{"report_id":"4f22869a-e722-437c-8794-9e09d8cdc6b2","version":6,"status":"done","tags":[],"date":"2026-06-02T13:17:19Z","url":{"schema":"http","addr":"validacionesuser.iceiy.com","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":0,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"final":{"url":{"schema":"https","addr":"validacionesuser.iceiy.com/?i=1","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"title":"Iniciar sesión en tu cuenta Microsoft","dom":{"size":28282,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (353)","md5":"e3a71938a1a02b51d383dc6cbb9e204a","sha1":"f5a5bc85f41d69e55964038a3151e214994ac77a","sha256":"a6839c68604e9081dd4454f39d3b4a0a9a44ef3fad642156111a62a5ec0ca47f","sha512":"7a935481a39b8fda471b9ffdf25e9a67defa702e087d74ec9d6df3c754cbca37b47d71c4a45197d0fea53f1b9b3369533a45cb42ca0c36bcf74d9fdf37c3e58d","ssdeep":"768:a5xv9vDTleymTbFDMR17FcKK1IdFh0dJhKNSC/:a5xMZOdFh0dJhKoC/","tlshash":"b0c2c696a9f309626413e0a837f79a063275c003d40ace253fec538c9f87bd9999379d","dom_hash":"domhash8d1c934eba43f2c61ac2c5c8300ad4e9","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"validacionesuser.iceiy.com","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":0,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-07T13:17:19Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"ads.vidoomy.com","ip":{"addr":"79.127.211.129","port":443,"asn":60068,"as":"Datacamp Limited","country":"Germany","country_code":"DE"},"domain_registered":"2017-02-22","domain_rank":294046,"first_seen":"2017-10-13T15:24:41Z","last_seen":"2026-06-02T00:09:04.893745Z","alert_count":0,"request_count":1,"received_data":275,"sent_data":432,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-05-31T22:26:05.480738Z","alert_count":0,"request_count":2,"received_data":825667,"sent_data":891,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-05-31T22:37:14.287473Z","alert_count":0,"request_count":1,"received_data":102980,"sent_data":478,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-05-31T22:21:48.210615Z","alert_count":0,"request_count":1,"received_data":519,"sent_data":480,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ajax.googleapis.com","ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":3691,"first_seen":"2012-05-22T10:38:03Z","last_seen":"2026-06-01T07:27:10.818968Z","alert_count":0,"request_count":1,"received_data":90462,"sent_data":455,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.freepnglogos.com","ip":{"addr":"78.46.22.25","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2016-10-07","domain_rank":880176,"first_seen":"2017-02-09T09:00:11Z","last_seen":"2026-05-26T19:41:58.59285Z","alert_count":0,"request_count":1,"received_data":46329,"sent_data":496,"comment":"","tags":null,"fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"region1.analytics.google.com","ip":{"addr":"216.239.34.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":22257,"first_seen":"2022-03-17T11:26:33Z","last_seen":"2026-05-31T22:50:38.396379Z","alert_count":0,"request_count":1,"received_data":860,"sent_data":1026,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.no","ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2001-02-26","domain_rank":92680,"first_seen":"2012-06-26T23:22:08Z","last_seen":"2026-05-31T22:47:07.964282Z","alert_count":0,"request_count":1,"received_data":580,"sent_data":667,"comment":"","tags":null,"fingerprints":null},{"fqdn":"validacionesuser.iceiy.com","ip":{"addr":"185.27.134.33","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2020-12-06","domain_rank":0,"first_seen":"2026-06-02T13:08:10.986619Z","last_seen":"2026-06-02T13:08:10.986619Z","alert_count":20,"request_count":5,"received_data":75519,"sent_data":2522,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]},{"name":"Google AdSense","description":"Google AdSense is a program run by Google through which website publishers serve advertisements that are targeted to the site content and audience.","website":"https://www.google.com/adsense/start/","common_platform_enumeration":"","icon":"Google AdSense.svg","categories":["Advertising"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]},{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"c.s-microsoft.com","ip":{"addr":"96.6.17.223","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"domain_registered":"2012-02-07","domain_rank":46140,"first_seen":"2013-11-06T15:56:27Z","last_seen":"2026-05-28T18:22:15.87808Z","alert_count":0,"request_count":1,"received_data":376,"sent_data":452,"comment":"","tags":null,"fingerprints":[{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]},{"name":"Azure Front Door","description":"Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.","website":"https://docs.microsoft.com/en-us/azure/frontdoor/","common_platform_enumeration":"","icon":"Azure.svg","categories":["Load balancers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"validacionesuser.iceiy.com/aes.js","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"756722c3542f271367cc3b074113a8ee","sha1":"c5c24b4cfc44d597fb7d82d79a7dcea4a8d07e2b","sha256":"ed1d3bd967abe66cff832561cb911c572a2f85fd6cffc32ef3cec68dbc60c7ce","sha512":"ec3293d425646848dc2cf5d3cebae22b91d99461d3565ed17599af961f6f0062167446f732e91ade94f7e589000cda7e85259a217c5ce571bc11c175435a4290","ssdeep":"","tlshash":"8d1150a5034607bcf6cd0ec8c40a321a21f1c04abe2112c9afb36ae77c3b8840034e26","size":1000,"data":"","first_seen":"2025-03-10T10:15:36.223346Z","last_seen":"2026-06-06T15:24:57.486708Z","times_seen":2173,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"validacionesuser.iceiy.com/?i=1","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"9f344a08e12c315055cec9b6838afa9d","sha1":"5de27d0b7dc5ba2507cb62061de335a4a5d3a4ac","sha256":"da6bc8a26c0ff237dad348e0e622d25866b0ece2d1ba1d7d7cab2eead532339d","sha512":"30e8877382d961a10585c78bb51b5c22880f1542e9f5f1a1c8a05946dc273f09fd3cfe1f0794c3c4a5d9b145df6200d189fe08232cd968c5315bfda2897a8bf6","ssdeep":"","tlshash":"43e02dcb70151cb270ee09f933f0e638b1032a08b8091c32cdfec8242818a87c81748c","size":336,"data":"","first_seen":"2023-03-07T12:04:41Z","last_seen":"2026-06-06T06:08:12.413723Z","times_seen":327,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ads.vidoomy.com/miarroba_23335.js","fqdn":"ads.vidoomy.com","domain":"vidoomy.com","tld":"com"},"ip":{"addr":"79.127.211.129","port":443,"asn":60068,"as":"Datacamp Limited","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"7ea4e093807794ce608f22228b0b9fc2","sha1":"b64baf2950e73f44ddffc7d66142e266150333b2","sha256":"1f61f04dc1f23cbcc7a15e0ff27bdb0927e769503b217b18ed294b07b936c3e0","sha512":"96557da8f701679fe92977ea799cfe0046bdbffbf95e24500ab8bb4e9e31a8d2c83ab064778339a64aec9124417bb00369a326cda47aa3122dd9dd1e279768d6","ssdeep":"","tlshash":"b0400003c0000000030000000033000000000000030c0000000000000000c000000000","size":7,"data":"","first_seen":"2024-04-02T22:34:01Z","last_seen":"2026-06-05T09:30:35.51961Z","times_seen":166,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"validacionesuser.iceiy.com/?i=1","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"4ba6d80bbf1aaa2f2276f35849082e44","sha1":"029bd59298feba13ff2253154b5a7311ffe785ea","sha256":"4b087871bd533cf62b4119b6b949ac3849f6b0612a307adaa6a1e8d86cbc6c87","sha512":"03d0866a4f130e9de2ea34e5fe735dbea2bf7734c72d044a8873aa50f4d8271c69d42519451698cafaa2c80bb709cc008c349512a421970a6a19589c5b2cb28d","ssdeep":"","tlshash":"b841aeeda5e364f091bbf07a575fea123936448b104cee10b95c0f956f804089771e97","size":2257,"data":"","first_seen":"2026-06-02T13:08:17.281956Z","last_seen":"2026-06-02T13:17:20.523299Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"validacionesuser.iceiy.com/?i=1","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"b30f0fdface89925a9eea80a1a6c65ff","sha1":"0b2e702e2f5ca5bab278ad5bb3266408cdaa8475","sha256":"73af97d890efcdfd200f91599899dab2452edc979cfa131a892f2ce8d63afd82","sha512":"a139081134d8d9df8871d627523799353add1c3a8a29e5143de6adfdca06a3a64fa43a4f3c96d6ff78a9e8afe288d307aecc8b142f08b5ead62a97d119a20fdb","ssdeep":"96:RdFhKzdJhcTRzb8xf+z1hMfTssFrxAFUF3JnyvvanHAKKKgrYg:RdFh0dJhWzb8AznMbsKy3anHwr3","tlshash":"13b1f115f8b319910573b1ad27fbc1047626404b2805ce107f6c9a9c3f56a6bb6b27de","size":5298,"data":"","first_seen":"2026-06-02T13:08:17.283736Z","last_seen":"2026-06-02T13:17:20.524205Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=GTM-T2VG59","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"abd0b65a059ac3460a39627a81475da7","sha1":"f3f46d60cb5bf244809050a4edad718d6f4b793b","sha256":"ffd3e30bac447aa95204551c9ca66d1c11ff8c385addea9b7296cc589d9887ee","sha512":"99dd2de3c11669b113524cbcda74dd1691b1dd5ddfc339fd2b24866a3ba5241cb669b6aa7df8856de2df160faed7b5aebb8529aba5b2221756a7753f97706437","ssdeep":"6144:obYDv43g2b07UgZjRV0FXSy4OlmqvhnPGdw:oV2ZjEhWw","tlshash":"4664f8cdb7dab46243a3a478503f014ba23a79e2f448c898f186d8d42e746694277f7d","size":326979,"data":"","first_seen":"2026-06-02T13:08:17.262128Z","last_seen":"2026-06-02T13:17:20.520178Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"validacionesuser.iceiy.com/?i=1","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"4f7086f0887f5755529b6a3370ff772d","sha1":"844e8a5992ccf37e0cdfc27cf2c3b7221d3a1f46","sha256":"eeed29e37cad5862d330be81ce1d38d50ad74b9909685aa09b94e55ab7c069ad","sha512":"20f5ce7e2a0b1c9887b7d6f8660069c18a086572e43791591aa3db44f1b3f2d394b7eeafaff98a0ccb1e29fa619842314eeeeaaa74f18cc89c4a52035854a10a","ssdeep":"","tlshash":"7ac08cea2953ac70a7fb0b924f5b3b452923f3b661801a22082262443525faf2252de5","size":178,"data":"","first_seen":"2024-11-01T19:41:01.366392Z","last_seen":"2026-06-06T06:08:12.413087Z","times_seen":244,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"validacionesuser.iceiy.com/","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"39c0953281994457e1a73b9c3540fc3a","sha1":"3f9e691ecd1429229b7d007d9dd517944970d051","sha256":"c488d2756d620297151ff6b31b2aae425bc4fe26afb7f57a207712605527f2b5","sha512":"8a55116990ada44b1752d768dec4ee9f7c9cf66fdd428884f5f7a9b05cbc8f64c4e3dccdc74654cb8f7e4e63b303d5e7d831b91af877301bc7bf48a5ee0dd2f4","ssdeep":"","tlshash":"49f04178e271a0e88fc15096083b914f94361ad6f512c0fbc406a3b09ad1eed1759e3f","size":614,"data":"","first_seen":"2026-06-02T13:16:25.80238Z","last_seen":"2026-06-02T13:17:20.525994Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"validacionesuser.iceiy.com/telgm.js","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"f5694f9a36219fb5f0c0210ba0ee6766","sha1":"a3e4ed31ce2b8f9a68a5a63a520128633c0c90f9","sha256":"4fcd741a9f432bc19b00489c1bf14473ddbfacc1eb794872bdd8f9f6570a313d","sha512":"4055c23dc23ae05ecf8fc9bcb24fe237c178da3cab68054f4c4b783a622ca55420b7ffe44e25a34e52b2bf14ad343ee37d8caa55bc9cb5c5f44e3ef2f8d9ce36","ssdeep":"","tlshash":"dcc01253e2060c26751181e5a317107d6ac66669608e6c8bc19be23520d863761325ea","size":179,"data":"","first_seen":"2026-06-02T13:08:17.258991Z","last_seen":"2026-06-02T13:17:20.519137Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","size":89476,"data":"","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-06-06T19:08:01.79487Z","times_seen":249117,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-C2Z4YC0WNE","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7d7e632c198c5a6815b69fdc85136a1a","sha1":"613866784c43f5be91cc67a086072f001e30c936","sha256":"48a2e298b50961e1fbc4529b35da354ea8f6b7a2b09e853f15e6672c7c894868","sha512":"1a69f3379edcb9d994e50b0f79d4b17c0aeb4f147a9251b98bd14c23f672d534e51cf5d7422e47431f7b737e5f60a8d2768011255bb14a9728b42308c13049a6","ssdeep":"6144:HutYDv41LBohF2b07UsaI52ZV9FXSy4OlmqtQ1o/nP5yVFQO:OpLBohJ552PQEIbQO","tlshash":"3eb4f9ceb3d674225296f478903f01cba97b25e2b45cc89ab189ccf02e7459a4177f78","size":497454,"data":"","first_seen":"2026-06-02T13:08:17.2658Z","last_seen":"2026-06-02T13:17:20.51229Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"validacionesuser.iceiy.com/banner.svg","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://validacionesuser.iceiy.com/?i=1","date":"2026-06-02T13:16:57.842Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iceiy.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 27 Mar 2026 00:00:00 GMT","end":"Thu, 25 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:24:71:C4:C4:07:BB:E5:80:30:EC:11:32:67:55:A7:60:0E:D8:39","sha256":"31:12:E9:3C:26:C5:0D:90:79:20:15:74:87:0E:91:26:43:BD:32:93:E3:DF:29:3E:B9:02:99:28:3D:EF:92:43"}}},"request":{"raw":"GET /banner.svg HTTP/1.1\r\nHost: validacionesuser.iceiy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://validacionesuser.iceiy.com/?i=1\r\nCookie: __test=188cba04b9362e07e22e4d846178a8a7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Tue, 02 Jun 2026 13:16:56 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 44327\r\nConnection: keep-alive\r\nLast-Modified: Thu, 11 Dec 2025 18:42:36 GMT\r\nETag: \"ad27-645b182305f00\"\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=0\r\nExpires: Tue, 02 Jun 2026 13:16:56 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":44327,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"57fee22710b04cebe1d5fccfc40a2850","sha1":"63f32442fd8c75956896b9677efb45c342fbc87d","sha256":"e122dfeee73db9cb846feea1467b85edb1ae624556c643a9c9cc41056508901b","sha512":"088b89fd6315dacfb236ad1b4cd1a935f7539b261f2fed41d4de11116b9aed65f492bd4bd1a9255cfdac2304be4fcc9afcf1c2bb00a49bf5b812fa69d70adb36","ssdeep":"768:iQZ4sjQjCWKkofku9aD5C0u2WiYynFC4dTZEyMxZDYUXCriSivNXnZNocmcJxpj:SsjQjCWKkofku9s5C0u2WfynFC4dTZEf","tlshash":"b413225ed72d39bbd44bc6ecea929008321d43d778d0838a95b9cf6f1469c875c4eba0","first_seen":"2025-03-08T13:20:19.243153Z","last_seen":"2026-06-05T02:05:35.179743Z","times_seen":3822,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"c.s-microsoft.com/favicon.ico?v2","fqdn":"c.s-microsoft.com","domain":"s-microsoft.com","tld":"com"},"ip":{"addr":"96.6.17.223","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://validacionesuser.iceiy.com/?i=1","date":"2026-06-02T13:16:57.889Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.microsoft.com","organization":"Microsoft Corporation"},"issuer":{"commonName":"Microsoft TLS G2 RSA CA OCSP 04","organization":"Microsoft Corporation"},"validity":{"start":"Thu, 22 Jan 2026 19:55:21 GMT","end":"Sun, 17 Jan 2027 19:55:21 GMT"},"fingerprint":{"sha1":"AD:A5:F2:7D:8E:CE:C5:41:6F:5F:E1:90:43:31:0D:DD:30:5C:02:4B","sha256":"9F:17:B5:48:F7:D2:4F:30:9D:BC:AA:B5:71:57:6C:0C:A7:3B:80:55:9C:E6:9F:27:FE:29:5F:64:08:CC:57:BF"}}},"request":{"raw":"GET /favicon.ico?v2 HTTP/1.1\r\nHost: c.s-microsoft.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://validacionesuser.iceiy.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\nx-azure-ref: 20260602T131657Z-17c8c8d4f9crtflmhC1AMSwk9g0000000f40000000011gas\r\ncontent-encoding: gzip\r\ncache-control: max-age=604800\r\nexpires: Tue, 09 Jun 2026 13:16:57 GMT\r\ndate: Tue, 02 Jun 2026 13:16:57 GMT\r\naccess-control-allow-methods: GET,POST\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]},{"name":"Azure Front Door","description":"Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.","website":"https://docs.microsoft.com/en-us/azure/frontdoor/","common_platform_enumeration":"","icon":"Azure.svg","categories":["Load balancers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T19:09:46.661405Z","times_seen":16188449,"resource_available":true,"data":null}},"time_used":114,"timings":{"blocked":-1,"dns":33,"connect":1,"send":0,"wait":63,"receive":3,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ads.vidoomy.com/miarroba_23335.js","fqdn":"ads.vidoomy.com","domain":"vidoomy.com","tld":"com"},"ip":{"addr":"79.127.211.129","port":443,"asn":60068,"as":"Datacamp Limited","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://validacionesuser.iceiy.com/?i=1","date":"2026-06-02T13:16:57.527Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.vidoomy.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 06 Aug 2025 00:00:00 GMT","end":"Sun, 06 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"55:98:18:58:24:20:FE:84:4C:27:0C:05:FB:A9:D8:5D:88:E5:C4:9E","sha256":"C9:B1:D3:D2:CA:11:D4:95:5C:1B:D2:00:82:FA:DA:E7:61:4E:E3:64:29:FD:94:D2:19:75:12:82:FA:98:C7:0B"}}},"request":{"raw":"GET /miarroba_23335.js HTTP/1.1\r\nHost: ads.vidoomy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://validacionesuser.iceiy.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 02 Jun 2026 13:16:57 GMT\r\ncontent-type: application/javascript\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nvary: X-Vary-TCDN, Accept-Encoding\r\nage: 0\r\ntp-cache: miss\r\naccept-ranges: bytes\r\ncontent-length: 38\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with no line terminators","md5":"7ea4e093807794ce608f22228b0b9fc2","sha1":"b64baf2950e73f44ddffc7d66142e266150333b2","sha256":"1f61f04dc1f23cbcc7a15e0ff27bdb0927e769503b217b18ed294b07b936c3e0","sha512":"96557da8f701679fe92977ea799cfe0046bdbffbf95e24500ab8bb4e9e31a8d2c83ab064778339a64aec9124417bb00369a326cda47aa3122dd9dd1e279768d6","ssdeep":"","tlshash":"b0400003c0000000030000000033000000000000030c0000000000000000c000000000","first_seen":"2024-04-02T22:34:01Z","last_seen":"2026-06-05T09:30:35.51961Z","times_seen":166,"resource_available":true,"data":null}},"time_used":273,"timings":{"blocked":101,"dns":1,"connect":22,"send":0,"wait":63,"receive":0,"ssl":83},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-C2Z4YC0WNE","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://validacionesuser.iceiy.com/?i=1","date":"2026-06-02T13:16:58.162Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:51:35 GMT","end":"Thu, 30 Jul 2026 15:51:34 GMT"},"fingerprint":{"sha1":"4F:F6:A0:5C:88:9C:38:C1:57:D2:C2:16:50:CD:79:E3:67:50:CC:B0","sha256":"93:D6:F4:89:DB:C5:7B:E8:C8:73:F7:36:40:1B:87:32:83:AA:3F:54:8B:26:97:45:83:DB:E6:BF:FD:F5:70:33"}}},"request":{"raw":"GET /gtag/js?id=G-C2Z4YC0WNE HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://validacionesuser.iceiy.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 02 Jun 2026 13:16:58 GMT\r\nexpires: Tue, 02 Jun 2026 13:16:58 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 162693\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":497454,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"7d7e632c198c5a6815b69fdc85136a1a","sha1":"613866784c43f5be91cc67a086072f001e30c936","sha256":"48a2e298b50961e1fbc4529b35da354ea8f6b7a2b09e853f15e6672c7c894868","sha512":"1a69f3379edcb9d994e50b0f79d4b17c0aeb4f147a9251b98bd14c23f672d534e51cf5d7422e47431f7b737e5f60a8d2768011255bb14a9728b42308c13049a6","ssdeep":"6144:HutYDv41LBohF2b07UsaI52ZV9FXSy4OlmqtQ1o/nP5yVFQO:OpLBohJ552PQEIbQO","tlshash":"3eb4f9ceb3d674225296f478903f01cba97b25e2b45cc89ab189ccf02e7459a4177f78","first_seen":"2026-06-02T13:08:17.2658Z","last_seen":"2026-06-02T13:17:20.51229Z","times_seen":3,"resource_available":true,"data":null}},"time_used":136,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":64,"receive":72,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"validacionesuser.iceiy.com/","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-02T13:16:57.059Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iceiy.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 27 Mar 2026 00:00:00 GMT","end":"Thu, 25 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:24:71:C4:C4:07:BB:E5:80:30:EC:11:32:67:55:A7:60:0E:D8:39","sha256":"31:12:E9:3C:26:C5:0D:90:79:20:15:74:87:0E:91:26:43:BD:32:93:E3:DF:29:3E:B9:02:99:28:3D:EF:92:43"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: validacionesuser.iceiy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Tue, 02 Jun 2026 13:16:56 GMT\r\nContent-Type: text/html\r\nContent-Length: 853\r\nConnection: keep-alive\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":853,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (853), with no line terminators","md5":"5920daf33861f9860c474a26c7fe0d62","sha1":"a72985c9687b10380c5b239617f9a375c54a27e3","sha256":"b6a762ec871bade7ebe3829137d0c4243a5e087f0f6a48246dc24de4cc2246d2","sha512":"cb9ddf79a1ea883bca5f99a9fe60c771bd92e12a00724c04d0f0e4979852f8d622030d207e45e966ec2e09dcd8502487ee00bef04c1df89db28e763f4fb7a94b","ssdeep":"","tlshash":"450141b8eda1e0d5dfc000d11537d16f682596e5e611c8afc4c292e496e0bdc0e46d3a","first_seen":"2026-06-02T13:16:25.798856Z","last_seen":"2026-06-02T13:17:20.513454Z","times_seen":2,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":105,"dns":1,"connect":30,"send":0,"wait":30,"receive":0,"ssl":72},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Segoe+UI:wght@400;600\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://validacionesuser.iceiy.com/?i=1","date":"2026-06-02T13:16:57.528Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:15 GMT","end":"Thu, 30 Jul 2026 15:53:14 GMT"},"fingerprint":{"sha1":"19:42:B0:56:3A:E4:79:BF:8B:69:E2:50:F4:76:BF:1E:A9:D7:7A:49","sha256":"D7:FF:C1:46:95:F3:5F:08:04:B0:E1:A8:FE:14:FC:60:19:58:D6:C7:D3:6E:82:B3:64:07:E9:E1:CB:9A:27:8C"}}},"request":{"raw":"GET /css2?family=Segoe+UI:wght@400;600\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://validacionesuser.iceiy.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 400 Bad Request\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Tue, 02 Jun 2026 13:16:57 GMT\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"400","status_text":"Bad Request","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T19:09:46.661405Z","times_seen":16188449,"resource_available":true,"data":null}},"time_used":335,"timings":{"blocked":140,"dns":0,"connect":29,"send":0,"wait":46,"receive":0,"ssl":118},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://validacionesuser.iceiy.com/?i=1","date":"2026-06-02T13:16:57.532Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:15 GMT","end":"Thu, 30 Jul 2026 15:53:14 GMT"},"fingerprint":{"sha1":"19:42:B0:56:3A:E4:79:BF:8B:69:E2:50:F4:76:BF:1E:A9:D7:7A:49","sha256":"D7:FF:C1:46:95:F3:5F:08:04:B0:E1:A8:FE:14:FC:60:19:58:D6:C7:D3:6E:82:B3:64:07:E9:E1:CB:9A:27:8C"}}},"request":{"raw":"GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1\r\nHost: ajax.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://validacionesuser.iceiy.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"hosted-libraries-pushers\"\r\nreport-to: {\"group\":\"hosted-libraries-pushers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 31021\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 29 May 2026 06:22:38 GMT\r\nexpires: Sat, 29 May 2027 06:22:38 GMT\r\ncache-control: public, max-age=31536000, stale-while-revalidate=2592000\r\nage: 370459\r\nlast-modified: Fri, 08 May 2020 07:05:03 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":89476,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-06-06T19:08:01.79487Z","times_seen":249117,"resource_available":true,"data":null}},"time_used":294,"timings":{"blocked":126,"dns":0,"connect":15,"send":0,"wait":16,"receive":15,"ssl":119},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.freepnglogos.com/uploads/microsoft-logo-png-transparent-background-1.png","fqdn":"www.freepnglogos.com","domain":"freepnglogos.com","tld":"com"},"ip":{"addr":"78.46.22.25","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://validacionesuser.iceiy.com/?i=1","date":"2026-06-02T13:16:57.535Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"freepnglogos.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 05 May 2026 03:36:54 GMT","end":"Mon, 03 Aug 2026 03:36:53 GMT"},"fingerprint":{"sha1":"EE:23:79:61:B6:BD:EB:9E:F3:33:21:B3:72:F3:D3:8D:A3:0B:31:0C","sha256":"69:13:91:15:6A:72:5C:D8:32:88:8B:76:F0:22:C2:9B:4A:F1:44:6F:DA:AB:4D:4E:9C:1B:B6:FB:86:CB:88:59"}}},"request":{"raw":"GET /uploads/microsoft-logo-png-transparent-background-1.png HTTP/1.1\r\nHost: www.freepnglogos.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://validacionesuser.iceiy.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0 (Ubuntu)\r\ndate: Tue, 02 Jun 2026 13:16:57 GMT\r\ncontent-type: image/png\r\ncontent-length: 46043\r\nlast-modified: Sat, 20 Aug 2022 14:09:47 GMT\r\netag: \"6300eb2b-b3db\"\r\ncache-control: no-cache, must-revalidate\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":46043,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 5471 x 1280, 8-bit/color RGBA, non-interlaced","md5":"c117a0bda103aeb25c145a71b0b8ac5a","sha1":"3dd6e5ccf39e92e840404bdab510c8d67bd6e768","sha256":"4bad04d35478f23907ff0e6433a492400840cec4fbd6a487752dd5bdcbbca029","sha512":"73136f1a544983f8ed0e909d0811bbf7fd61ccbeb84bb2023af56943949ea082306576bff227fc71c864d2022e429059231aa082d19977dead2de25c07e17bc8","ssdeep":"768:sgFuRUyAenFPQDYEP6BI1fdR9QgPla9qO:sfZZiPpLR9d9a9qO","tlshash":"1f2329b54c9b89f5c10d4876dc789fa972f81ade6224332d433e7a3d78963ca6004add","first_seen":"2023-11-03T14:17:52Z","last_seen":"2026-06-06T15:24:57.478674Z","times_seen":215,"resource_available":false,"data":null}},"time_used":264,"timings":{"blocked":78,"dns":1,"connect":33,"send":0,"wait":65,"receive":33,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"region1.analytics.google.com/g/collect?v=2\u0026tid=G-C2Z4YC0WNE\u0026gtm=45je65t1v9165163754za200zd9165163754\u0026_p=1780406217505\u0026_gaz=1\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026dma_cps=a\u0026dma=1\u0026_eu=AAAAAGAC\u0026cid=1497592157.1780406218\u0026frm=0\u0026pscdl=noapi\u0026rcb=4\u0026sr=1280x1024\u0026ul=en-us\u0026gaf=2\u0026_s=1\u0026tag_exp=0~115616985~115938465~115938468\u0026dp=validacionesuser.iceiy.com%2F\u0026sid=1780406218\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fvalidacionesuser.iceiy.com%2F%3Fi%3D1\u0026dr=https%3A%2F%2Fvalidacionesuser.iceiy.com%2F\u0026dt=Iniciar%20sesi%C3%B3n%20en%20tu%20cuenta%20Microsoft\u0026en=page_view\u0026_fv=1\u0026_nsi=1\u0026_ss=1\u0026_ee=1\u0026tfd=1069","fqdn":"region1.analytics.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"216.239.34.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://validacionesuser.iceiy.com/?i=1","date":"2026-06-02T13:16:58.502Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:51:26 GMT","end":"Thu, 30 Jul 2026 15:51:25 GMT"},"fingerprint":{"sha1":"E5:3F:1D:8A:67:60:A8:60:56:38:E4:E3:ED:A6:64:D9:7C:89:E1:E1","sha256":"39:E2:E8:B9:46:82:06:98:FA:92:0A:A2:4F:57:DF:DF:EF:00:44:4A:27:C0:C4:99:EC:A5:E3:D4:1A:A8:A5:D4"}}},"request":{"raw":"POST /g/collect?v=2\u0026tid=G-C2Z4YC0WNE\u0026gtm=45je65t1v9165163754za200zd9165163754\u0026_p=1780406217505\u0026_gaz=1\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026dma_cps=a\u0026dma=1\u0026_eu=AAAAAGAC\u0026cid=1497592157.1780406218\u0026frm=0\u0026pscdl=noapi\u0026rcb=4\u0026sr=1280x1024\u0026ul=en-us\u0026gaf=2\u0026_s=1\u0026tag_exp=0~115616985~115938465~115938468\u0026dp=validacionesuser.iceiy.com%2F\u0026sid=1780406218\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fvalidacionesuser.iceiy.com%2F%3Fi%3D1\u0026dr=https%3A%2F%2Fvalidacionesuser.iceiy.com%2F\u0026dt=Iniciar%20sesi%C3%B3n%20en%20tu%20cuenta%20Microsoft\u0026en=page_view\u0026_fv=1\u0026_nsi=1\u0026_ss=1\u0026_ee=1\u0026tfd=1069 HTTP/1.1\r\nHost: region1.analytics.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://validacionesuser.iceiy.com/\r\nOrigin: https://validacionesuser.iceiy.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 204 No Content\r\naccess-control-allow-origin: https://validacionesuser.iceiy.com\r\ndate: Tue, 02 Jun 2026 13:16:58 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\naccess-control-allow-credentials: true\r\ncontent-type: text/plain\r\ncross-origin-resource-policy: cross-origin\r\ncontent-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:196:0\r\ncross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:196:0\r\nreport-to: {\"group\":\"ascnsrsggc:196:0\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:196:0\"}],}\r\nserver: Golfe2\r\ncontent-length: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T19:09:46.661405Z","times_seen":16188449,"resource_available":true,"data":null}},"time_used":202,"timings":{"blocked":92,"dns":24,"connect":8,"send":0,"wait":18,"receive":0,"ssl":56},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://validacionesuser.iceiy.com/?i=1","date":"2026-06-02T13:16:57.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.4.0/css/all.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://validacionesuser.iceiy.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 02 Jun 2026 13:16:57 GMT\r\ncontent-type: text/css; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Mon, 27 Mar 2023 17:46:59 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 501181\r\nexpires: Sun, 23 May 2027 13:16:57 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6ada%2FrA6SI%2F1kxEEp6a%2Blnta1XmBpdmJAuGLCXpIUZmQiNCWtmSQhlRDuit3qIbFOll2cBcgKQaUp0eK6J9zKekVdV%2F4Rf6ldsrafITQM0I0EUakZzk9SzA%2FvhFkGW06Ljmsaa2O\"}]}\r\ncf-ray: a056bc4b9e73b1b8-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":102025,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (52276)","md5":"ded1c367363e8b20bdc6a19b8350a737","sha1":"8c06d82739d14b094ff6d9036021a252bd1d985d","sha256":"1edb1725a9ea8ca4dcf2f5508cee183218aa1685e47c1b23056717f754f58ebf","sha512":"89e71d2e66ac925ec2564aa45cd43f647fd72e5bd664e2728fb632eed71e9e6a43d72a404a8ce9993fc4d223ed985201e3a66676d01cf5e341bc7d07fd9a6207","ssdeep":"1536:OwMCMPMCMjMCM4MCMwMCM3sVMX709gbPMfjSFOTyPGuZprfZCl:S709gMGFiyPGuZpfZCl","tlshash":"2ea3a7f9e44c05d97732c44bab95b37c65b6f738d5810ca9f02f580c1ad26a822c6f7a","first_seen":"2023-04-06T15:05:25Z","last_seen":"2026-06-06T18:34:59.894634Z","times_seen":50882,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":12,"dns":1,"connect":1,"send":0,"wait":19,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.no/ads/ga-audiences?v=1\u0026t=sr\u0026slf_rd=1\u0026_r=4\u0026tid=G-C2Z4YC0WNE\u0026cid=1497592157.1780406218\u0026gtm=45je65t1v9165163754za200zd9165163754\u0026rcb=4\u0026aip=1\u0026dma=1\u0026dma_cps=a\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026frm=0\u0026tag_exp=0~115616985~115938465~115938468\u0026z=1948659208","fqdn":"www.google.no","domain":"google.no","tld":"no"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://validacionesuser.iceiy.com/?i=1","date":"2026-06-02T13:16:58.498Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.no","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:55:19 GMT","end":"Thu, 30 Jul 2026 15:55:18 GMT"},"fingerprint":{"sha1":"0B:35:DC:89:EA:6C:6B:84:37:37:B0:28:E3:EE:28:BF:30:63:E1:98","sha256":"0D:F4:09:F4:10:6D:23:C9:1F:1A:51:B4:6C:60:CE:E0:19:D8:B6:19:C5:C4:86:1B:00:2E:EA:54:40:0A:0E:26"}}},"request":{"raw":"GET /ads/ga-audiences?v=1\u0026t=sr\u0026slf_rd=1\u0026_r=4\u0026tid=G-C2Z4YC0WNE\u0026cid=1497592157.1780406218\u0026gtm=45je65t1v9165163754za200zd9165163754\u0026rcb=4\u0026aip=1\u0026dma=1\u0026dma_cps=a\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026frm=0\u0026tag_exp=0~115616985~115938465~115938468\u0026z=1948659208 HTTP/1.1\r\nHost: www.google.no\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://validacionesuser.iceiy.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\np3p: policyref=\"https://www.googleadservices.com/pagead/p3p.xml\", CP=\"NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC\"\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ndate: Tue, 02 Jun 2026 13:16:58 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\ncontent-type: image/gif\r\nx-content-type-options: nosniff\r\nserver: cafe\r\ncontent-length: 42\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"d89746888da2d9510b64a9f031eaecd5","sha1":"d5fceb6532643d0d84ffe09c40c481ecdf59e15a","sha256":"ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629","sha512":"d5da26b5d496edb0221df1a4057a8b0285d15592a8f8dc7016a294df37ed335f3fde6a2252962e0df38b62847f8b771463a0124ef3f84299f262ed9d9d3cee4c","ssdeep":"","tlshash":"c4900023fa808000c3a8c2300a0b238a2b8c80200a28030b80ae208cec3a3a22c03020","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-06-06T19:10:43.284508Z","times_seen":939143,"resource_available":true,"data":null}},"time_used":278,"timings":{"blocked":110,"dns":1,"connect":29,"send":0,"wait":51,"receive":0,"ssl":82},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"validacionesuser.iceiy.com/aes.js","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://validacionesuser.iceiy.com/","date":"2026-06-02T13:16:57.335Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iceiy.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 27 Mar 2026 00:00:00 GMT","end":"Thu, 25 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:24:71:C4:C4:07:BB:E5:80:30:EC:11:32:67:55:A7:60:0E:D8:39","sha256":"31:12:E9:3C:26:C5:0D:90:79:20:15:74:87:0E:91:26:43:BD:32:93:E3:DF:29:3E:B9:02:99:28:3D:EF:92:43"}}},"request":{"raw":"GET /aes.js HTTP/1.1\r\nHost: validacionesuser.iceiy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://validacionesuser.iceiy.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T19:09:46.661405Z","times_seen":16188449,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"validacionesuser.iceiy.com/?i=1","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-02T13:16:57.423Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iceiy.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 27 Mar 2026 00:00:00 GMT","end":"Thu, 25 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:24:71:C4:C4:07:BB:E5:80:30:EC:11:32:67:55:A7:60:0E:D8:39","sha256":"31:12:E9:3C:26:C5:0D:90:79:20:15:74:87:0E:91:26:43:BD:32:93:E3:DF:29:3E:B9:02:99:28:3D:EF:92:43"}}},"request":{"raw":"GET /?i=1 HTTP/1.1\r\nHost: validacionesuser.iceiy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://validacionesuser.iceiy.com/\r\nCookie: __test=188cba04b9362e07e22e4d846178a8a7\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Tue, 02 Jun 2026 13:16:56 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 28914\r\nConnection: keep-alive\r\nLast-Modified: Mon, 13 Apr 2026 22:47:43 GMT\r\nETag: \"70f2-64f5f454681c0\"\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=2592000, public, proxy-revalidate\r\nExpires: Thu, 02 Jul 2026 13:16:56 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]},{"name":"Google AdSense","description":"Google AdSense is a program run by Google through which website publishers serve advertisements that are targeted to the site content and audience.","website":"https://www.google.com/adsense/start/","common_platform_enumeration":"","icon":"Google AdSense.svg","categories":["Advertising"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]},{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":28914,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (353)","md5":"3cda82a0234b9e273fecb3337dc87326","sha1":"bc0d9cc677d431530a4226ba07afc2320b8bcd0a","sha256":"9741dd1f6a47f65364f83fa35e13196f26cbf651bc2083759209fb5525e10057","sha512":"5832330bbb295d78a242c07e2ddbab67c8fcc31b50063f791564dc0883436231e80973bae7cfd179f641fcbea36c6629888e3bbbb56c0c0c74693d2236b0db25","ssdeep":"768:muxO9vDTleymTbFDMR17FcKplIdFh0dJhKNS9:muxRoedFh0dJhKo9","tlshash":"9fd2b756a9f319626413e0a837f797063275c003d40ace253fac578c8f87bda999379d","first_seen":"2026-06-02T13:08:17.272328Z","last_seen":"2026-06-02T13:17:20.518164Z","times_seen":3,"resource_available":true,"data":null}},"time_used":92,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":61,"receive":31,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"validacionesuser.iceiy.com/telgm.js","fqdn":"validacionesuser.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.33","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://validacionesuser.iceiy.com/?i=1","date":"2026-06-02T13:16:57.533Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iceiy.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 27 Mar 2026 00:00:00 GMT","end":"Thu, 25 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:24:71:C4:C4:07:BB:E5:80:30:EC:11:32:67:55:A7:60:0E:D8:39","sha256":"31:12:E9:3C:26:C5:0D:90:79:20:15:74:87:0E:91:26:43:BD:32:93:E3:DF:29:3E:B9:02:99:28:3D:EF:92:43"}}},"request":{"raw":"GET /telgm.js HTTP/1.1\r\nHost: validacionesuser.iceiy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://validacionesuser.iceiy.com/?i=1\r\nCookie: __test=188cba04b9362e07e22e4d846178a8a7\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Tue, 02 Jun 2026 13:16:56 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 179\r\nConnection: keep-alive\r\nLast-Modified: Mon, 01 Jun 2026 22:58:22 GMT\r\nETag: \"b3-6533921963f80\"\r\nCache-Control: max-age=2592000, public, proxy-revalidate, must-revalidate\r\nExpires: Thu, 02 Jul 2026 13:16:56 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":179,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text","md5":"f5694f9a36219fb5f0c0210ba0ee6766","sha1":"a3e4ed31ce2b8f9a68a5a63a520128633c0c90f9","sha256":"4fcd741a9f432bc19b00489c1bf14473ddbfacc1eb794872bdd8f9f6570a313d","sha512":"4055c23dc23ae05ecf8fc9bcb24fe237c178da3cab68054f4c4b783a622ca55420b7ffe44e25a34e52b2bf14ad343ee37d8caa55bc9cb5c5f44e3ef2f8d9ce36","ssdeep":"","tlshash":"dcc01253e2060c26751181e5a317107d6ac66669608e6c8bc19be23520d863761325ea","first_seen":"2026-06-02T13:08:17.258991Z","last_seen":"2026-06-02T13:17:20.519137Z","times_seen":3,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"validacionesuser.iceiy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=GTM-T2VG59","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://validacionesuser.iceiy.com/?i=1","date":"2026-06-02T13:16:57.551Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:51:35 GMT","end":"Thu, 30 Jul 2026 15:51:34 GMT"},"fingerprint":{"sha1":"4F:F6:A0:5C:88:9C:38:C1:57:D2:C2:16:50:CD:79:E3:67:50:CC:B0","sha256":"93:D6:F4:89:DB:C5:7B:E8:C8:73:F7:36:40:1B:87:32:83:AA:3F:54:8B:26:97:45:83:DB:E6:BF:FD:F5:70:33"}}},"request":{"raw":"GET /gtm.js?id=GTM-T2VG59 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://validacionesuser.iceiy.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 02 Jun 2026 13:16:57 GMT\r\nexpires: Tue, 02 Jun 2026 13:16:57 GMT\r\ncache-control: private, max-age=900\r\nlast-modified: Tue, 02 Jun 2026 12:00:00 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 114352\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":326979,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (4642)","md5":"abd0b65a059ac3460a39627a81475da7","sha1":"f3f46d60cb5bf244809050a4edad718d6f4b793b","sha256":"ffd3e30bac447aa95204551c9ca66d1c11ff8c385addea9b7296cc589d9887ee","sha512":"99dd2de3c11669b113524cbcda74dd1691b1dd5ddfc339fd2b24866a3ba5241cb669b6aa7df8856de2df160faed7b5aebb8529aba5b2221756a7753f97706437","ssdeep":"6144:obYDv43g2b07UgZjRV0FXSy4OlmqvhnPGdw:oV2ZjEhWw","tlshash":"4664f8cdb7dab46243a3a478503f014ba23a79e2f448c898f186d8d42e746694277f7d","first_seen":"2026-06-02T13:08:17.262128Z","last_seen":"2026-06-02T13:17:20.520178Z","times_seen":3,"resource_available":true,"data":null}},"time_used":439,"timings":{"blocked":178,"dns":10,"connect":15,"send":0,"wait":35,"receive":38,"ssl":154},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}