{"report_id":"38a6d15a-4739-4f4b-b598-2931f6b47a6f","version":0,"status":"done","tags":[],"date":"2026-06-20T12:24:17Z","url":{"schema":"http","addr":"gestion-ingresar.infy.click","fqdn":"gestion-ingresar.infy.click","domain":"infy.click","tld":"click"},"ip":{"addr":"185.27.134.172","port":0,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"final":{"url":{"schema":"https","addr":"gestion-security.ucoz.club/login.html","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"title":"Iniciar","dom":{"size":4310,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"93d342c7ca3f8977253d2f1ecd93f9d2","sha1":"e8c94f69f77d874929aaa33e00e5c1481c385759","sha256":"74f4a9421d218b9425253da2c50b8d1b547c206cb23b2daaee238391e82f46ac","sha512":"9980a7de5345dab1175fad2dfd1065df5447285d1ad37a030a28760e613d132a3b7d68442c9a7fc232ecf6ad8e2450acc48ed62474cb16166144f65c41a28c26","ssdeep":"48:w+wZWebGMSrmznvQDnm53Fi3aaJXOYJfGqFUzGnWHB5IHlgBRgOeWSzD+I4xjDjL:hwZWsGNJA1iKaJXOYJfPaIHlKRpHRX","tlshash":"179130c500f70dab5213587826d3b5052ae85423861add14b6bd4fa81fcaf4f98a377f","dom_hash":"domhashfd7d196b20e44b32464e035771a96387","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"gestion-ingresar.infy.click","fqdn":"gestion-ingresar.infy.click","domain":"infy.click","tld":"click"},"ip":{"addr":"185.27.134.172","port":0,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-25T12:24:17Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":5}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-security.ucoz.club","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"gestion-ingresar.infy.click","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"gestion-security.ucoz.club","ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"domain_registered":"2014-06-27","domain_rank":0,"first_seen":"2026-06-20T12:23:29.833116Z","last_seen":"2026-06-20T12:23:29.833116Z","alert_count":11,"request_count":11,"received_data":209839,"sent_data":5698,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-06-14T22:19:01.724334Z","alert_count":0,"request_count":2,"received_data":17296,"sent_data":1134,"comment":"","tags":null,"fingerprints":null},{"fqdn":"gestion-ingresar.infy.click","ip":{"addr":"185.27.134.172","port":80,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2026-05-27","domain_rank":0,"first_seen":"2026-06-20T12:23:29.810184Z","last_seen":"2026-06-20T12:23:29.810184Z","alert_count":16,"request_count":4,"received_data":7368,"sent_data":1914,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-06-14T22:45:09.968061Z","alert_count":0,"request_count":2,"received_data":237924,"sent_data":1125,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-06-14T22:22:05.140579Z","alert_count":0,"request_count":1,"received_data":3074,"sent_data":536,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"errors.infinityfree.net","ip":{"addr":"172.67.71.120","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2015-04-18","domain_rank":3024566,"first_seen":"2022-05-27T01:14:37Z","last_seen":"2026-06-16T08:17:21.065624Z","alert_count":0,"request_count":1,"received_data":944,"sent_data":556,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"gestion-security.ucoz.club/login.html","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"49a7e4d58dee76895ce591a1c5619348","sha1":"14307791f10b536b80e6e24f881b3ea68fd736cd","sha256":"48108fbdc08729cbd740e31299e4e4830fda7781c6a858a7f9bf9c3a94b9b616","sha512":"459fb1b26ee7db3b6b6164875e1a90df7b1a972b6b793ab5409b4583430407b7b1911953b3295c3f51bd84ba2d4dd3b3e2a05a896460dee6c4a01d9ab3d8f8db","ssdeep":"","tlshash":"eb31d2cb02a71fad4767387917476001a56020235414ec903a5c8fa92fdee4ea4637bb","size":1665,"data":"","first_seen":"2026-06-07T04:26:03.389388Z","last_seen":"2026-06-20T13:49:46.957665Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gestion-ingresar.infy.click/aes.js","fqdn":"gestion-ingresar.infy.click","domain":"infy.click","tld":"click"},"ip":{"addr":"185.27.134.172","port":80,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"fc66e046447092c606f2587837f96874","sha1":"fcf354a8044f494ee1f9fe868dde3f570f50e593","sha256":"5069425b121346b36f730910d05402d50920fc2178b01e0c878b71af4ef1eb96","sha512":"51cd149b2876e90621afc579fb172e253548a851d4c202181e1faba812f5beb1ae9ccf9f153137f60c569e05a79dcb272176e0126eceac54316208d2699a689f","ssdeep":"192:4hsoEj776Bn/tnHcgaollys/6+EgH3JLg7oLu0MyMVu:i50/3xoGs/jE839g2FB1","tlshash":"355200c203894a7cf2c92ed68c2f605620f3e54a3d251249efb399dbbc77d895075a36","size":13733,"data":"","first_seen":"2023-10-15T19:29:47Z","last_seen":"2026-06-21T23:18:11.107942Z","times_seen":7695,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gestion-security.ucoz.club/excedata.js","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"fb0e7364f92f9acf97ff369541c0a976","sha1":"9cadedce7746948747b96e8dde83825ab7ddc615","sha256":"ac24fe821779f30dd793c11aaaff91d5b7b38ec0e64407242ce974c832ecf784","sha512":"0721151f2c759209be4f6225298165fbb8c8f0d83ebbc80da0833caa42f941ae160905f7d6614498fafe9a8b2798613af1c4252d7f8ecb241ad71ed56a0313a5","ssdeep":"96:kkcnhbYb8EAvVQMbN3I0jBnuQ/I0UObj+gHZxkFXObjbhgHZxrObjbQFgHZxPOb3:PqhbYb9Avp53I2FuQ/IeKsZucXhsZoXY","tlshash":"92c1126f52d72f3442b19baeb21b9001f951921b6b055a3f77bc822c2f39702d651ece","size":5925,"data":"","first_seen":"2026-06-20T12:23:35.604149Z","last_seen":"2026-06-20T12:24:18.485072Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gestion-security.ucoz.club/docs/main.js","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"3a9a4ee9eb2ecc9902507f3a2132450f","sha1":"1fe955fb012db00464bfa467490f5ffe5c2bd0d9","sha256":"06af2576bbbce037508943d382d792f3328564724b8b4c9212ab03024be7f233","sha512":"ce6c63fb1e42fa710464b265cd8875dfa9a8f263eaaa927d9e541a76d5bf11ca38b57b8a8462e1ff5392ea3011147b5bad2445e05a80de42ee4aa499ce15ddbb","ssdeep":"","tlshash":"b5012d9b2548441527f708b26bc72480f63964bb590ac5283d7f9b0c4fb0b41a636f9b","size":800,"data":"","first_seen":"2025-10-11T17:21:19.383145Z","last_seen":"2026-06-20T13:49:46.947954Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"errors.infinityfree.net/errors/404/","fqdn":"errors.infinityfree.net","domain":"infinityfree.net","tld":"net"},"ip":{"addr":"172.67.71.120","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gestion-ingresar.infy.click/?i=1","date":"2026-06-20T12:23:57.163Z","timestamp":1781958237163,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"infinityfree.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 24 Apr 2026 02:11:46 GMT","end":"Thu, 23 Jul 2026 03:11:42 GMT"},"fingerprint":{"sha1":"1E:94:79:83:4B:EB:7A:A7:92:90:C4:D6:AF:67:DC:3E:FF:71:C6:1A","sha256":"CB:88:F6:3C:40:68:A7:3A:9E:DA:DC:11:4B:F8:FF:6A:FF:3E:A3:6A:4D:3C:4C:D2:E7:B0:BA:2D:C5:87:B5:F6"}}},"request":{"raw":"GET /errors/404/ HTTP/1.1\r\nHost: errors.infinityfree.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: http://gestion-ingresar.infy.click/\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\ndate: Sat, 20 Jun 2026 12:23:57 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncontent-security-policy: frame-ancestors *\r\nserver: cloudflare\r\nx-content-type-options: nosniff\r\nx-frame-options: ALLOWALL\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Be3A1%2BFXYrpfp%2FLt%2Fy89Rp66ycBphl5xXmkEUnncEHjZMXW5xei1%2Bjg7%2FJmfltJerFtVynADY97Zmbvw5Q7qQEouAvqEk2%2BHCrknxrMZRSR0gifn7Go%2B109GXnvkoILJFVCnkjVk2bpTSg%3D%3D\"}]}\r\ncontent-encoding: zstd\r\ncf-ray: a0eabf670c2e4e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":220,"size_decoded":877,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text","md5":"520793172f3329f93adab1ce66744137","sha1":"8c3af47282fc84c8df1f32359ae5e9e23abd5a55","sha256":"ea8556cd95ccc997a532d320d5fb5bd80f4f3f4a032387308413b48658fcf04b","sha512":"60ee406651909c18412a6902d5eb6ab39d3e9cf0cb480430237db600a11aba2a895d332138d58f933602ae9c0fe86e59029e9d714e6d7487fbe36552409280be","ssdeep":"","tlshash":"25d023ff0583025f07404a6010c1b61c4d334534fbd354778004501de21857dfb04d0c","first_seen":"2025-11-27T16:35:27.212972Z","last_seen":"2026-06-21T17:34:58.969641Z","times_seen":168,"resource_available":false,"data":null}},"time_used":194,"timings":{"blocked":-1,"dns":107,"connect":1,"send":0,"wait":70,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gestion-security.ucoz.club/login.html","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-20T12:23:58.112Z","timestamp":1781958238112,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.ucoz.club","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Thu, 26 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:E6:5D:BA:DD:3B:77:90:94:0A:3B:A6:99:E9:34:7C:42:80:D2:D8","sha256":"8C:B1:F6:61:3D:DC:19:C3:E0:41:A4:38:27:68:A0:70:27:6C:21:6C:80:26:ED:EC:93:72:F8:FA:D8:9A:17:89"}}},"request":{"raw":"GET /login.html HTTP/1.1\r\nHost: gestion-security.ucoz.club\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://gestion-ingresar.infy.click/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 20 Jun 2026 12:23:58 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=15\r\nVary: Accept-Encoding\r\nExpires: Fri, 10 Jul 2026 12:23:58 GMT\r\nCache-Control: max-age=1728000\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4613,"size_decoded":1981,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"912d08a6bf316fe75f8f705bd3440823","sha1":"bdcc49261fc7ebe85078e17728ea26607cf8eb16","sha256":"f33a7f39793bfe4093e3bdc32fbddcb43a1dfbb29d043c82fd5195e725842ed9","sha512":"3b1b1db2720bebb867bdfc7c1e5caf86132e335389c52f9e27dce596811fa29f9bee9e244bce0563495568f2442f98892d6c7a786cf701ba72dff4d827011a38","ssdeep":"48:u8wX5ESrmznvQDnm53Fi3aaJXOYEmGqFQl9GnEKKB5IHlgBRgOeWSzD+I4xjDjeg:1wX51JA1iKaJXOYEmL4IHlKRpHRb","tlshash":"409143c504fb0dab5203587817d3b5053ad45423861add14bafd4fa41fcaf4e98a37ab","first_seen":"2026-06-20T12:23:35.605907Z","last_seen":"2026-06-20T13:49:46.949466Z","times_seen":3,"resource_available":true,"data":null}},"time_used":79,"timings":{"blocked":-1,"dns":4,"connect":22,"send":0,"wait":22,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-security.ucoz.club","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v24/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.536Z","timestamp":1781958238536,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/poppins/v24/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://gestion-security.ucoz.club\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7748\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 03:05:23 GMT\r\nexpires: Fri, 18 Jun 2027 03:05:23 GMT\r\ncache-control: public, max-age=31536000\r\nage: 206315\r\nlast-modified: Mon, 15 Sep 2025 16:36:26 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":7748,"size_decoded":8580,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7748, version 1.0","md5":"a09f2fccfee35b7247b08a1a266f0328","sha1":"0da2d17e738f46d2a09e6fb7969da451719a9820","sha256":"cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446","sha512":"5e3f9a298003b84250ec6801e08ad2a4ff8845d4c3e13ea61bec37da24d26ede13b436257882124cc0c27e9a323ba92e7d23c6ad3f48a7b75535f5ed98813a0e","ssdeep":"96:0g6vAF/FXh6MmoI56TEwosGU/DbVF/QBT1gaHEYT6u/w3hXLbJPAS772+6haAftj:zp6x6TYpoDYBJg8TRkbJPAS/2+CzQa7","tlshash":"f3f19de65d1e5e8980f0102f6f6efce767950d88141dadf9a9e72f884c6ba1b04c90cd","first_seen":"2023-04-05T13:48:05Z","last_seen":"2026-06-22T02:36:10.254947Z","times_seen":249896,"resource_available":false,"data":null}},"time_used":68,"timings":{"blocked":-1,"dns":1,"connect":16,"send":0,"wait":17,"receive":1,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gestion-security.ucoz.club/docs/remixicon.woff2?t=1590207869815","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.886Z","timestamp":1781958238886,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.ucoz.club","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Thu, 26 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:E6:5D:BA:DD:3B:77:90:94:0A:3B:A6:99:E9:34:7C:42:80:D2:D8","sha256":"8C:B1:F6:61:3D:DC:19:C3:E0:41:A4:38:27:68:A0:70:27:6C:21:6C:80:26:ED:EC:93:72:F8:FA:D8:9A:17:89"}}},"request":{"raw":"GET /docs/remixicon.woff2?t=1590207869815 HTTP/1.1\r\nHost: gestion-security.ucoz.club\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://gestion-security.ucoz.club/docs/remixicon.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Sat, 20 Jun 2026 12:23:58 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=15\r\nVary: Accept-Encoding, Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3754,"size_decoded":3988,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (319)","md5":"97864b094389cbe2567c1f72dae43ae9","sha1":"9ac3e9f529a69624d5edd6293e6fca973adc937f","sha256":"eac3428d31f7e9ef6587f23deaa3bb6e0468c0d30872332b69c87f3f9d4db886","sha512":"3a9552da8de5b297617f5159545aac6a120c4a132802d9b6f11a6836f171d3214e07ea85bfff0b400940cb0187d363eee8d25932a4eda964d043488739d2e693","ssdeep":"","tlshash":"8471b4365cf44027c252c1a0eb727b5fbe86da17c9069809b9ec4aa65fc1ec28cd7d1c","first_seen":"2025-12-06T08:12:12.662543Z","last_seen":"2026-06-21T17:37:01.06508Z","times_seen":67,"resource_available":true,"data":null}},"time_used":23,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-security.ucoz.club","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"gestion-ingresar.infy.click/favicon.ico","fqdn":"gestion-ingresar.infy.click","domain":"infy.click","tld":"click"},"ip":{"addr":"185.27.134.172","port":80,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gestion-ingresar.infy.click/?i=1","date":"2026-06-20T12:23:57.123Z","timestamp":1781958237123,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: gestion-ingresar.infy.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://gestion-ingresar.infy.click/?i=1\r\nCookie: __test=0449e5b529d3ed4914feeffcd73b1800\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: openresty\r\nDate: Sat, 20 Jun 2026 12:23:56 GMT\r\nContent-Type: text/html; charset=iso-8859-1\r\nContent-Length: 227\r\nConnection: keep-alive\r\nLocation: https://errors.infinityfree.net/errors/404/\r\nCache-Control: max-age=2592000\r\nExpires: Mon, 20 Jul 2026 12:23:56 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-22T02:29:52.920518Z","times_seen":16623839,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"gestion-ingresar.infy.click","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"gestion-security.ucoz.club/excedata.js","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.329Z","timestamp":1781958238329,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.ucoz.club","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Thu, 26 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:E6:5D:BA:DD:3B:77:90:94:0A:3B:A6:99:E9:34:7C:42:80:D2:D8","sha256":"8C:B1:F6:61:3D:DC:19:C3:E0:41:A4:38:27:68:A0:70:27:6C:21:6C:80:26:ED:EC:93:72:F8:FA:D8:9A:17:89"}}},"request":{"raw":"GET /excedata.js HTTP/1.1\r\nHost: gestion-security.ucoz.club\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://gestion-security.ucoz.club/login.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 20 Jun 2026 12:23:58 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=15\r\nLast-Modified: Fri, 19 Jun 2026 21:31:23 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"6a35b52b-1725\"\r\nExpires: Fri, 10 Jul 2026 12:23:58 GMT\r\nCache-Control: max-age=1728000\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5925,"size_decoded":1871,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"fb0e7364f92f9acf97ff369541c0a976","sha1":"9cadedce7746948747b96e8dde83825ab7ddc615","sha256":"ac24fe821779f30dd793c11aaaff91d5b7b38ec0e64407242ce974c832ecf784","sha512":"0721151f2c759209be4f6225298165fbb8c8f0d83ebbc80da0833caa42f941ae160905f7d6614498fafe9a8b2798613af1c4252d7f8ecb241ad71ed56a0313a5","ssdeep":"96:kkcnhbYb8EAvVQMbN3I0jBnuQ/I0UObj+gHZxkFXObjbhgHZxrObjbQFgHZxPOb3:PqhbYb9Avp53I2FuQ/IeKsZucXhsZoXY","tlshash":"92c1126f52d72f3442b19baeb21b9001f951921b6b055a3f77bc822c2f39702d651ece","first_seen":"2026-06-20T12:23:35.604149Z","last_seen":"2026-06-20T12:24:18.485072Z","times_seen":2,"resource_available":true,"data":null}},"time_used":71,"timings":{"blocked":-1,"dns":0,"connect":21,"send":0,"wait":22,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-security.ucoz.club","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"gestion-security.ucoz.club/docs/imgnew.svg","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.340Z","timestamp":1781958238340,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.ucoz.club","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Thu, 26 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:E6:5D:BA:DD:3B:77:90:94:0A:3B:A6:99:E9:34:7C:42:80:D2:D8","sha256":"8C:B1:F6:61:3D:DC:19:C3:E0:41:A4:38:27:68:A0:70:27:6C:21:6C:80:26:ED:EC:93:72:F8:FA:D8:9A:17:89"}}},"request":{"raw":"GET /docs/imgnew.svg HTTP/1.1\r\nHost: gestion-security.ucoz.club\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://gestion-security.ucoz.club/login.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 20 Jun 2026 12:23:58 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 44327\r\nConnection: keep-alive\r\nKeep-Alive: timeout=15\r\nLast-Modified: Fri, 19 Jun 2026 21:31:54 GMT\r\nETag: \"6a35b54a-ad27\"\r\nExpires: Fri, 10 Jul 2026 12:23:58 GMT\r\nCache-Control: max-age=1728000\r\nX-Frame-Options: SAMEORIGIN\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":44327,"size_decoded":44690,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"57fee22710b04cebe1d5fccfc40a2850","sha1":"63f32442fd8c75956896b9677efb45c342fbc87d","sha256":"e122dfeee73db9cb846feea1467b85edb1ae624556c643a9c9cc41056508901b","sha512":"088b89fd6315dacfb236ad1b4cd1a935f7539b261f2fed41d4de11116b9aed65f492bd4bd1a9255cfdac2304be4fcc9afcf1c2bb00a49bf5b812fa69d70adb36","ssdeep":"768:iQZ4sjQjCWKkofku9aD5C0u2WiYynFC4dTZEyMxZDYUXCriSivNXnZNocmcJxpj:SsjQjCWKkofku9s5C0u2WfynFC4dTZEf","tlshash":"b413225ed72d39bbd44bc6ecea929008321d43d778d0838a95b9cf6f1469c875c4eba0","first_seen":"2025-03-08T13:20:19.243153Z","last_seen":"2026-06-20T13:49:46.955565Z","times_seen":3834,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":38,"dns":0,"connect":0,"send":0,"wait":23,"receive":34,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-security.ucoz.club","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"gestion-security.ucoz.club/docs/lbg.png","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.342Z","timestamp":1781958238342,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.ucoz.club","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Thu, 26 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:E6:5D:BA:DD:3B:77:90:94:0A:3B:A6:99:E9:34:7C:42:80:D2:D8","sha256":"8C:B1:F6:61:3D:DC:19:C3:E0:41:A4:38:27:68:A0:70:27:6C:21:6C:80:26:ED:EC:93:72:F8:FA:D8:9A:17:89"}}},"request":{"raw":"GET /docs/lbg.png HTTP/1.1\r\nHost: gestion-security.ucoz.club\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://gestion-security.ucoz.club/login.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 20 Jun 2026 12:23:58 GMT\r\nContent-Type: image/png\r\nContent-Length: 9856\r\nConnection: keep-alive\r\nKeep-Alive: timeout=15\r\nLast-Modified: Fri, 19 Jun 2026 21:31:54 GMT\r\nETag: \"6a35b54a-2680\"\r\nExpires: Fri, 10 Jul 2026 12:23:58 GMT\r\nCache-Control: max-age=1728000\r\nX-Frame-Options: SAMEORIGIN\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9856,"size_decoded":10214,"mime_type":"image/png","magic":"PNG image data, 437 x 129, 8-bit/color RGBA, non-interlaced","md5":"fd802651d6eb7090fb613df72fcbb167","sha1":"18d2ddf08419c37540c2f99484f86565bb5581a9","sha256":"d2111810affeb3f95ca4491ad123c3a43fa78851fcb1e95185deee0218955eb4","sha512":"54dfa68565446e06e8cfc1730190fba945f4f54a1ac3b2fd2b64f1a8f674033264c98f936db4791c07b044ed070712bb7acafa04d4f0b538c483f74b550f69f2","ssdeep":"192:7El+cMbzkoCjRxcX0Mf0SQIYHtU2+unCqrXzvEZPhYCu0J1uYLi7SiV0wRSe:7u+dzDCjRxmJ0HIYHtlC2zv6Y0vfLiFr","tlshash":"d512afdb8f49a4b6b9ebd80d4e526f8921965c4b1d84bb3f8703ad41b41cfc92031ec6","first_seen":"2025-06-13T05:01:06.743594Z","last_seen":"2026-06-21T01:24:28.39176Z","times_seen":52,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":37,"dns":0,"connect":0,"send":0,"wait":23,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-security.ucoz.club","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2?t=1590207869815","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.538Z","timestamp":1781958238538,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 22 Apr 2026 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"65:D9:C4:7E:04:4C:FD:DD:60:E0:CC:18:B5:B7:01:68:B4:2D:C7:34","sha256":"50:6C:A4:F6:ED:74:C7:E9:68:DB:32:56:5A:68:4C:98:ED:01:28:36:F8:13:BA:CC:19:A7:FD:7A:0A:6E:E7:D4"}}},"request":{"raw":"GET /npm/remixicon@2.5.0/fonts/remixicon.woff2?t=1590207869815 HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://gestion-security.ucoz.club\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Sat, 20 Jun 2026 12:23:58 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 125268\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 2.5.0\r\nx-jsd-version-type: version\r\netag: W/\"1e954-TTdav0PtGKpUJkwbWXFLClnFk6Q\"\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-eddf8230045-FRA\r\nx-cache: HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\npriority: u=3,i=?0\r\nage: 3371431\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Z%2BAM%2BmuYbnOiGBWd72bj5qJObrG58CjvmkeEFAqaWj59kyqVdXTr0zlTG4CJa6i2afekfXvilonRSNWO5huZxYA0CdYlaZZoNmACO5TuJG9GKmXHhCzlY3avJC30N8QgrNI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: a0eabf6eee4a0b61-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":125268,"size_decoded":126359,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 125268, version 1.0","md5":"9915fef980fa539085da55b84dfde760","sha1":"4d375abf43ed18aa54264c1b59714b0a59c593a4","sha256":"e61f0d10c8cac8cd0ecb36790d6cce883380c0b185ff3c9bf849ed336ba8285c","sha512":"1e4c9a5e0f5150fe33870544c7d70a73724096e60ee10e0ade4def46f31647664afe361292c7ffb39a2edda98cab06bab206f64feb7f610ab137d17fc789a3b1","ssdeep":"3072:5vCveG1NooSPyIFS5WDTVKAQI+UHmfGsrKwfGXoiEw:tq5eTFa47QIVHmusrKWGoix","tlshash":"bcc312b6e11a945cfc80e9a278dc932d4d60145e4f80b7c7ce1912ac433ecdb4bec5a9","first_seen":"2023-04-12T01:04:15Z","last_seen":"2026-06-22T00:52:30.563908Z","times_seen":3263,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":9,"send":0,"wait":8,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gestion-security.ucoz.club/favicon.ico","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.651Z","timestamp":1781958238651,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.ucoz.club","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Thu, 26 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:E6:5D:BA:DD:3B:77:90:94:0A:3B:A6:99:E9:34:7C:42:80:D2:D8","sha256":"8C:B1:F6:61:3D:DC:19:C3:E0:41:A4:38:27:68:A0:70:27:6C:21:6C:80:26:ED:EC:93:72:F8:FA:D8:9A:17:89"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: gestion-security.ucoz.club\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://gestion-security.ucoz.club/login.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 20 Jun 2026 12:23:58 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 15086\r\nConnection: keep-alive\r\nKeep-Alive: timeout=15\r\nLast-Modified: Wed, 15 Jan 2025 14:39:24 GMT\r\nETag: \"6787c89c-3aee\"\r\nX-Frame-Options: SAMEORIGIN\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15086,"size_decoded":15376,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"12e586b55ae88e7db200e9e77f39cf91","sha1":"e229d2c29ff74dc720d8f73da2fb7d6a5cf0f2f7","sha256":"441ab4f4da564d1e43c1b117270dc5320dc993e6fb849479bfc82c8bcc60469b","sha512":"8a5ec2fdefc504b5ff5faf478762e54b9627921b2a12b41d8284369b6b446d54c8f2357aa124d6b6563c2e1f58ceec94f5b3f393b59cb3d56dda81147fbefb59","ssdeep":"96:jNx8pJnA/LdIGqT3dN4piPC7qiw6tKvggSiZIv7+KPIuGyXjYM+IgtLzdT/:jNx8zA/BVpbwaMggR67+2u/pzd7","tlshash":"2b6287c8edb5211bc400413290618ed98621dcd6b5e89371eab8ff8b4ff23856c6e267","first_seen":"2024-04-23T22:40:38Z","last_seen":"2026-06-21T14:02:01.670644Z","times_seen":559,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":23,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-security.ucoz.club","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"gestion-security.ucoz.club/docs/remixicon.woff?t=1590207869815","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.918Z","timestamp":1781958238918,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.ucoz.club","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Thu, 26 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:E6:5D:BA:DD:3B:77:90:94:0A:3B:A6:99:E9:34:7C:42:80:D2:D8","sha256":"8C:B1:F6:61:3D:DC:19:C3:E0:41:A4:38:27:68:A0:70:27:6C:21:6C:80:26:ED:EC:93:72:F8:FA:D8:9A:17:89"}}},"request":{"raw":"GET /docs/remixicon.woff?t=1590207869815 HTTP/1.1\r\nHost: gestion-security.ucoz.club\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://gestion-security.ucoz.club/docs/remixicon.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Sat, 20 Jun 2026 12:23:58 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=15\r\nVary: Accept-Encoding, Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3754,"size_decoded":3988,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (319)","md5":"97864b094389cbe2567c1f72dae43ae9","sha1":"9ac3e9f529a69624d5edd6293e6fca973adc937f","sha256":"eac3428d31f7e9ef6587f23deaa3bb6e0468c0d30872332b69c87f3f9d4db886","sha512":"3a9552da8de5b297617f5159545aac6a120c4a132802d9b6f11a6836f171d3214e07ea85bfff0b400940cb0187d363eee8d25932a4eda964d043488739d2e693","ssdeep":"","tlshash":"8471b4365cf44027c252c1a0eb727b5fbe86da17c9069809b9ec4aa65fc1ec28cd7d1c","first_seen":"2025-12-06T08:12:12.662543Z","last_seen":"2026-06-21T17:37:01.06508Z","times_seen":67,"resource_available":true,"data":null}},"time_used":25,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-security.ucoz.club","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"gestion-security.ucoz.club/docs/remixicon.ttf?t=1590207869815","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.954Z","timestamp":1781958238954,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.ucoz.club","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Thu, 26 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:E6:5D:BA:DD:3B:77:90:94:0A:3B:A6:99:E9:34:7C:42:80:D2:D8","sha256":"8C:B1:F6:61:3D:DC:19:C3:E0:41:A4:38:27:68:A0:70:27:6C:21:6C:80:26:ED:EC:93:72:F8:FA:D8:9A:17:89"}}},"request":{"raw":"GET /docs/remixicon.ttf?t=1590207869815 HTTP/1.1\r\nHost: gestion-security.ucoz.club\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://gestion-security.ucoz.club/docs/remixicon.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Sat, 20 Jun 2026 12:23:58 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=15\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3754,"size_decoded":1748,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (319)","md5":"97864b094389cbe2567c1f72dae43ae9","sha1":"9ac3e9f529a69624d5edd6293e6fca973adc937f","sha256":"eac3428d31f7e9ef6587f23deaa3bb6e0468c0d30872332b69c87f3f9d4db886","sha512":"3a9552da8de5b297617f5159545aac6a120c4a132802d9b6f11a6836f171d3214e07ea85bfff0b400940cb0187d363eee8d25932a4eda964d043488739d2e693","ssdeep":"","tlshash":"8471b4365cf44027c252c1a0eb727b5fbe86da17c9069809b9ec4aa65fc1ec28cd7d1c","first_seen":"2025-12-06T08:12:12.662543Z","last_seen":"2026-06-21T17:37:01.06508Z","times_seen":67,"resource_available":true,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-security.ucoz.club","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"gestion-ingresar.infy.click/","fqdn":"gestion-ingresar.infy.click","domain":"infy.click","tld":"click"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-20T12:23:44.885Z","timestamp":1781958224885,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: gestion-ingresar.infy.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-22T02:29:52.920518Z","times_seen":16623839,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"gestion-ingresar.infy.click","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"gestion-ingresar.infy.click/","fqdn":"gestion-ingresar.infy.click","domain":"infy.click","tld":"click"},"ip":{"addr":"185.27.134.172","port":80,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-20T12:23:56.741Z","timestamp":1781958236741,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: gestion-ingresar.infy.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Sat, 20 Jun 2026 12:23:56 GMT\r\nContent-Type: text/html\r\nContent-Length: 853\r\nConnection: keep-alive\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":853,"size_decoded":1063,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (853), with no line terminators","md5":"53ce43e519570fdc84826ed4ffa25067","sha1":"407e9dbdc9ae96f88962257b9aad8aa6d6723f3e","sha256":"dc3679308df03ac222d9e3285b12d435503aa7f486a9fc68f42eb5113ec0f88b","sha512":"5abf9e8e1683255c0ff88c0b7b32e7d5a732940f9541b89d644168ba01962de406aa93d5726e569f186c530851fea106d641e5eee66fdbafd0198f1c1c01e59b","ssdeep":"","tlshash":"bb0141b8ece0e0c99bc100c11476d59e64119ae2f502c9afd0c242e452d1bcd0e89e7f","first_seen":"2026-06-20T12:24:18.49082Z","last_seen":"2026-06-20T12:24:18.49082Z","times_seen":1,"resource_available":true,"data":null}},"time_used":64,"timings":{"blocked":-1,"dns":3,"connect":31,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"gestion-ingresar.infy.click","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"gestion-security.ucoz.club/docs/remixicon.css","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.320Z","timestamp":1781958238320,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.ucoz.club","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Thu, 26 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:E6:5D:BA:DD:3B:77:90:94:0A:3B:A6:99:E9:34:7C:42:80:D2:D8","sha256":"8C:B1:F6:61:3D:DC:19:C3:E0:41:A4:38:27:68:A0:70:27:6C:21:6C:80:26:ED:EC:93:72:F8:FA:D8:9A:17:89"}}},"request":{"raw":"GET /docs/remixicon.css HTTP/1.1\r\nHost: gestion-security.ucoz.club\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://gestion-security.ucoz.club/login.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 20 Jun 2026 12:23:58 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=15\r\nLast-Modified: Fri, 19 Jun 2026 21:31:54 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"6a35b54a-1aea8\"\r\nExpires: Fri, 10 Jul 2026 12:23:58 GMT\r\nCache-Control: max-age=1728000\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":110248,"size_decoded":15966,"mime_type":"text/css","magic":"ASCII text","md5":"7a9d5f9ede226766f9c26f17506a2f2d","sha1":"0eb54c8ce038425b3b1d0444d6be2cc84ce64d0b","sha256":"650a1722249229ab97afad476cfea481a14a43799f9ad21a4717d0d8e28e3d56","sha512":"3a063db54356fe8d19b0b96150963b7dcadd3900e638bab576358241c0c0af78877f8827ebe52e10b57d97ef9809f6c66494f1136e17260757abe2f2911c502c","ssdeep":"1536:+cvr8vn4cYzgKvP1IqRCwNd1l3JclUaqM1:P8v4cYcKZ7clh","tlshash":"a3b3c8beea4f44801702e8d66367274163b9b77d8d817c7ad413688df7c766883862ec","first_seen":"2025-06-13T05:01:06.746455Z","last_seen":"2026-06-21T01:24:28.386906Z","times_seen":66,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-security.ucoz.club","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"gestion-security.ucoz.club/docs/styles.css","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.323Z","timestamp":1781958238323,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.ucoz.club","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Thu, 26 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:E6:5D:BA:DD:3B:77:90:94:0A:3B:A6:99:E9:34:7C:42:80:D2:D8","sha256":"8C:B1:F6:61:3D:DC:19:C3:E0:41:A4:38:27:68:A0:70:27:6C:21:6C:80:26:ED:EC:93:72:F8:FA:D8:9A:17:89"}}},"request":{"raw":"GET /docs/styles.css HTTP/1.1\r\nHost: gestion-security.ucoz.club\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://gestion-security.ucoz.club/login.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 20 Jun 2026 12:23:58 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=15\r\nLast-Modified: Fri, 19 Jun 2026 21:31:54 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"6a35b54a-fd2\"\r\nExpires: Fri, 10 Jul 2026 12:23:58 GMT\r\nCache-Control: max-age=1728000\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4050,"size_decoded":1742,"mime_type":"text/css","magic":"ASCII text","md5":"3aee14faf98d9b016290e9bb1052c4e6","sha1":"49179abeff772d3a099e5de8af2929cc5d8d9807","sha256":"9c8ee72cd102c16e66b9e4f0d76bca1afca72b63de0f9d36414c31387f650d0a","sha512":"fe9be1e127cdbda923c41aa4f1144eea6fc36f24a335b74206953906f84d2e54e8b6c3e789f30bbb1758d74551873c17dcc118a68780b864161f0ee150f2b7f3","ssdeep":"","tlshash":"dd81fd8515f80941599ade64318256a4b37e84358e4ecfad6ef314409ecc3b8b323b6e","first_seen":"2025-06-13T05:01:06.747733Z","last_seen":"2026-06-21T01:24:28.381594Z","times_seen":53,"resource_available":false,"data":null}},"time_used":60,"timings":{"blocked":-1,"dns":0,"connect":18,"send":0,"wait":19,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-security.ucoz.club","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"gestion-security.ucoz.club/docs/main.js","fqdn":"gestion-security.ucoz.club","domain":"ucoz.club","tld":"club"},"ip":{"addr":"88.211.243.183","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.336Z","timestamp":1781958238336,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.ucoz.club","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Thu, 26 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:E6:5D:BA:DD:3B:77:90:94:0A:3B:A6:99:E9:34:7C:42:80:D2:D8","sha256":"8C:B1:F6:61:3D:DC:19:C3:E0:41:A4:38:27:68:A0:70:27:6C:21:6C:80:26:ED:EC:93:72:F8:FA:D8:9A:17:89"}}},"request":{"raw":"GET /docs/main.js HTTP/1.1\r\nHost: gestion-security.ucoz.club\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://gestion-security.ucoz.club/login.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 20 Jun 2026 12:23:58 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=15\r\nLast-Modified: Fri, 19 Jun 2026 21:31:54 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"6a35b54a-320\"\r\nExpires: Fri, 10 Jul 2026 12:23:58 GMT\r\nCache-Control: max-age=1728000\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":800,"size_decoded":752,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with CRLF line terminators","md5":"3a9a4ee9eb2ecc9902507f3a2132450f","sha1":"1fe955fb012db00464bfa467490f5ffe5c2bd0d9","sha256":"06af2576bbbce037508943d382d792f3328564724b8b4c9212ab03024be7f233","sha512":"ce6c63fb1e42fa710464b265cd8875dfa9a8f263eaaa927d9e541a76d5bf11ca38b57b8a8462e1ff5392ea3011147b5bad2445e05a80de42ee4aa499ce15ddbb","ssdeep":"","tlshash":"b5012d9b2548441527f708b26bc72480f63964bb590ac5283d7f9b0c4fb0b41a636f9b","first_seen":"2025-10-11T17:21:19.383145Z","last_seen":"2026-06-20T13:49:46.947954Z","times_seen":13,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":21,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-security.ucoz.club","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v24/pxiEyp8kv8JHgFVrJJfecg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.534Z","timestamp":1781958238534,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/poppins/v24/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://gestion-security.ucoz.club\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7884\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 02:57:02 GMT\r\nexpires: Fri, 18 Jun 2027 02:57:02 GMT\r\ncache-control: public, max-age=31536000\r\nage: 206816\r\nlast-modified: Mon, 15 Sep 2025 16:34:42 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":7884,"size_decoded":8716,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7884, version 1.0","md5":"9212f6f9860f9fc6c69b02fedf6db8c3","sha1":"ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b","sha256":"7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f","sha512":"67317495f4b53e20a9f31c034e456e6c37f387dffb2c092caa5159bc441cfcadd02749ffe5bbed1d580d5300a59e48a767ef2c6d9978b474f84c1a2cd095c126","ssdeep":"192:xLFDbKO9E3rS3JWBRO/J601FSS5ZUbik3Zy2f0:pd9J5W501otlI","tlshash":"c3f1ae4eb3f2cd1be40982e53a0fc90b1c578272681fd772d067a22517893bc8db2c81","first_seen":"2023-04-05T15:35:34Z","last_seen":"2026-06-22T02:36:10.288917Z","times_seen":361531,"resource_available":false,"data":null}},"time_used":68,"timings":{"blocked":-1,"dns":3,"connect":14,"send":0,"wait":16,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.326Z","timestamp":1781958238326,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 22 Apr 2026 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"65:D9:C4:7E:04:4C:FD:DD:60:E0:CC:18:B5:B7:01:68:B4:2D:C7:34","sha256":"50:6C:A4:F6:ED:74:C7:E9:68:DB:32:56:5A:68:4C:98:ED:01:28:36:F8:13:BA:CC:19:A7:FD:7A:0A:6E:E7:D4"}}},"request":{"raw":"GET /npm/remixicon@2.5.0/fonts/remixicon.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://gestion-security.ucoz.club/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:23:58 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 13855\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 2.5.0\r\nx-jsd-version-type: version\r\netag: W/\"1af66-MA7aTWKCoG0FYjklj9PTw0TfSFM\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-eddf8230094-FRA, cache-ber1080048-BER\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\nage: 3235539\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=U36Jzo1AZFsWl%2FKxudL5fdu0yoOAa%2FTdiQfFPiwA3kabswMFjxfOurI8AJH1Tb2ZkBI8ACrmIxqlUWmjJaue6oYhyIIVD1zEU36k9v3INSulanfvssuXtgy67NkKWG61UBg%3D\"}]}\r\nserver: cloudflare\r\ncf-ray: a0eabf6daeb10731-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":110438,"size_decoded":14982,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"a8aec561d3b9b905472b815cb2b818c2","sha1":"300eda4d6282a06d056239258fd3d3c344df4853","sha256":"13e29a29baade86f4e7a88d8e076d6a6f3ac8950757b50a0f8bbea1c33658d5c","sha512":"096467665b61140bb4e669b83eee51fe290357fda33e8e9c82692976d04559463dfe6a8d16e4e68309e9056a8388878c767e70bf534440576df36fc093ebb392","ssdeep":"1536:jncvr8vn4cYzgKvP1IqRCwNd1l3JclUaqM1:j48v4cYcKZ7clh","tlshash":"45b3c8beea4f44801702e8d66367274163b9b77d8d817c7ad413688df7c766883862ec","first_seen":"2023-04-06T15:22:09Z","last_seen":"2026-06-22T00:18:08.10903Z","times_seen":3551,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":3,"connect":2,"send":0,"wait":5,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Poppins:wght@400;500\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://gestion-security.ucoz.club/login.html","date":"2026-06-20T12:23:58.395Z","timestamp":1781958238395,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:19 GMT","end":"Mon, 17 Aug 2026 08:38:18 GMT"},"fingerprint":{"sha1":"4D:E0:8E:62:2F:B2:3D:28:5D:7D:B5:8D:C5:3A:72:E4:EE:AB:7D:93","sha256":"AE:0B:4F:B5:B7:41:E5:0C:70:C0:E1:2A:F9:DB:AD:A8:64:94:F3:70:6D:38:1C:8A:8A:CA:52:96:5C:D8:5C:87"}}},"request":{"raw":"GET /css2?family=Poppins:wght@400;500\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://gestion-security.ucoz.club/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 20 Jun 2026 12:23:58 GMT\r\ndate: Sat, 20 Jun 2026 12:23:58 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2390,"size_decoded":1180,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"116f798889ee350bc20ebba4cf2c4d45","sha1":"d192cdefb46b28fc33e5a00d357beca773e377b9","sha256":"25b3caa3b90e16b0073b9c9cf9af8448b9cb2dc05beba404905cb15ad569212f","sha512":"27506e4f20dc48cb04eaf9b648754d18b937c06e77dfd80b3ab7fa0bfbe585c7eda652615776a5d2bd0cefda7c0d94507591144bbbfff93509c97feeeb31ff7d","ssdeep":"","tlshash":"1141add1087be1149b831cc123cf6d37ee0e9255b810e5786bfe0c98adabc654362b2d","first_seen":"2025-09-17T09:12:48.132355Z","last_seen":"2026-06-22T02:18:14.852247Z","times_seen":847,"resource_available":false,"data":null}},"time_used":87,"timings":{"blocked":0,"dns":3,"connect":15,"send":0,"wait":34,"receive":0,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gestion-ingresar.infy.click/?i=1","fqdn":"gestion-ingresar.infy.click","domain":"infy.click","tld":"click"},"ip":{"addr":"185.27.134.172","port":80,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-20T12:23:57.036Z","timestamp":1781958237036,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /?i=1 HTTP/1.1\r\nHost: gestion-ingresar.infy.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://gestion-ingresar.infy.click/\r\nCookie: __test=0449e5b529d3ed4914feeffcd73b1800\r\nUpgrade-Insecure-Requests: 1\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Sat, 20 Jun 2026 12:23:56 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 5655\r\nConnection: keep-alive\r\nLast-Modified: Fri, 19 Jun 2026 21:43:47 GMT\r\nETag: \"1617-654a2300cef9b\"\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=2592000, public, proxy-revalidate\r\nExpires: Mon, 20 Jul 2026 12:23:56 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5655,"size_decoded":6010,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"cde8f70115e064305856f4024079cfc9","sha1":"d9861a1ed4efcc01aa3e0d6c8ebac99d133bd153","sha256":"94e497b3960521cf5c39eb52c06b2f0d71868ddd3280dfc18e1c024a26b0f88d","sha512":"ac97e35b7d68682552caa5aeefec075cfe967be786fce4bb7f531365ea8a8f78e3f2d024ea5259ceacd904224c8e776eda75831c879ec7d74349f619b6b3f54f","ssdeep":"48:7SQdHqgCtb2avuDcDCH+XHgWF5Od+7uIoWfmUKo3eoKUQChrsw7Ft5X:OeKVtrzAME+tKs","tlshash":"5cc104ac45b8903cdd82a3499fd80bad126ad3035a234d9d3363214b4fd1bfd5bea625","first_seen":"2026-06-20T12:23:35.611892Z","last_seen":"2026-06-20T12:24:18.496737Z","times_seen":2,"resource_available":true,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"gestion-ingresar.infy.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"gestion-ingresar.infy.click","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}}]}