{"report_id":"258c6856-e9bd-4d4b-838f-181568483bdc","version":0,"status":"done","tags":[],"date":"2026-06-18T12:39:53Z","url":{"schema":"http","addr":"glopakind.com/DocuSign","fqdn":"glopakind.com","domain":"glopakind.com","tld":"com"},"ip":{"addr":"194.163.178.216","port":0,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"www.glopakind.com/DocuSign/Windows/Justamoment....php","fqdn":"www.glopakind.com","domain":"glopakind.com","tld":"com"},"title":"Just a moment...","dom":{"size":11830,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (619)","md5":"b94d3e9c51ff3fb188b27858ec0645bc","sha1":"844039d5106a61217bc0b4c2ac9ffe6729c4b929","sha256":"80799b648f5b582a1d9986363ffcaf42f3ad3bcf871794a36f0f47991ba0bc0a","sha512":"069f6c1c9a72331291cebfdc5cb4d6d424b0997d4df3c7f93cff0f1a3ed57cbe0edb373967d1ee6fea10ba47ed19f7f18caede9cf5804742b7c03f5a4ed6e187","ssdeep":"192:dvpcDEkFXZy8hNAQg9JbKA61itiUbVbY5y4gUa1PmPmPf7CeV:7c5ZGfYitik17/hea","tlshash":"513284a2eaa214457017c0a177623baf7e75d203d6024a34b7ad73744fc7aea586329c","dom_hash":"domhash289d018f08e24fb27d2377aa74e60bb6","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"glopakind.com/DocuSign","fqdn":"glopakind.com","domain":"glopakind.com","tld":"com"},"ip":{"addr":"194.163.178.216","port":0,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-23T12:39:53Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"glopakind.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"glopakind.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.glopakind.com","ip":{"addr":"194.163.178.216","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2024-02-19","domain_rank":0,"first_seen":"2026-06-18T01:39:34.11188Z","last_seen":"2026-06-18T01:39:34.11188Z","alert_count":0,"request_count":8,"received_data":45194,"sent_data":4488,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"glopakind.com","ip":{"addr":"194.163.178.216","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2024-02-19","domain_rank":0,"first_seen":"2026-06-18T12:39:53.349409Z","last_seen":"2026-06-18T12:39:53.349409Z","alert_count":2,"request_count":1,"received_data":221,"sent_data":490,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.glopakind.com/DocuSign/Windows/Justamoment....php","fqdn":"www.glopakind.com","domain":"glopakind.com","tld":"com"},"ip":{"addr":"194.163.178.216","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"808bdf57cc1908e505530979270c0d3b","sha1":"9c3759383225e4aa6363cb5b78da243fd60504b0","sha256":"d3061acd089fe7aff4aaa97123339f898b2a2c669376c10195756bcbbde59850","sha512":"d6780edbc170b66208c7a16a4fe1eb457020f6e68a555f98ee0ea1d04097f8c19ee6c8064a3519d95b4a3de6073e4a7c0ee554493dc476e12434b7d082e19f6b","ssdeep":"","tlshash":"1bf0e957306b0134069ba5b35abb63443571201b3c41d5443c1c44914f76e6a70bfad9","size":525,"data":"","first_seen":"2026-06-12T12:21:01.378234Z","last_seen":"2026-06-21T02:11:06.566882Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.glopakind.com/DocuSign/Windows/Just%20a%20moment..._files/v8c78df7c7c0f484497ecbca7046644da1771523124516","fqdn":"www.glopakind.com","domain":"glopakind.com","tld":"com"},"ip":{"addr":"194.163.178.216","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"4f67ea9205c3ca7c9e04582d3b9bdd1d","sha1":"d3b68ad3eb88d3db3d843211d4905143c3bff281","sha256":"4b77eae349a8cbcea7133cf3640a64ebf1f69d54d8f6469d7be6fdc188ca4ca4","sha512":"f034bbae022b026821045c28393ba371fe83f6b5ef1fcc66f0943525ad3587d417f04cd795d8accee7d86b82057ca74b50a4d3ae74855cb0e4504393ad943c42","ssdeep":"384:BXi1f+hZCIy1f84QDRuT9WKw00QmLnivMt+BERzR0c744BKJKe0620vFjOkcXo9g:+V584QlIrw6OPIJJtFjj09N","tlshash":"bce218eeb591b13603f7a072447f210b733ab56264494408e21bd6c22c78eeed257fad","size":31169,"data":"","first_seen":"2026-02-19T19:35:51.221473Z","last_seen":"2026-06-24T05:30:06.102244Z","times_seen":78174,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"glopakind.com/DocuSign","fqdn":"glopakind.com","domain":"glopakind.com","tld":"com"},"ip":{"addr":"194.163.178.216","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-18T12:39:25.844Z","timestamp":1781786365844,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"glopakind.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 05:57:41 GMT","end":"Tue, 28 Jul 2026 05:57:40 GMT"},"fingerprint":{"sha1":"3E:46:9D:90:92:85:F5:F7:C6:0F:81:10:DB:C5:4E:67:BD:73:9F:19","sha256":"00:87:25:13:78:41:B4:32:84:07:39:DA:5E:CA:DF:16:4F:85:5E:48:49:4E:0D:12:9F:E4:E6:41:F0:60:1B:8A"}}},"request":{"raw":"GET /DocuSign HTTP/1.1\r\nHost: glopakind.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 12:39:26 GMT\r\nContent-Type: text/html; charset=iso-8859-1\r\nContent-Length: 281\r\nConnection: keep-alive\r\nLocation: http://www.glopakind.com/DocuSign\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-24T11:14:31.127166Z","times_seen":16678930,"resource_available":true,"data":null}},"time_used":224,"timings":{"blocked":-1,"dns":89,"connect":22,"send":0,"wait":31,"receive":0,"ssl":81},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"glopakind.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-18","alert":"Sinkholed","trigger":"glopakind.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.glopakind.com/DocuSign/?main=DocuSign","fqdn":"www.glopakind.com","domain":"glopakind.com","tld":"com"},"ip":{"addr":"194.163.178.216","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-18T12:39:26.376Z","timestamp":1781786366376,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"glopakind.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 05:57:41 GMT","end":"Tue, 28 Jul 2026 05:57:40 GMT"},"fingerprint":{"sha1":"3E:46:9D:90:92:85:F5:F7:C6:0F:81:10:DB:C5:4E:67:BD:73:9F:19","sha256":"00:87:25:13:78:41:B4:32:84:07:39:DA:5E:CA:DF:16:4F:85:5E:48:49:4E:0D:12:9F:E4:E6:41:F0:60:1B:8A"}}},"request":{"raw":"GET /DocuSign/?main=DocuSign HTTP/1.1\r\nHost: www.glopakind.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 12:39:26 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 0\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nSet-Cookie: PHPSESSID=41b971ee0b3c731fcd1d9833268f4416; path=/\r\nLocation: Windows/\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-24T11:14:31.127166Z","times_seen":16678930,"resource_available":true,"data":null}},"time_used":99,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":99,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.glopakind.com/DocuSign/Windows/","fqdn":"www.glopakind.com","domain":"glopakind.com","tld":"com"},"ip":{"addr":"194.163.178.216","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-18T12:39:26.481Z","timestamp":1781786366481,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"glopakind.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 05:57:41 GMT","end":"Tue, 28 Jul 2026 05:57:40 GMT"},"fingerprint":{"sha1":"3E:46:9D:90:92:85:F5:F7:C6:0F:81:10:DB:C5:4E:67:BD:73:9F:19","sha256":"00:87:25:13:78:41:B4:32:84:07:39:DA:5E:CA:DF:16:4F:85:5E:48:49:4E:0D:12:9F:E4:E6:41:F0:60:1B:8A"}}},"request":{"raw":"GET /DocuSign/Windows/ HTTP/1.1\r\nHost: www.glopakind.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=41b971ee0b3c731fcd1d9833268f4416\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 12:39:26 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 0\r\nConnection: keep-alive\r\nLocation: visit.php\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-24T11:14:31.127166Z","times_seen":16678930,"resource_available":true,"data":null}},"time_used":169,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":169,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.glopakind.com/cdn-cgi/rum?","fqdn":"www.glopakind.com","domain":"glopakind.com","tld":"com"},"ip":{"addr":"194.163.178.216","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.glopakind.com/DocuSign/Windows/Justamoment....php","date":"2026-06-18T12:39:28.285Z","timestamp":1781786368285,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"glopakind.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 05:57:41 GMT","end":"Tue, 28 Jul 2026 05:57:40 GMT"},"fingerprint":{"sha1":"3E:46:9D:90:92:85:F5:F7:C6:0F:81:10:DB:C5:4E:67:BD:73:9F:19","sha256":"00:87:25:13:78:41:B4:32:84:07:39:DA:5E:CA:DF:16:4F:85:5E:48:49:4E:0D:12:9F:E4:E6:41:F0:60:1B:8A"}}},"request":{"raw":"POST /cdn-cgi/rum? HTTP/1.1\r\nHost: www.glopakind.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\ncontent-type: application/json\r\nContent-Length: 697\r\nOrigin: https://www.glopakind.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.glopakind.com/DocuSign/Windows/Justamoment....php\r\nCookie: PHPSESSID=41b971ee0b3c731fcd1d9833268f4416\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 12:39:28 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":191,"size_decoded":354,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with CRLF line terminators","md5":"927fe95368a31d8b58b729851137f652","sha1":"2189429aa1906dd05eb070dd39ad073ff2d801f2","sha256":"320377ba11c02cc072d70744a112d8362d4714861ea78b45bde9aeea898e2980","sha512":"42675a37a0bf7dda73dcfdbd037df79b8b55597011d8a21f82b761e33a9118d1fce42a75a13becb43ea53de7be1a4ff72f1012ab9b6348f0f57610197b3d78a2","ssdeep":"","tlshash":"07c0120ba184422b51704156625aac497785416d613659531dacf0953a147ecc539dd7","first_seen":"2026-06-18T12:39:55.62468Z","last_seen":"2026-06-18T12:39:55.62468Z","times_seen":1,"resource_available":false,"data":null}},"time_used":411,"timings":{"blocked":0,"dns":0,"connect":56,"send":0,"wait":396,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.glopakind.com/DocuSign","fqdn":"www.glopakind.com","domain":"glopakind.com","tld":"com"},"ip":{"addr":"194.163.178.216","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-18T12:39:26.084Z","timestamp":1781786366084,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"glopakind.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 05:57:41 GMT","end":"Tue, 28 Jul 2026 05:57:40 GMT"},"fingerprint":{"sha1":"3E:46:9D:90:92:85:F5:F7:C6:0F:81:10:DB:C5:4E:67:BD:73:9F:19","sha256":"00:87:25:13:78:41:B4:32:84:07:39:DA:5E:CA:DF:16:4F:85:5E:48:49:4E:0D:12:9F:E4:E6:41:F0:60:1B:8A"}}},"request":{"raw":"GET /DocuSign HTTP/1.1\r\nHost: www.glopakind.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 12:39:26 GMT\r\nContent-Type: text/html; charset=iso-8859-1\r\nContent-Length: 297\r\nConnection: keep-alive\r\nLocation: https://www.glopakind.com/DocuSign/?main=DocuSign\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-24T11:14:31.127166Z","times_seen":16678930,"resource_available":true,"data":null}},"time_used":283,"timings":{"blocked":0,"dns":81,"connect":28,"send":0,"wait":80,"receive":0,"ssl":94},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.glopakind.com/DocuSign/Windows/visit.php","fqdn":"www.glopakind.com","domain":"glopakind.com","tld":"com"},"ip":{"addr":"194.163.178.216","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-18T12:39:26.656Z","timestamp":1781786366656,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"glopakind.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 05:57:41 GMT","end":"Tue, 28 Jul 2026 05:57:40 GMT"},"fingerprint":{"sha1":"3E:46:9D:90:92:85:F5:F7:C6:0F:81:10:DB:C5:4E:67:BD:73:9F:19","sha256":"00:87:25:13:78:41:B4:32:84:07:39:DA:5E:CA:DF:16:4F:85:5E:48:49:4E:0D:12:9F:E4:E6:41:F0:60:1B:8A"}}},"request":{"raw":"GET /DocuSign/Windows/visit.php HTTP/1.1\r\nHost: www.glopakind.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=41b971ee0b3c731fcd1d9833268f4416\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 12:39:27 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 0\r\nConnection: keep-alive\r\nLocation: Justamoment....php\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-24T11:14:31.127166Z","times_seen":16678930,"resource_available":true,"data":null}},"time_used":1003,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1003,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.glopakind.com/DocuSign/Windows/Justamoment....php","fqdn":"www.glopakind.com","domain":"glopakind.com","tld":"com"},"ip":{"addr":"194.163.178.216","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-18T12:39:27.666Z","timestamp":1781786367666,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"glopakind.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 05:57:41 GMT","end":"Tue, 28 Jul 2026 05:57:40 GMT"},"fingerprint":{"sha1":"3E:46:9D:90:92:85:F5:F7:C6:0F:81:10:DB:C5:4E:67:BD:73:9F:19","sha256":"00:87:25:13:78:41:B4:32:84:07:39:DA:5E:CA:DF:16:4F:85:5E:48:49:4E:0D:12:9F:E4:E6:41:F0:60:1B:8A"}}},"request":{"raw":"GET /DocuSign/Windows/Justamoment....php HTTP/1.1\r\nHost: www.glopakind.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=41b971ee0b3c731fcd1d9833268f4416\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 12:39:27 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11846,"size_decoded":12009,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (619)","md5":"25c5c92f84dcaf5c483f954965e35e20","sha1":"95f704bf9de06b11b2346372d81d65f687408a7a","sha256":"2aab56dc1ac0fd84074bda8b9a7fee694cd76e3dd91d13e036951db363e10e0b","sha512":"c8ed6430966f261532c19cc632805842c43adb3070a446b771d6a0e131934c719ea9818cd23e1b9ce8bfb3174e74a73a8eb5f358952c330b38d230a7a9525c1a","ssdeep":"192:BvpcDEkFXZy8hNAQg9JbKA61itiUbVbY5y4gUa1PmPmPf7CeV:/c5ZGfYitik17/hea","tlshash":"4c3284a2eaa214457017c0a177623baf7e75d203d6024a34b7ad73744fc7aee586329c","first_seen":"2026-04-08T14:15:54.152455Z","last_seen":"2026-06-21T02:11:06.564858Z","times_seen":30,"resource_available":true,"data":null}},"time_used":77,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":77,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.glopakind.com/DocuSign/Windows/Just%20a%20moment..._files/v8c78df7c7c0f484497ecbca7046644da1771523124516","fqdn":"www.glopakind.com","domain":"glopakind.com","tld":"com"},"ip":{"addr":"194.163.178.216","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.glopakind.com/DocuSign/Windows/Justamoment....php","date":"2026-06-18T12:39:28.116Z","timestamp":1781786368116,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"glopakind.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 05:57:41 GMT","end":"Tue, 28 Jul 2026 05:57:40 GMT"},"fingerprint":{"sha1":"3E:46:9D:90:92:85:F5:F7:C6:0F:81:10:DB:C5:4E:67:BD:73:9F:19","sha256":"00:87:25:13:78:41:B4:32:84:07:39:DA:5E:CA:DF:16:4F:85:5E:48:49:4E:0D:12:9F:E4:E6:41:F0:60:1B:8A"}}},"request":{"raw":"GET /DocuSign/Windows/Just%20a%20moment..._files/v8c78df7c7c0f484497ecbca7046644da1771523124516 HTTP/1.1\r\nHost: www.glopakind.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.glopakind.com/DocuSign/Windows/Justamoment....php\r\nCookie: PHPSESSID=41b971ee0b3c731fcd1d9833268f4416\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 12:39:28 GMT\r\nContent-Length: 31169\r\nConnection: keep-alive\r\nLast-Modified: Mon, 16 Mar 2026 00:09:04 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":31169,"size_decoded":31355,"mime_type":"text/plain","magic":"JavaScript source, ASCII text, with very long lines (31169), with no line terminators","md5":"4f67ea9205c3ca7c9e04582d3b9bdd1d","sha1":"d3b68ad3eb88d3db3d843211d4905143c3bff281","sha256":"4b77eae349a8cbcea7133cf3640a64ebf1f69d54d8f6469d7be6fdc188ca4ca4","sha512":"f034bbae022b026821045c28393ba371fe83f6b5ef1fcc66f0943525ad3587d417f04cd795d8accee7d86b82057ca74b50a4d3ae74855cb0e4504393ad943c42","ssdeep":"384:BXi1f+hZCIy1f84QDRuT9WKw00QmLnivMt+BERzR0c744BKJKe0620vFjOkcXo9g:+V584QlIrw6OPIJJtFjj09N","tlshash":"bce218eeb591b13603f7a072447f210b733ab56264494408e21bd6c22c78eeed257fad","first_seen":"2026-02-19T19:35:51.221473Z","last_seen":"2026-06-24T05:30:06.102244Z","times_seen":78174,"resource_available":true,"data":null}},"time_used":126,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":126,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.glopakind.com/favicon.ico","fqdn":"www.glopakind.com","domain":"glopakind.com","tld":"com"},"ip":{"addr":"194.163.178.216","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.glopakind.com/DocuSign/Windows/Justamoment....php","date":"2026-06-18T12:39:28.258Z","timestamp":1781786368258,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"glopakind.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 05:57:41 GMT","end":"Tue, 28 Jul 2026 05:57:40 GMT"},"fingerprint":{"sha1":"3E:46:9D:90:92:85:F5:F7:C6:0F:81:10:DB:C5:4E:67:BD:73:9F:19","sha256":"00:87:25:13:78:41:B4:32:84:07:39:DA:5E:CA:DF:16:4F:85:5E:48:49:4E:0D:12:9F:E4:E6:41:F0:60:1B:8A"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.glopakind.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.glopakind.com/DocuSign/Windows/Justamoment....php\r\nCookie: PHPSESSID=41b971ee0b3c731fcd1d9833268f4416\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Thu, 18 Jun 2026 12:39:28 GMT\r\nContent-Type: text/html; charset=iso-8859-1\r\nContent-Length: 355\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":355,"size_decoded":523,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-24T10:20:05.249486Z","times_seen":41695,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}