{"report_id":"3a015896-5366-4e07-ac7e-7dbee87dbf6c","version":0,"status":"done","tags":[],"date":"2026-06-11T14:07:24Z","url":{"schema":"http","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":0,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"title":"ABN AMRO – Log in met e.dentifier","dom":{"size":31463,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2492)","md5":"db99a9b44111bfa2529f943849775cb0","sha1":"ef9b8d090cd47a486bc0ac2d5c58c5ee6ae6a7f1","sha256":"ec9d5379bdef47848902e8f0e986f79782c8b10846c7fbff54f2988c7bddb104","sha512":"9d93a58e95eb5fbca5d4f72877b8b29267e8817880039d0903970c529335e3f39f94dfa291808349405e10560b0e52504ed0a5959a1bdd37d74fbfae1a0e343f","ssdeep":"384:+rPENvFbF3oz6DWyrbgO61tT9j1RzqaKXs2SBe88G9jX:QENvFbFYz6DWyrMtRi38DjX","tlshash":"0ee2b46769a704272a538da877f35f826225c003d545d9647eec46d48fbbac0eea33cc","dom_hash":"domhashc89c795ef8d7db90beac0e0f3b783e68","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":0,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"tags":["openphish"],"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-16T14:07:24Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":5}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null},"summary":[{"fqdn":"img1.wsimg.com","ip":{"addr":"2.22.225.66","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"domain_registered":"2008-03-17","domain_rank":58983,"first_seen":"2012-06-20T14:42:31Z","last_seen":"2026-06-08T08:06:31.945737Z","alert_count":0,"request_count":2,"received_data":107447,"sent_data":972,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"csp.secureserver.net","ip":{"addr":"23.44.47.70","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"domain_registered":"1998-03-30","domain_rank":62352,"first_seen":"2022-12-18T21:17:09Z","last_seen":"2026-06-08T08:36:33.633768Z","alert_count":0,"request_count":2,"received_data":1015,"sent_data":1102,"comment":"","tags":null,"fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"4jw.d29.mytemp.website","ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2024-01-05","domain_rank":0,"first_seen":"2026-05-06T12:56:20.35083Z","last_seen":"2026-06-11T02:01:13.955602Z","alert_count":95,"request_count":19,"received_data":44369,"sent_data":12384,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"8b95335b8ef4bf43b4cffcd8d6aa2c64","sha1":"834deb34ea789ec9c2e614f51181df66f3c864fd","sha256":"7de56ecd27cc62ec4865b051bfa829879c53902303e242b775efd3cf98e77405","sha512":"c9fc69bfb2faf1a560598870a14d2139a140154e394981acd83f1e4462c9b91c3c4a078d7c50f6f9ffd35605af8ef711ad794f1fb031d5b5074accbaf4f1fb4b","ssdeep":"96:QegWxFgRdHfSGEZRKFlsBiGM1Wa1eQAhhsR7tkHnAEh8DMaksoTdU0:QedFg7HqfKFlsfC1eQEsR7tkHnkD5k3B","tlshash":"9091227b767114374ef381fb77cb62d16a2400432981e8d03ebdc4115f91ea25ab67e5","size":4473,"data":"","first_seen":"2026-06-08T15:12:24.830462Z","last_seen":"2026-06-11T17:37:25.487329Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"f803410c361d607d361048c5bc7363eb","sha1":"92737fcaa6d30211d2bca9510b9670a80b7834a9","sha256":"fb11ad49cb4697db8bbcfe5804daca71f080f3bb674461eb47f28177c16d693a","sha512":"0d801183ca081a06da9354b20cf59947c6a97a3d795c099259a2877862a7be482c472103d5658ae3273711fe0206071dd7556a537e8f738c51ca6d1e48ff4c82","ssdeep":"","tlshash":"3be07d73fda205b306ef50de476a5741353180456464d041382d76744ff0f0e0d671d0","size":320,"data":"","first_seen":"2026-06-08T15:12:24.83178Z","last_seen":"2026-06-11T17:37:25.488045Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"3451606d66f17cbd839ddb00ef520d98","sha1":"525bf3e3da8bfa8e5c4588ac1e429cb6c5ee52c2","sha256":"330890782a3e35d4c863205fba13ea8f3d2d438c88f42b222c5b1986676e9797","sha512":"b109c787de9d3c7317d48a4acdec415fb9c048c583f50db049b90e103b0a22b5c26b42299e6b4590d5cbb88ae666723b311b71a1631adbc6d49cb6258399d58e","ssdeep":"","tlshash":"80e0c00dc02b4082122698443212595ff72ad6f2c7483cadc708883656cf08bfb9d644","size":365,"data":"","first_seen":"2026-06-08T15:12:24.832706Z","last_seen":"2026-06-11T17:37:25.488692Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/tracker.js","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"f09396505b9330dfe9da559f19968c40","sha1":"cd6791eb641c24cdf20ef884e7625b15900459b1","sha256":"17b7ef31e411e091f6a4a15327cd1c05dea65a0d77104b46c8b13de01580f79c","sha512":"647921853c220f4a0339164f6db1f91359125e800fe2256dff156af24b05d92debc5430f7f670075f845b4088728392011f608912569d4a56cb8615791a2b1ef","ssdeep":"","tlshash":"b551611f61f51a266573a178a2aff006373712036dc7d8017a5c69403fe476e63b29dd","size":2673,"data":"","first_seen":"2026-06-08T15:12:24.82706Z","last_seen":"2026-06-11T17:37:25.484296Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"8b95335b8ef4bf43b4cffcd8d6aa2c64","sha1":"834deb34ea789ec9c2e614f51181df66f3c864fd","sha256":"7de56ecd27cc62ec4865b051bfa829879c53902303e242b775efd3cf98e77405","sha512":"c9fc69bfb2faf1a560598870a14d2139a140154e394981acd83f1e4462c9b91c3c4a078d7c50f6f9ffd35605af8ef711ad794f1fb031d5b5074accbaf4f1fb4b","ssdeep":"96:QegWxFgRdHfSGEZRKFlsBiGM1Wa1eQAhhsR7tkHnAEh8DMaksoTdU0:QedFg7HqfKFlsfC1eQEsR7tkHnkD5k3B","tlshash":"9091227b767114374ef381fb77cb62d16a2400432981e8d03ebdc4115f91ea25ab67e5","size":4473,"data":"","first_seen":"2026-06-08T15:12:24.830462Z","last_seen":"2026-06-11T17:37:25.487329Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"f803410c361d607d361048c5bc7363eb","sha1":"92737fcaa6d30211d2bca9510b9670a80b7834a9","sha256":"fb11ad49cb4697db8bbcfe5804daca71f080f3bb674461eb47f28177c16d693a","sha512":"0d801183ca081a06da9354b20cf59947c6a97a3d795c099259a2877862a7be482c472103d5658ae3273711fe0206071dd7556a537e8f738c51ca6d1e48ff4c82","ssdeep":"","tlshash":"3be07d73fda205b306ef50de476a5741353180456464d041382d76744ff0f0e0d671d0","size":320,"data":"","first_seen":"2026-06-08T15:12:24.83178Z","last_seen":"2026-06-11T17:37:25.488045Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"3451606d66f17cbd839ddb00ef520d98","sha1":"525bf3e3da8bfa8e5c4588ac1e429cb6c5ee52c2","sha256":"330890782a3e35d4c863205fba13ea8f3d2d438c88f42b222c5b1986676e9797","sha512":"b109c787de9d3c7317d48a4acdec415fb9c048c583f50db049b90e103b0a22b5c26b42299e6b4590d5cbb88ae666723b311b71a1631adbc6d49cb6258399d58e","ssdeep":"","tlshash":"80e0c00dc02b4082122698443212595ff72ad6f2c7483cadc708883656cf08bfb9d644","size":365,"data":"","first_seen":"2026-06-08T15:12:24.832706Z","last_seen":"2026-06-11T17:37:25.488692Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/traffic-assets/js/tccl.min.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"2.22.225.66","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"8a37dab530d4cba8ef9134c279c20612","sha1":"ef687d672e515d41f8b9c6b23e8c66b117a609c3","sha256":"5c16c1b3a290dd98b67c97387769f0ba4ce1a68fc5a584f603d85eec8ecfa499","sha512":"f08cbc1d2bea4b6bef0f153e83a74edfe4abf9c6f39aaadb35a6c167efd6f667b151b7154ab6e444b75420335488d27d3a33ec6e6e2c3d953a41d0a03ce563f9","ssdeep":"1536:uzSGNmZEfRDJYW/3TV4vlJHjaBaR02YX25x6JR:kD6W/WFu","tlshash":"67a3a688f6a1f07142e76165412f010bf379a965b0aed0d4e725e8f8adf85ce8173f29","size":106502,"data":"","first_seen":"2026-05-27T17:58:47.761284Z","last_seen":"2026-06-11T18:38:54.899412Z","times_seen":4795,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"8b95335b8ef4bf43b4cffcd8d6aa2c64","sha1":"834deb34ea789ec9c2e614f51181df66f3c864fd","sha256":"7de56ecd27cc62ec4865b051bfa829879c53902303e242b775efd3cf98e77405","sha512":"c9fc69bfb2faf1a560598870a14d2139a140154e394981acd83f1e4462c9b91c3c4a078d7c50f6f9ffd35605af8ef711ad794f1fb031d5b5074accbaf4f1fb4b","ssdeep":"96:QegWxFgRdHfSGEZRKFlsBiGM1Wa1eQAhhsR7tkHnAEh8DMaksoTdU0:QedFg7HqfKFlsfC1eQEsR7tkHnkD5k3B","tlshash":"9091227b767114374ef381fb77cb62d16a2400432981e8d03ebdc4115f91ea25ab67e5","size":4473,"data":"","first_seen":"2026-06-08T15:12:24.830462Z","last_seen":"2026-06-11T17:37:25.487329Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"f803410c361d607d361048c5bc7363eb","sha1":"92737fcaa6d30211d2bca9510b9670a80b7834a9","sha256":"fb11ad49cb4697db8bbcfe5804daca71f080f3bb674461eb47f28177c16d693a","sha512":"0d801183ca081a06da9354b20cf59947c6a97a3d795c099259a2877862a7be482c472103d5658ae3273711fe0206071dd7556a537e8f738c51ca6d1e48ff4c82","ssdeep":"","tlshash":"3be07d73fda205b306ef50de476a5741353180456464d041382d76744ff0f0e0d671d0","size":320,"data":"","first_seen":"2026-06-08T15:12:24.83178Z","last_seen":"2026-06-11T17:37:25.488045Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"3451606d66f17cbd839ddb00ef520d98","sha1":"525bf3e3da8bfa8e5c4588ac1e429cb6c5ee52c2","sha256":"330890782a3e35d4c863205fba13ea8f3d2d438c88f42b222c5b1986676e9797","sha512":"b109c787de9d3c7317d48a4acdec415fb9c048c583f50db049b90e103b0a22b5c26b42299e6b4590d5cbb88ae666723b311b71a1631adbc6d49cb6258399d58e","ssdeep":"","tlshash":"80e0c00dc02b4082122698443212595ff72ad6f2c7483cadc708883656cf08bfb9d644","size":365,"data":"","first_seen":"2026-06-08T15:12:24.832706Z","last_seen":"2026-06-11T17:37:25.488692Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/heartbeat.php","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:02.385Z","timestamp":1781186822385,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"POST /bann/app-vernieuwen/heartbeat.php HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/json\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nContent-Length: 87\r\nOrigin: https://4jw.d29.mytemp.website\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 500 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-length: 0\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:02 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"500","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":1117,"mime_type":"application/json","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T18:48:13.965247Z","times_seen":16333243,"resource_available":true,"data":null}},"time_used":230,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":230,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/heartbeat.php","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:17.383Z","timestamp":1781186837383,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"POST /bann/app-vernieuwen/heartbeat.php HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/json\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nContent-Length: 87\r\nOrigin: https://4jw.d29.mytemp.website\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:17 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":11,"size_decoded":479,"mime_type":"application/json","magic":"JSON text data","md5":"82380d1e263b6093f3c7535690fcdd75","sha1":"022d91f218046ab2e61cac1eb13d6a718f75df2b","sha256":"4062edaf750fb8074e7e83e0c9028c94e32468a8b6f1614774328ef045150f93","sha512":"180ea3cf6e7a00cb12ecff7ce095b8cef1921621de681a64e5e53e3efc0cf6053e557205f2bdb9b9d5af4de3d54c79d1c9b1c474b83897590c647b1e92d9c93a","ssdeep":"","tlshash":"2a500003000c0030c00003000300ff30000300300000000c000c3000033000c0003c03","first_seen":"2023-04-05T15:24:10Z","last_seen":"2026-06-11T18:47:46.103626Z","times_seen":10544,"resource_available":true,"data":null}},"time_used":47,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":47,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:22.388Z","timestamp":1781186842388,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:22 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":16,"size_decoded":483,"mime_type":"application/json","magic":"JSON text data","md5":"8414b7a99469c3ceb2d71fb08fca47c3","sha1":"2428398c2c03b4bc83e6d1dcad69bd0a4bdac022","sha256":"839e0951ad9cf42d348ea21d0fc25878430b42259cf072aa08e754a20ea71f83","sha512":"a943a88f55ddf11019452225fb2450f32f74b7bedc1c0bd832b0e72c776044c4b427e9b481f5c5c105a25c9346f6516a3fe45ebf5985dd64389562b8d92899da","ssdeep":"","tlshash":"34600000c0fc00030000000000cc300c03cf030300030cc30033ff0000c003000300c0","first_seen":"2026-03-05T10:02:57.784959Z","last_seen":"2026-06-11T17:37:25.481329Z","times_seen":27,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/traffic-assets/js/tccl.min.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"2.22.225.66","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:02.337Z","timestamp":1781186822337,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Fri, 05 Sep 2025 18:24:05 GMT","end":"Wed, 07 Oct 2026 18:24:05 GMT"},"fingerprint":{"sha1":"0E:95:B5:3C:BC:57:5B:29:44:36:31:82:4A:13:83:C0:BB:C6:51:2D","sha256":"2E:41:DD:15:BE:3D:3A:3A:29:F0:65:E6:52:EC:88:54:C4:60:01:9E:68:96:30:F3:2A:31:D9:A1:95:CA:69:24"}}},"request":{"raw":"GET /traffic-assets/js/tccl.min.js HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://4jw.d29.mytemp.website/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 \r\ncontent-length: 0\r\nlocation: https://img1.wsimg.com/signals/js/clients/scc-c2/scc-c2.min.js\r\ncache-control: max-age=31536000\r\nexpires: Fri, 11 Jun 2027 14:07:02 GMT\r\ndate: Thu, 11 Jun 2026 14:07:02 GMT\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T18:48:13.965247Z","times_seen":16333243,"resource_available":true,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":3,"connect":1,"send":0,"wait":16,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"csp.secureserver.net/eventbus/web?clientid=8da2217409854bee82e12dc4ca0b39fb","fqdn":"csp.secureserver.net","domain":"secureserver.net","tld":"net"},"ip":{"addr":"23.44.47.70","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:02.727Z","timestamp":1781186822727,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.secureserver.net","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Thu, 23 Oct 2025 00:07:48 GMT","end":"Tue, 24 Nov 2026 00:07:48 GMT"},"fingerprint":{"sha1":"0C:85:75:97:2A:6F:2B:92:48:28:1A:FB:30:8A:C4:98:A7:9E:26:CE","sha256":"2F:4B:65:33:11:10:9D:A1:94:4B:5A:5D:40:E6:63:70:B6:7E:1A:7F:E7:90:E4:E8:F4:4A:37:2E:94:17:64:AB"}}},"request":{"raw":"POST /eventbus/web?clientid=8da2217409854bee82e12dc4ca0b39fb HTTP/1.1\r\nHost: csp.secureserver.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: text/plain;charset=UTF-8\r\nReferer: https://4jw.d29.mytemp.website/\r\nContent-Length: 1887\r\nOrigin: https://4jw.d29.mytemp.website\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 202 Accepted\r\nContent-Type: application/json\r\nContent-Length: 2\r\nAccess-Control-Allow-Origin: *\r\nx-bus-trace-id: 84923295672986235137386688292033872378\r\nx-envoy-upstream-service-time: 79\r\nx-error-info: 0\r\nx-request-id: 574e4e3f-2270-48d9-b184-b1e3ac227b58\r\nExpires: Thu, 11 Jun 2026 14:07:03 GMT\r\nCache-Control: max-age=0, no-cache, no-store\r\nPragma: no-cache\r\nDate: Thu, 11 Jun 2026 14:07:03 GMT\r\nConnection: keep-alive\r\nStrict-Transport-Security: max-age=86400 ; includeSubDomains ; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"202","status_text":"Accepted","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":507,"mime_type":"application/json","magic":"JSON text data","md5":"99914b932bd37a50b983c5e7c90ae93b","sha1":"bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f","sha256":"44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a","sha512":"27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd","ssdeep":"","tlshash":"c7100000000000c00000000c00000000000000000c0000000000000000000000000000","first_seen":"2023-03-07T01:15:26Z","last_seen":"2026-06-11T18:47:54.12665Z","times_seen":707897,"resource_available":true,"data":null}},"time_used":395,"timings":{"blocked":0,"dns":9,"connect":1,"send":0,"wait":169,"receive":0,"ssl":215},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:04.423Z","timestamp":1781186824423,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:04 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16,"size_decoded":483,"mime_type":"application/json","magic":"JSON text data","md5":"8414b7a99469c3ceb2d71fb08fca47c3","sha1":"2428398c2c03b4bc83e6d1dcad69bd0a4bdac022","sha256":"839e0951ad9cf42d348ea21d0fc25878430b42259cf072aa08e754a20ea71f83","sha512":"a943a88f55ddf11019452225fb2450f32f74b7bedc1c0bd832b0e72c776044c4b427e9b481f5c5c105a25c9346f6516a3fe45ebf5985dd64389562b8d92899da","ssdeep":"","tlshash":"34600000c0fc00030000000000cc300c03cf030300030cc30033ff0000c003000300c0","first_seen":"2026-03-05T10:02:57.784959Z","last_seen":"2026-06-11T17:37:25.481329Z","times_seen":27,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/heartbeat.php","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:07.383Z","timestamp":1781186827383,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"POST /bann/app-vernieuwen/heartbeat.php HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/json\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nContent-Length: 87\r\nOrigin: https://4jw.d29.mytemp.website\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:07 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":11,"size_decoded":479,"mime_type":"application/json","magic":"JSON text data","md5":"82380d1e263b6093f3c7535690fcdd75","sha1":"022d91f218046ab2e61cac1eb13d6a718f75df2b","sha256":"4062edaf750fb8074e7e83e0c9028c94e32468a8b6f1614774328ef045150f93","sha512":"180ea3cf6e7a00cb12ecff7ce095b8cef1921621de681a64e5e53e3efc0cf6053e557205f2bdb9b9d5af4de3d54c79d1c9b1c474b83897590c647b1e92d9c93a","ssdeep":"","tlshash":"2a500003000c0030c00003000300ff30000300300000000c000c3000033000c0003c03","first_seen":"2023-04-05T15:24:10Z","last_seen":"2026-06-11T18:47:46.103626Z","times_seen":10544,"resource_available":true,"data":null}},"time_used":49,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/heartbeat.php","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:22.384Z","timestamp":1781186842384,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"POST /bann/app-vernieuwen/heartbeat.php HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/json\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nContent-Length: 87\r\nOrigin: https://4jw.d29.mytemp.website\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:22 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":11,"size_decoded":479,"mime_type":"application/json","magic":"JSON text data","md5":"82380d1e263b6093f3c7535690fcdd75","sha1":"022d91f218046ab2e61cac1eb13d6a718f75df2b","sha256":"4062edaf750fb8074e7e83e0c9028c94e32468a8b6f1614774328ef045150f93","sha512":"180ea3cf6e7a00cb12ecff7ce095b8cef1921621de681a64e5e53e3efc0cf6053e557205f2bdb9b9d5af4de3d54c79d1c9b1c474b83897590c647b1e92d9c93a","ssdeep":"","tlshash":"2a500003000c0030c00003000300ff30000300300000000c000c3000033000c0003c03","first_seen":"2023-04-05T15:24:10Z","last_seen":"2026-06-11T18:47:46.103626Z","times_seen":10544,"resource_available":true,"data":null}},"time_used":50,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":50,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/signals/js/clients/scc-c2/scc-c2.min.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"2.22.225.66","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:02.387Z","timestamp":1781186822387,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Fri, 05 Sep 2025 18:24:05 GMT","end":"Wed, 07 Oct 2026 18:24:05 GMT"},"fingerprint":{"sha1":"0E:95:B5:3C:BC:57:5B:29:44:36:31:82:4A:13:83:C0:BB:C6:51:2D","sha256":"2E:41:DD:15:BE:3D:3A:3A:29:F0:65:E6:52:EC:88:54:C4:60:01:9E:68:96:30:F3:2A:31:D9:A1:95:CA:69:24"}}},"request":{"raw":"GET /signals/js/clients/scc-c2/scc-c2.min.js HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://4jw.d29.mytemp.website/\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-amz-id-2: KnUNpoAqcpzwhgxgWNKMvcKTEOYN1GRAEBYLL1bbC7MJhVd8JDjLYaWZQc5sDvGxd62Z2lV8Hhs=\r\nx-amz-request-id: 2FQ2XJSGKJ8RSWKZ\r\nlast-modified: Wed, 27 May 2026 17:27:10 GMT\r\netag: \"8a37dab530d4cba8ef9134c279c20612\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-version: 1.3.2\r\nx-amz-version-id: V1QpCm1bxgHgw4G1nDhX4YJuFGsOtoK3\r\naccept-ranges: bytes\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=1800\r\nexpires: Thu, 11 Jun 2026 14:37:02 GMT\r\ndate: Thu, 11 Jun 2026 14:07:02 GMT\r\ncontent-length: 21664\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":106502,"size_decoded":22315,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"8a37dab530d4cba8ef9134c279c20612","sha1":"ef687d672e515d41f8b9c6b23e8c66b117a609c3","sha256":"5c16c1b3a290dd98b67c97387769f0ba4ce1a68fc5a584f603d85eec8ecfa499","sha512":"f08cbc1d2bea4b6bef0f153e83a74edfe4abf9c6f39aaadb35a6c167efd6f667b151b7154ab6e444b75420335488d27d3a33ec6e6e2c3d953a41d0a03ce563f9","ssdeep":"1536:uzSGNmZEfRDJYW/3TV4vlJHjaBaR02YX25x6JR:kD6W/WFu","tlshash":"67a3a688f6a1f07142e76165412f010bf379a965b0aed0d4e725e8f8adf85ce8173f29","first_seen":"2026-05-27T17:58:47.761284Z","last_seen":"2026-06-11T18:38:54.899412Z","times_seen":4795,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"csp.secureserver.net/eventbus/web?clientid=b18ef4f046435b64a469b32c3c1c20a3","fqdn":"csp.secureserver.net","domain":"secureserver.net","tld":"net"},"ip":{"addr":"23.44.47.70","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:02.725Z","timestamp":1781186822725,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.secureserver.net","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Thu, 23 Oct 2025 00:07:48 GMT","end":"Tue, 24 Nov 2026 00:07:48 GMT"},"fingerprint":{"sha1":"0C:85:75:97:2A:6F:2B:92:48:28:1A:FB:30:8A:C4:98:A7:9E:26:CE","sha256":"2F:4B:65:33:11:10:9D:A1:94:4B:5A:5D:40:E6:63:70:B6:7E:1A:7F:E7:90:E4:E8:F4:4A:37:2E:94:17:64:AB"}}},"request":{"raw":"POST /eventbus/web?clientid=b18ef4f046435b64a469b32c3c1c20a3 HTTP/1.1\r\nHost: csp.secureserver.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: text/plain;charset=UTF-8\r\nReferer: https://4jw.d29.mytemp.website/\r\nContent-Length: 1109\r\nOrigin: https://4jw.d29.mytemp.website\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 202 Accepted\r\nContent-Type: application/json\r\nContent-Length: 2\r\nAccess-Control-Allow-Origin: *\r\nx-bus-trace-id: 295701651816323994309152236379014895471\r\nx-envoy-upstream-service-time: 84\r\nx-error-info: 0\r\nx-request-id: 430df1d0-fdc2-46f3-8d6c-68a531fcb190\r\nExpires: Thu, 11 Jun 2026 14:07:02 GMT\r\nCache-Control: max-age=0, no-cache, no-store\r\nPragma: no-cache\r\nDate: Thu, 11 Jun 2026 14:07:02 GMT\r\nConnection: keep-alive\r\nStrict-Transport-Security: max-age=86400 ; includeSubDomains ; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"202","status_text":"Accepted","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":508,"mime_type":"application/json","magic":"JSON text data","md5":"99914b932bd37a50b983c5e7c90ae93b","sha1":"bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f","sha256":"44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a","sha512":"27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd","ssdeep":"","tlshash":"c7100000000000c00000000c00000000000000000c0000000000000000000000000000","first_seen":"2023-03-07T01:15:26Z","last_seen":"2026-06-11T18:47:54.12665Z","times_seen":707897,"resource_available":true,"data":null}},"time_used":194,"timings":{"blocked":-1,"dns":11,"connect":1,"send":0,"wait":172,"receive":0,"ssl":9},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:06.383Z","timestamp":1781186826383,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:06 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16,"size_decoded":483,"mime_type":"application/json","magic":"JSON text data","md5":"8414b7a99469c3ceb2d71fb08fca47c3","sha1":"2428398c2c03b4bc83e6d1dcad69bd0a4bdac022","sha256":"839e0951ad9cf42d348ea21d0fc25878430b42259cf072aa08e754a20ea71f83","sha512":"a943a88f55ddf11019452225fb2450f32f74b7bedc1c0bd832b0e72c776044c4b427e9b481f5c5c105a25c9346f6516a3fe45ebf5985dd64389562b8d92899da","ssdeep":"","tlshash":"34600000c0fc00030000000000cc300c03cf030300030cc30033ff0000c003000300c0","first_seen":"2026-03-05T10:02:57.784959Z","last_seen":"2026-06-11T17:37:25.481329Z","times_seen":27,"resource_available":false,"data":null}},"time_used":52,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:08.383Z","timestamp":1781186828383,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:08 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16,"size_decoded":483,"mime_type":"application/json","magic":"JSON text data","md5":"8414b7a99469c3ceb2d71fb08fca47c3","sha1":"2428398c2c03b4bc83e6d1dcad69bd0a4bdac022","sha256":"839e0951ad9cf42d348ea21d0fc25878430b42259cf072aa08e754a20ea71f83","sha512":"a943a88f55ddf11019452225fb2450f32f74b7bedc1c0bd832b0e72c776044c4b427e9b481f5c5c105a25c9346f6516a3fe45ebf5985dd64389562b8d92899da","ssdeep":"","tlshash":"34600000c0fc00030000000000cc300c03cf030300030cc30033ff0000c003000300c0","first_seen":"2026-03-05T10:02:57.784959Z","last_seen":"2026-06-11T17:37:25.481329Z","times_seen":27,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:10.383Z","timestamp":1781186830383,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:10 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16,"size_decoded":483,"mime_type":"application/json","magic":"JSON text data","md5":"8414b7a99469c3ceb2d71fb08fca47c3","sha1":"2428398c2c03b4bc83e6d1dcad69bd0a4bdac022","sha256":"839e0951ad9cf42d348ea21d0fc25878430b42259cf072aa08e754a20ea71f83","sha512":"a943a88f55ddf11019452225fb2450f32f74b7bedc1c0bd832b0e72c776044c4b427e9b481f5c5c105a25c9346f6516a3fe45ebf5985dd64389562b8d92899da","ssdeep":"","tlshash":"34600000c0fc00030000000000cc300c03cf030300030cc30033ff0000c003000300c0","first_seen":"2026-03-05T10:02:57.784959Z","last_seen":"2026-06-11T17:37:25.481329Z","times_seen":27,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/heartbeat.php","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:12.384Z","timestamp":1781186832384,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"POST /bann/app-vernieuwen/heartbeat.php HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/json\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nContent-Length: 87\r\nOrigin: https://4jw.d29.mytemp.website\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:12 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":11,"size_decoded":479,"mime_type":"application/json","magic":"JSON text data","md5":"82380d1e263b6093f3c7535690fcdd75","sha1":"022d91f218046ab2e61cac1eb13d6a718f75df2b","sha256":"4062edaf750fb8074e7e83e0c9028c94e32468a8b6f1614774328ef045150f93","sha512":"180ea3cf6e7a00cb12ecff7ce095b8cef1921621de681a64e5e53e3efc0cf6053e557205f2bdb9b9d5af4de3d54c79d1c9b1c474b83897590c647b1e92d9c93a","ssdeep":"","tlshash":"2a500003000c0030c00003000300ff30000300300000000c000c3000033000c0003c03","first_seen":"2023-04-05T15:24:10Z","last_seen":"2026-06-11T18:47:46.103626Z","times_seen":10544,"resource_available":true,"data":null}},"time_used":63,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:20.384Z","timestamp":1781186840384,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:20 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16,"size_decoded":483,"mime_type":"application/json","magic":"JSON text data","md5":"8414b7a99469c3ceb2d71fb08fca47c3","sha1":"2428398c2c03b4bc83e6d1dcad69bd0a4bdac022","sha256":"839e0951ad9cf42d348ea21d0fc25878430b42259cf072aa08e754a20ea71f83","sha512":"a943a88f55ddf11019452225fb2450f32f74b7bedc1c0bd832b0e72c776044c4b427e9b481f5c5c105a25c9346f6516a3fe45ebf5985dd64389562b8d92899da","ssdeep":"","tlshash":"34600000c0fc00030000000000cc300c03cf030300030cc30033ff0000c003000300c0","first_seen":"2026-03-05T10:02:57.784959Z","last_seen":"2026-06-11T17:37:25.481329Z","times_seen":27,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-11T14:07:01.750Z","timestamp":1781186821750,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /bann/app-vernieuwen/ HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 8025\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Thu, 11 Jun 2026 14:07:01 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":32101,"size_decoded":8318,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2441)","md5":"a2027648ade1c0a54f5cd081750c082c","sha1":"87377257fe88938e18a5d9c18eacabd1767365b7","sha256":"ab2a8beb54f5ad4143b59e19b328fa78f4331fc87fa86db767fc196077f17a41","sha512":"fefef56a4d30bedf5f6724b3295eed51956469b61313151f178507fd9ef147d4a7c5e256d55ad30d6b0f85b78a14e8233348d5382929c41fcaecc73a008f0ac6","ssdeep":"384:4VENvFbF3oz6DWyrbgO6aBBGGY6qaKXs2SBe88G9Y0:gENvFbFYz6DWyr/Bng38DY0","tlshash":"a0e2b42769a704276a528da87bf35f422225c003d545d9647eec46d48ffba90eea33cc","first_seen":"2026-06-08T15:12:24.826134Z","last_seen":"2026-06-11T17:37:25.486648Z","times_seen":18,"resource_available":true,"data":null}},"time_used":144,"timings":{"blocked":-1,"dns":5,"connect":27,"send":0,"wait":52,"receive":0,"ssl":60},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:02.390Z","timestamp":1781186822390,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:02 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16,"size_decoded":483,"mime_type":"application/json","magic":"JSON text data","md5":"8414b7a99469c3ceb2d71fb08fca47c3","sha1":"2428398c2c03b4bc83e6d1dcad69bd0a4bdac022","sha256":"839e0951ad9cf42d348ea21d0fc25878430b42259cf072aa08e754a20ea71f83","sha512":"a943a88f55ddf11019452225fb2450f32f74b7bedc1c0bd832b0e72c776044c4b427e9b481f5c5c105a25c9346f6516a3fe45ebf5985dd64389562b8d92899da","ssdeep":"","tlshash":"34600000c0fc00030000000000cc300c03cf030300030cc30033ff0000c003000300c0","first_seen":"2026-03-05T10:02:57.784959Z","last_seen":"2026-06-11T17:37:25.481329Z","times_seen":27,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/favicon.ico","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:02.465Z","timestamp":1781186822465,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nlast-modified: Tue, 05 May 2026 20:42:50 GMT\r\netag: \"74c3d7c-41c-65118172aa680\"\r\naccept-ranges: bytes\r\ncontent-length: 1052\r\ncontent-type: text/html\r\ndate: Thu, 11 Jun 2026 14:07:02 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1052,"size_decoded":1290,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"15eaaad79b32d16c5480cc1dc56370bc","sha1":"c2646d9e563f18d48f1e442805aacff733b2f435","sha256":"830789f00590242c205f65b51bcce894713cc7517192fa308d3a147d5758cc56","sha512":"e3874acccb3d8ef31dbfb66e3a31dfead30dd5c3cd2412815ec3b1db0194fe730bcd7dc583b6fa6af83fd0bbc1fe7a045bbb86ad65c1b5c3011349d878177c63","ssdeep":"","tlshash":"0511ed7654c5641b5871c6c1ac00b279edc24127969c6841bcec21ef6f38e97c55b500","first_seen":"2026-06-08T15:12:24.829464Z","last_seen":"2026-06-11T17:37:25.485165Z","times_seen":26,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:12.389Z","timestamp":1781186832389,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:12 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16,"size_decoded":483,"mime_type":"application/json","magic":"JSON text data","md5":"8414b7a99469c3ceb2d71fb08fca47c3","sha1":"2428398c2c03b4bc83e6d1dcad69bd0a4bdac022","sha256":"839e0951ad9cf42d348ea21d0fc25878430b42259cf072aa08e754a20ea71f83","sha512":"a943a88f55ddf11019452225fb2450f32f74b7bedc1c0bd832b0e72c776044c4b427e9b481f5c5c105a25c9346f6516a3fe45ebf5985dd64389562b8d92899da","ssdeep":"","tlshash":"34600000c0fc00030000000000cc300c03cf030300030cc30033ff0000c003000300c0","first_seen":"2026-03-05T10:02:57.784959Z","last_seen":"2026-06-11T17:37:25.481329Z","times_seen":27,"resource_available":false,"data":null}},"time_used":55,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":55,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:14.387Z","timestamp":1781186834387,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:14 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16,"size_decoded":483,"mime_type":"application/json","magic":"JSON text data","md5":"8414b7a99469c3ceb2d71fb08fca47c3","sha1":"2428398c2c03b4bc83e6d1dcad69bd0a4bdac022","sha256":"839e0951ad9cf42d348ea21d0fc25878430b42259cf072aa08e754a20ea71f83","sha512":"a943a88f55ddf11019452225fb2450f32f74b7bedc1c0bd832b0e72c776044c4b427e9b481f5c5c105a25c9346f6516a3fe45ebf5985dd64389562b8d92899da","ssdeep":"","tlshash":"34600000c0fc00030000000000cc300c03cf030300030cc30033ff0000c003000300c0","first_seen":"2026-03-05T10:02:57.784959Z","last_seen":"2026-06-11T17:37:25.481329Z","times_seen":27,"resource_available":false,"data":null}},"time_used":47,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":47,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:16.384Z","timestamp":1781186836384,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:16 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16,"size_decoded":483,"mime_type":"application/json","magic":"JSON text data","md5":"8414b7a99469c3ceb2d71fb08fca47c3","sha1":"2428398c2c03b4bc83e6d1dcad69bd0a4bdac022","sha256":"839e0951ad9cf42d348ea21d0fc25878430b42259cf072aa08e754a20ea71f83","sha512":"a943a88f55ddf11019452225fb2450f32f74b7bedc1c0bd832b0e72c776044c4b427e9b481f5c5c105a25c9346f6516a3fe45ebf5985dd64389562b8d92899da","ssdeep":"","tlshash":"34600000c0fc00030000000000cc300c03cf030300030cc30033ff0000c003000300c0","first_seen":"2026-03-05T10:02:57.784959Z","last_seen":"2026-06-11T17:37:25.481329Z","times_seen":27,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:18.384Z","timestamp":1781186838384,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /bann/app-vernieuwen/command.php?clientId=t_hjikmo6lmq9kn84s HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: _tccl_visitor=6b90920d-80a4-409f-8828-8cf270ec9631; _tccl_visit=6b90920d-80a4-409f-8828-8cf270ec9631; _scc_session=pc=1\u0026C_TOUCH=2026-06-11T14:07:02.461Z\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-powered-by: PHP/8.3.31\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\ncontent-type: application/json\r\ndate: Thu, 11 Jun 2026 14:07:18 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.31","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16,"size_decoded":483,"mime_type":"application/json","magic":"JSON text data","md5":"8414b7a99469c3ceb2d71fb08fca47c3","sha1":"2428398c2c03b4bc83e6d1dcad69bd0a4bdac022","sha256":"839e0951ad9cf42d348ea21d0fc25878430b42259cf072aa08e754a20ea71f83","sha512":"a943a88f55ddf11019452225fb2450f32f74b7bedc1c0bd832b0e72c776044c4b427e9b481f5c5c105a25c9346f6516a3fe45ebf5985dd64389562b8d92899da","ssdeep":"","tlshash":"34600000c0fc00030000000000cc300c03cf030300030cc30033ff0000c003000300c0","first_seen":"2026-03-05T10:02:57.784959Z","last_seen":"2026-06-11T17:37:25.481329Z","times_seen":27,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":53,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4jw.d29.mytemp.website/bann/app-vernieuwen/tracker.js","fqdn":"4jw.d29.mytemp.website","domain":"mytemp.website","tld":"website"},"ip":{"addr":"92.205.249.181","port":443,"asn":21499,"as":"Host Europe GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://4jw.d29.mytemp.website/bann/app-vernieuwen/","date":"2026-06-11T14:07:02.335Z","timestamp":1781186822335,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"4jw.d29.mytemp.website","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 19:22:48 GMT","end":"Fri, 28 Aug 2026 19:22:47 GMT"},"fingerprint":{"sha1":"79:60:F7:6C:27:46:6E:8C:6C:DF:BF:B8:75:FC:77:DA:2C:E2:19:FB","sha256":"8D:63:75:74:11:79:76:F8:C6:C2:1E:22:DB:3A:CC:E4:F1:8A:78:33:15:21:4D:93:63:4E:15:94:D5:E6:BD:BC"}}},"request":{"raw":"GET /bann/app-vernieuwen/tracker.js HTTP/1.1\r\nHost: 4jw.d29.mytemp.website\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://4jw.d29.mytemp.website/bann/app-vernieuwen/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nlast-modified: Sat, 16 May 2026 18:38:50 GMT\r\netag: \"7501cc0-a71-651f3a3f66280-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1192\r\ncontent-type: text/javascript\r\ndate: Thu, 11 Jun 2026 14:07:02 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":2673,"size_decoded":1488,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"f09396505b9330dfe9da559f19968c40","sha1":"cd6791eb641c24cdf20ef884e7625b15900459b1","sha256":"17b7ef31e411e091f6a4a15327cd1c05dea65a0d77104b46c8b13de01580f79c","sha512":"647921853c220f4a0339164f6db1f91359125e800fe2256dff156af24b05d92debc5430f7f670075f845b4088728392011f608912569d4a56cb8615791a2b1ef","ssdeep":"","tlshash":"b551611f61f51a266573a178a2aff006373712036dc7d8017a5c69403fe476e63b29dd","first_seen":"2026-06-08T15:12:24.82706Z","last_seen":"2026-06-11T17:37:25.484296Z","times_seen":25,"resource_available":true,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-11","alert":"Phishing Block","trigger":"4jw.d29.mytemp.website","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"4jw.d29.mytemp.website","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}