{"report_id":"3dd5834c-fb04-4d45-b0fd-d97b7cd22c90","version":6,"status":"done","tags":[],"date":"2026-05-08T14:08:02Z","url":{"schema":"http","addr":"vdkonlne.mom","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"104.21.64.196","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"vdkonlne.mom/","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"title":"online@vdk","dom":{"size":23908,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1315)","md5":"4a10cfe1573cb975652c114b527907a8","sha1":"12de6fc3ccf5597e58c83dbf83abb5e523412c8b","sha256":"050a672478e878019d65f44a0941b186c38fd9a5e7779dfa3053aa476cfe30f0","sha512":"1a4beffb2ee22f51e486bb4d8290958566c043e2a6d74b73b428767b2cadc8f36aae686e24f26269b6c076ab94f86338b4a7a7f593b19a546bbd3b82c3118b0b","ssdeep":"384:GhDONKEfaJ/DvB4bLn8MUaTEmpfCJ2VFT5vGVqBxPULsLYk336yxCstuj0Um+C:GduNS4bLnFlTEmpfO2VRxGVqBx4IYk3D","tlshash":"f6b2d822603849375093c3c4b8e57f5f2ab0d30bc71f1f6862791179dedaea12e2694e","dom_hash":"domhashcaa6b6700be8e78d4a270df464dfb819","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"vdkonlne.mom","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"104.21.64.196","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-12T14:08:02Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"hardenedsteel.info","ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-05-08T14:08:02.73009Z","last_seen":"2026-05-08T14:08:02.73009Z","alert_count":0,"request_count":12,"received_data":15366,"sent_data":5311,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"vdkonlne.mom","ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-05-07","domain_rank":0,"first_seen":"2026-05-08T14:08:02.737397Z","last_seen":"2026-05-08T14:08:02.737398Z","alert_count":66,"request_count":22,"received_data":574841,"sent_data":9613,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"vdkonlne.mom/","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"9d15c1adde6d78498dff60d17200959a","sha1":"14643c7788aad393048a82319a7cb1c199fbbb45","sha256":"40138d24a333869fea525dd653c713132bac1cf85d4aae501ed59a2d2b2fca3e","sha512":"6db66e40f98b5b6b6af6c97a4a129f43bf64a0a93e3d8b2fad13d7d3dcd25a1ea07427bd4a4a42190bc27139b534248364f6a579adac67af3122ab5ccb4db268","ssdeep":"","tlshash":"82f0972d1d48a824516a327a623bb23d3a33a1755652da02551dd808be74b27b22ace8","size":469,"data":"","first_seen":"2026-05-08T14:08:07.480208Z","last_seen":"2026-05-08T15:22:55.312665Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hardenedsteel.info/?sid=vdk","fqdn":"hardenedsteel.info","domain":"hardenedsteel.info","tld":"info"},"ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f4ce4a23d146e11ca16dc0e19b82deb1","sha1":"e1e3b0a0b8a39e1ef73c71524573495755b95c97","sha256":"245a0f61c281b21438c85b7930b79f2aa10db2a7e495a77bc6692f408f43bec4","sha512":"48eddd7c4f2c7c1c0aa901bc8ab506e89b9c34c1cd5f805714bfab1fcf993f4641c762b7ebffce7c732d1faf42d39f5302cc689ac9082304b1619091c9477cf4","ssdeep":"96:zQFpvNDPykTWUpfdlxSp9eKSechaXK5zP/NDwBJBwG:EFppH6UZxSpqechaOeBJBwG","tlshash":"b8d1b80e66e710214963b0798bab924879326207368bdd04ba5c5a806f5dc6dd7f2ffc","size":6160,"data":"","first_seen":"2026-05-08T14:08:07.472426Z","last_seen":"2026-05-08T15:22:55.305922Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/config.js","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a0186a6be87351e0211cb16fa54d7bac","sha1":"0ac58b93fe01634533ac04e7ea679b235b2ec713","sha256":"12266fbd8ee6158be7a77d1f485c109431eb38790f37066fe75fdcb17ac33321","sha512":"ea76d7c867c1841ad73ccc2d4dfdf341e71cda3c7a654ae43a44dcd06cd9259e1910334a52966185d7901b61ffd94ab783466a6140f0c411b34a5a5e6ddfc2a4","ssdeep":"","tlshash":"7fe0ab55a780843306130861804c6f9c3387026ec33c8802738dc40ea3b08ad57978cc","size":399,"data":"","first_seen":"2026-05-08T14:08:07.450811Z","last_seen":"2026-05-08T15:22:55.306552Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/dllgn-integration.js","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"078b33062cf4325d0ee99e57da1fab55","sha1":"2acb767b31c6a4c6400a8f9599370e1c70d49419","sha256":"cfe928eec8a49dc75d31dee69162367daa2dbbd01e217feaa336886029412056","sha512":"365c8bee20aba79b312c4dd96491f77deca0e31941c680acd1b10769df3fc17f5d8bcb29b116404f213ad0a7a16fec6e98908b9857012fa07c0ed0206fb42f34","ssdeep":"768:OKCF1t2GPFKkj5uqSO1YaEo4B4B86uB7BFBmBiBNcMHTcB:OhB5PFKkCcMH8","tlshash":"b22382ba7af710374463b63e4fdf515835328403044aea213cac81656fd5d686bbafe8","size":47982,"data":"","first_seen":"2026-05-08T14:08:07.475273Z","last_seen":"2026-05-08T15:22:55.309022Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"vdkonlne.mom/static/1c5a2f09de5341e3.png","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.422Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/1c5a2f09de5341e3.png HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 27 Apr 2026 12:03:29 GMT\r\nvary: accept-encoding\r\npriority: u=6,i=?0\r\netag: W/\"69ef5091-236f\"\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=r31Mo8291ekJiEUW%2FiGkxaNkaIGc7hm9BvSLQASS4HvFC3d%2BOEN8xPlZY9lKpNzIJ%2BbPNEpK9yB1XXWdNDWvPuVY%2BS2lfcPu9xHJEQg0b%2BsLT7aNsihbSue3OVG84RU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f89083be9f85689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9071,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"7ff7481e3b0df8475f778af775b577ad","sha1":"d810aa9d7a8321bc931384e802c17946eb53074f","sha256":"be384c103096e0ea654739277969354af19457bac78ec30da25b1951d3fb8789","sha512":"68362781eb79c47173440696dbd5c0542701fb2466232af9f8596027bc9f0d50e5a670ebfaa6a89390522ff46ae6b6ec1a8594e2f2e9795f192daf3313aa9b75","ssdeep":"192:wI3JDDY9VSrd41B12WE4XzjRzbVDOnjyYoJgrR:wI3ZsIKHrbz9vVD+GfgrR","tlshash":"9c12bf0cfde8ada16341267314fae90b7e67c69342c7e4ab1e4bfd560b42005ac857db","first_seen":"2026-05-08T14:08:07.44992Z","last_seen":"2026-05-08T15:22:55.297846Z","times_seen":3,"resource_available":false,"data":null}},"time_used":58,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":57,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/config.js","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /config.js HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=grWK6fqPCH2HwB0XuhEAcZFJEq1VO6hWXL9OvBNDbqN9954YA0vHITBNDUA533EPFSRQkoZ9QL%2BBYWVkkMMU8xGFMB8fD%2FrlJW646q7FARocLKpps0fK7IW6EdTPfg4%3D\"}]}\r\nlast-modified: Thu, 07 May 2026 09:35:12 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69fc5cd0-18f\"\r\ncf-ray: 9f890839b9d65689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":399,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 text","md5":"a0186a6be87351e0211cb16fa54d7bac","sha1":"0ac58b93fe01634533ac04e7ea679b235b2ec713","sha256":"12266fbd8ee6158be7a77d1f485c109431eb38790f37066fe75fdcb17ac33321","sha512":"ea76d7c867c1841ad73ccc2d4dfdf341e71cda3c7a654ae43a44dcd06cd9259e1910334a52966185d7901b61ffd94ab783466a6140f0c411b34a5a5e6ddfc2a4","ssdeep":"","tlshash":"7fe0ab55a780843306130861804c6f9c3387026ec33c8802738dc40ea3b08ad57978cc","first_seen":"2026-05-08T14:08:07.450811Z","last_seen":"2026-05-08T15:22:55.306552Z","times_seen":3,"resource_available":true,"data":null}},"time_used":65,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":65,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/fonts.css","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/fonts.css HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdkonlne.mom/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 27 Apr 2026 12:09:05 GMT\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\netag: W/\"69ef51e1-1f41\"\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bSYm9Eyqeqbq4gm%2BoIN81nWuGTBEElyr8BM2hR%2FFoMze6MtlumnDzz4jqo%2FgExfmtzwRa45JfM0nZR%2F%2BXU0GIwluiCFpMAprkE1FhAUJYOEdhdSSDTuZsQx5lyVLL%2F0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f890839a9c85689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8001,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (8001), with no line terminators","md5":"d1836f1de8d48d3126c084ef6d3d952e","sha1":"de9e21b9330b365b74c0fc416d5932aa7b33f419","sha256":"9efd6bea7be67650926f8ae5344df0b6e481be2b7c72acf5c92b031121673dfb","sha512":"b681425b25d6136a03654bb6aced155bab48a55f9150e84486134a25c325ab2ca6039763bdfbcfea239911bc9786a637f8fe4af264cf8b3d78731bcafef80624","ssdeep":"192:AXShAOAAqHCmly/fMzT88Wf20AIZy8T2DJn:gAAOAAqwqIa0Kn","tlshash":"37f166119a4928bbf537c5397391ba98e3249643e1270eb4e0663ab8dfc70d11773b98","first_seen":"2026-05-08T14:08:07.456208Z","last_seen":"2026-05-08T15:22:55.302375Z","times_seen":3,"resource_available":false,"data":null}},"time_used":74,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":74,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/265138b1c0a47b02.css","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/265138b1c0a47b02.css HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdkonlne.mom/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 27 Apr 2026 12:03:29 GMT\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\netag: W/\"69ef5091-ea5\"\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nP9mnA2VAWvsV%2BTE%2F4nBex111Xn1uWQQ30ryT%2B%2BN9ZPo4ottx7XHeflhS7zq2PDZ3GDeq%2B%2Fi9Y8H9fjI7cW3mU6A%2BKfFsk6%2FF3Y78eLlyMAV4CYrTznh9LIXVzjYk24%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f890839a9cd5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3749,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2516), with CRLF line terminators","md5":"58a2182777ef19cd4e765bb85106c3e7","sha1":"5d21eed450a7af470587ecca6b083f324f020b32","sha256":"848edcc19107d91cb1d29fffa808350ba1dd157954a437d54907f5bd03e45425","sha512":"773c1c6f25bcbfffaf7202a16b374a959bc0a812fe1bf549dfb9b753849cc0669f627981a0876fd6c34ea18dbc5dd0688550f03e66d580e94c4fcc26e2f0aecd","ssdeep":"","tlshash":"b8719534636ae00b7d2b86bee84956f0534264c6f846cfe4be24c01756e273df48f665","first_seen":"2026-05-08T14:08:07.460078Z","last_seen":"2026-05-08T15:22:55.298553Z","times_seen":3,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/5e41653de83cc2bd.svg","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.083Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/5e41653de83cc2bd.svg HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LRC%2BH7C%2BV8SrxQMiTAnsWhJREx2eMfG0aTpY0ydbBgeO6M1BoiQpEtOitGZpGqACjdjxDs13rDCwI%2FjU5j5JNFczg4vYbqtYcMumLbD7E9jjwkxMjJzo%2F2X7leem0Lg%3D\"}]}\r\nlast-modified: Mon, 27 Apr 2026 12:03:28 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69ef5090-28df\"\r\ncf-ray: 9f890839a9d05689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10463,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"52b3344611b6b434640beeacbdbc3538","sha1":"79b01f44628b4cfd3d031022c2f6ad5449b62970","sha256":"b7e650a9a012b2de826597bef2e1228bb8c71c418c10ae7a2ab0604d5875d2a2","sha512":"e41630f315b082806646d8ff2de3ee3cbbe8b12568eb76e963e49829c54d2938ff8c423f313cd38b2f22217cccec7837bf853cae6ef905be881edd3827b206d4","ssdeep":"192:BCeRX+lVcIR56OS6wc9jNQJjqZdvDnBqFnNYqccYCv3nhhHU:e56O2cRqJjAdvDnBq4ryLHU","tlshash":"bf221ea28b09783b515b4ba8cd3649d0370f78eeb780b3d4717bdf36a845e85c845b98","first_seen":"2026-05-08T14:08:07.461198Z","last_seen":"2026-05-08T15:22:55.297102Z","times_seen":3,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/44d6721bb7292fd6.svg","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/44d6721bb7292fd6.svg HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdkonlne.mom/static/907c0016bc8f3793.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gz7WDyaRqQXPAirCTqcXONMCnx%2BxKLxlV%2BltbzWS1btM0gHPX5VSHgTGV2o49E0Fz6Ingj99S4LbJCrTgLG4TWidjo5dWW832OyEuOrl3CG2SKXTIclvXuFqlFYZ700%3D\"}]}\r\nlast-modified: Mon, 27 Apr 2026 12:03:29 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69ef5091-9e6\"\r\ncf-ray: 9f89083a69e15689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2534,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"924091273660be2b6ab894a06607f53f","sha1":"a7767670e5a1e30c7a8551861843fbd3bbfc64aa","sha256":"1b86fdc6ad8eab5aea2c66a78fd743dbf5ec003033cc0fdd8d3198bede6c115b","sha512":"f0dffede6610865032a46182f15ab07cb6b4969b1c4d538f00c82ef4525cea1bfc67a9be30988dc6d75294d123c6538d9a4dd376d14ad7211af594c4f9484d7b","ssdeep":"","tlshash":"0e5112ce63fc92f8a584d7a5b2207185f6e774b63660ce40f74e9da8b7218c5602dc22","first_seen":"2026-05-08T14:08:07.462058Z","last_seen":"2026-05-08T15:22:55.31198Z","times_seen":3,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/f2ab1d84331a2a69.bin","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.200Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/f2ab1d84331a2a69.bin HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdkonlne.mom/static/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 94320\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Apr 2026 12:03:28 GMT\r\netag: \"17070-6506fe7094400\"\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=n%2F9LnSvcQoaI58NbkqMI2VJDqrbIN8rDJU5QAAB87aDMA1Z3SqNyB9qmf4avJJ1KPpINeFLFTuiKAIjWKzLdbHhZgzxHUKZ%2F5cJC%2FP0fWTbwC%2BggIHjZwpmufgflxKc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f89083a79e35689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":94320,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, digitally signed, 18 tables, 1st \"DSIG\", 26 names, Macintosh, Copyright 2016 The Muli Project Authors (contact@sansoxygen.com)MuliRegular2.000;UKWN;Muli-Regul","md5":"a401afc3d1bb36f4de72835d1257746e","sha1":"28ff8e577c8650f2e1dafc4a5aa26a879e06927d","sha256":"6b77c0a3d0a163dd173ccf8d4cbe4d19d63f108b8fba52a854cc666d9663a4bf","sha512":"160d42bd776b16d50241fec3ae143d01dc4a2ca6279c4c5d1562c20a30913b06d9483e269ecc55e1824ace6a7cf380faeb15377250a1cf96c901be29aed49745","ssdeep":"1536:bxl+V+9KU7KlStb5PaZn/JndDypBl7oJ1hLsDeSh3lR4gCOO9SMWtFZLib2OyRJp:bxY3U7Kl1CrVw98tFZfT7D","tlshash":"2c930947f355db0bec124e3587ba93e5b345f8653f26874b6109ae57f88a4e80c0a3c9","first_seen":"2023-04-13T00:20:14Z","last_seen":"2026-05-08T15:22:55.307237Z","times_seen":122,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":52,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hardenedsteel.info/api/check_status?session_id=v77kkgf9fqdmowzp422","fqdn":"hardenedsteel.info","domain":"hardenedsteel.info","tld":"info"},"ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:47.602Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hardenedsteel.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Apr 2026 12:41:29 GMT","end":"Wed, 29 Jul 2026 12:41:28 GMT"},"fingerprint":{"sha1":"4D:CF:48:19:4E:13:29:41:6B:7A:33:E1:B0:F5:B0:6B:08:35:DA:BF","sha256":"90:52:69:0D:BF:F9:57:FE:F9:6F:4E:84:12:DE:DB:E4:43:47:24:4D:69:86:2D:A7:02:55:C0:DB:9D:09:31:B7"}}},"request":{"raw":"GET /api/check_status?session_id=v77kkgf9fqdmowzp422 HTTP/1.1\r\nHost: hardenedsteel.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vdkonlne.mom\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:47 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 48\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kB7uXi12gi6Tfqnwk9dzfumNp6%2BGDVspIzpXFwZvVUH4lU89yIxkrf4T9OoKW6hrbGNItXTuk5HPI8OoHeEccAI%2BkjguDMb1oCW1dP9nqBuVI0eA%2FfrqFwxYS0im5lls6scjYrw%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f890862893e56c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d36e358b4d94481c2f2ffd77ffef71ba","sha1":"044c19fdabc21d93e310d7c93323c66bd2852c2e","sha256":"840b1b93f2a6e769098c783af75698c74681d652efa54d9a9ef740908fb0e647","sha512":"0b01a8c5ace399cab706df2f3467b9bf98b7403a7ab9f0e92b753b052a096871d21b874eb66575c122da5d7640e2736b8400009042b00d16ead94398f1b7cefe","ssdeep":"","tlshash":"a590040d404111ff0545f454457c557033dc51c0d4705f1cc044c10c77011f15d517cc","first_seen":"2026-03-16T08:24:16.115052Z","last_seen":"2026-05-08T15:22:55.294948Z","times_seen":4,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hardenedsteel.info/api/heartbeat","fqdn":"hardenedsteel.info","domain":"hardenedsteel.info","tld":"info"},"ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:51.531Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hardenedsteel.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Apr 2026 12:41:29 GMT","end":"Wed, 29 Jul 2026 12:41:28 GMT"},"fingerprint":{"sha1":"4D:CF:48:19:4E:13:29:41:6B:7A:33:E1:B0:F5:B0:6B:08:35:DA:BF","sha256":"90:52:69:0D:BF:F9:57:FE:F9:6F:4E:84:12:DE:DB:E4:43:47:24:4D:69:86:2D:A7:02:55:C0:DB:9D:09:31:B7"}}},"request":{"raw":"POST /api/heartbeat HTTP/1.1\r\nHost: hardenedsteel.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded\r\nContent-Length: 52\r\nOrigin: https://vdkonlne.mom\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":52,"data":"session_id=v77kkgf9fqdmowzp422\u0026online_status=focused"}},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:51 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 17\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zC4pS7U1UUDJpnA2KNOnRocuymu5J9JsUkBSH%2Bm2%2F7qOFJ8afEg9xJSWekTPjTummBmmPaZdKFjQ1rovYAtEaQCgC8Qi5qDCPGtDTowN8rGD520MnCqtBsDU7URRQTKdBdNb1%2FQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f89087b1a8c56c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":17,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"5b64e8b89092b2e3dfd448b10700627f","sha1":"484b3032619fa1acd135d114565b0a5166281c22","sha256":"f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4","sha512":"61c86d8f7c4c3e60739191712080650f22caa78427e5bf9215ebc16ed8ed305cb21ab3099459fc431caf9d881ce5ea7662fec4e6b9963ba54b56d2c50bbe3142","ssdeep":"","tlshash":"46600003000000f300f03000033c3c3030f00000c000003cc00c300ccf0030030c300c","first_seen":"2023-04-05T09:34:46Z","last_seen":"2026-05-08T18:42:12.486364Z","times_seen":62798,"resource_available":false,"data":null}},"time_used":66,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":65,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hardenedsteel.info/api/check_status?session_id=v77kkgf9fqdmowzp422","fqdn":"hardenedsteel.info","domain":"hardenedsteel.info","tld":"info"},"ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:55.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hardenedsteel.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Apr 2026 12:41:29 GMT","end":"Wed, 29 Jul 2026 12:41:28 GMT"},"fingerprint":{"sha1":"4D:CF:48:19:4E:13:29:41:6B:7A:33:E1:B0:F5:B0:6B:08:35:DA:BF","sha256":"90:52:69:0D:BF:F9:57:FE:F9:6F:4E:84:12:DE:DB:E4:43:47:24:4D:69:86:2D:A7:02:55:C0:DB:9D:09:31:B7"}}},"request":{"raw":"GET /api/check_status?session_id=v77kkgf9fqdmowzp422 HTTP/1.1\r\nHost: hardenedsteel.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vdkonlne.mom\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:55 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 48\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VxD34v3MDVmPBfBBc%2FqTZC%2FC1TolUZYbJKWirGYR4By3Jsec1MxsLByXcWvXwT3fGm2UQvoHJtrdE2CJdFoM7KmImuGo5c7CCd94LhyIQNBj8giSbaQ1eQEAxrcOGiPTZtEGW%2Fw%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f8908941c4356c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d36e358b4d94481c2f2ffd77ffef71ba","sha1":"044c19fdabc21d93e310d7c93323c66bd2852c2e","sha256":"840b1b93f2a6e769098c783af75698c74681d652efa54d9a9ef740908fb0e647","sha512":"0b01a8c5ace399cab706df2f3467b9bf98b7403a7ab9f0e92b753b052a096871d21b874eb66575c122da5d7640e2736b8400009042b00d16ead94398f1b7cefe","ssdeep":"","tlshash":"a590040d404111ff0545f454457c557033dc51c0d4705f1cc044c10c77011f15d517cc","first_seen":"2026-03-16T08:24:16.115052Z","last_seen":"2026-05-08T15:22:55.294948Z","times_seen":4,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/0d29e2a9f7e2963c.svg","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.087Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/0d29e2a9f7e2963c.svg HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=90%2BaJKqDsrq%2BObJwLax51YZFAf%2F7aDLYeQVVYFejrfX972oSLI0VbajBhNtiIQasffgUdHolWgQB7KFVZwyzQCe%2B741jU%2BRRNIQCLLoSwvIVVNKBjCQ6pGaV7zHOaWQ%3D\"}]}\r\nlast-modified: Mon, 27 Apr 2026 12:03:28 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69ef5090-828\"\r\ncf-ray: 9f890839b9d45689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2088,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"560d478bca0a5ebc0371ead4c66b6728","sha1":"797b34ed7f4b2b2ee6474126ec193c52a63f7e3a","sha256":"643e5b530d54a23f2c63056e1128c64190eb119845ad883a20261934fa9d3296","sha512":"ed7f07f7cc6cce4ed8f566769e5361c223f3583ebe1bbbf8df0766f2526878182306657ae36d06dbf908653b91dc9eaed5055a9805bc6de598c8b80b2ec97339","ssdeep":"","tlshash":"8f4185e013f820d856c2cb1255a56c47afe218d7378e4818f1ab098afb3d5e74653ae4","first_seen":"2026-05-08T14:08:07.464927Z","last_seen":"2026-05-08T15:22:55.310224Z","times_seen":3,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":84,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/cb3d670a92d53d57.css","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/cb3d670a92d53d57.css HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdkonlne.mom/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: text/css\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UqIgS1PcLGvlcNOyOnJzum7dpJerlsCIs43uh6DGDOpkIys%2FoyK5qmD8KGlYu8j86buf6Fb2E7YCbcFQ9T3ZoofvGf8mP6411c50bD%2FhkL38h2SqV2WBqBKrSa%2BQ5pY%3D\"}]}\r\nlast-modified: Mon, 27 Apr 2026 12:03:29 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69ef5091-312\"\r\ncf-ray: 9f890839a9cc5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":786,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (725), with CRLF line terminators","md5":"59f409e740dc239425129a3bf08c9a65","sha1":"8d718477735031ce65385ffb48ebfed8f9ac1aee","sha256":"9a79f228dc2e4f950b30034f92f84fab1f16f5553879d2676d9bf73059119d77","sha512":"517291aa21090c3abcb16b0bed6a1bf7a45a31ff3d9a8b7d4ba3e96b9c67b559bf569285fe4f331e966752b98de15a10e1df6708a36cbdde0659f235ad346760","ssdeep":"","tlshash":"4a01bdb0910d2e3c7f73c2276296effde2265053e35019bab02255500fac0881a6e019","first_seen":"2026-05-08T14:08:07.466301Z","last_seen":"2026-05-08T15:22:55.308408Z","times_seen":3,"resource_available":false,"data":null}},"time_used":87,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":87,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/8581156324521997.css","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.082Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/8581156324521997.css HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdkonlne.mom/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 27 Apr 2026 12:09:04 GMT\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\netag: W/\"69ef51e0-93d\"\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0xfwlQljaewMku01PrBHDWQ0J2ZHNlqwen9C6X5ueRL9BJGuUbJUa%2Ftl%2BDxKXI9KPOKRUJhHNztVkwmLXOCyJBMTZtfayGJBODBt%2FRgxI6eL4%2FSf56XPfLPZVuoNoVw%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f890839a9ce5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2365,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2365), with no line terminators","md5":"5099bcb0134a6b817d7160f333856156","sha1":"0fa1e90d39f789f0194092573abbaca13c122909","sha256":"aba1e4743e436a90ff8d0ddac9c65a83f6fc210203380043f461d794c110dead","sha512":"9ecec459ec95ea515dba224bf5d71491f72f2b7acbf350e546afb983128b203d93a5952b6a880132a7f8307eceb1110e3a556a22c504ecb61ca953d3dd63e58d","ssdeep":"","tlshash":"dc41c0e3c7c2b91db42bc133a1e1b57823699112e9474b7b3135d26496eb3b827e3b44","first_seen":"2026-05-08T14:08:07.467191Z","last_seen":"2026-05-08T15:22:55.296426Z","times_seen":3,"resource_available":false,"data":null}},"time_used":73,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":73,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/736456b30c872e35.bin","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.202Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/736456b30c872e35.bin HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdkonlne.mom/static/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 93816\r\npriority: u=4,i=?0\r\nlast-modified: Mon, 27 Apr 2026 12:03:28 GMT\r\netag: \"16e78-6506fe7094400\"\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yRyllSO6nq9yjqkM34CypYmITS18%2BELwqh5QebeRTt2xpINTmN8BrqT%2BG47%2BSmRHxzbX0hy7pFDdFkUYIotSufQp42TX%2B3iEMBnwLpn9IbvXu6bCS%2FIj9FJ%2BcWlQsmo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f89083a89e45689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":93816,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, digitally signed, 18 tables, 1st \"DSIG\", 26 names, Macintosh, Copyright 2016 The Muli Project Authors (contact@sansoxygen.com)MuliBold2.000;UKWN;Muli-BoldMuli","md5":"557f369c1c3c1a1b80b26ab8a91a6979","sha1":"bc94d321e64d9b7bce62250064a48bedf72aaa17","sha256":"63890d8aa2abbfa52e5fdb58d07f32865c3e618b367569bd3a756a94058309ad","sha512":"a62d5cf2edf3f2551bb31a3e4e5977b49937eae5d97e3db1449b6e3514972c2884150701124ce9a61ddb9b6d06d08e1ac6a588fd712f8862a02b4adead73ba78","ssdeep":"1536:uGl+V+ZJytxWw0N9UWhX6tXWfzWasfbceg3BVhFlvZMI0AYJB9AzKBFyRJyD:uGYnWRNfXtzWAVBV330ASGKBAED","tlshash":"c8930917b756e70be8150e3887a953e5b355f8903f26474b614d6e9bbc8b0ac0c4a3ce","first_seen":"2023-04-13T00:20:14Z","last_seen":"2026-05-08T15:22:55.30298Z","times_seen":44,"resource_available":false,"data":null}},"time_used":114,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":45,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hardenedsteel.info/api/check_status?session_id=v77kkgf9fqdmowzp422","fqdn":"hardenedsteel.info","domain":"hardenedsteel.info","tld":"info"},"ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:45.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hardenedsteel.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Apr 2026 12:41:29 GMT","end":"Wed, 29 Jul 2026 12:41:28 GMT"},"fingerprint":{"sha1":"4D:CF:48:19:4E:13:29:41:6B:7A:33:E1:B0:F5:B0:6B:08:35:DA:BF","sha256":"90:52:69:0D:BF:F9:57:FE:F9:6F:4E:84:12:DE:DB:E4:43:47:24:4D:69:86:2D:A7:02:55:C0:DB:9D:09:31:B7"}}},"request":{"raw":"GET /api/check_status?session_id=v77kkgf9fqdmowzp422 HTTP/1.1\r\nHost: hardenedsteel.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vdkonlne.mom\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:45 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 48\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cMpvQ0SwsTXFARtiz8%2Bw0wTc0iGREINHhN9MYL58MVjEcJhQfxLlEc%2Fft3YK%2Fyec1isa%2Fd%2BzVKaZvk7Bf0qTLmRCCWz4AjzQ817ePWPqUuWLAcEb2nw7RzNIF5nbzuoOlf%2BIXww%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f89085598b856c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d36e358b4d94481c2f2ffd77ffef71ba","sha1":"044c19fdabc21d93e310d7c93323c66bd2852c2e","sha256":"840b1b93f2a6e769098c783af75698c74681d652efa54d9a9ef740908fb0e647","sha512":"0b01a8c5ace399cab706df2f3467b9bf98b7403a7ab9f0e92b753b052a096871d21b874eb66575c122da5d7640e2736b8400009042b00d16ead94398f1b7cefe","ssdeep":"","tlshash":"a590040d404111ff0545f454457c557033dc51c0d4705f1cc044c10c77011f15d517cc","first_seen":"2026-03-16T08:24:16.115052Z","last_seen":"2026-05-08T15:22:55.294948Z","times_seen":4,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-08T14:07:40.760Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 08 May 2026 14:07:40 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 07 May 2026 09:35:12 GMT\r\nvary: Accept-Encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IMekZONORQ0WhHwJdB%2FyKs2OEcSA3rB2Yzk3rgnNcDctVBYaH7hfJoJ2xuWRK%2BE6fV6oGD5LoQgbhYmpDOfjCiHsVym%2FlXhR3UIpJLNWYVvOuONeifJMBkpXpaE%2BrxA%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9f890838498a49c5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":23121,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (1299)","md5":"99fc3358b9e758fb12f1d24fd3506eed","sha1":"c84497012ed5baec914b695b8409634a30da3ca9","sha256":"f68339aebb21de7c6dc90dfe32d48ca5372683b8ff17e26096cf10fbb4e46b80","sha512":"f9852397b8c236efb2134f0cb0fc1d2b6a2a24f21f0b20fd183f76c0e854cf3b3a4984199953731d8a37480ebcb83f3c7646abfca423f3cc31d066c31fbfab97","ssdeep":"384:DvpIDzKEfaJ/DvB4bLn8MUaTEmpfCJ2VFE855dsp8X1pQ4+1ObvHE9CaeoZOebnn:DpSNS4bLnFlTEmpfO2Vdnsp8XB+1B9Cg","tlshash":"67a2f6236474413aa093c3d464e16f8f3ab5d207cb1a1fb86578957ccecada12e2758e","first_seen":"2026-05-08T14:08:07.469685Z","last_seen":"2026-05-08T15:22:55.301116Z","times_seen":3,"resource_available":true,"data":null}},"time_used":235,"timings":{"blocked":82,"dns":67,"connect":1,"send":0,"wait":71,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/0f9a7cd11c9abaa1.css","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.071Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/0f9a7cd11c9abaa1.css HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdkonlne.mom/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: text/css\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UMSMjKdLO%2F2bgSaUc7EIVauyTMmOa2zP1GbpMU47mUIHiI4oqFvpDLhqM0yKfFqA5Vy%2B5U70djVh1ffdasJF6DOQtTIbRlczBqd1ZJHqB5nboRvQe9FmfYcWCv4Pu5w%3D\"}]}\r\nlast-modified: Mon, 27 Apr 2026 12:09:04 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69ef51e0-221\"\r\ncf-ray: 9f890839a9ca5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":545,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (545), with no line terminators","md5":"055cd48348d7741546ba76b9fbc4f84d","sha1":"fd4ebe73b708dfa0e80c9447dce3b49c1c1e75aa","sha256":"e884b6149eac1b3dd0f01c81ff7c854ea94a2553d7b2f661af77b960ae6767a7","sha512":"dae1b2330ac8c155cc8434ad1bbef3cae3d6eaa8f579321381b4c3d8208a4326a410a2eb348bb7baf452ac25654e92dadb5bca84d210dbe7927a017deb8d8049","ssdeep":"","tlshash":"c5f0da97dd42f1271835803cdc53aafad5fdc13037b25022c47a49e22673a7dd65a4ca","first_seen":"2026-05-08T14:08:07.470612Z","last_seen":"2026-05-08T15:22:55.301688Z","times_seen":3,"resource_available":false,"data":null}},"time_used":71,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":71,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/6130fb1a0ba9387d.svg","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.088Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/6130fb1a0ba9387d.svg HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5PwF3LuKTDp6a71fZ5fLeKJ5Plpu7tcnMHqKAZmR5%2F2zFEucUKpojchUwjgfjsWBjybB5p%2FFGXkSXli%2Bu3UzIT2LcsMam5xtcHC5u4rDth4ZF3NRDQuOCtYKAfAXe1s%3D\"}]}\r\nlast-modified: Mon, 27 Apr 2026 12:03:28 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69ef5090-765\"\r\ncf-ray: 9f890839b9d55689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1893,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"84a2ad23281badb97b7cf797b61d518d","sha1":"03668b71400e631b87471f202f0a80e14a460a0d","sha256":"12019e2ab9398fceb6b2ad37e6a09a516ed7685928922f345f48aa8310b6da34","sha512":"1fe0efd4e218bfd067b8abbf472d07b51e73d66c37cbf2d875c0761e0be0741912034e090555d32f3c7b164759dae5592d6b57979a48ad40d36817c928117620","ssdeep":"","tlshash":"2b4167cd27f4b2fca045dbaa22216159eebaf4f137398744f1881c0923255e3e15e897","first_seen":"2026-05-08T14:08:07.471563Z","last_seen":"2026-05-08T15:22:55.310883Z","times_seen":3,"resource_available":false,"data":null}},"time_used":64,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":64,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hardenedsteel.info/?sid=vdk","fqdn":"hardenedsteel.info","domain":"hardenedsteel.info","tld":"info"},"ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.207Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hardenedsteel.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Apr 2026 12:41:29 GMT","end":"Wed, 29 Jul 2026 12:41:28 GMT"},"fingerprint":{"sha1":"4D:CF:48:19:4E:13:29:41:6B:7A:33:E1:B0:F5:B0:6B:08:35:DA:BF","sha256":"90:52:69:0D:BF:F9:57:FE:F9:6F:4E:84:12:DE:DB:E4:43:47:24:4D:69:86:2D:A7:02:55:C0:DB:9D:09:31:B7"}}},"request":{"raw":"GET /?sid=vdk HTTP/1.1\r\nHost: hardenedsteel.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gX7NmBnqXqrKwbpyrniCbtNRqaVmZTcf9b1udhRGem5dOLdiDi0KDFJtiOdH6%2BsWUndhaZlJ1wqZzmMfki2c9h%2FsObf%2BmVuahwjGtLeVXe4FvR22%2F88DA6gA7s%2B%2B0BClVjduh1I%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9f89083bed3f569f-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6160,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"f4ce4a23d146e11ca16dc0e19b82deb1","sha1":"e1e3b0a0b8a39e1ef73c71524573495755b95c97","sha256":"245a0f61c281b21438c85b7930b79f2aa10db2a7e495a77bc6692f408f43bec4","sha512":"48eddd7c4f2c7c1c0aa901bc8ab506e89b9c34c1cd5f805714bfab1fcf993f4641c762b7ebffce7c732d1faf42d39f5302cc689ac9082304b1619091c9477cf4","ssdeep":"96:zQFpvNDPykTWUpfdlxSp9eKSechaXK5zP/NDwBJBwG:EFppH6UZxSpqechaOeBJBwG","tlshash":"b8d1b80e66e710214963b0798bab924879326207368bdd04ba5c5a806f5dc6dd7f2ffc","first_seen":"2026-05-08T14:08:07.472426Z","last_seen":"2026-05-08T15:22:55.305922Z","times_seen":3,"resource_available":true,"data":null}},"time_used":497,"timings":{"blocked":211,"dns":194,"connect":1,"send":0,"wait":74,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/1c5a2f09de5341e3.png","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.423Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/1c5a2f09de5341e3.png HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 27 Apr 2026 12:03:29 GMT\r\nvary: accept-encoding\r\npriority: u=6,i=?0\r\netag: W/\"69ef5091-236f\"\r\ncontent-encoding: gzip\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Sg7MVn9pVKL8mBURiDOGwb0H%2BpxavH6BMq1iNweFlNGKpwfpAhcD5V6167QOD1c%2Br9jqKXUAWH%2F1e1eE4rs8HRPVjcZn2H5yFNU06zgVXIJyYViskfjmeidI7wfg1ys%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f89083be9f95689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9071,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"7ff7481e3b0df8475f778af775b577ad","sha1":"d810aa9d7a8321bc931384e802c17946eb53074f","sha256":"be384c103096e0ea654739277969354af19457bac78ec30da25b1951d3fb8789","sha512":"68362781eb79c47173440696dbd5c0542701fb2466232af9f8596027bc9f0d50e5a670ebfaa6a89390522ff46ae6b6ec1a8594e2f2e9795f192daf3313aa9b75","ssdeep":"192:wI3JDDY9VSrd41B12WE4XzjRzbVDOnjyYoJgrR:wI3ZsIKHrbz9vVD+GfgrR","tlshash":"9c12bf0cfde8ada16341267314fae90b7e67c69342c7e4ab1e4bfd560b42005ac857db","first_seen":"2026-05-08T14:08:07.44992Z","last_seen":"2026-05-08T15:22:55.297846Z","times_seen":3,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":56,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hardenedsteel.info/api/check_status?session_id=v77kkgf9fqdmowzp422","fqdn":"hardenedsteel.info","domain":"hardenedsteel.info","tld":"info"},"ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:59.530Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hardenedsteel.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Apr 2026 12:41:29 GMT","end":"Wed, 29 Jul 2026 12:41:28 GMT"},"fingerprint":{"sha1":"4D:CF:48:19:4E:13:29:41:6B:7A:33:E1:B0:F5:B0:6B:08:35:DA:BF","sha256":"90:52:69:0D:BF:F9:57:FE:F9:6F:4E:84:12:DE:DB:E4:43:47:24:4D:69:86:2D:A7:02:55:C0:DB:9D:09:31:B7"}}},"request":{"raw":"GET /api/check_status?session_id=v77kkgf9fqdmowzp422 HTTP/1.1\r\nHost: hardenedsteel.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vdkonlne.mom\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:59 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 48\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F7eH6s7OKKfW1g%2FfAUE%2FdKXr9Ibl37rY6s5yiGOIOfEBLZgeCtC5Rc9CEfH5WDztxzcOJNqyr%2Bj9hpy9INygDb8TS%2FLAAf5ZeVnzSI4f1xsNqgX%2B0mdEnNN4hEwIMMmQ1cu6TRw%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f8908ad1d9c56c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d36e358b4d94481c2f2ffd77ffef71ba","sha1":"044c19fdabc21d93e310d7c93323c66bd2852c2e","sha256":"840b1b93f2a6e769098c783af75698c74681d652efa54d9a9ef740908fb0e647","sha512":"0b01a8c5ace399cab706df2f3467b9bf98b7403a7ab9f0e92b753b052a096871d21b874eb66575c122da5d7640e2736b8400009042b00d16ead94398f1b7cefe","ssdeep":"","tlshash":"a590040d404111ff0545f454457c557033dc51c0d4705f1cc044c10c77011f15d517cc","first_seen":"2026-03-16T08:24:16.115052Z","last_seen":"2026-05-08T15:22:55.294948Z","times_seen":4,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/54e83cef565db01e.svg","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.084Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/54e83cef565db01e.svg HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FMi7cN7L7GaHqZ9fsaFzPLCVY%2FqnL%2FZlrfUaW29vZ6H8ZrDhLjM%2B1cscj%2BOhQJevcLWv1t3hArm%2FNZKeECuhOD9v1T9AltOVHjjNSTilBKgLtICI%2BG6j%2BjT3ne87O9U%3D\"}]}\r\nlast-modified: Mon, 27 Apr 2026 12:03:28 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69ef5090-9de\"\r\ncf-ray: 9f890839a9d25689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2526,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3c7ac9b0677e5f6312d88c77ec7c1906","sha1":"19967738e4d7901ef876037a107c5827892a7b1e","sha256":"8a9c4b5f121f2144685e1db13ecc0cd1d1d6114d2c79e97b87fa71c51bb450d3","sha512":"377acea03d3cd963bee82de5dc41df19687bee4329fc26484e1e472cdd3a24bcc59baa356614eca502b6e4ae83daccd121d8a748777111acc321e505fb142d6e","ssdeep":"","tlshash":"f45176b7a79c2b7c4a414f0486e8685171d9a42af175d2dcdbb7a28376109f30178ea3","first_seen":"2026-05-08T14:08:07.47341Z","last_seen":"2026-05-08T15:22:55.299203Z","times_seen":3,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/39aaef75d6f8a234.svg","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.086Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/39aaef75d6f8a234.svg HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0YD8wp1yDPPAlSl3fTRbeqD%2BZ0gLpv25DLGf12qZ9vNhbix5NOQQpMCG3K6TDGf5M0tungEhe9Caw2OJsebgkm5BzsZIVDUxlgCoLitU1Ol%2FM1DZEgnEzNMbTw8efZ0%3D\"}]}\r\nlast-modified: Mon, 27 Apr 2026 12:03:28 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69ef5090-87d\"\r\ncf-ray: 9f890839a9d35689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2173,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"eec64670327af17166872b9f2f4c9d46","sha1":"8ff4562beb0dc170164a10910a0ec5ff48bddcb3","sha256":"c08b8566321c53212b903d9d79d1304ca6a2ce6fc0c89b1a267472285ee698bc","sha512":"f8606afd0fff458f1c96e25fcd0954e4b0776fe5d1cbb80a343f18b677fbd1070c2fbc54f7f33a8e6edd876727c5ab62ea8d4eacba6331a87628391e2f0a95fc","ssdeep":"","tlshash":"104131db27ec67f4e240175873219405bb7f247359d58280e20a8c026fa3bebc7d9e52","first_seen":"2026-05-08T14:08:07.474413Z","last_seen":"2026-05-08T15:22:55.299921Z","times_seen":3,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/dllgn-integration.js","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.091Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /dllgn-integration.js HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Thu, 07 May 2026 09:35:11 GMT\r\nvary: accept-encoding\r\npriority: u=3,i=?0\r\netag: W/\"69fc5ccf-bb6e\"\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yfvtpoo34P%2B6zGO0m7ODVj19RwWDikSpeiJb5JCn7ne%2F206Q3QvlrpmMBlzdwD5H1yyxLo5bsdEhHcJKZe0Ny4TbxNrZsxBVLF51XD2eD50UCjRztPRGi000yZI%2FSvQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f890839b9d75689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":47982,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"078b33062cf4325d0ee99e57da1fab55","sha1":"2acb767b31c6a4c6400a8f9599370e1c70d49419","sha256":"cfe928eec8a49dc75d31dee69162367daa2dbbd01e217feaa336886029412056","sha512":"365c8bee20aba79b312c4dd96491f77deca0e31941c680acd1b10769df3fc17f5d8bcb29b116404f213ad0a7a16fec6e98908b9857012fa07c0ed0206fb42f34","ssdeep":"768:OKCF1t2GPFKkj5uqSO1YaEo4B4B86uB7BFBmBiBNcMHTcB:OhB5PFKkCcMH8","tlshash":"b22382ba7af710374463b63e4fdf515835328403044aea213cac81656fd5d686bbafe8","first_seen":"2026-05-08T14:08:07.475273Z","last_seen":"2026-05-08T15:22:55.309022Z","times_seen":3,"resource_available":true,"data":null}},"time_used":66,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":65,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/1bf17a09ba2db4ed.svg","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/1bf17a09ba2db4ed.svg HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdkonlne.mom/static/907c0016bc8f3793.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MnWQV4POjOSdNNRBf5oj4EKo5ROsV7zyaX74V4%2BTM8ZeIIgCfSHXa%2FOEONIcwXSiUSO2YYzRDIPInwhzf3q46N8nja25qLZvtL0nuSvZVRh39Gr9gxm9xvpc5ODX8EU%3D\"}]}\r\nlast-modified: Mon, 27 Apr 2026 12:03:28 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69ef5090-5c8\"\r\ncf-ray: 9f89083a69e05689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1480,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"70d67f54bac4d37a48dec3b005130c28","sha1":"e653b4de7fd4403fe5300b15da63c3c52cbcc9fd","sha256":"eb4af38a1075ebb4eafaf15332c9a2d297a3213180e31f5cb1b825331548e6e5","sha512":"d29edf86a69c1783157c9df164f7516e19d6c0e4ab1eee346d9eedf2e0cfd6a48bb720f6e76e18a4d4e816316331c32ecfa071280c8fd46673b98a880bc9c41f","ssdeep":"","tlshash":"76310c6242c5a43be031c68df7e0d156eb3a71ef96d58190f68e2a8f2f306e20a87554","first_seen":"2026-05-08T14:08:07.476288Z","last_seen":"2026-05-08T15:22:55.311422Z","times_seen":3,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hardenedsteel.info/api/check_status?session_id=v77kkgf9fqdmowzp422","fqdn":"hardenedsteel.info","domain":"hardenedsteel.info","tld":"info"},"ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:43.528Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hardenedsteel.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Apr 2026 12:41:29 GMT","end":"Wed, 29 Jul 2026 12:41:28 GMT"},"fingerprint":{"sha1":"4D:CF:48:19:4E:13:29:41:6B:7A:33:E1:B0:F5:B0:6B:08:35:DA:BF","sha256":"90:52:69:0D:BF:F9:57:FE:F9:6F:4E:84:12:DE:DB:E4:43:47:24:4D:69:86:2D:A7:02:55:C0:DB:9D:09:31:B7"}}},"request":{"raw":"GET /api/check_status?session_id=v77kkgf9fqdmowzp422 HTTP/1.1\r\nHost: hardenedsteel.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vdkonlne.mom\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:43 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 48\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HBXj7vc%2Fdh4d%2FfaLgVEkw3dYWs2DiOhLYok5%2BTIzfa1Ff%2BEpXCcULMUAaI2Vyr%2Fsyjr%2Bwp85rR6oz6O2dWGLxAxdoJEtz0F57j0gILj0jTI%2F7Rnt01gA9qvt4v1XZvBS%2BJneQsU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f890849186856c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d36e358b4d94481c2f2ffd77ffef71ba","sha1":"044c19fdabc21d93e310d7c93323c66bd2852c2e","sha256":"840b1b93f2a6e769098c783af75698c74681d652efa54d9a9ef740908fb0e647","sha512":"0b01a8c5ace399cab706df2f3467b9bf98b7403a7ab9f0e92b753b052a096871d21b874eb66575c122da5d7640e2736b8400009042b00d16ead94398f1b7cefe","ssdeep":"","tlshash":"a590040d404111ff0545f454457c557033dc51c0d4705f1cc044c10c77011f15d517cc","first_seen":"2026-03-16T08:24:16.115052Z","last_seen":"2026-05-08T15:22:55.294948Z","times_seen":4,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hardenedsteel.info/api/check_status?session_id=v77kkgf9fqdmowzp422","fqdn":"hardenedsteel.info","domain":"hardenedsteel.info","tld":"info"},"ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:51.536Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hardenedsteel.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Apr 2026 12:41:29 GMT","end":"Wed, 29 Jul 2026 12:41:28 GMT"},"fingerprint":{"sha1":"4D:CF:48:19:4E:13:29:41:6B:7A:33:E1:B0:F5:B0:6B:08:35:DA:BF","sha256":"90:52:69:0D:BF:F9:57:FE:F9:6F:4E:84:12:DE:DB:E4:43:47:24:4D:69:86:2D:A7:02:55:C0:DB:9D:09:31:B7"}}},"request":{"raw":"GET /api/check_status?session_id=v77kkgf9fqdmowzp422 HTTP/1.1\r\nHost: hardenedsteel.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vdkonlne.mom\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:51 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 48\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VQQyyVOeTjaF4s45%2BPGx5vyMHsOFXauBOsi1cKfge2oisiC4evs3xWzQrpQgkgF9A2C2M0LQtsk%2B5AfQX2EcAZ4VacOqZCQ%2Br2pe1GyjhufJFgG0qEuyzLJvkH6V0qWLfbBxPc8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f89087b1a8d56c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d36e358b4d94481c2f2ffd77ffef71ba","sha1":"044c19fdabc21d93e310d7c93323c66bd2852c2e","sha256":"840b1b93f2a6e769098c783af75698c74681d652efa54d9a9ef740908fb0e647","sha512":"0b01a8c5ace399cab706df2f3467b9bf98b7403a7ab9f0e92b753b052a096871d21b874eb66575c122da5d7640e2736b8400009042b00d16ead94398f1b7cefe","ssdeep":"","tlshash":"a590040d404111ff0545f454457c557033dc51c0d4705f1cc044c10c77011f15d517cc","first_seen":"2026-03-16T08:24:16.115052Z","last_seen":"2026-05-08T15:22:55.294948Z","times_seen":4,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hardenedsteel.info/api/check_status?session_id=v77kkgf9fqdmowzp422","fqdn":"hardenedsteel.info","domain":"hardenedsteel.info","tld":"info"},"ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:53.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hardenedsteel.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Apr 2026 12:41:29 GMT","end":"Wed, 29 Jul 2026 12:41:28 GMT"},"fingerprint":{"sha1":"4D:CF:48:19:4E:13:29:41:6B:7A:33:E1:B0:F5:B0:6B:08:35:DA:BF","sha256":"90:52:69:0D:BF:F9:57:FE:F9:6F:4E:84:12:DE:DB:E4:43:47:24:4D:69:86:2D:A7:02:55:C0:DB:9D:09:31:B7"}}},"request":{"raw":"GET /api/check_status?session_id=v77kkgf9fqdmowzp422 HTTP/1.1\r\nHost: hardenedsteel.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vdkonlne.mom\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:53 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 48\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gWILt%2B03Y96Wj5aHbOIT4tAYQNpYDN0ybIYLceqIEx3W%2FBbwZ5ppsruqpCw%2F5XyZ4mDMWb6GHesLpbJjo71cjs3vFzX8a2Avd4MzfrkTtrwueAET7QwDS6OnUYa4rypH0kIYSC8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f8908879bb056c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d36e358b4d94481c2f2ffd77ffef71ba","sha1":"044c19fdabc21d93e310d7c93323c66bd2852c2e","sha256":"840b1b93f2a6e769098c783af75698c74681d652efa54d9a9ef740908fb0e647","sha512":"0b01a8c5ace399cab706df2f3467b9bf98b7403a7ab9f0e92b753b052a096871d21b874eb66575c122da5d7640e2736b8400009042b00d16ead94398f1b7cefe","ssdeep":"","tlshash":"a590040d404111ff0545f454457c557033dc51c0d4705f1cc044c10c77011f15d517cc","first_seen":"2026-03-16T08:24:16.115052Z","last_seen":"2026-05-08T15:22:55.294948Z","times_seen":4,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hardenedsteel.info/api/check_status?session_id=v77kkgf9fqdmowzp422","fqdn":"hardenedsteel.info","domain":"hardenedsteel.info","tld":"info"},"ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:57.531Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hardenedsteel.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Apr 2026 12:41:29 GMT","end":"Wed, 29 Jul 2026 12:41:28 GMT"},"fingerprint":{"sha1":"4D:CF:48:19:4E:13:29:41:6B:7A:33:E1:B0:F5:B0:6B:08:35:DA:BF","sha256":"90:52:69:0D:BF:F9:57:FE:F9:6F:4E:84:12:DE:DB:E4:43:47:24:4D:69:86:2D:A7:02:55:C0:DB:9D:09:31:B7"}}},"request":{"raw":"GET /api/check_status?session_id=v77kkgf9fqdmowzp422 HTTP/1.1\r\nHost: hardenedsteel.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vdkonlne.mom\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:57 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 48\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tqklrKWiwAsEZk%2B5m7dU8s63e8M14kQlQvVcEq2mtEYT1TgJADm0HJIDW5kvfNZSOgVnMr3s2QXootWNphOgCbTyVrypHO9cOzWzY39Lgs4EgPnMa07e%2Fn182BGRpYsbUHS1LlM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f8908a09cf156c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d36e358b4d94481c2f2ffd77ffef71ba","sha1":"044c19fdabc21d93e310d7c93323c66bd2852c2e","sha256":"840b1b93f2a6e769098c783af75698c74681d652efa54d9a9ef740908fb0e647","sha512":"0b01a8c5ace399cab706df2f3467b9bf98b7403a7ab9f0e92b753b052a096871d21b874eb66575c122da5d7640e2736b8400009042b00d16ead94398f1b7cefe","ssdeep":"","tlshash":"a590040d404111ff0545f454457c557033dc51c0d4705f1cc044c10c77011f15d517cc","first_seen":"2026-03-16T08:24:16.115052Z","last_seen":"2026-05-08T15:22:55.294948Z","times_seen":4,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/907c0016bc8f3793.css","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.073Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/907c0016bc8f3793.css HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdkonlne.mom/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 27 Apr 2026 12:09:04 GMT\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\netag: W/\"69ef51e0-daa\"\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4Ms8WfmdkPtMFd7QHmf97%2FsdUd16BbsIowT9ob90Va9bQDKOPzKcliM%2F01s8izxT7J9LEpKD4F84V5rIRqUyUy9PuMInRugyXl9SeQdIWmgS%2Btxnv1BmAbHxhsRCS%2BY%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f890839a9c95689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3498,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3498), with no line terminators","md5":"b9bc02bafcf8358fbde515b54c1daba9","sha1":"cf9063a685b24a89f4bf62bf323e8d0904ba5d05","sha256":"ee4b8d9de2001f3d36fcb34eb259db3b0a78a9e3bca43784e0e139c96451fb51","sha512":"274db80a1744714ff4d649489860c7a2fbc041b6a95eb640cb6ec7ea28655acf7f63594bf9804094bfc8b68de7d4b24cebff19822050660623b5adfc01224f3e","ssdeep":"","tlshash":"cd71ab30a545b049fc57a76372a262653a3f41036226ef3db97628b5cff64e0076724f","first_seen":"2026-05-08T14:08:07.477168Z","last_seen":"2026-05-08T15:22:55.295802Z","times_seen":3,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/e78e32298f1e185e.css","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.075Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/e78e32298f1e185e.css HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdkonlne.mom/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 27 Apr 2026 12:09:04 GMT\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\netag: W/\"69ef51e0-10a8\"\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Bd3p%2FvVMKyXycpDDuSc%2Fy9njbPb9WL0R99NEOI2m2bwRfXaSWptG4QDt89lJO1yBT%2BNMiiFWvzlFW1UrWzE2O7MJZwoHeJiKB7csl8PEL9AH1VP0bXUEbouIWQuiQ0A%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f890839a9cb5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4264,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (4264), with no line terminators","md5":"b061552adaf76e6f4bc324dc7d51c1b0","sha1":"634cd57b796ffae8cc65645a9c0657cde75d9ad2","sha256":"d1c3d0216560134b9150fbbf48b3540d03df3ca5c79ac50eb43cf25b49fe5864","sha512":"156118b9ddca06f036eac2fe99b61b0f5401c51b3370f2f29253896e6aceb84fbb28f1df761230c1eebd80450c3b3b3ae232420c13386c28d50763bc5a6f3bca","ssdeep":"96:ywB0ZkyEb1uaI3YhBt6bJYU+DwOjJkpkxNtVFYJkBobatuSPLJWt65DDugIMq4A8:ywB0ZkyEbkJjGTtu7wANbuKir","tlshash":"d7914ec0e541f81f3d068631a9aa1a5f632685d1ca919b3f443b50eb62cf8dd133ee72","first_seen":"2026-05-08T14:08:07.478075Z","last_seen":"2026-05-08T15:22:55.307787Z","times_seen":3,"resource_available":false,"data":null}},"time_used":69,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hardenedsteel.info/api/check_status?session_id=v77kkgf9fqdmowzp422","fqdn":"hardenedsteel.info","domain":"hardenedsteel.info","tld":"info"},"ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:42.045Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hardenedsteel.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Apr 2026 12:41:29 GMT","end":"Wed, 29 Jul 2026 12:41:28 GMT"},"fingerprint":{"sha1":"4D:CF:48:19:4E:13:29:41:6B:7A:33:E1:B0:F5:B0:6B:08:35:DA:BF","sha256":"90:52:69:0D:BF:F9:57:FE:F9:6F:4E:84:12:DE:DB:E4:43:47:24:4D:69:86:2D:A7:02:55:C0:DB:9D:09:31:B7"}}},"request":{"raw":"GET /api/check_status?session_id=v77kkgf9fqdmowzp422 HTTP/1.1\r\nHost: hardenedsteel.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vdkonlne.mom\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:42 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 48\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UwrH%2BeD7badOPVxaMsUSfKxUgoeg3lvm88cjWjGxnIFOvcwkPUVx%2BcfyjKNB8FjlYbS5P7%2FLsjGOdSZQpxW2Gmrpelu3kj7pweuUMzS0b0Yw1grznXGr3jTMPkxBU1xpRhH9Dxc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f89083feff356c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d36e358b4d94481c2f2ffd77ffef71ba","sha1":"044c19fdabc21d93e310d7c93323c66bd2852c2e","sha256":"840b1b93f2a6e769098c783af75698c74681d652efa54d9a9ef740908fb0e647","sha512":"0b01a8c5ace399cab706df2f3467b9bf98b7403a7ab9f0e92b753b052a096871d21b874eb66575c122da5d7640e2736b8400009042b00d16ead94398f1b7cefe","ssdeep":"","tlshash":"a590040d404111ff0545f454457c557033dc51c0d4705f1cc044c10c77011f15d517cc","first_seen":"2026-03-16T08:24:16.115052Z","last_seen":"2026-05-08T15:22:55.294948Z","times_seen":4,"resource_available":false,"data":null}},"time_used":58,"timings":{"blocked":16,"dns":1,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hardenedsteel.info/api/check_status?session_id=v77kkgf9fqdmowzp422","fqdn":"hardenedsteel.info","domain":"hardenedsteel.info","tld":"info"},"ip":{"addr":"104.21.78.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:49.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hardenedsteel.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Apr 2026 12:41:29 GMT","end":"Wed, 29 Jul 2026 12:41:28 GMT"},"fingerprint":{"sha1":"4D:CF:48:19:4E:13:29:41:6B:7A:33:E1:B0:F5:B0:6B:08:35:DA:BF","sha256":"90:52:69:0D:BF:F9:57:FE:F9:6F:4E:84:12:DE:DB:E4:43:47:24:4D:69:86:2D:A7:02:55:C0:DB:9D:09:31:B7"}}},"request":{"raw":"GET /api/check_status?session_id=v77kkgf9fqdmowzp422 HTTP/1.1\r\nHost: hardenedsteel.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vdkonlne.mom\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:49 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 48\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=E4QDvu6tgLpx2cuPid0YDlo%2F%2Fsk8SmKmvZj0if%2FcubDN6A6trvSzx0VGu1QxbpkDgrYsyVVPMPVeIURmLjjmqvvW3nx2Ay2wbtcMcJfaBaevtEBJRy1kbvtjh4urJA9fxRDHNnY%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f89086e99a456c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d36e358b4d94481c2f2ffd77ffef71ba","sha1":"044c19fdabc21d93e310d7c93323c66bd2852c2e","sha256":"840b1b93f2a6e769098c783af75698c74681d652efa54d9a9ef740908fb0e647","sha512":"0b01a8c5ace399cab706df2f3467b9bf98b7403a7ab9f0e92b753b052a096871d21b874eb66575c122da5d7640e2736b8400009042b00d16ead94398f1b7cefe","ssdeep":"","tlshash":"a590040d404111ff0545f454457c557033dc51c0d4705f1cc044c10c77011f15d517cc","first_seen":"2026-03-16T08:24:16.115052Z","last_seen":"2026-05-08T15:22:55.294948Z","times_seen":4,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":34,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vdkonlne.mom/static/97c28be14cffb7c6.jpg","fqdn":"vdkonlne.mom","domain":"vdkonlne.mom","tld":"mom"},"ip":{"addr":"172.67.155.84","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vdkonlne.mom/","date":"2026-05-08T14:07:41.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vdkonlne.mom","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 08:15:14 GMT","end":"Wed, 05 Aug 2026 08:15:13 GMT"},"fingerprint":{"sha1":"1E:0F:A7:67:6A:6B:E2:9E:8D:F1:27:00:4F:67:5D:F1:F4:2A:D4:6F","sha256":"8D:85:04:B7:0C:91:D3:33:A4:4A:EA:F2:33:C2:40:F7:94:20:8D:0F:A3:48:EC:EA:C2:EB:CF:08:FE:41:34:02"}}},"request":{"raw":"GET /static/97c28be14cffb7c6.jpg HTTP/1.1\r\nHost: vdkonlne.mom\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vdkonlne.mom/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 08 May 2026 14:07:41 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 27 Apr 2026 12:03:28 GMT\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\netag: W/\"69ef5090-3984a\"\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KcYv%2FbSBwMg7glWBfcr3lhgF1RXSokPOPYOtsZGhFmWVIurvEAQk8BUZVHUfUWc3AFaWYwSY%2BzdJgWxbLfjejGhDUTO5vjwzZ02MXE%2BYeNASI6cr4Jg3HoFKABoPE9A%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f89083a69df5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":235594,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3","md5":"3f5d9b43510d76f93495224db23d0dcc","sha1":"60082056f4b2a181a274f3cc3269c162b200620c","sha256":"2b1ad9165b0254df8d9f8846c2d2fa34f9086ca0f612a1a337ab2f047a38d25c","sha512":"8ac87753dd9b466027389ef92e785bf23cc95ca9a586f34c187fef02a6d380ab4347546191218b84092516d0f6348e56828f248b476d2a75c772dd9d715e3c68","ssdeep":"3072:1MmKuXG0yFeEd21XyZKrhI/opmCRRQXs2RmO1VLRyNnAYC4BblnkPGPxP2+dazPu:1MXuXGFWlI/gkXs2RmENseIP2+esTv","tlshash":"cd34233d0683f715f6663ab89c120951af1b1e3a50fc208306a46e5e57cfdf77b689a0","first_seen":"2026-05-08T14:08:07.479305Z","last_seen":"2026-05-08T15:22:55.30962Z","times_seen":3,"resource_available":false,"data":null}},"time_used":133,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":78,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-08","alert":"Sinkholed","trigger":"vdkonlne.mom","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}