{"report_id":"527bd3f7-8281-495d-92dc-239f98f08398","version":6,"status":"done","tags":[],"date":"2026-05-04T13:25:32Z","url":{"schema":"http","addr":"upagz.com","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"13.249.8.87","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"upagz.com/#/pages/user/login","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"title":"loginPage_login","dom":{"size":302126,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (63968), with CRLF, LF line terminators","md5":"61a060bc98e2afd65e2bbaa8d9a40ce0","sha1":"f5425b8c5a32227746c0dcaeb0b26e99a59c0c93","sha256":"ed8554fd7e5d8270a4904503b28259b2febcc32740846ef65dbcbb0b920669aa","sha512":"66312e8fc23a1ba4cea238aa9f958ac7c18c2cc8854444ed292e5a16c332428dcff8cca6c35e07c18fbe36e41190df7667693042b78e36009955d68b88e1a268","ssdeep":"6144:GZT+33G9XKiUnILNtZEIw9ILmhnWTLv+WuaHUqPv/oCXaYS225GUDn3yeloXYJ:c+33GtuENtFEI8nAvMEUqn/NXaYS2o","tlshash":"1b546cb6e20e8aca2733cc076b4037511c28f73785641df9f59d286d1bc6b605b987ba","dom_hash":"domhasha678e61aa4df6b3995e279e8ca7995cd","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"upagz.com","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"13.249.8.87","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-08T13:25:32Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.jozogikb.vip","ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2025-09-04","domain_rank":0,"first_seen":"2026-05-04T13:25:35.922011Z","last_seen":"2026-05-04T13:25:35.922011Z","alert_count":100,"request_count":25,"received_data":5539026,"sent_data":13260,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"upagz.com","ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":30,"request_count":15,"received_data":1329655,"sent_data":6739,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"at.alicdn.com","ip":{"addr":"47.246.44.177","port":443,"asn":24429,"as":"Zhejiang Taobao Network Co.,Ltd","country":"Sweden","country_code":"SE"},"domain_registered":"2008-06-25","domain_rank":96084,"first_seen":"2013-11-28T05:03:29Z","last_seen":"2026-04-29T23:32:03.519355Z","alert_count":0,"request_count":1,"received_data":56827,"sent_data":511,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]}]},{"fqdn":"cdn.dcloud.net.cn","ip":{"addr":"124.220.203.60","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"domain_registered":"2013-07-17","domain_rank":296858,"first_seen":"2018-09-15T09:18:08Z","last_seen":"2026-04-30T08:47:53.228035Z","alert_count":0,"request_count":1,"received_data":578,"sent_data":440,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"upagz.com/static/js/pages-user-login.24089368.js","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"698766a4f47beb618e49cf17efbd654e","sha1":"4c0182140f8676cf8b5c1397cad04d0f3ba71c7e","sha256":"f74e7f9abf7f2441a432c63075fb7b93cd526815ae1523344052df60ecd8210c","sha512":"720edf3f8ab05ad9fe0bf0491b00152f2ae95e85e08db129bfc9cea06adc0821cd4c6bced14aca7a7ed72b78e54ff02f11011e46b50f4054e9d3fd43ace948c5","ssdeep":"384:EbvmyPr9lk4BIG/HPlLxjnCjKcIy0+KO7XtUVoe:ur9lk0IclLh2Iy1YP","tlshash":"5b03e71f7088b54d09a38864012f150682772d7aa52969e9f3f1e5a1cfb7b4d3323f6e","size":40782,"data":"","first_seen":"2026-05-04T13:25:43.052237Z","last_seen":"2026-05-04T13:31:01.695999Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"ec0086722d72ea95d1e97d455d135c91","sha1":"136c72ace1875c1206b274ca0cf24ed33a11d9a6","sha256":"9ea1492b35a3f52f61c72ab9690242149455b8068d149dff181d54532437f552","sha512":"a6377bb19cce90e385c3cd941eaa1ae27e18d70e1ce90f4e2e5cf5a9c5141069539c442aeb8f5c8a13378a8acc1043c1e84bb2a8593ed6ee026e7303e97bad47","ssdeep":"","tlshash":"fce068c360aa294c0120801a304ac0032bba08b29ec149610c487ba58ab9e4bc46e859","size":343,"data":"","first_seen":"2024-11-11T19:54:28.271167Z","last_seen":"2026-05-04T17:15:56.985477Z","times_seen":641,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/js/index.764226e7.js","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"30be0a71a4e1798ad57c1efb1619baed","sha1":"9c152cb741c1aa8b24ea99d09b33100ed534504c","sha256":"2120d8e614729efd90a5ea4a9d3109f84b230b92b523a595a50d9c00858bcf16","sha512":"367f6c9a5affc4d2ade2c0241dae3d1dc1a0b6db8b61bbb05623fc28e1a46a4cf28c0ee238fca85b3e97455dc67738ea3e87aba8c13aadb7e3dcdaedb0f02aed","ssdeep":"12288:OGABiZX+33GtuENtFEI8nAvMEUqn/NXaNsgqJ:OGEIUsksgqJ","tlshash":"22b48db5b24be5ce23aaf406561fb2426c757d73488cb0d1f35dcc967ec9214ab20b1a","size":515658,"data":"","first_seen":"2026-05-04T13:25:43.045288Z","last_seen":"2026-05-04T13:31:01.666403Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/js/chunk-vendors.4c54c45d.js","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0ad6e15e1230ea6a40bec802d14f2cbf","sha1":"5dee9bcc7482d7382ae6a71d9014662c8157f1aa","sha256":"ed44faf77c9830b6c15c8957e29f732a795ded5fffc99523cd895fe594f23add","sha512":"bb01b63dd1e4303c6b557862b69f4f78e2ec3b2ee1f009a1fd6ac5f8dfb79c1dfb95b88d6753b97d0e84ad8fd392d5a18e4e928d867cd3205233fdf7e8b55aa7","ssdeep":"6144:gKvhEudpTWGuEs2hXxOHjvG+QzRz53G8XJx:gYHWVlYzhddXJx","tlshash":"40d4189cb295b06507e721b5403f220bb23b6968b40b94d4f37ae4d56d7c98e2267f3c","size":600607,"data":"","first_seen":"2026-05-04T13:25:43.043541Z","last_seen":"2026-05-04T13:31:01.686895Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/js/pages-bankCard-bankCard-list~pages-bankCard-bindBankCard~pages-index-index~pages-loan-rePay~pages-lo~d834eb89.2a1416e4.js","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"9a880feddedda2f0e5ded4577c76bb71","sha1":"795bbda8aa4961b6f6a25841101a6a260807dc34","sha256":"eedbbdc77bfbce19b3832d3d9ce1fa9be111d4642aa721c94d44f6a506b3824e","sha512":"cc49d182417115e40f02e5fdc863f986e0ee83b0b35754e78f1dc0d8d27486196a622e54dc74692bf6fb89a994ef68efd13330123575b8a27869cac92ba29643","ssdeep":"384:htZLH+sRGN1HevxH3MmM2GZofFGidaUAuNOaipYE8W2o:7ZLH+seRmH3MmM2GZofFGiEOOaipYE8S","tlshash":"5092a62fb28cba1a9783cd50128f661512597a63d47076e4b7e174f0cba7b98311af0f","size":20498,"data":"","first_seen":"2026-05-04T13:25:43.079332Z","last_seen":"2026-05-04T13:31:01.694853Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/#/","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"ec0086722d72ea95d1e97d455d135c91","sha1":"136c72ace1875c1206b274ca0cf24ed33a11d9a6","sha256":"9ea1492b35a3f52f61c72ab9690242149455b8068d149dff181d54532437f552","sha512":"a6377bb19cce90e385c3cd941eaa1ae27e18d70e1ce90f4e2e5cf5a9c5141069539c442aeb8f5c8a13378a8acc1043c1e84bb2a8593ed6ee026e7303e97bad47","ssdeep":"","tlshash":"fce068c360aa294c0120801a304ac0032bba08b29ec149610c487ba58ab9e4bc46e859","size":343,"data":"","first_seen":"2024-11-11T19:54:28.271167Z","last_seen":"2026-05-04T17:15:56.985477Z","times_seen":641,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/js/pages-index-index.a13c776c.js","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ad6771644c661466c6ef4c8c2f879556","sha1":"a8feaf5769123a9c635af7a95236001cd69b9b43","sha256":"c7f418280d26845da7d69259f839ebfc2d27fa16d2b0d2a3d7caf16fe6e33681","sha512":"3775506de7c55e3d518f61d10a1f268567f42453e42d2db02b895670ff002b992fb4c93c89119b6d5350229bfe12b7a8d67bfb5fa72e76173f23f4519120315e","ssdeep":"96:TLwzDUbscQfovxDZStL83zT492bB953taz2MBMMUjSB+N8nFvxDZUqqxDxf9yYLK:T0HFfofStC/4G753tari6+KFfUq2jLnK","tlshash":"0922c76f718df50f009358b0112f160a5276ad7aa135a7c8b7f2e172c7a264d2632f5f","size":9978,"data":"","first_seen":"2026-05-04T13:25:43.054517Z","last_seen":"2026-05-04T13:31:01.653035Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/js/pages-bankCard-bindBankCard~pages-index-index~pages-loan-buy~pages-loan-loan~pages-loan-rePay~pages-~e3fda964.f0bb5eb4.js","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4bcaa90e7d53a0f2dbee159f2b589706","sha1":"7a598d8a851f09c8df3af457ac798e3cac2d57b0","sha256":"7b4584cde8f3b15867a0c5281c910de2cc3a477c879d470884d984ca16c08a56","sha512":"be98ef7aa6cc2f7c3c92518d3d13803d90085db9eadc0e67cb6bb21940bcb625bccf224ec7b554802082e7115327a41b446723d1932ec980e9bd361467a55e11","ssdeep":"192:eQ44+AcfoQGfW4q1I7OwT99VCf5duZ3+JiuiXiwiriFrtllHT+29AI84COcBTJFb:eP4+AXE27XT9ihJ4RPUXL","tlshash":"8fa2730d71d56d631e9398c081ce620283ade5635ce17cc633a29b8acfbf619125f797","size":23037,"data":"","first_seen":"2026-05-04T13:25:43.071472Z","last_seen":"2026-05-04T13:31:01.626605Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"3d5272693eb411e5b8b13a243f76c720","sha1":"6a586ab8e0a4bf12bbc60eea6ca9f2418625a22c","sha256":"9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8","sha512":"03fc5614f48fc9a2e3c4a30626fdbacde74c1fda09ffa9d1cde0393d31cd5fe1588e270c241f4cedb473c6e5cc224ff16c141468a29519ea6159accf3e3a18f1","ssdeep":"","tlshash":"a4c08c8350e2080c8210861b848880050b8808b04f9308a22cd85b7ecc9ae88c8f804c","size":148,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-05-04T16:59:37.097391Z","times_seen":15009,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"www.jozogikb.vip/api/textLang/list?pageNum=1\u0026pageSize=30","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:07.333Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"OPTIONS /api/textLang/list?pageNum=1\u0026pageSize=30 HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,languageid\r\nReferer: https://upagz.com/\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 0\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: authorization, languageid\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: eSvd6Zc71SIGtJFYsX23k5mlSCRPsQeeM4FCMsJvtCh98QDSEKtVCw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":1926,"timings":{"blocked":694,"dns":166,"connect":1,"send":0,"wait":529,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/switchSet/list","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.995Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"GET /api/switchSet/list HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nLanguageId: 2\r\nAuthorization: \r\nContent-Type: application/x-www-form-urlencoded\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:09 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-credentials: true\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: kvFoS0bQpOzJB_UCkBaFlHmfQwfFnyeguL9-6ybhU6oRiRf7MWcMZw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33567,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"f8aa7cfeb0c9f9a9a4c46d27ad25acc0","sha1":"7cf9f2e04b03e00897aa1c7202a61e87861213c5","sha256":"a84b4d0d660d1e8e7e8984356225e38fdece7db7de38b32ffe35b16185d44e6a","sha512":"89ef923c287ba39b15544fb2d22cb979ba64fed465cc265ec43eab415a4d011220abb09ab3d33a51b27bb97b035ceb664ad1233efee625d44a2b612f3f44d83a","ssdeep":"192:W9sVs4LAiCuYcGWKuu5mWG5x5rcF53+9+1+S+iz+g+j+x+t+houWdsaLOdsELo+S:8lacyYlFREKXNZw","tlshash":"a0e2821902789c6d899c5e1360aefe44eaed371f40088fb959af8f5c99f18b8173d136","first_seen":"2026-05-04T13:25:43.033884Z","last_seen":"2026-05-04T13:31:01.664138Z","times_seen":2,"resource_available":false,"data":null}},"time_used":544,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":544,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/appConfig/list?params%5BpagePath%5D=pages/user/login","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:10.030Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"GET /api/appConfig/list?params%5BpagePath%5D=pages/user/login HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nLanguageId: 2\r\nAuthorization: \r\nContent-Type: application/x-www-form-urlencoded\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:10 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-credentials: true\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: GWhRuj8h8K-zujPJkDxcDTsFC9cD2QF8rm_Mvy29SVrZ_JbsvX2iUg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":66,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"70d6d921b8be5c8a58996bfe4b45985a","sha1":"0b39cf43544079d12f9a66d9f811349e3d021a4c","sha256":"3fa827f361741abeea4591241e3ad96e7dadd36d014ae911b356aa42880736c2","sha512":"9947cc04638b93a194a91f040c0585d2e58e5ab37bc2d7e84fb17ad824381eff852bf42b3900364a6482fca8972921198b8050639ad1a1574a28202f3be5e7e0","ssdeep":"","tlshash":"44a02202080c83cb0e03a0280a03820882b223a80828830c8c8c0228080f28322c8c2f","first_seen":"2025-06-23T17:21:58.885441Z","last_seen":"2026-05-04T13:31:01.680254Z","times_seen":24,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":276,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/favicon.ico","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:10.111Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\ncontent-length: 1258\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:10 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:18 GMT\r\naccept-ranges: bytes\r\netag: \"69307ab2-4ea\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: wjW23oiDZvot6irdzXZV2NnPBs0F44amKw8U0y8IMJK7-K0Xq49rOQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1258,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (932), with CRLF line terminators","md5":"2b47293669a7de136bec01e4849e142c","sha1":"a59da08265e4f36c59269f8a7b760859ea1531e9","sha256":"4d5e462c7fce62c3e93feae54e0b69fcdebfe74ec6bfed76273057bf99aa8f7b","sha512":"fce02ebf3e1701b0d65b35b1fb06de327e99b325daca40980ff73f4e6d1488cac50450fa2ca01741f059861690588c81c982cc468dc5224a44d9ef0af2593d3d","ssdeep":"","tlshash":"1f2195c35c24d01e0560415228abf21d562f41e67850acb069d82fdec8d1fcdcd2fc96","first_seen":"2026-05-04T13:25:43.040018Z","last_seen":"2026-05-04T13:31:01.648926Z","times_seen":2,"resource_available":true,"data":null}},"time_used":253,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"at.alicdn.com/t/font_2225171_8kdcwk4po24.ttf","fqdn":"at.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"47.246.44.177","port":443,"asn":24429,"as":"Zhejiang Taobao Network Co.,Ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:10.401Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.tbcdn.cn","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 28 Nov 2025 03:07:13 GMT","end":"Sat, 18 Jul 2026 09:41:04 GMT"},"fingerprint":{"sha1":"01:40:62:EF:8C:E5:C1:8A:19:4C:8D:B6:F5:C2:24:7F:DC:C0:9C:8A","sha256":"60:3C:41:A0:78:62:E6:5E:82:F0:FA:CF:5C:C9:D3:22:E4:64:EE:1A:EE:C7:CC:BA:DD:25:08:90:6F:CC:C4:F2"}}},"request":{"raw":"GET /t/font_2225171_8kdcwk4po24.ttf HTTP/1.1\r\nHost: at.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: Tengine\r\ncontent-type: application/octet-stream\r\ncontent-length: 55940\r\ndate: Mon, 04 May 2026 01:28:31 GMT\r\nx-oss-request-id: 69F7F63F9F70D63930BE0DC6\r\nvary: Origin\r\naccept-ranges: bytes\r\netag: \"B716002BF601F727176AE7901BDF4E4F\"\r\nlast-modified: Fri, 24 Dec 2021 20:51:06 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10201830100077572647\r\nx-oss-storage-class: Standard\r\ncache-control: max-age=63072000\r\ncontent-md5: txYAK/YB9ycXaueQG99OTw==\r\nx-oss-server-time: 1\r\nvia: ens-cache6.l2de4[0,0,200-0,H], ens-cache8.l2de4[1,0], ens-cache8.se2[0,0,200-0,H], ens-cache15.se2[1,0]\r\nage: 42999\r\nali-swift-global-savetime: 1777858111\r\nx-cache: HIT TCP_MEM_HIT dirn:-2:-2\r\nx-swift-savetime: Mon, 04 May 2026 13:20:58 GMT\r\nx-swift-cachetime: 31061253\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\neagleid: 2ff62ca317779011105298051e\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]}],"data":{"size":55940,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 11 tables, 1st \"GSUB\", 18 names, Macintosh,            ","md5":"b716002bf601f727176ae7901bdf4e4f","sha1":"e87c1130c27fa42d822c198f5ea8b633b5118b94","sha256":"4bc8cc97559c0a52ea4f5ce0563e1bf3a7f89d660f74792e662e76d49eae4707","sha512":"cd4d86bc27a8055bf4ba21730991acb71e32d1d8c3176b6aada3c8fcfbaacfabe3cf1c813665b4434b16c757587d38afb8fd61f3a84a440053a96b545187e672","ssdeep":"768:00Yo6KrRwXJDv2mjQ5PMWCUPQnNqcoocj9MNb5+kYfcUFO++wEMjQYVEh/gG+VeV:xY1dCpj8+kYfcUUXwjjQYV8/gBVE","tlshash":"3c437c2b835e4fb3d16a86f90c4f011b5fefd7206636f99664ca5c1e4402afd085cb9a","first_seen":"2023-04-09T15:26:02Z","last_seen":"2026-05-04T17:33:35.306945Z","times_seen":3467,"resource_available":false,"data":null}},"time_used":293,"timings":{"blocked":134,"dns":52,"connect":8,"send":0,"wait":9,"receive":16,"ssl":71},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/siteInfo/getSiteInfo","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.451Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"OPTIONS /api/siteInfo/getSiteInfo HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,languageid\r\nReferer: https://upagz.com/\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 0\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: authorization, languageid\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: BaYGNzaupoigGy-KMQZXkpelbxyaZORl_suH8A-02ym4xzfvs8Hp3w==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":528,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":528,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/js/chunk-vendors.4c54c45d.js","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:04.947Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /static/js/chunk-vendors.4c54c45d.js HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\ncontent-length: 600607\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:05 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:12 GMT\r\naccept-ranges: bytes\r\netag: \"69307aac-92a1f\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 9w6g8a_M-01XW_vFOQWQK_M-Qk3GFQMg7u5hLEyJPTK0xYgbIRUz9g==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":600607,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65267), with no line terminators","md5":"0ad6e15e1230ea6a40bec802d14f2cbf","sha1":"5dee9bcc7482d7382ae6a71d9014662c8157f1aa","sha256":"ed44faf77c9830b6c15c8957e29f732a795ded5fffc99523cd895fe594f23add","sha512":"bb01b63dd1e4303c6b557862b69f4f78e2ec3b2ee1f009a1fd6ac5f8dfb79c1dfb95b88d6753b97d0e84ad8fd392d5a18e4e928d867cd3205233fdf7e8b55aa7","ssdeep":"6144:gKvhEudpTWGuEs2hXxOHjvG+QzRz53G8XJx:gYHWVlYzhddXJx","tlshash":"40d4189cb295b06507e721b5403f220bb23b6968b40b94d4f37ae4d56d7c98e2267f3c","first_seen":"2026-05-04T13:25:43.043541Z","last_seen":"2026-05-04T13:31:01.686895Z","times_seen":2,"resource_available":true,"data":null}},"time_used":2108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":526,"receive":1582,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/js/index.764226e7.js","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:04.948Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /static/js/index.764226e7.js HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\ncontent-length: 515658\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:05 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:12 GMT\r\naccept-ranges: bytes\r\netag: \"69307aac-7de4a\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: JFPHdhdkQQw8fQ3eMI_2OKp4tDbUb-IovqQGwp5Uy4_K_VdGqlTq3g==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":515658,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65338), with no line terminators","md5":"30be0a71a4e1798ad57c1efb1619baed","sha1":"9c152cb741c1aa8b24ea99d09b33100ed534504c","sha256":"2120d8e614729efd90a5ea4a9d3109f84b230b92b523a595a50d9c00858bcf16","sha512":"367f6c9a5affc4d2ade2c0241dae3d1dc1a0b6db8b61bbb05623fc28e1a46a4cf28c0ee238fca85b3e97455dc67738ea3e87aba8c13aadb7e3dcdaedb0f02aed","ssdeep":"12288:OGABiZX+33GtuENtFEI8nAvMEUqn/NXaNsgqJ:OGEIUsksgqJ","tlshash":"22b48db5b24be5ce23aaf406561fb2426c757d73488cb0d1f35dcc967ec9214ab20b1a","first_seen":"2026-05-04T13:25:43.045288Z","last_seen":"2026-05-04T13:31:01.666403Z","times_seen":2,"resource_available":true,"data":null}},"time_used":2129,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":529,"receive":1600,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/tabs/tabs-f/home-a.png","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:07.287Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /static/tabs/tabs-f/home-a.png HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4363\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:07 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:14 GMT\r\naccept-ranges: bytes\r\netag: \"69307aae-110b\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 7cuv6MFGXFg7ogI59VNlXhWSRa46k0eUQGFJ6UQcm9JzNM5Od0zgbg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4363,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 69 x 69, 8-bit/color RGBA, non-interlaced","md5":"6519b08ffb830e5e0e027d7c91fb4dae","sha1":"b398320d36b04db10e573fb18cb72240f5e1a7d1","sha256":"c8331a8559b6f16ddca760f79ac5116462b0932954854746baa7d0ffd58cbe86","sha512":"ef469d8bd18e93a352d9ad9093d91d791a4d80e43ca1150449511aadfe87f6eb05ab60b722e6fcd76882f721fc97b0256349e9a0b2ed2303031bbcb5becbe0f1","ssdeep":"96:P8exwoo8HqTsOXXKadTa8atoUWIocxcvwXRDkUR/L+uqlTN9Og503Rd:PtOodUsAXKn8aYIocioBDkUR/iHhNQOi","tlshash":"1a918f51617d514aaccc8fec9b3918c8bde404e70cfcd5c2193309ab9e4d55c0834729","first_seen":"2023-05-04T09:53:33Z","last_seen":"2026-05-04T13:31:01.676119Z","times_seen":26,"resource_available":false,"data":null}},"time_used":579,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":579,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/orderFeeSetting/list","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.319Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"GET /api/orderFeeSetting/list HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nLanguageId: 2\r\nAuthorization: \r\nContent-Type: application/x-www-form-urlencoded\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-credentials: true\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: NAfqlJqYxMoc4qZszAFxrxTEaJCQyM0mGOHfdDw9sJ_gs6NcTfD70w==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":7864,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"a6788e4141768bb55b1c10ecd58411f9","sha1":"a048fe6f2b928aac8729572fd19b6e5f8c33056d","sha256":"10d41c318bc4170c1a28ab49ac95dcce7f7e68025f1b86e4e48ea3434112387d","sha512":"571a06d86bfddc761b4743142813e133952c69f60b6a62646f56d5c35a0c2a168773eff8f47e9d13c1be4e4265fc294e46b2a1468613cc4e41ced44394a0f322","ssdeep":"192:h0u0a0L0I0v02030e0f0S030f0g0x0k0z03Z0ib03c0hw0Kk0dK0mx0j80J0+0ki:hnz4ZWxapQ3CQTwpwKHL1KZnrAd1i","tlshash":"dbf1e90915b89d7d899f5d07a0adfe01d6ad732f60048f3918be9f5d89f18780b6e036","first_seen":"2026-05-04T13:25:43.04933Z","last_seen":"2026-05-04T13:25:43.04933Z","times_seen":1,"resource_available":false,"data":null}},"time_used":526,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":526,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/switchSet/list","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.439Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"OPTIONS /api/switchSet/list HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,languageid\r\nReferer: https://upagz.com/\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 0\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: authorization, languageid\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: veGO1ngpJKX0gEzKNag67a5jLXOq_ad88YrtVqiRuL4hUv7h_ztRug==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":530,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":530,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/otherValue/list","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:09.001Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"GET /api/otherValue/list HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nLanguageId: 2\r\nAuthorization: \r\nContent-Type: application/x-www-form-urlencoded\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:09 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-credentials: true\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: BH6s-F1mFuDSrZ5375LeEsCh1uNEnot110MvoYfuC8gLRBYDOA1pbA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1882,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"39172dde86d94d4d032fd57f9ef493b1","sha1":"6c8a24356dcf4d01c08b29a53b45fcd65afc3bef","sha256":"c7966e64f88e7ceb8eb90fbc81f578e51eb69e8c279730efa834c64fef3ef313","sha512":"f23a8b2f382e504acafe21b6b5b923c5da396889eac7f2382df2f20e02ad19e7c75fbc43bce686a1a5de644c4d6d7373a014bc175642e912d6c8400dfadce6de","ssdeep":"","tlshash":"e84142a2673fb9f79ee3515433dc9322611d53fa8440a994fee8842905c8a43b917225","first_seen":"2026-05-04T13:25:43.050894Z","last_seen":"2026-05-04T13:31:01.638024Z","times_seen":2,"resource_available":false,"data":null}},"time_used":513,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":513,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/platformCurrency/list","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:07.340Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"OPTIONS /api/platformCurrency/list HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,languageid\r\nReferer: https://upagz.com/\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 0\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: authorization, languageid\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: svkSGr2iiC4oIVhjNWuHDqyJfEfGQ1AVLaLqGaZMe85_FjLULlWufQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":1218,"timings":{"blocked":321,"dns":161,"connect":11,"send":0,"wait":565,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/js/pages-user-login.24089368.js","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.107Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /static/js/pages-user-login.24089368.js HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\ncontent-length: 40782\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:12 GMT\r\naccept-ranges: bytes\r\netag: \"69307aac-9f4e\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: gkuGnRcK0kHHDqVh0dAOba67aeAvj-30_Z3g4M7eWook8lY-DxLDJA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":40782,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (39634), with no line terminators","md5":"698766a4f47beb618e49cf17efbd654e","sha1":"4c0182140f8676cf8b5c1397cad04d0f3ba71c7e","sha256":"f74e7f9abf7f2441a432c63075fb7b93cd526815ae1523344052df60ecd8210c","sha512":"720edf3f8ab05ad9fe0bf0491b00152f2ae95e85e08db129bfc9cea06adc0821cd4c6bced14aca7a7ed72b78e54ff02f11011e46b50f4054e9d3fd43ace948c5","ssdeep":"384:EbvmyPr9lk4BIG/HPlLxjnCjKcIy0+KO7XtUVoe:ur9lk0IclLh2Iy1YP","tlshash":"5b03e71f7088b54d09a38864012f150682772d7aa52969e9f3f1e5a1cfb7b4d3323f6e","first_seen":"2026-05-04T13:25:43.052237Z","last_seen":"2026-05-04T13:31:01.695999Z","times_seen":2,"resource_available":true,"data":null}},"time_used":267,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":266,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/otherValue/list","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.442Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"OPTIONS /api/otherValue/list HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,languageid\r\nReferer: https://upagz.com/\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 0\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: authorization, languageid\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: vdhMCLjjLmLQY0xbiM78IP0mV-beIEyT-SuTC04veodaLCnNsInf7A==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":561,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":561,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/js/pages-index-index.a13c776c.js","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:07.278Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /static/js/pages-index-index.a13c776c.js HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\ncontent-length: 9978\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:07 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:12 GMT\r\naccept-ranges: bytes\r\netag: \"69307aac-26fa\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: qM5Xoo9qSZyk2Ah_0OnT3lIZaPLRGEfnCSTdmT1Z_RmGd3JIJc_9Fw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":9978,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (9622), with no line terminators","md5":"ad6771644c661466c6ef4c8c2f879556","sha1":"a8feaf5769123a9c635af7a95236001cd69b9b43","sha256":"c7f418280d26845da7d69259f839ebfc2d27fa16d2b0d2a3d7caf16fe6e33681","sha512":"3775506de7c55e3d518f61d10a1f268567f42453e42d2db02b895670ff002b992fb4c93c89119b6d5350229bfe12b7a8d67bfb5fa72e76173f23f4519120315e","ssdeep":"96:TLwzDUbscQfovxDZStL83zT492bB953taz2MBMMUjSB+N8nFvxDZUqqxDxf9yYLK:T0HFfofStC/4G753tari6+KFfUq2jLnK","tlshash":"0922c76f718df50f009358b0112f160a5276ad7aa135a7c8b7f2e172c7a264d2632f5f","first_seen":"2026-05-04T13:25:43.054517Z","last_seen":"2026-05-04T13:31:01.653035Z","times_seen":2,"resource_available":true,"data":null}},"time_used":528,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":528,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/tabs/tabs-f/wallet.png","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:07.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /static/tabs/tabs-f/wallet.png HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1368\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:07 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:14 GMT\r\naccept-ranges: bytes\r\netag: \"69307aae-558\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: hU37gcltBmd08rR70flLuf87Q0GDeqKMliv2YJM7GwpAFl3wxrTpDA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1368,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 69 x 69, 8-bit colormap, non-interlaced","md5":"b7d1ed286ef7dd75235d11960ea94094","sha1":"45a5a2c2eea7315ff1f48656dfe0a904383798f3","sha256":"3b4efde762d54f9ae461a20ca983e8a53db301efb7efec686792791066c845c9","sha512":"561254d5e93e984b40a462e8bc7932a1e1120075ad5587e254e1cdc9b6da7ad28c76732a834f13271fb104ddee215c3c1a77d67c885808e2deed3e7a3173eea5","ssdeep":"","tlshash":"a2212672378eb9c45f31b62d5318f1d2d29389b91b21f9a768c98b26b00096559adb02","first_seen":"2023-05-04T09:53:33Z","last_seen":"2026-05-04T13:31:01.692769Z","times_seen":25,"resource_available":false,"data":null}},"time_used":501,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":501,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/tabs/tabs-f/user.png","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:07.298Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /static/tabs/tabs-f/user.png HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1663\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:07 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:14 GMT\r\naccept-ranges: bytes\r\netag: \"69307aae-67f\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: imRgxn8jKK6brSP65TrJHwghpGWa6R4xZKemWW4nbf9WwOWVgp8X-Q==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1663,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 69 x 69, 8-bit/color RGBA, non-interlaced","md5":"587b6a1c8e6f1734750ab3404cd98b87","sha1":"103f46253058408cdcfb1b723b25963872f18f3b","sha256":"4849b92fd70888cad93fda975d3fb17601bc47745917fd59a001e5d621685546","sha512":"b246872ad09de24564fa0fd6f88fba1700abd5d49807fe2f50f41b967bd1a556b7b63d08d6f2eacc4ab68005fe1e92d37fdfffab88b38dd530c72fc1835a267a","ssdeep":"","tlshash":"eb311a474d080ecc44ee162238bb9ca3e96ba07a14137c1d8dc15c37ba7a20e4481233","first_seen":"2023-05-04T09:53:33Z","last_seen":"2026-05-04T13:31:01.629805Z","times_seen":26,"resource_available":false,"data":null}},"time_used":503,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":503,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/orderFeeSetting/list","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:07.335Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"OPTIONS /api/orderFeeSetting/list HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,languageid\r\nReferer: https://upagz.com/\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 0\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: authorization, languageid\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: YUdomAKLy2O30Yv4vtUZhUrKc3VxWibDsuvQJ06UeUvoggLFyGwRyw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":1404,"timings":{"blocked":433,"dns":171,"connect":1,"send":0,"wait":522,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/img/kefu.png","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.424Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /static/img/kefu.png HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4448\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:14 GMT\r\naccept-ranges: bytes\r\netag: \"69307aae-1160\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: BmZEaJvQ30_u91YV8VL1k62ggpOmaOrIDemYDkGv1WOFHi1_uu80Lw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4448,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 105 x 109, 8-bit/color RGBA, non-interlaced","md5":"fb03453293a0ea4d66f0cf3e21dea0c5","sha1":"18533086f1e0457a62eb75c6a79fa6462acbffec","sha256":"1aad5a92c54388b93944af4196a7c7b218763d61ffbc8b7f2efa8240bed1d7d3","sha512":"b6b8f6a3d713a52a72512554ad312458c5bc93645639632b8b85802571f3f2149064064f86c17a5fd35ebb840ab0c42825b676ce6cbd221ca4de57745016836a","ssdeep":"96:pYR2PmJDvzeLQCroo+4/Ps7gTS0nIf8857sA+KezUEdvdtMw9ETN:S/uVru4/Pyg20nI77vTezjvdCTZ","tlshash":"0f918d56941abd41c489708b60e35c2bbec3ca34a6ebe481cac5dd3c10104b4f3b72d3","first_seen":"2024-08-19T15:18:11.498561Z","last_seen":"2026-05-04T13:31:01.65633Z","times_seen":33,"resource_available":false,"data":null}},"time_used":252,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/switchSet/list","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.454Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"OPTIONS /api/switchSet/list HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,languageid\r\nReferer: https://upagz.com/\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 0\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: authorization, languageid\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: TY98EVBREx-cWoLSsyKvVGHTRG0LwjWPkVz9jsF64nbFMGYfAdkfyA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":542,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":542,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/popUp/list","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.456Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"OPTIONS /api/popUp/list HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,languageid\r\nReferer: https://upagz.com/\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 0\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: authorization, languageid\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: X5udPt-1258WSoKdGdyWO1iu8Hrvcow0B1P4IjailAQUTwkHtGasPA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":536,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":536,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/textLang/list?pageNum=1\u0026pageSize=30","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.558Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"GET /api/textLang/list?pageNum=1\u0026pageSize=30 HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nLanguageId: 2\r\nAuthorization: \r\nContent-Type: application/x-www-form-urlencoded\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-credentials: true\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: 8uV8M2-NNh9d3_n2f9y9SpcZ5r4x7WdYSr_lTjjCdiBDetAEc2HigQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2544089,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (38662), with NEL line terminators","md5":"0496f20fb613866017a46fa6452dc655","sha1":"a7b4295e2ac78eead5d27186d6c7abab30115e46","sha256":"97a1440fb12316fd7e404da8b5ffd70500e0961f58666f01b7b1dd6607ae72e0","sha512":"bf1887990a08074ed0a53461027822a09cd695b7d403f6d03af34901271f8656b07dffaf4916e62ba8e0a3de0a6c5cb0edd7fb66b212f5290764c630cae5a9a4","ssdeep":"24576:3Qvuv1vpvov3v3vHvNvAvNvzvVvlvxvWvEvHvlroKoXfmx8momWkGLtNP9tNP3eZ:z8JkGJFktt","tlshash":"37554c1f9349337505c612823a4d7ab6bb7d80bc7356a2e10aa8556d23e1f3cc33b6e5","first_seen":"2026-05-04T13:25:43.062735Z","last_seen":"2026-05-04T13:25:43.062735Z","times_seen":1,"resource_available":false,"data":null}},"time_used":278,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":278,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/index.f37b29dd.css","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:04.945Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /static/index.f37b29dd.css HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css\r\ncontent-length: 94814\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:05 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:12 GMT\r\naccept-ranges: bytes\r\netag: \"69307aac-1725e\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 203uMbK1ThMyqcwoeuPy7gu2ylLe9ZyDmLZtcgA5Zgr-1ruxyAKF5Q==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":94814,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"24cc70f8c15a45627e86ddd901c2dac5","sha1":"71cf8a0d5a8d6b1cecfa5e746c57493c4d15a150","sha256":"479cdc0fac89745e61f8845a9a29fb28917810c258e732ace1e79a81a239d189","sha512":"5575c0019b564705db66e177f4199f923dca79ac20ce15159ddaa1298c2fc8677b80555e67d0362c163755a4a6e693d288cfbae6be3740ecc102f7170cdba24e","ssdeep":"1536:7lIUpuK7hmVmz2VuUH3xdynf7yQgnMhlNbc:WUpuK7hmVxuUH3im/nMPa","tlshash":"ed93083719012e3ae52bcd16b6c0ab5a1e61c133e15307adfbb876188bcf9c9167b345","first_seen":"2023-04-12T23:21:24Z","last_seen":"2026-05-04T13:31:01.672914Z","times_seen":273,"resource_available":false,"data":null}},"time_used":814,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":273,"receive":541,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/langMgr/list?lang=en","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:07.339Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"OPTIONS /api/langMgr/list?lang=en HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,languageid\r\nReferer: https://upagz.com/\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 0\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: authorization, languageid\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: fQT1bSf5JhGfWmVrN5CRr1l_0Z6S8yb6zilorOFphNvITlFyB01x5A==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":1177,"timings":{"blocked":273,"dns":173,"connect":1,"send":0,"wait":609,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/switchSet/list","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.969Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"GET /api/switchSet/list HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nLanguageId: 2\r\nAuthorization: \r\nContent-Type: application/x-www-form-urlencoded\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:09 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-credentials: true\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: HX6GM_sDYeh3bgoul_kxn_fHuK3z32MNO4blU3YOrF1Vy9bEZsi4Wg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":33567,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"f8aa7cfeb0c9f9a9a4c46d27ad25acc0","sha1":"7cf9f2e04b03e00897aa1c7202a61e87861213c5","sha256":"a84b4d0d660d1e8e7e8984356225e38fdece7db7de38b32ffe35b16185d44e6a","sha512":"89ef923c287ba39b15544fb2d22cb979ba64fed465cc265ec43eab415a4d011220abb09ab3d33a51b27bb97b035ceb664ad1233efee625d44a2b612f3f44d83a","ssdeep":"192:W9sVs4LAiCuYcGWKuu5mWG5x5rcF53+9+1+S+iz+g+j+x+t+houWdsaLOdsELo+S:8lacyYlFREKXNZw","tlshash":"a0e2821902789c6d899c5e1360aefe44eaed371f40088fb959af8f5c99f18b8173d136","first_seen":"2026-05-04T13:25:43.033884Z","last_seen":"2026-05-04T13:31:01.664138Z","times_seen":2,"resource_available":false,"data":null}},"time_used":529,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":529,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/popUp/list","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.992Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"GET /api/popUp/list HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nLanguageId: 2\r\nAuthorization: \r\nContent-Type: application/x-www-form-urlencoded\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:09 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-credentials: true\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: zrfLec6U20G03ortUhlG3QAOum09ce9AWwOt733-VJpaLNZLhhHNyQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1278,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"d20baac16e655917855c0d8cfea3adb6","sha1":"6fca54e3c001a16ed958887bc88c3b5099737745","sha256":"12d3681786fea6136aafd6eaa3be1e3c9085ce426808bc5bf0d7670543c30d2d","sha512":"e1285efe25a341e86d8ce08aaac149cc7eae76079ccf4e7b4c1529733aba9b961ad9cd1a5048cdcc71a4598e798abafe508ecbf942e42b279a5181896a03467e","ssdeep":"","tlshash":"55210b7681342f6de79fd2e369893d886d4f1103308c9d3c6d0a8b4b02e4bf76167258","first_seen":"2025-10-11T20:53:27.649059Z","last_seen":"2026-05-04T13:31:01.640355Z","times_seen":14,"resource_available":false,"data":null}},"time_used":268,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":268,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/profile/upload/banner/2025/09/04/logo_20250904164544A001.png","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:10.396Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"GET /profile/upload/banner/2025/09/04/logo_20250904164544A001.png HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 285692\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:10 GMT\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Thu, 04 Sep 2025 20:45:44 GMT\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: 1BAB2qQ0PD_UAPg9k1XT7zjxv4RqcD9i1PdW0kYTstwjiYn3j89l6A==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":285692,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGB, non-interlaced","md5":"5ec15363ebef979c630cadd048713acf","sha1":"2f2f6d65963c04be08e8bb44b1b6a0dca3669414","sha256":"6de406841ca42d52705e6d851b4809cc351a758c10b8f0d12ade0b453c0fd7a7","sha512":"688cac046ab581da9b137bbaf8b9492b6a87a318bd3dcaa91ed5b038d25f29b15744ee7167a3e798e097d38e5db88532f66487b2ea99f363d66dfca0ae073cb1","ssdeep":"6144:FXk7bF6CnEiCPfqkjh6zBDGCXvETMP12D9dfPQEPTxMIwl:F07bF6Fi0EBJcnfTOl","tlshash":"f054129dc6c7c3460cca0174c28bad936f7fa74b86e5aaba3505545c3fa28b4f46061f","first_seen":"2026-05-04T13:25:43.06725Z","last_seen":"2026-05-04T13:31:01.685963Z","times_seen":2,"resource_available":false,"data":null}},"time_used":5398,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":268,"receive":5130,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-04T13:25:03.852Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\ncontent-length: 1258\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:04 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:18 GMT\r\naccept-ranges: bytes\r\netag: \"69307ab2-4ea\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: NLBaHjx6FG5nc1VdVqRWgyD0JeHwhSW97ELLhbvg7gUIDg3VUCtlpw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1258,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (932), with CRLF line terminators","md5":"2b47293669a7de136bec01e4849e142c","sha1":"a59da08265e4f36c59269f8a7b760859ea1531e9","sha256":"4d5e462c7fce62c3e93feae54e0b69fcdebfe74ec6bfed76273057bf99aa8f7b","sha512":"fce02ebf3e1701b0d65b35b1fb06de327e99b325daca40980ff73f4e6d1488cac50450fa2ca01741f059861690588c81c982cc468dc5224a44d9ef0af2593d3d","ssdeep":"","tlshash":"1f2195c35c24d01e0560415228abf21d562f41e67850acb069d82fdec8d1fcdcd2fc96","first_seen":"2026-05-04T13:25:43.040018Z","last_seen":"2026-05-04T13:31:01.648926Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1217,"timings":{"blocked":288,"dns":139,"connect":1,"send":0,"wait":639,"receive":0,"ssl":148},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/js/pages-bankCard-bindBankCard~pages-index-index~pages-loan-buy~pages-loan-loan~pages-loan-rePay~pages-~e3fda964.f0bb5eb4.js","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:07.272Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /static/js/pages-bankCard-bindBankCard~pages-index-index~pages-loan-buy~pages-loan-loan~pages-loan-rePay~pages-~e3fda964.f0bb5eb4.js HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\ncontent-length: 23037\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:07 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:12 GMT\r\naccept-ranges: bytes\r\netag: \"69307aac-59fd\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: tTsY3czhlunH_0pAYQyJSrujeWUhoz9mrVdyLoRdTGzbP_Mf8m4lUw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23037,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (22125), with no line terminators","md5":"4bcaa90e7d53a0f2dbee159f2b589706","sha1":"7a598d8a851f09c8df3af457ac798e3cac2d57b0","sha256":"7b4584cde8f3b15867a0c5281c910de2cc3a477c879d470884d984ca16c08a56","sha512":"be98ef7aa6cc2f7c3c92518d3d13803d90085db9eadc0e67cb6bb21940bcb625bccf224ec7b554802082e7115327a41b446723d1932ec980e9bd361467a55e11","ssdeep":"192:eQ44+AcfoQGfW4q1I7OwT99VCf5duZ3+JiuiXiwiriFrtllHT+29AI84COcBTJFb:eP4+AXE27XT9ihJ4RPUXL","tlshash":"8fa2730d71d56d631e9398c081ce620283ade5635ce17cc633a29b8acfbf619125f797","first_seen":"2026-05-04T13:25:43.071472Z","last_seen":"2026-05-04T13:31:01.626605Z","times_seen":2,"resource_available":true,"data":null}},"time_used":809,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":540,"receive":269,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/platformCurrency/list","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.289Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"GET /api/platformCurrency/list HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nLanguageId: 2\r\nAuthorization: \r\nContent-Type: application/x-www-form-urlencoded\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-credentials: true\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: RYY-c97Yoz9EZR0wRe-hkuMcG3ZNi90wYeyfcVUUr_wTpVuBHbB3AA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":19087,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"07cd9c7bf87469670a8f7f034502a38d","sha1":"57aee9dc6c8b8625e4ff4ff7125c25def410822e","sha256":"90b1731df09b418ca5ce828b5ec15b751f0a8149cd3e815c94cec190db62e478","sha512":"7bbd253ae5dd4204d4fc004b448a67987e50c31522c7ce29298fb7e9197b7d5bc8a7a3c9c10af76c86207e5def14f1caacfad34a78c3badd6c029b28b4196873","ssdeep":"192:E87kXCnNtnuxZ5d3iFn/AttTixnkWf1BiNtnbe6Z6H14tnsBp2p2MjnJ0Dp75Mly:1IS6lZWssxYAp6/nYPj6s","tlshash":"ea824809023c5d7dce6889a370e9be09f2ad236f54068eb4c6ce8f1d56f18b8523e475","first_seen":"2026-05-04T13:25:43.073329Z","last_seen":"2026-05-04T13:31:01.682189Z","times_seen":2,"resource_available":false,"data":null}},"time_used":530,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":530,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/textLang/list?pageNum=1\u0026pageSize=30","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.458Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"OPTIONS /api/textLang/list?pageNum=1\u0026pageSize=30 HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,languageid\r\nReferer: https://upagz.com/\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 0\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: authorization, languageid\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: OVt8fMk76sm3d-d6reiVcIw5ZJFYR_bPNnM4x9dmj_GziL0BNPRJ8A==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":548,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":548,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.dcloud.net.cn/img/shadow-grey.png","fqdn":"cdn.dcloud.net.cn","domain":"dcloud.net.cn","tld":"net.cn"},"ip":{"addr":"124.220.203.60","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.804Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.dcloud.net.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 26 Aug 2025 11:47:17 GMT","end":"Fri, 25 Sep 2026 11:47:16 GMT"},"fingerprint":{"sha1":"47:A7:6C:09:6B:1D:CA:2D:7D:39:2E:C1:7F:15:DE:5D:F2:C4:0F:77","sha256":"EA:73:37:83:D0:38:44:D9:3C:0B:26:F0:DD:D1:22:2F:36:F7:F2:86:A1:B0:58:52:DE:4E:0A:21:D6:89:E7:3E"}}},"request":{"raw":"GET /img/shadow-grey.png HTTP/1.1\r\nHost: cdn.dcloud.net.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 04 May 2026 13:25:09 GMT\r\ncontent-type: image/png\r\ncontent-length: 136\r\nlast-modified: Thu, 06 Jun 2019 06:42:07 GMT\r\netag: \"5cf8b5bf-88\"\r\nexpires: Mon, 04 May 2026 15:25:09 GMT\r\ncache-control: max-age=7200\r\nset-cookie: __uni__uid=rBEQiWn4njUnPuTaA1LGAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":136,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 6, 4-bit colormap, non-interlaced","md5":"5a962adf74d92ae702467b3f47976547","sha1":"36f74049375584e3fa69b5ef87e9572336ff9e7a","sha256":"ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f","sha512":"4ace23fe7ec6c7271710030fd423aace13eafac68ac3e76366ce4ce9bdc702caf71c9bdc2fb6a32c8e9791546098617cc0259decd8bb8489afdbce43e1b53a73","ssdeep":"","tlshash":"47c09bf3a615dc754a0d153b42e98271f429511e07046d0e5a13c216741e3448d56793","first_seen":"2023-04-15T10:50:30Z","last_seen":"2026-05-04T16:59:37.093095Z","times_seen":15303,"resource_available":false,"data":null}},"time_used":1291,"timings":{"blocked":523,"dns":1,"connect":244,"send":0,"wait":244,"receive":0,"ssl":276},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/siteInfo/getSiteInfo","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.977Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"GET /api/siteInfo/getSiteInfo HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nLanguageId: 2\r\nAuthorization: \r\nContent-Type: application/x-www-form-urlencoded\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:09 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-credentials: true\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: EgkLLW5DcsQ0j1u10sEecCOy4OiIX1_NcAQ0bLoC-8nEwg4VWW4yTA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":681,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"6999906d00eb1067c2ddb881e860aae3","sha1":"d75d90bee843c2f93f6284cf446f12ab7cd823b1","sha256":"090a362b4f25a6eb88d27d106b8315c3bf870ce90fcfbcf3dfb0aaecb89a85ae","sha512":"a9cb0266f9eb4e57984fba63bf2f1366c90ab494bed07e63d76af4834fe70c4859b88a8cb3a77a98e129dd1efa761f4fcea922e1ebb75b54c111b2019665b77e","ssdeep":"","tlshash":"c10149ab05adc8034b4d6fda356efe04c59f2b0fcc849e2558a94eace5f5438210a11f","first_seen":"2026-05-04T13:25:43.077662Z","last_seen":"2026-05-04T13:31:01.671538Z","times_seen":2,"resource_available":false,"data":null}},"time_used":503,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":503,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/js/pages-bankCard-bankCard-list~pages-bankCard-bindBankCard~pages-index-index~pages-loan-rePay~pages-lo~d834eb89.2a1416e4.js","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:07.276Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /static/js/pages-bankCard-bankCard-list~pages-bankCard-bindBankCard~pages-index-index~pages-loan-rePay~pages-lo~d834eb89.2a1416e4.js HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\ncontent-length: 20498\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:07 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:12 GMT\r\naccept-ranges: bytes\r\netag: \"69307aac-5012\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 87c3swg7bcqSSMh_yfqn1z8k-pfrbQ0GdyDlltjF1wzshCbYlrZgoQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20498,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (20142), with no line terminators","md5":"9a880feddedda2f0e5ded4577c76bb71","sha1":"795bbda8aa4961b6f6a25841101a6a260807dc34","sha256":"eedbbdc77bfbce19b3832d3d9ce1fa9be111d4642aa721c94d44f6a506b3824e","sha512":"cc49d182417115e40f02e5fdc863f986e0ee83b0b35754e78f1dc0d8d27486196a622e54dc74692bf6fb89a994ef68efd13330123575b8a27869cac92ba29643","ssdeep":"384:htZLH+sRGN1HevxH3MmM2GZofFGidaUAuNOaipYE8W2o:7ZLH+seRmH3MmM2GZofFGiEOOaipYE8S","tlshash":"5092a62fb28cba1a9783cd50128f661512597a63d47076e4b7e174f0cba7b98311af0f","first_seen":"2026-05-04T13:25:43.079332Z","last_seen":"2026-05-04T13:31:01.694853Z","times_seen":2,"resource_available":true,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":265,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/tabs/tabs-f/market.png","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:07.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /static/tabs/tabs-f/market.png HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2611\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:07 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:14 GMT\r\naccept-ranges: bytes\r\netag: \"69307aae-a33\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: E4yhbXKtfHKk7Wprpuh9ijoJFtUEVxfxRp_9ANHHBDLjfOfLNWFwKg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":2611,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 69 x 69, 8-bit/color RGBA, non-interlaced","md5":"7111f84eded0b3ea2dc4ca9a7c616b7e","sha1":"1ad33b1e551c0ea721ce5b01a24b34d26ae4b3ba","sha256":"e8a3f96249ec55f58f1834b64afaf1177984cdb4d363d5b06fe635d8384cb0e5","sha512":"dfbb1fe04fe1de4ef2aca236e0631aa2c0c853ee5b7e8457e15740ab5879159ad1bb6d4e57bcdf95a8976aec6526a2a67a4bcd9d23fb1d547234f5bdf92bb3c4","ssdeep":"","tlshash":"97513a47c27107b9ebeb833be7040808d945101d4c5689587aa62948ee6b3f82bcd37e","first_seen":"2023-05-04T09:53:33Z","last_seen":"2026-05-04T13:31:01.67919Z","times_seen":26,"resource_available":false,"data":null}},"time_used":527,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":527,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"upagz.com/static/tabs/tabs-f/trade.png","fqdn":"upagz.com","domain":"upagz.com","tld":"com"},"ip":{"addr":"3.167.2.120","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:07.295Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upagz.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"6E:53:EC:97:C4:B1:DC:41:56:EE:11:6C:FD:FA:9F:8F:9F:EC:A0:C5","sha256":"37:89:B4:65:7D:E6:19:8E:15:D7:3D:60:AD:76:BD:21:58:63:4A:47:64:3D:62:D2:E5:A2:B4:3D:23:16:89:91"}}},"request":{"raw":"GET /static/tabs/tabs-f/trade.png HTTP/1.1\r\nHost: upagz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 766\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:07 GMT\r\nlast-modified: Wed, 03 Dec 2025 18:00:14 GMT\r\naccept-ranges: bytes\r\netag: \"69307aae-2fe\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 7a83657ba338d5960d8d5abdbe0a3136.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 9OC9EZAm-ktnc4olgGKQbsKxO8yhi2mw8Rq1Fcqo_JUZaUOr2pTPpQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":766,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced","md5":"ca55eb778de31b06d7ec55861d5ebcc8","sha1":"ee3f3bbb56b2a0d871f5139c4c41d029d96008ca","sha256":"d4f5d2638a1591e00d3c85783a7f89346d0c856231bdf8515eeba65d9b0d5c14","sha512":"e8583ecdcf6562b367ac1725142ee076927a5e858ff663bb25e034785291296e6df3842a04cebd6181662023d23ceed5e7fba892ca3e554f42484b5a2ddda29d","ssdeep":"","tlshash":"1201ba415331992daeeae660570c1c11c41b07619fd45b9432134f242cd488da27ffb2","first_seen":"2023-10-09T11:55:12Z","last_seen":"2026-05-04T13:31:01.668291Z","times_seen":11,"resource_available":false,"data":null}},"time_used":503,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":503,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"upagz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/siteInfo/getSiteInfo","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:07.320Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"OPTIONS /api/siteInfo/getSiteInfo HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,languageid\r\nReferer: https://upagz.com/\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 0\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: authorization, languageid\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: CTI1EzvZwcKI2kvi9V68W7fsS8NmRQn6ETecJVzmMaNS3BUpWGVbEw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":1399,"timings":{"blocked":451,"dns":164,"connect":1,"send":0,"wait":503,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/langMgr/list?lang=en","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.259Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"GET /api/langMgr/list?lang=en HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nLanguageId: 2\r\nAuthorization: \r\nContent-Type: application/x-www-form-urlencoded\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-credentials: true\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: WgQf0NP4cT0YgVY1Nzjjt33nmdRD5E5mBXZkPMtwf4Mqu4H-71mH0g==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":51278,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"c91387db434b8a0d351077fe30c7ca90","sha1":"0c0eba2d188603b1fdbc355779cb9f59700d9c81","sha256":"0824c7020e721ac476d04a24a945261a2c857406cc6eb13ddcacbc7b0459a305","sha512":"9dd767f25340c7c29a6f55efbc1966696e968ffda852ffa8fb0d3e15dd29dfacdb84fe81c52cacfbdb377b49f8bf71633b0c698a4b89a5da39f32c74746b4008","ssdeep":"1536:hbHc+MY16PVeq7/6kpPJ2D0+fZqMLl10mJH1c3M3yxpoV/XS0CGKFczQU:GtVPkqilFVcSxzL","tlshash":"6f33c80ab2081af75be353c4746a9eb829fc10c183a24459d5adca3c676d37cb27b44f","first_seen":"2026-05-04T13:25:43.084488Z","last_seen":"2026-05-04T13:31:01.683497Z","times_seen":2,"resource_available":false,"data":null}},"time_used":531,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":531,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/siteInfo/getSiteInfo","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:08.317Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"GET /api/siteInfo/getSiteInfo HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nLanguageId: 2\r\nAuthorization: \r\nContent-Type: application/x-www-form-urlencoded\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:08 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-credentials: true\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: aTZlpIPTwqiAXZjAgvygo2qu4ZED9eCaDacaw8UMJcTbyoS1d-wn9Q==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":681,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"6999906d00eb1067c2ddb881e860aae3","sha1":"d75d90bee843c2f93f6284cf446f12ab7cd823b1","sha256":"090a362b4f25a6eb88d27d106b8315c3bf870ce90fcfbcf3dfb0aaecb89a85ae","sha512":"a9cb0266f9eb4e57984fba63bf2f1366c90ab494bed07e63d76af4834fe70c4859b88a8cb3a77a98e129dd1efa761f4fcea922e1ebb75b54c111b2019665b77e","ssdeep":"","tlshash":"c10149ab05adc8034b4d6fda356efe04c59f2b0fcc849e2558a94eace5f5438210a11f","first_seen":"2026-05-04T13:25:43.077662Z","last_seen":"2026-05-04T13:31:01.671538Z","times_seen":2,"resource_available":false,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/textLang/list?pageNum=1\u0026pageSize=30","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:09.006Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"GET /api/textLang/list?pageNum=1\u0026pageSize=30 HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nLanguageId: 2\r\nAuthorization: \r\nContent-Type: application/x-www-form-urlencoded\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://upagz.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:09 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-credentials: true\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: W2cqZ04qN7vJXMsjpKmSg6070Z4MLTfIvwKl2u0sCV2pzne23gil4g==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2544089,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (35845), with NEL line terminators","md5":"e2ce191a89f2fa124acd67ae2012d59d","sha1":"26737db70942d5a0436e62f75e2fbbf907bc6bd8","sha256":"63cafbdb7bc82c4526ebd2c9c5ab318cf38451a854419cec7831a4c0cad47b32","sha512":"da2c8fda487f71b1ce5e979d52282a5a78bde767ac4598ca16c38923927b82210913bb34c2e5bc343ae4016cd4f59d4529487ae61d5c13719a6b2227fb4e0ee5","ssdeep":"24576:Bvuv1vpvov3v3vHvNvAvNvzvVvlvxvWvEvHvlrdrZtNPulmx8CemWkGLtNP9tNPO:M8bkGJFktD","tlshash":"a5553b1f9349337601c62282364e7ab6bb6d94bc732291e10da8556d23e1f3cc33b6e5","first_seen":"2026-05-04T13:25:43.085978Z","last_seen":"2026-05-04T13:25:43.085978Z","times_seen":1,"resource_available":false,"data":null}},"time_used":292,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":292,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jozogikb.vip/api/appConfig/list?params%5BpagePath%5D=pages/user/login","fqdn":"www.jozogikb.vip","domain":"jozogikb.vip","tld":"vip"},"ip":{"addr":"52.84.50.88","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://upagz.com/","date":"2026-05-04T13:25:09.765Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jozogikb.vip","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 04 Sep 2025 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8B:25:A9:92:5B:BC:22:DC:78:FA:09:09:28:63:32:3E:9A:7B:61:8D","sha256":"EE:7A:B6:6A:C4:58:C4:C0:EA:8F:34:96:B8:77:39:87:E3:48:8F:6A:33:26:6D:7D:75:1C:91:37:9B:C9:2E:6B"}}},"request":{"raw":"OPTIONS /api/appConfig/list?params%5BpagePath%5D=pages/user/login HTTP/1.1\r\nHost: www.jozogikb.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: authorization,languageid\r\nReferer: https://upagz.com/\r\nOrigin: https://upagz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 0\r\nserver: nginx/1.20.2\r\ndate: Mon, 04 May 2026 13:25:09 GMT\r\nx-xss-protection: 1; mode=block\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://upagz.com\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: authorization, languageid\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a7eeeb375db56eafe74d447721ccbb8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: BcopedhcSLAg9YNG_Y2YS7zs5yAniEDTB3oYUgwCHfZ3ktRLILXz_A==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx:1.20.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":262,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":262,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"www.jozogikb.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}}]}