSNOsb1j.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.057Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/button-CSNOsb1j.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a4e1b5684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1874,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (1873)","md5":"43d7b47b9a298872881ebc874ad7fd2b","sha1":"9777dfa2d5940c4b655adba0a9989fe0b9625783","sha256":"7680e1c6e35adb97c3519920d3cdc04c87622fea891c37a61b37b3f4a0a47e7f","sha512":"cb8a438b8065fc6302d7905af65cd3ecf02621063511ee6f3ce24254b025f5fce6514b0101e138a0651cb326af01476ee34e232008041092eec41afb520d586e","ssdeep":"","tlshash":"e631e1417150a63d32b38d6d739875f0c74de69896736e93f0fc013a05d2b6a8e3a901","first_seen":"2026-05-30T12:21:24.934233Z","last_seen":"2026-05-30T18:33:21.851087Z","times_seen":3,"resource_available":true,"data":null}},"time_used":163,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":163,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/clipboard-list-C07wAVDN.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.065Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/clipboard-list-C07wAVDN.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a5e365684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1429,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (1428)","md5":"8066bc9b7c20aec11244cc1caca53e3f","sha1":"69ae8fbab81592aae9e239a159f72ba7ae322223","sha256":"6df738b21700f5ce88fcfa87c0ea1debd3919c505b54d1334a2c5f4f8aee3024","sha512":"ac705e954bc0ae35867c20d491b99302c71855f2933fc9983596b8d0fba423039261bf3f061306cefd36985771eeb5ea40f3153811900180fcf402addb0950bb","ssdeep":"","tlshash":"6921cc8f4f8463ae4800e74c2e5bb4159fed23bd368a8d82b45f8222c725417cda3f64","first_seen":"2026-05-30T12:21:24.935232Z","last_seen":"2026-05-30T18:33:21.795027Z","times_seen":3,"resource_available":true,"data":null}},"time_used":179,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/__l5e/trackevents","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.002Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"POST /__l5e/trackevents HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/\r\nContent-Type: application/json\r\nContent-Length: 2858\r\nOrigin: https://upshub.app\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2858,"data":"{\"envelope_schema_version\":1,\"batch_id\":\"bc18366f-f4ab-46e0-901c-35cf51fc5393\",\"sent_at\":\"2026-05-30T12:20:56.000Z\",\"sdk\":{\"name\":\"lovable-user-app-events\",\"version\":\"0.1.0-proxy-route\"},\"artifact\":{\"kind\":\"dwl_content_hash\",\"id\":\"07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\",\"commit_sha\":\"18b98f466e300679df6a9394e6fd3f62ae1b8055\",\"context_token\":\"v1.eyJwcm9qZWN0X2lkIjoiNjMyMTU4YTEtMDY5Yi00YzBlLThiMzItN2YzM2JlNjE3ZWRiIiwiYXJ0aWZhY3Rfa2luZCI6ImR3bF9jb250ZW50X2hhc2giLCJhcnRpZmFjdF9pZCI6IjA3Y2E2ZGQyZTFlOTBlMmM1YWQzZjJiZTBhMzE2ZmFjYzk4NWZlYzFlM2EyNWM2MWY2NzIyNjUyMjQzODAxMjAiLCJjb21taXRfc2hhIjoiMThiOThmNDY2ZTMwMDY3OWRmNmE5Mzk0ZTZmZDNmNjJhZTFiODA1NSIsImV4cCI6MTc4MDE0NzI1NH0.G281S01hWG0qIrPxp_Z5oPXp7hb8v-F9JjVyRWCRd94\"},\"events\":[{\"event_id\":\"8dff27d6-e236-4d83-bbf7-f98ba2f6d067\",\"event_name\":\"lovable.web_vital\",\"event_schema_version\":1,\"event_time\":\"2026-05-30T12:20:55.702Z\",\"anonymous_id\":\"8965bb3a-fe9e-4147-9df9-236b63699a71\",\"session_id\":\"3ac43b52-0299-40f1-8a92-224fae1c638d\",\"page_view_id\":\"92ea385e-61a2-49f5-8e2b-216184b54f51\",\"properties\":{\"metric\":\"TTFB\",\"value\":890,\"unit\":\"millisecond\",\"delta\":890,\"rating\":\"needs-improvement\",\"id\":\"3042919e-63b0-4b0e-95df-3a9f1255a253\",\"navigation_type\":\"initial_load\"}},{\"event_id\":\"d68b233a-03ea-44b5-a686-a07e6b3e49a2\",\"event_name\":\"lovable.session_started\",\"event_schema_version\":1,\"event_time\":\"2026-05-30T12:20:55.702Z\",\"anonymous_id\":\"8965bb3a-fe9e-4147-9df9-236b63699a71\",\"session_id\":\"3ac43b52-0299-40f1-8a92-224fae1c638d\",\"page_view_id\":\"92ea385e-61a2-49f5-8e2b-216184b54f51\",\"properties\":{\"reason\":\"new_session\",\"is_new_anonymous_id\":true}},{\"event_id\":\"97cc55bb-5f89-4db6-85af-1055d0c1887d\",\"event_name\":\"lovable.page_viewed\",\"event_schema_version\":1,\"event_time\":\"2026-05-30T12:20:55.702Z\",\"anonymous_id\":\"8965bb3a-fe9e-4147-9df9-236b63699a71\",\"session_id\":\"3ac43b52-0299-40f1-8a92-224fae1c638d\",\"page_view_id\":\"92ea385e-61a2-49f5-8e2b-216184b54f51\",\"properties\":{\"url_path\":\"/\",\"navigation_type\":\"initial_load\"}},{\"event_id\":\"70195c25-3cfe-47e9-9d19-eed453e25106\",\"event_name\":\"lovable.web_vital\",\"event_schema_version\":1,\"event_time\":\"2026-05-30T12:20:55.751Z\",\"anonymous_id\":\"8965bb3a-fe9e-4147-9df9-236b63699a71\",\"session_id\":\"3ac43b52-0299-40f1-8a92-224fae1c638d\",\"page_view_id\":\"92ea385e-61a2-49f5-8e2b-216184b54f51\",\"properties\":{\"metric\":\"FCP\",\"value\":1797,\"unit\":\"millisecond\",\"delta\":1797,\"rating\":\"good\",\"id\":\"8ad01e69-637a-408b-bc75-c3caae12b93e\",\"navigation_type\":\"initial_load\"}},{\"event_id\":\"ea5080b2-fc42-4388-ad11-4659c6d81add\",\"event_name\":\"lovable.page_viewed\",\"event_schema_version\":1,\"event_time\":\"2026-05-30T12:20:55.882Z\",\"anonymous_id\":\"8965bb3a-fe9e-4147-9df9-236b63699a71\",\"session_id\":\"3ac43b52-0299-40f1-8a92-224fae1c638d\",\"page_view_id\":\"338b20b3-0672-4898-a9e6-0c92504b4f25\",\"properties\":{\"url_path\":\"/\",\"navigation_type\":\"replace_state\"}}]}"}},"response":{"raw":"HTTP/2 202 Accepted\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: application/json\r\ncontent-length: 17\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: a03db21a0dcb5684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"202","status_text":"Accepted","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":17,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"1125b91815c32790c1b224791b9d70fc","sha1":"becba42c161d72b4b90cfae9c81fc971e6803870","sha256":"11a49f853eb8befe94fef278d487125cd20930b9e41c4c0934394443e7f00878","sha512":"84bd85e5b348d7d910df3525a8d57ec6da3c8afaae5248e5c4bb81644e56c6c4d052046c4be3c069d9d234b52e24a02dc829cd17a179d3f9fc2a76c735c0e46d","ssdeep":"","tlshash":"e56000022a0008a08080008002002ba28000203000203088c00a200000a28000008002","first_seen":"2025-07-06T07:47:53.239897Z","last_seen":"2026-06-06T15:11:31.669795Z","times_seen":368,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":177,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-30T12:20:53.930Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:54 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, must-revalidate, max-age=0\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nset-cookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; Path=/; Max-Age=86400; SameSite=Lax; Secure\n__cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; HttpOnly; SameSite=None; Secure; Path=/; Domain=upshub.app; Expires=Sat, 30 May 2026 12:50:54 GMT\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db20d88ec5684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":58374,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"data","md5":"0a2ea77a8c0c9919130a57edfbd3d614","sha1":"dc36358eeefb185a4635d5b7f0d2e4560743a943","sha256":"2d5c1d5ecc0d00892478d08db323767ebed99daa11039c6acb8f17008123a865","sha512":"58f8261b2aac0b8dcebd0d198aa36d2dbcb413ccbbff1b32a9499f3c77e81548f05d0785761d3eeab2848d53e8520c28c001c501bcb919402755814630657c20","ssdeep":"768:Y27T9G5QT5j5nbkSbzgLryNAM6KGzcsLP8GNVcaCman+RbQVoNUzaMCpFuMz/KoI:Y2tGKT1C1LrsGcG9VB3bxVMQckgHj","tlshash":"30433a3153107a3f3763caaeb190f76886a9f29ad513c668f5fc013212c2ed5d963e94","first_seen":"2026-05-30T12:21:24.937722Z","last_seen":"2026-05-30T12:21:24.937722Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1030,"timings":{"blocked":70,"dns":40,"connect":1,"send":0,"wait":890,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/marketplace-meta-CK2e71fu.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.070Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/marketplace-meta-CK2e71fu.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a5e405684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1474,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, Unicode text, UTF-8 text, with very long lines (1461)","md5":"70711f4a78141387356befa6d49f3dfa","sha1":"eae5fd6032d7a838b777970797f0b88443190852","sha256":"a41d90e9395a9e2e4b1c7462d2e58724ec3aa4e3316f26b0cdafa70f8d5812a1","sha512":"a1bb314ad13bbd03bb2d694250f06990d7f5b663c5ae3b4a7c9e19a68c621e4953e7a9ad82ad6eae7ac11640d357c1b740e242ac5eb9f5a292000284c523c531","ssdeep":"","tlshash":"9c31feaeda9f07be8761c388304700c48fdc1dbe71d19242ae864aaf103f06b99d1f06","first_seen":"2026-05-30T12:21:24.939531Z","last_seen":"2026-05-30T18:33:21.787652Z","times_seen":3,"resource_available":true,"data":null}},"time_used":202,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":202,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/shield-j4Z8OsY0.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.079Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/shield-j4Z8OsY0.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a6e6a5684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":279,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text","md5":"5f8b59ffd96b20d22351d232275038f1","sha1":"ef710ed257a84ee7087d7b58c5891ae1b8b113f5","sha256":"fb141f149a97090a6d5e0dcbd53f2a97ef2153d68e021a1e030ca1865c89f32b","sha512":"ab5426235315b70090d6092d52090486c46d0c01e45b592c19633000aa8977e722c27ce66ecf8c114166d711b0b24f3e8ccb700232f3e5b41151f47e688a7acb","ssdeep":"","tlshash":"5dd0c27aaf4c49fd26c3dac6825724548f58d59973b189a0a00c893b80138c7c08f951","first_seen":"2026-05-30T12:21:24.941777Z","last_seen":"2026-05-30T18:33:21.777936Z","times_seen":3,"resource_available":true,"data":null}},"time_used":159,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":159,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/~api/analytics","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.010Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"POST /~api/analytics HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/\r\nContent-Type: application/json\r\nContent-Length: 331\r\nOrigin: https://upshub.app\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":331,"data":"{\"timestamp\":\"2026-05-30T12:20:56.005Z\",\"action\":\"page_hit\",\"version\":\"1\",\"session_id\":\"f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\",\"payload\":\"{\\\"user-agent\\\":\\\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\\\",\\\"locale\\\":\\\"en-US\\\",\\\"referrer\\\":\\\"\\\",\\\"pathname\\\":\\\"/\\\",\\\"href\\\":\\\"https://upshub.app/\\\"}\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:57 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-length: 4\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: a03db21a1dd15684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"f92965e2c8a7afb3c1b9a5c09a263636","sha1":"e9b450d14bc2363d292c84f17cfad5cfbd58a458","sha256":"11a6767d5674c7e45f7e00dc525762275b3a48491ad6045427d2609cc496c516","sha512":"25775ba3c567970fc3df3f8107f2a78a67c5619d54bfb37704423acceec253316949eee77b81100a01b91c742e475b4f6157dd2427a9f9fafd87a4078f2d65df","ssdeep":"","tlshash":"54300000000000000000c00c00000000000000000c0000000000000000000000000000","first_seen":"2023-04-09T18:20:08Z","last_seen":"2026-06-06T14:07:53.221854Z","times_seen":10132,"resource_available":true,"data":null}},"time_used":1019,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1019,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/zap-LV6l-nOa.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.052Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/zap-LV6l-nOa.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a4e165684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":274,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text","md5":"be21ab91efb324fdc6b9a25d4b1c6af0","sha1":"4a84d3f3d079d547d6e63f24d394ed6c221d36dd","sha256":"d8657c5b32c0eb3096d046fe5d60b0b9aa4c137eb5b8d7aa1f649a3e3574b79a","sha512":"cd4733dfd6183ca6da7b6ff63efdd5df006218d03b28e69697e3bf487dc5b48a7f435469e8dc2ac02fa0383ad2e24d12c139b9e250ae2e8100e0d836f8dbfbb1","ssdeep":"","tlshash":"c8d0c23a1a0c42fd2602e7c41b3792a44b4d85a873f58da0140e42b2812b083c0eb904","first_seen":"2026-05-30T12:21:24.943721Z","last_seen":"2026-05-30T18:33:21.805007Z","times_seen":3,"resource_available":true,"data":null}},"time_used":171,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":171,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/wallet-BK65R527.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.074Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/wallet-BK65R527.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a5e455684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":298,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text","md5":"3b7ab06c28a9e90cea8fe126256565b8","sha1":"a9cbe9b09ae0909483efcfad7c99eae026519f73","sha256":"191759b25ee03ee61ab80d08b0cd346b3dc353214c0958a87944e44e9ac61572","sha512":"8b7284039fb2d0d085cffe07e90024a07aa890d7fec0af9cbe1e54fd7de21781020f8469edb2905e77735dfa3da833751fa0685b7335e4074286a3a458481c38","ssdeep":"","tlshash":"d6e012391f9d06ff0607c5980a9ba0114bdcb1fcb27949d17d1f41675526063ccab750","first_seen":"2026-05-30T12:21:24.945747Z","last_seen":"2026-05-30T18:33:21.776626Z","times_seen":3,"resource_available":true,"data":null}},"time_used":169,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":169,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/arrow-right-DKUB06Yv.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/arrow-right-DKUB06Yv.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a5e425684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":177,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text","md5":"214606ecfa6449b1c49ed28a55bbbf3a","sha1":"2710bdf7fc09e4b0d1bee813d1562b2a3670b95e","sha256":"a65ad1018f91257db66dd76f2f832ba649ca7e778fb867ccf1d92d431ab28592","sha512":"94553d09df7a57840e72333a4e9aadec939577bad10dc80bb38ed0ea4f3406a1a1a9d6d61f1486295d85db35defd78b24862e9b86578ccbe7d05d932e54dfc47","ssdeep":"","tlshash":"f5c08c5f7ec0e2f24b40a6cf4797391149a805ec93e38d80780e92a7c3128c348ede21","first_seen":"2026-05-30T12:21:24.948121Z","last_seen":"2026-05-30T18:33:21.774832Z","times_seen":3,"resource_available":true,"data":null}},"time_used":169,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":169,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/quote-C1fTFegt.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/quote-C1fTFegt.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a6e665684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":401,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (400)","md5":"c75af345b2cb1bf03b20771c2d0a5b9d","sha1":"9a086f0cf452578fe6552b0549e9af8926a106b5","sha256":"39fd18ea685574842b825d7d8e8b3e10568cd0383e5c50ea017cd9760dfa3b71","sha512":"9e1027f4e99b6eb0c257e32be0d25bf7c72c5891838ae305ebe0b0ebbd21d557058fda69a189b9bd791ea3e4623d1164a47832280b107bc0710e7c6a7375f766","ssdeep":"","tlshash":"50e012a6dfac07fe0a47c0880b1fe82007acd7b9317e48b06d0c91f6c616886d4b7a45","first_seen":"2026-05-30T12:21:24.949687Z","last_seen":"2026-05-30T18:33:21.750871Z","times_seen":3,"resource_available":true,"data":null}},"time_used":179,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/ups-marketplace-hero-CzgKExAS.png","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:55.178Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/ups-marketplace-hero-CzgKExAS.png HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:55 GMT\r\ncontent-type: image/png\r\ncontent-length: 663320\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\nserver: cloudflare\r\ncf-ray: a03db214e88f5684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":663320,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 960 x 540, 8-bit/color RGB, non-interlaced","md5":"916e3249c3672ed4f8b3b40add8cf831","sha1":"805a42d7f4560655b5446ae873700f44b4856b12","sha256":"2ef178f97137b04877cbe09bb7e0603863ca07500a66582f97316cf6ed867eb6","sha512":"11b145977ea2a8aa9ac3a36374675b3d2f2c0f4a1ae17a0635d6a388b7479faa1705616a2d0a77035bdeeec5885354e24c135d63a2ca6734032109a42cd99ec9","ssdeep":"12288:7JONZ6G/pN0/m015uAt44b5buaL9bICypz0SdK1mqVz/pbrq:70Z6OpN0/vruArlaUbICyN0SaJ7G","tlshash":"0ce4235073dd8867ab4d1a6f8af1fc5b4d39712406c8b7a61aba6cfd11a7274383c072","first_seen":"2026-05-30T12:21:24.953425Z","last_seen":"2026-05-30T18:33:21.794166Z","times_seen":3,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":147,"receive":30,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"173.194.220.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:55.630Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://upshub.app\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 29 May 2026 14:00:32 GMT\r\nexpires: Sat, 29 May 2027 14:00:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 80423\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-06T15:11:31.632391Z","times_seen":204901,"resource_available":false,"data":null}},"time_used":196,"timings":{"blocked":81,"dns":1,"connect":14,"send":0,"wait":21,"receive":12,"ssl":63},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.gpteng.co/mcp-widgets/v1/fonts/CameraPlainVariable.woff2","fqdn":"cdn.gpteng.co","domain":"gpteng.co","tld":"co"},"ip":{"addr":"104.18.28.167","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:55.791Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.gpteng.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 13 Apr 2026 20:25:47 GMT","end":"Sun, 12 Jul 2026 21:25:38 GMT"},"fingerprint":{"sha1":"B5:C2:5D:87:D7:51:E0:73:8D:83:C4:92:3B:A5:57:F0:18:C3:10:15","sha256":"B7:2A:6D:36:CB:2E:C6:82:0E:25:CC:93:EE:AC:6C:04:54:D4:F1:4C:15:85:D1:44:FB:0F:51:54:CB:A0:39:00"}}},"request":{"raw":"GET /mcp-widgets/v1/fonts/CameraPlainVariable.woff2 HTTP/1.1\r\nHost: cdn.gpteng.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nReferer: https://upshub.app/\r\nOrigin: https://upshub.app\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:55 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 133760\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\netag: \"c48bd2439e2921fc4d3aaef0e57446be\"\r\nlast-modified: Wed, 10 Dec 2025 13:46:40 GMT\r\nvary: Origin\r\nserver: cloudflare\r\nset-cookie: __cf_bm=lI5sJc8wwShU40C1SUwv3EoMnF1qNAMnVbot75oCaeU-1780143655.8164666-1.0.1.1-puUaCn9_HBtxo5KTWWeQyegaEdSSjGZVL.P3vGgQtp5.1ARXZPne5hmJDfOMVBG2T9mgcEYaK.e3wT4D5kYV3x0V79FVa3ADrBdGJF2JxbWLu3eAmevCuAK_7O_OCB5c; HttpOnly; SameSite=None; Secure; Path=/; Domain=gpteng.co; Expires=Sat, 30 May 2026 12:50:55 GMT\r\ncf-cache-status: HIT\r\nexpires: Sat, 30 May 2026 16:20:55 GMT\r\ncache-control: public, max-age=14400\r\ncf-ray: a03db218d9f856a5-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":133760,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 133760, version 2.0","md5":"c48bd2439e2921fc4d3aaef0e57446be","sha1":"396596764aebbe25ba1c45f19091f48a7e17a9e5","sha256":"0f4491b0f9f6b9c3e6054a9f0036583e3978fd3a8d8f49ba5da05d63cf875cbb","sha512":"cb9ff1ede5ea280e8586c3e6e84c68685b3749fa492fb1babef3d0bb72ab1b095b1c00531554ead12e31139f226c7aa96399b11fd6ae256ea134639d98d95b64","ssdeep":"3072:OWSP0iIzCkvibLej77I/9GRBm7Xy2TJ46tNP7HlgXffTp/CGZ7YpV/z:OdYGkviXe7l87C2XtBC1/CGin/z","tlshash":"d9d3123e2ad0e463aba505b13a7f65808a2e5f11e3c773c145b274cfd5302a8236da7d","first_seen":"2025-04-23T20:37:12.507957Z","last_seen":"2026-06-06T13:57:48.823282Z","times_seen":1036,"resource_available":false,"data":null}},"time_used":124,"timings":{"blocked":20,"dns":6,"connect":1,"send":0,"wait":68,"receive":6,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/createLucideIcon-BcVtH5rq.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.055Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/createLucideIcon-BcVtH5rq.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a4e195684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1202,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (1201)","md5":"46a5583e135c446bb484453ffa081d09","sha1":"a75eef18fb7a50a342da901f5636cbb1e2681005","sha256":"c5d9721164bc9aa22df83e1e6865eaba038d9ba6dce697824bd26204afbdcebc","sha512":"bf85fdaf70b598b4090a7c14a7dd2d6d516bfa1cfda610409357dbac5d67b72d3fbe25677ddf5efc7a4d1021cbb53fd2adc55df1ac7ed42f1e785bf255f276fd","ssdeep":"","tlshash":"83214408b3d4283cb23584cd97583069fc779a18f9635a58d2fc5d1a3627042a337acc","first_seen":"2026-05-30T12:21:24.959552Z","last_seen":"2026-05-30T18:33:21.784374Z","times_seen":3,"resource_available":true,"data":null}},"time_used":151,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":151,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upshub.app/assets/circle-check-B6bxNqdc.js","fqdn":"upshub.app","domain":"upshub.app","tld":"app"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upshub.app/","date":"2026-05-30T12:20:56.068Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upshub.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 07:49:28 GMT","end":"Tue, 28 Jul 2026 08:49:26 GMT"},"fingerprint":{"sha1":"C1:ED:01:95:4C:2C:AD:F2:CE:6A:E1:5E:20:5A:23:DD:82:A2:3F:66","sha256":"FA:27:75:A6:4E:8C:03:2A:39:EC:A7:8B:C8:D9:6E:08:13:75:A5:2B:9F:A6:EF:04:D5:9C:04:07:2E:A4:76:EF"}}},"request":{"raw":"GET /assets/circle-check-B6bxNqdc.js HTTP/1.1\r\nHost: upshub.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://upshub.app/assets/index-CCagQcWz.js\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __dpl=07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120; __cf_bm=ReaGFzUoVy4dt2eZx70sKFDcdGULgW6qc4S.EEtINbI-1780143654.0075939-1.0.1.1-FJqrsKisBPbTmjPnP4dse3HUeiQAUhLE7iJYIu2XcYR2RAhgHESmaPynXKsy9Dnsgxwd3xRTLWXetPeGS8t1lCRjYj9KKFKo2dXw2Y_69NinMmrBO2yacrbrZhdeCn3F; session-id=f4acf75e-856d-4d7d-bed1-a3ceb4a07f54\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 12:20:56 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-deployment-id: 07ca6dd2e1e90e2c5ad3f2be0a316facc985fec1e3a25c61f672265224380120\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a03db21a5e3e5684-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":185,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text","md5":"a913baff74d411e230464d7f38767805","sha1":"0a0ad280d771ad1d78d0bfa5b7d5bfe33d5d7f68","sha256":"b1d7402b8906576a6323bf10f9418808c736e5fda7ac87caec9babfb7381b926","sha512":"0a2f841a0fcd508902db54b3a2cb33aa425db0fc5cff52102540b3629d028a538acf4bcfb4f5475f1123b7505ba6cbe1ca1d77078f037132353e6c5d3e788677","ssdeep":"","tlshash":"d4c0803b9d515f670105d4c9075a6418c89502b117dc8f41f2874917c261d5720cedb2","first_seen":"2026-05-30T12:21:24.961334Z","last_seen":"2026-05-30T18:33:21.817535Z","times_seen":3,"resource_available":true,"data":null}},"time_used":173,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":173,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"upshub.app","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}}]}